4749106e8e6220d7fa1372394e6ec659563516647ac38ed605c72c9072b7989b

Sharing

Copy URL

Twitter E-mail

General

Target

4749106e8e6220d7fa1372394e6ec659563516647ac38ed605c72c9072b7989b
Size

333KB
MD5

24b62f9eaecbbd17dd2045e2ab8e98e0
SHA1

76bf635d478c4572ca7b758eb4839ce32b55fb4c
SHA256

4749106e8e6220d7fa1372394e6ec659563516647ac38ed605c72c9072b7989b
SHA512

362f2a4667a96b11a719d3931781c7688bc4d4f0dda6e96f9ca9ff945c38b01dafeb3bd358e98457474fc4c743ca4c67a5dda7c85f343868e240f98b5560b2a0
SSDEEP

6144:Y+nVwImSq6/kofx6NqC56IR+vxSYXiQmzF5lV:VmPUMqpXHm

Score

N/A

Malware Config

Signatures

Files

4749106e8e6220d7fa1372394e6ec659563516647ac38ed605c72c9072b7989b
.exe windows x86

77fc3ed76dc34b2e60aaa87e354d846d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetCompositionStringW
ImmSetCompositionWindow
ImmSetCompositionFontW
ImmSetCandidateWindow
ImmReleaseContext
ImmNotifyIME
ImmGetVirtualKey
ImmGetContext

kernel32

WriteFile
_llseek
_lread
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
SetLastError
SetFilePointer
SetFileAttributesW
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
VirtualFree
VirtualAlloc
UnmapViewOfFile
ResetEvent
RemoveDirectoryW
ReleaseSemaphore
ReleaseMutex
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
OutputDebugStringW
OutputDebugStringA
OpenProcess
OpenEventW
MultiByteToWideChar
MulDiv
MoveFileW
MapViewOfFile
LockResource
LocalFree
LocalFileTimeToFileTime
TlsGetValue
TerminateProcess
SystemTimeToFileTime
SizeofResource
WideCharToMultiByte
CloseHandle
CompareFileTime
CompareStringW
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateMutexA
CreateProcessW
CreateSemaphoreA
CreateSemaphoreW
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryA
IsDBCSLeadByte
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GetVersionExW
GetVersionExA
GetVersion
GetTimeZoneInformation
GetTimeFormatW
GetTickCount
GetThreadPriority
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryA
GetSystemDefaultLangID
GetStdHandle
GetStartupInfoW
GetProfileStringW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetMailslotInfo
GetLogicalDrives
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameA
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetExitCodeProcess
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetComputerNameExA
GetCommandLineW
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindFirstFileExW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
FatalAppExitA
ExitThread
ExitProcess
EnterCriticalSection
DuplicateHandle
DosDateTimeToFileTime
DeleteFileW
DeleteFileA
DeleteCriticalSection
DebugBreak
CreateThread
SetThreadPriority

comdlg32

PrintDlgW
GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW
ChooseColorW
CommDlgExtendedError

msvfw32

ICCompressorFree
ICCompressorChoose

wininet

HttpAddRequestHeadersW
InternetErrorDlg

ws2_32

WSAStartup
WSACleanup

ole32

ReleaseStgMedium
CoCreateInstance
CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
CoUninitialize
StgCreateDocfile
CoTaskMemFree
StgOpenStorage
OleDraw
StgIsStorageFile

shell32

SHGetMalloc
SHGetFolderPathW
SHGetDesktopFolder
SHGetSpecialFolderPathA
SHChangeNotify
SHBrowseForFolderW
DragQueryFileW
DragFinish
DragAcceptFiles
CommandLineToArgvW
ShellExecuteA
ShellExecuteW
SHCreateDirectoryExW

oleaut32

SysAllocString
SysFreeString
VariantClear

winmm

waveOutClose
timeSetEvent
timeKillEvent
timeGetTime
timeGetDevCaps
timeEndPeriod
timeBeginPeriod
mmioWrite
waveOutGetDevCapsW
mmioOpenW
mmioOpenA
mmioDescend
mmioCreateChunk
mmioClose
mmioAscend
waveOutWrite
waveOutUnprepareHeader
waveOutReset
waveOutOpen
mmioRead
waveOutPrepareHeader

shlwapi

SHDeleteKeyW
PathFileExistsW

gdi32

UnrealizeObject
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextMetricsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetTextColor
GetTextCharset
GetTextAlign
GetSystemPaletteEntries
GetStockObject
GetPolyFillMode
GetPixel
GetPath
GetPaletteEntries
GetOutlineTextMetricsW
GetObjectW
GetNearestPaletteIndex
GetNearestColor
GetMetaFileBitsEx
GetMapMode
GetKerningPairsW
GetGlyphOutlineW
GetFontData
GetEnhMetaFileW
GetEnhMetaFileHeader
GetDeviceCaps
GetDIBits
GetCurrentObject
GetClipRgn
GetClipBox
GetCharWidthW
GetBkMode
GetBkColor
GetBitmapBits
GdiFlush
FrameRgn
FillRgn
FillPath
ExtTextOutW
ExtCreatePen
Escape
EnumFontFamiliesW
EnumFontFamiliesExW
EnumEnhMetaFile
EndPath
EndPage
EndDoc
Ellipse
DeleteObject
DeleteMetaFile
DeleteEnhMetaFile
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateMetaFileW
CreateHatchBrush
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmapIndirect
CreateBitmap
CombineRgn
CloseMetaFile
CloseFigure
CloseEnhMetaFile
BitBlt
BeginPath
IntersectClipRect
LPtoDP
LineTo
MaskBlt
ModifyWorldTransform
MoveToEx
OffsetRgn
PaintRgn
PatBlt
PlayEnhMetaFileRecord
PolyBezierTo
PolyPolygon
Polygon
Polyline
PolylineTo
PtVisible
RealizePalette
RectVisible
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipPath
SelectClipRgn
SelectObject
SelectPalette
SetBitmapBits
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBits
SetDIBitsToDevice
SetMapMode
SetPixel
SetPixelV
SetPolyFillMode
SetRectRgn
SetStretchBltMode
SetTextAlign
SetTextColor
SetWinMetaFileBits
StartDocW
StartPage
StretchBlt
StretchDIBits
StrokePath
TextOutW
TranslateCharsetInfo
GetWorldTransform

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

Sections

.text
Size: 228KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77fc3ed76dc34b2e60aaa87e354d846d

Headers

File Characteristics

Imports

imm32

kernel32

comdlg32

msvfw32

wininet

ws2_32

ole32

shell32

oleaut32

winmm

shlwapi

gdi32

version

Sections

.text Size: 228KB - Virtual size: 232KB

.rdata Size: 57KB - Virtual size: 60KB

.data Size: 12KB - Virtual size: 64KB

.idata Size: 9KB - Virtual size: 12KB

.rsrc Size: 25KB - Virtual size: 28KB

.text
Size: 228KB - Virtual size: 232KB

.rdata
Size: 57KB - Virtual size: 60KB

.data
Size: 12KB - Virtual size: 64KB

.idata
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 25KB - Virtual size: 28KB