e4802813b322801bd8cb48659135e7112936571cb938516b6d739aef8e4f1587

Sharing

Copy URL Twitter E-mail

General

Target

e4802813b322801bd8cb48659135e7112936571cb938516b6d739aef8e4f1587
Size

2.0MB
MD5

d0c5e4cbdacbbb17b7da1492b049c554
SHA1

825213348c638d1984a39c58aa4073ce9c2ab5fa
SHA256

e4802813b322801bd8cb48659135e7112936571cb938516b6d739aef8e4f1587
SHA512

1f420964e1d18bd63664b12a68401566760144592c25a25c2f791e2fe407f9f4f6cc6f302baed9a528c141ba40bb5c9354a20bffd37796cac40b7686d2107e1d
SSDEEP

24576:6tRA5ijB4ZuNxYA9kU3NzrN4r+gwPSEGLO1WnjcT0/ibuZP//eS+C:K/d4ZuNSEkUNz+r+gsSEGYI/1Ztl

Score

N/A

Malware Config

Signatures

Files

e4802813b322801bd8cb48659135e7112936571cb938516b6d739aef8e4f1587
.exe windows x86

9a69abeff202fecd05ee6b676af10daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
SetFileTime
GetFileAttributesA
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFilePointer
WinExec
ExitProcess
GetStartupInfoA
LoadLibraryA
Sleep
CreateThread
GetTempPathA
MoveFileExA
SetCurrentDirectoryA
CreateDirectoryA
RemoveDirectoryA
GetTickCount
GetFileSize
ReadFile
CreateEventA
CopyFileA
GetCurrentProcessId
OpenProcess
CreateProcessA
CreateToolhelp32Snapshot
Process32First
lstrcmpA
Process32Next
lstrcpyA
lstrlenA
CreateFileA
WriteFile
FreeResource
MultiByteToWideChar
GetCommandLineW
WaitForSingleObject
CloseHandle
DeleteFileA
GetCurrentDirectoryA
GetModuleFileNameA
GetLogicalDrives
GetDriveTypeA
GetModuleHandleA
GetProcAddress
GetLastError
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetProcessHeap
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
CompareStringW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
InitializeCriticalSectionAndSpinCount
VirtualFree
HeapCreate
LCMapStringW
LCMapStringA
IsValidCodePage
GetACP
GetStdHandle
SetHandleCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetFileType
SetStdHandle
HeapSize
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
RaiseException
GetCommandLineA
HeapFree
HeapAlloc
HeapReAlloc
RtlUnwind
SetErrorMode
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetModuleHandleW
GlobalFlags
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
GlobalFree
GlobalUnlock
GlobalLock
MulDiv
LocalFree
FormatMessageA
GlobalAlloc
SetLastError
GetVersionExA
lstrcmpW
CompareStringA
FreeLibrary
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
GetModuleFileNameW
InterlockedDecrement
InterlockedIncrement
GetThreadLocale
FindClose
FindNextFileA
FileTimeToLocalFileTime
FindFirstFileA
InterlockedExchange
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetFullPathNameA
GetFileSizeEx
GetFileTime
InitializeCriticalSection
DeleteCriticalSection

user32

DestroyIcon
GetDC
CreateIconIndirect
GetIconInfo
DrawStateA
CopyRect
InflateRect
OffsetRect
FillRect
FrameRect
EndDialog
IsWindowEnabled
GetDlgItem
DestroyWindow
CreateDialogIndirectParamA
SetActiveWindow
GetMenuItemCount
GetMenuItemID
GetMenuState
GetWindow
GetWindowPlacement
SystemParametersInfoA
IntersectRect
GetMenu
CallWindowProcA
DefWindowProcA
GetDlgCtrlID
PtInRect
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
ScreenToClient
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
UpdateWindow
IsWindowVisible
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
SetMenu
GetKeyState
TrackPopupMenu
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
DispatchMessageA
GetLastActivePopup
GetForegroundWindow
GetWindowTextA
GetWindowTextLengthA
SetFocus
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassLongA
SetWindowsHookExA
GetCapture
LoadImageA
WinHelpA
SendDlgItemMessageA
RegisterWindowMessageA
CheckMenuItem
EnableMenuItem
ModifyMenuA
LoadBitmapA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
BeginPaint
EndPaint
GetWindowThreadProcessId
GetCursorPos
CharNextA
IsRectEmpty
SetTimer
KillTimer
SetCapture
ReleaseCapture
ValidateRect
TranslateMessage
GetMessageA
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
WaitMessage
CharUpperA
TranslateAcceleratorA
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
DrawFocusRect
GetMenuItemInfoA
GetSysColorBrush
UnregisterClassA
CopyAcceleratorTableA
SetRect
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
PostThreadMessageA
ClientToScreen
GetActiveWindow
InvalidateRect
GetClientRect
UnpackDDElParam
GetWindowRect
PostMessageA
GetWindowDC
ReleaseDC
SetWindowRgn
GetNextDlgTabItem
GetParent
WindowFromPoint
GetWindowLongA
SetCursor
TrackPopupMenuEx
GetSubMenu
GetSysColor
SetWindowPos
EnableWindow
SendMessageA
IsChild
GetDesktopWindow
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
PeekMessageA
PostQuitMessage
wsprintfA
GetSystemMetrics
SetLayeredWindowAttributes
LoadIconA
LoadCursorA
IsIconic
DrawIcon
CharLowerBuffA
CallNextHookEx
AdjustWindowRectEx
GetFocus
MessageBoxA
IsWindow
SetWindowLongA
RedrawWindow
DestroyMenu
LoadMenuA
DestroyCursor

gdi32

LineTo
MoveToEx
SetMapMode
Escape
ExtTextOutA
TextOutA
RectVisible
CreateSolidBrush
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
GetStockObject
SelectObject
CreateRectRgn
CombineRgn
StretchBlt
BitBlt
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectA
GetDIBits
DeleteObject
SetBkMode
RestoreDC
SaveDC
GetClipBox
PtVisible
GetRgnBox
GetTextExtentPoint32A
Ellipse
LPtoDP
CreateEllipticRgn
GetTextColor
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectA
GetDeviceCaps
CreatePen
CreatePatternBrush
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
SelectClipRgn

advapi32

RegCloseKey
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA

shell32

DragQueryFileA
DragFinish
CommandLineToArgvW
SHGetSpecialFolderPathA
ShellExecuteExA

ole32

CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoCreateInstance
CLSIDFromProgID
CoUninitialize

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
OleCreateFontIndirect
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
SysFreeString
VariantClear
SysAllocString

comctl32

_TrackMouseEvent

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

oledlg

ord8

urlmon

URLDownloadToFileA

winmm

PlaySoundA

wininet

InternetReadFile
HttpSendRequestA
HttpOpenRequestA
InternetCloseHandle
InternetConnectA
InternetSetOptionA
InternetOpenA
DeleteUrlCacheEntry
HttpQueryInfoA
InternetOpenUrlA

ws2_32

WSASetLastError
connect
sendto
WSAAsyncSelect
send
recv
select
WSAGetLastError
bind
htons
inet_addr
htonl
recvfrom
socket
accept
closesocket
gethostbyname

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comdlg32

GetFileTitleA

Sections

.text
Size: 334KB - Virtual size: 333KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a69abeff202fecd05ee6b676af10daa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

oledlg

urlmon

winmm

wininet

ws2_32

oleacc

winspool.drv

comdlg32

Sections

.text Size: 334KB - Virtual size: 333KB

.rdata Size: 87KB - Virtual size: 86KB

.data Size: 11KB - Virtual size: 79KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 49KB - Virtual size: 48KB

.text
Size: 334KB - Virtual size: 333KB

.rdata
Size: 87KB - Virtual size: 86KB

.data
Size: 11KB - Virtual size: 79KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 49KB - Virtual size: 48KB