c2a0bfe2c697b7c3f727bbcecbaf34de1276f0233f96adc6ed2dc98a1b1d3c5c

Sharing

Copy URL

Twitter E-mail

General

Target

c2a0bfe2c697b7c3f727bbcecbaf34de1276f0233f96adc6ed2dc98a1b1d3c5c
Size

677KB
MD5

2976f2b1d793c84ed5599def7c10f480
SHA1

a085d5142384f024748a625395936933ee893b2c
SHA256

c2a0bfe2c697b7c3f727bbcecbaf34de1276f0233f96adc6ed2dc98a1b1d3c5c
SHA512

2fd38f79c477e56000d8d5660e80f831fbffc4212fff2f443aa571a29a276202a4c4b7332fbe58207bd8ef742a1e4f80f0c9065e4daa75db8d09648ff56edf7f
SSDEEP

6144:WS0cT/lkS1W192aS4JhjOOYdRCwsjJbsfPUZMWAe09qcLtKdpJd3f6Ub+jfSyY/r:B0cBW1EROYvejJgfPkxkwytGpDd4g5

Score

N/A

Malware Config

Signatures

Files

c2a0bfe2c697b7c3f727bbcecbaf34de1276f0233f96adc6ed2dc98a1b1d3c5c
.exe windows x86

7b7d8c1a14fbb83f5bcb9c87652fecf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
GetVersionExW
GlobalAlloc
MultiByteToWideChar
GetModuleHandleW
FindFirstFileW
FindNextFileW
GetLastError
FindClose
HeapAlloc
HeapReAlloc
GetProcessHeap
HeapFree
CreateProcessW
GetFileAttributesA
GetShortPathNameW
GlobalFree
GetUserDefaultLCID
Sleep
CloseHandle
ResetEvent
CreateEventW
SetLastError
LocalAlloc
LocalFree
InterlockedExchange
RaiseException
MulDiv
lstrlenW
FormatMessageW
GlobalUnlock
GlobalLock
WaitForSingleObject
CopyFileW
MoveFileW
DeleteFileW
GetStringTypeExW
GetThreadLocale
lstrcmpiW
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationW
GetFullPathNameW
CreateFileW
GetCurrentProcessId
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
InterlockedDecrement
InterlockedIncrement
GetVersion
GlobalGetAtomNameW
GetAtomNameW
lstrcmpA
lstrlenA
FileTimeToSystemTime
SystemTimeToFileTime
SetErrorMode
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SetFileTime
SetFileAttributesW
GetFileTime
SetThreadPriority
ResumeThread
GetCurrentThreadId
SetEvent
SuspendThread
lstrcmpW
GlobalFlags
CompareStringW
GetModuleHandleA
GetVersionExA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
FreeResource
CompareStringA
GetLocaleInfoW
EnumResourceLanguagesW
ConvertDefaultLocale
GetCurrentThread
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetCurrentDirectoryW
RtlUnwind
GetDriveTypeW
ExitThread
CreateThread
GetStartupInfoW
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentDirectoryA
SetCurrentDirectoryA
FatalAppExitA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetTimeZoneInformation
SetConsoleCtrlHandler
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetDriveTypeA
GetFullPathNameA
CreateFileA
SetEnvironmentVariableA
FindResourceW
LoadResource
LockResource
SizeofResource
GetSystemInfo
LoadLibraryW
LoadLibraryA
GetProcAddress
FreeLibrary
GetModuleFileNameW
GlobalSize
WideCharToMultiByte

user32

GetClassInfoExW
GetMenu
UpdateWindow
ShowScrollBar
GetScrollRange
SetScrollRange
TrackPopupMenuEx
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
RemovePropW
GetPropW
SetPropW
GetClassLongW
GetCapture
IsChild
WinHelpW
SendDlgItemMessageA
LoadIconW
EnableMenuItem
ModifyMenuW
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
InflateRect
GetMenuItemInfoW
SetCursor
ShowOwnedPopups
DeleteMenu
DestroyIcon
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
GetDialogBaseUnits
UnregisterClassA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxW
CharUpperW
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
RemoveMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowDC
GetClassInfoW
SetScrollInfo
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
CopyRect
SetWindowPlacement
CallWindowProcW
GetWindowLongW
GrayStringW
DrawTextExW
TabbedTextOutW
RegisterWindowMessageW
SystemParametersInfoW
MoveWindow
FindWindowExW
GetMessageW
DispatchMessageW
TranslateMessage
PostQuitMessage
GetActiveWindow
RegisterClassExW
GetWindowRect
GetParent
ScreenToClient
CreateDialogParamW
ShowWindow
SetClassLongW
SendDlgItemMessageW
SetDlgItemTextW
DefWindowProcW
ClientToScreen
KillTimer
BeginPaint
GetSysColor
GetClientRect
DrawTextW
EndPaint
IsWindowVisible
FindWindowW
LoadStringW
LoadImageW
SendMessageW
WaitForInputIdle
EnumThreadWindows
GetClassNameW
IsWindow
GetForegroundWindow
SetTimer
LoadMenuW
GetCursorPos
GetSubMenu
TrackPopupMenu
DestroyMenu
PostMessageW
CheckMenuItem
GetDesktopWindow
GetSystemMetrics
CreateWindowExW
SetForegroundWindow
FillRect
ScrollWindowEx
SetWindowLongW
SetActiveWindow
SetWindowPos
DestroyWindow
OffsetRect
GetScrollInfo
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
GetDlgItem
CheckRadioButton
CheckDlgButton
GetScrollPos
SetScrollPos
SetFocus
GetFocus
GetWindow
GetDlgCtrlID
PtInRect
SetWindowTextW
UnregisterClassW
SetWindowsHookExW
CallNextHookEx
GetKeyState
PeekMessageW
ValidateRect
GetWindowTextLengthW
GetWindowTextW
LoadCursorW
GetDC
ReleaseDC
GetSysColorBrush
UnhookWindowsHookEx
GetWindowThreadProcessId
IntersectRect

gdi32

SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
SetArcDirection
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
ModifyWorldTransform
CopyMetaFileW
SetWorldTransform
SetGraphicsMode
SetStretchBltMode
SetROP2
SetPolyFillMode
GetTextMetricsW
GetTextExtentPoint32W
DPtoLP
PatBlt
GetMapMode
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateFontIndirectW
GetDCOrgEx
CreateHatchBrush
CreateSolidBrush
SetBkMode
CreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
SelectPalette
CreateCompatibleDC
CreateBitmap
CreatePatternBrush
CreateDIBPatternBrushPt
DeleteDC
ExtSelectClipRgn
PolyBezierTo
PolylineTo
PolyDraw
ArcTo
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
StartDocW
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
GetObjectW
SelectClipPath
ExtTextOutW
SetTextColor
SetBkColor
SelectObject
GetStockObject
CreateRectRgn
GetClipRgn
SelectClipRgn
SetColorAdjustment
RestoreDC
SaveDC
DeleteObject
CreateDCW
ExtCreatePen
GetDeviceCaps

winspool.drv

GetJobW
ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExA
RegCloseKey
RegQueryValueExW
RegSetValueW
RegEnumKeyW
RegCreateKeyW
RegSetValueExW
RegNotifyChangeKeyValue
RegCreateKeyA
RegQueryValueW
RegOpenKeyA
RegEnumValueW
RegDeleteKeyW
RegSetValueExA
RegDeleteValueW
RegDeleteKeyA

shell32

SHGetFileInfoW
ShellExecuteW
Shell_NotifyIconW
ExtractIconW

shlwapi

PathIsUNCW
PathStripToRootW
PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

comdlg32

GetFileTitleW

ole32

StringFromCLSID
CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx
ReadClassStg
CoTreatAsClass
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoTaskMemFree
CoDisconnectObject
OleDuplicateData
CoCreateInstance
StringFromGUID2
CLSIDFromString
ReadFmtUserTypeStg

oleaut32

SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysStringByteLen
SysAllocStringByteLen
SysFreeString
SysStringLen
VariantChangeType
VariantCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayGetDim
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
VarDateFromStr
SysReAllocStringLen
VarCyFromStr
VarBstrFromCy
VarBstrFromDec
VarDecFromStr
VarBstrFromDate
VariantInit
SafeArrayCreate
VariantClear
SafeArrayPutElement
SafeArrayRedim

Sections

.text
Size: 456KB - Virtual size: 452KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yrdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7b7d8c1a14fbb83f5bcb9c87652fecf6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

oleacc

comdlg32

ole32

oleaut32

Sections

.text Size: 456KB - Virtual size: 452KB

.rdata Size: 80KB - Virtual size: 79KB

.data Size: 12KB - Virtual size: 30KB

.idata Size: 16KB - Virtual size: 14KB

.didat Size: 4KB - Virtual size: 1KB

.rsrc Size: 28KB - Virtual size: 24KB

.yrdata Size: 72KB - Virtual size: 72KB

.text
Size: 456KB - Virtual size: 452KB

.rdata
Size: 80KB - Virtual size: 79KB

.data
Size: 12KB - Virtual size: 30KB

.idata
Size: 16KB - Virtual size: 14KB

.didat
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 28KB - Virtual size: 24KB

.yrdata
Size: 72KB - Virtual size: 72KB