8c2d4d5ac5bba32e64333545a65f91d017dd6d2704980288d3563e8f544c6eac

Sharing

Copy URL Twitter E-mail

General

Target

8c2d4d5ac5bba32e64333545a65f91d017dd6d2704980288d3563e8f544c6eac
Size

512KB
MD5

fc7a04bdc701e484b8e55324357eb227
SHA1

8c3d1ba9014cc1893531141771169ced6fbb7bf0
SHA256

8c2d4d5ac5bba32e64333545a65f91d017dd6d2704980288d3563e8f544c6eac
SHA512

1d892ff1e884b8f89abc1fde58853700305d156db90141637747302e620c1fb12ac599c8834f1859fca3c0ed5432ad628f0ff6629a2a878e085ad1c92240eb2d
SSDEEP

6144:8aykb1U4Ao3dSo2d2gvCGY4ferBv+2jK2GYBrBpwcgp3fXJuw8IY1:akxWx6GNfS+Pal+Xpgl

Score

N/A

Malware Config

Signatures

Files

8c2d4d5ac5bba32e64333545a65f91d017dd6d2704980288d3563e8f544c6eac
.exe windows x86

f4ae3ea8a928a3bccb72469773f05f3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
MapWindowPoints
SetRect
GetWindowTextA
PostQuitMessage
TabbedTextOutW
GetSysColor
DdeUninitialize
GetWindowTextLengthA
SendMessageW
ShowOwnedPopups
IsClipboardFormatAvailable
CheckMenuRadioItem
GetScrollRange
EndDeferWindowPos
GetMessageW
GetDialogBaseUnits
SetWindowLongA
CopyRect
GetFocus
CheckDlgButton
ExitWindowsEx
DrawFocusRect
DeleteMenu
MonitorFromWindow
CheckMenuItem
SetCaretPos
OffsetRect
SetWindowPlacement
CallWindowProcW
GetDlgCtrlID
DestroyMenu
InflateRect
CopyIcon
FindWindowA
FillRect
GetCapture
IsWindowEnabled
ScreenToClient
AdjustWindowRectEx
EnumWindows
GetWindowRect
IsWindowVisible
GetSystemMetrics
SetPropA
DialogBoxParamA
EndDialog
PtInRect
IsMenu
CheckRadioButton
DefDlgProcA
SetDlgItemTextW
AppendMenuA
FindWindowW
PeekMessageW
LoadIconA
ShowWindow
GetClientRect
GrayStringW
LoadImageA
CreateMenu
GetDC
LoadCursorW
CreateDialogIndirectParamA
LoadIconW
GetForegroundWindow
GetWindowRgn
RegisterWindowMessageA
SendDlgItemMessageW
BeginPaint
GetPropA
GetWindowPlacement
SetForegroundWindow
SetFocus
InvalidateRgn
DestroyCursor
IsZoomed
ShowScrollBar
SendDlgItemMessageA
ValidateRect
GetDesktopWindow
OpenClipboard
ShowCaret
RegisterClassExA
CallNextHookEx
MessageBoxA
RegisterClassExW
SetWindowTextW
WaitMessage
GetMessageA
RedrawWindow
GetDCEx
SetParent
SetCursor
GetMenuState
SetWindowTextA
ReleaseDC
GetWindow
GetSubMenu
RemovePropA
GetKeyState
KillTimer
LoadMenuA
GetDlgItem
SetDlgItemInt
TrackPopupMenu
IsDlgButtonChecked
GetClassLongA
GetMenuStringA
EmptyClipboard
InsertMenuItemA
SetTimer
LoadStringA
EqualRect
DestroyWindow
SetMenuItemBitmaps
SendMessageA
DeferWindowPos
ScrollWindow
LoadCursorA
CreateWindowExW
EnableWindow
GetClassNameA
DdeConnect
CreateCaret
SetMenuDefaultItem
ScrollWindowEx
DefWindowProcA
DispatchMessageA
LoadImageW
DialogBoxParamW
ChildWindowFromPointEx
RegisterClassA
OemToCharBuffA
DdeClientTransaction
BeginDeferWindowPos
IsRectEmpty
WindowFromDC
LoadAcceleratorsA
ModifyMenuA
GetSystemMenu
DrawIcon
DdeDisconnect
SetClipboardData
GetMenuCheckMarkDimensions
SetWindowContextHelpId
CharNextA
MoveWindow
GetPropW
PeekMessageA
GetDoubleClickTime
wsprintfA
SetWindowPos
GetMenuItemCount
CreateDialogParamA
DrawIconEx
GetMessageTime
GetScrollInfo
ScrollDC
GetWindowDC
InsertMenuA
CharUpperW
SetWindowLongW
SetPropW
SetDlgItemTextA
IsDialogMessageW
GetMenu
GetNextDlgGroupItem
ReplyMessage
TabbedTextOutA
LoadBitmapA
PostMessageW
ReuseDDElParam
InvalidateRect
CloseDesktop
MessageBeep
RegisterClipboardFormatA
GetMenuItemID
SetRectEmpty
SubtractRect
CreateWindowExA
DrawEdge
GetTopWindow
DrawTextW
InvertRect
GetParent
SetScrollRange
IntersectRect
GetMessagePos
GetUpdateRect
CharToOemA
DrawMenuBar
UpdateWindow
GetClassInfoW
GetClipboardData
GetMenuItemInfoW
GetWindowThreadProcessId
IsWindow
GetWindowLongA
UnhookWindowsHookEx
PostMessageA
GetWindowLongW
MapVirtualKeyExA
TranslateMessage
GetNextDlgTabItem
TranslateAcceleratorA
GetAsyncKeyState
wvsprintfA
GetDlgItemTextW
UnpackDDElParam
IsIconic
GetCursorPos
GrayStringA
UnregisterClassA
RemoveMenu
DestroyIcon
SetScrollInfo
InsertMenuW
GetActiveWindow
SetScrollPos
CreatePopupMenu
MsgWaitForMultipleObjects
EnumChildWindows
EnableMenuItem
SystemParametersInfoA
SetWindowsHookExA
InSendMessage
SetActiveWindow
ReleaseCapture
GetSysColorBrush
CallWindowProcA
GetLastActivePopup
CopyAcceleratorTableA
SetClassLongW
DialogBoxIndirectParamA
TrackPopupMenuEx
GetMenuDefaultItem
LoadAcceleratorsW
GetClassInfoA
DefWindowProcW
IsWindowUnicode
CloseClipboard
HideCaret
CharUpperA

comctl32

ImageList_EndDrag
ImageList_LoadImageA
ImageList_Draw
PropertySheetA
ord17
ImageList_BeginDrag
ImageList_AddMasked
InitCommonControlsEx
ImageList_Create
DestroyPropertySheetPage
ImageList_Write
CreatePropertySheetPageA
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_Remove
ImageList_DragLeave
ImageList_SetDragCursorImage
ImageList_GetImageCount
ImageList_GetIcon
ImageList_DragMove
CreatePropertySheetPageW
ImageList_GetBkColor
_TrackMouseEvent
ImageList_Read
ImageList_Replace
ImageList_Merge
ImageList_Add
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_DragShowNolock
ImageList_SetBkColor
ImageList_DrawIndirect

advapi32

RegEnumValueA
GetTokenInformation
RegCreateKeyA
RegSetValueExW
RegCloseKey
RegQueryValueA
DeleteService
AllocateAndInitializeSid
RegSetValueA
RegCreateKeyExA
RegQueryValueExW
CryptAcquireContextA
FreeSid
ImpersonateSelf
RegQueryInfoKeyW
RegEnumKeyExA
InitializeAcl
RegOpenKeyA
RegQueryValueW
CloseServiceHandle
OpenServiceA
RegOpenKeyW
OpenSCManagerW
GetLengthSid
RegFlushKey
RegEnumKeyW
CryptReleaseContext
RegDeleteKeyA
GetUserNameA
LookupPrivilegeValueA
AddAccessAllowedAce
RegSetValueW
RegSetValueExA
DuplicateToken
RegQueryInfoKeyA
CryptImportKey
CryptEncrypt
AdjustTokenPrivileges
SetSecurityDescriptorDacl
SetServiceStatus
CopySid
RegEnumKeyA
RegDeleteValueA
OpenProcessToken
InitializeSecurityDescriptor
StartServiceA
GetAce
RegOpenKeyExA
GetSidIdentifierAuthority
GetSidSubAuthority
DeregisterEventSource
GetUserNameW
ControlService
CreateServiceA
RegCreateKeyExW
OpenSCManagerA
IsValidSid
RegQueryValueExA
OpenServiceW
QueryServiceStatus
RegEnumKeyExW
RegDeleteKeyW

comdlg32

GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA
GetOpenFileNameW
PageSetupDlgA
PageSetupDlgW
PrintDlgA
ChooseColorA
GetFileTitleA

kernel32

TerminateThread
FileTimeToLocalFileTime
SetEndOfFile
GetFileAttributesA
LCMapStringA
HeapCreate
GlobalFindAtomW
VirtualFree
TlsAlloc
ReleaseMutex
GlobalReAlloc
GetCurrentThread
WriteFile
GlobalFindAtomA
ExitProcess
SetEnvironmentVariableA
FindFirstFileA
HeapFree
lstrcmpiA
WriteConsoleA
CreateFileW
GetOEMCP
IsValidCodePage
GlobalAlloc
MultiByteToWideChar
GetFullPathNameW
CompareStringA
GetSystemTimeAsFileTime
LeaveCriticalSection
lstrcpyW
GetPrivateProfileIntA
GetWindowsDirectoryA
GetComputerNameA
QueryPerformanceCounter
SizeofResource
GetFileAttributesExW
WaitForMultipleObjects
LoadLibraryA
DeleteFileA
GetDateFormatA
HeapAlloc
DeleteFileW
SetUnhandledExceptionFilter
LoadLibraryW
VirtualProtect
HeapReAlloc
FindResourceA
FindFirstFileW
GetFileTime
GetModuleFileNameA
SuspendThread
OpenFileMappingA
GlobalDeleteAtom
SetCurrentDirectoryA
VirtualQuery
GetTimeFormatA
GetVersion
GetFileInformationByHandle
GetSystemDirectoryA
GetNumberFormatA
WritePrivateProfileStringA
SetThreadPriority
GetCurrentDirectoryW
lstrcatA
CopyFileA
InterlockedExchange
lstrcpynA
SetStdHandle
IsBadStringPtrA
EnumSystemLocalesA
GetProcessVersion
FormatMessageW
GetLocaleInfoW
TlsGetValue
GetEnvironmentStrings
SetHandleCount
GetConsoleCP
GetVersionExA
GetModuleHandleA
TlsSetValue
GetFullPathNameA
InterlockedDecrement
EnterCriticalSection
GetLocaleInfoA
VirtualAlloc
lstrcmpW
LoadResource
FlushFileBuffers
GlobalAddAtomA
GetModuleFileNameW
GetACP
GetProcAddress
GetEnvironmentStringsW
GetConsoleMode
GlobalFlags
WriteConsoleW
GetStartupInfoW
RtlUnwind
LocalAlloc
FileTimeToSystemTime
GetShortPathNameA
GetTickCount
IsBadCodePtr
TerminateProcess
TlsFree
GetTempFileNameW
FreeEnvironmentStringsW
GetCPInfo
OpenMutexA
GlobalUnlock
GetProcessHeap
PeekNamedPipe
GetCurrentDirectoryA
lstrcatW
UnmapViewOfFile
GetCommandLineA
GetTimeZoneInformation
WideCharToMultiByte
SetErrorMode
ReleaseSemaphore
FormatMessageA
GetStdHandle
SetFileAttributesW
CreateThread
CompareStringW
LoadLibraryExA
GetTempFileNameA
FindClose
MoveFileA
GetCurrentProcess
SystemTimeToFileTime
GetExitCodeProcess
RaiseException
CreateEventA
LockFile
FindNextFileA
WinExec
CreateMutexA
lstrcmpA
UnhandledExceptionFilter
GetVolumeInformationA
GetPrivateProfileStringA
GetLocalTime
ReadFile
CreateEventW
GetConsoleOutputCP
lstrlenW
FreeEnvironmentStringsA
GetLastError
HeapSize
GetCurrentProcessId
lstrlenA
LocalFree
GetCommandLineW
DeleteCriticalSection
GetUserDefaultLCID
GlobalHandle
GetStringTypeW
WritePrivateProfileStringW
SetFileTime
ExitThread
LockResource
OutputDebugStringA
GlobalSize
LCMapStringW
lstrcpyA
SetFilePointer
Sleep
IsBadReadPtr
GetStringTypeA
SetLastError
IsBadWritePtr
InterlockedCompareExchange
UnlockFile
ResumeThread
InterlockedIncrement
CopyFileW
DeviceIoControl
GlobalFree
GetFileSize
CreateDirectoryA
SetEvent
IsValidLocale
FreeLibrary
GetFileType
CreateFileA
ResetEvent
GetStartupInfoA
GetEnvironmentVariableA
GetCurrentThreadId
GetThreadLocale
FatalAppExitA
IsDebuggerPresent
MulDiv
GetModuleHandleW
HeapDestroy
GlobalLock
CloseHandle
CreateDirectoryW
WaitForSingleObject
InitializeCriticalSection
SetConsoleCtrlHandler
FindResourceExA

ole32

OleLoad
ReadClassStg
StgOpenStorageOnILockBytes
OleLockRunning
OleCreateStaticFromData
CoFreeUnusedLibraries
CoUninitialize
OleSetContainedObject
OleSaveToStream
OleSetMenuDescriptor
DoDragDrop
StringFromGUID2
OleIsRunning
CoRegisterClassObject
OleLoadFromStream
CoGetClassObject
OleCreateLinkToFile
CreateILockBytesOnHGlobal
StringFromCLSID
GetRunningObjectTable
OleUninitialize
ProgIDFromCLSID
CoLockObjectExternal
OleSave
OleDestroyMenuDescriptor
CoGetInterfaceAndReleaseStream
OleRegEnumVerbs
CLSIDFromProgID
OleIsCurrentClipboard
OleRegGetUserType
WriteClassStm
OleFlushClipboard
OleCreateFromData
OleGetClipboard
CoLoadLibrary
GetHGlobalFromILockBytes
CoInitializeEx
IsAccelerator
OleCreateFromFile
CoDisconnectObject
OleInitialize
OleGetIconOfClass
CoRegisterMessageFilter
StgCreateDocfile
CoCreateInstance
CoUnmarshalInterface
RegisterDragDrop
OleCreateMenuDescriptor
CoInitialize
CreateStreamOnHGlobal
OleRegGetMiscStatus
StgOpenStorage
StgCreateDocfileOnILockBytes
OleTranslateAccelerator
CoCreateGuid
CoMarshalInterThreadInterfaceInStream
CreateBindCtx
OleRun
CLSIDFromString
OleCreateLinkFromData
CoTaskMemAlloc
CreateGenericComposite
CreateItemMoniker
OleDuplicateData
ReleaseStgMedium
CoMarshalInterface
CreateOleAdviseHolder
CoRevokeClassObject
CreateFileMoniker
OleCreate
CoReleaseMarshalData
CoTaskMemFree

shell32

DragQueryFileA
SHChangeNotify
ShellExecuteA
DragAcceptFiles
ExtractIconA
ShellExecuteExA
ShellExecuteExW
SHFileOperationA
ShellExecuteW
SHGetSpecialFolderLocation
ord155
SHGetMalloc
DragFinish
SHFileOperationW
DragQueryFileW
SHGetPathFromIDListA
DragQueryPoint
SHGetFolderPathW
SHAppBarMessage

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4ae3ea8a928a3bccb72469773f05f3b

Headers

File Characteristics

Imports

user32

comctl32

advapi32

comdlg32

kernel32

ole32

shell32

Sections

.text Size: 100KB - Virtual size: 97KB

.rdata Size: 264KB - Virtual size: 263KB

.data Size: 96KB - Virtual size: 123KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 100KB - Virtual size: 97KB

.rdata
Size: 264KB - Virtual size: 263KB

.data
Size: 96KB - Virtual size: 123KB

.rsrc
Size: 48KB - Virtual size: 46KB