52963e0eaa02f57cfd05fd2e0d8f9581a929f7cac0a41c52bfcfd6f3db62500b

Sharing

Copy URL

Twitter E-mail

General

Target

52963e0eaa02f57cfd05fd2e0d8f9581a929f7cac0a41c52bfcfd6f3db62500b
Size

300KB
MD5

7fbd7b44d0c6eae146573f17dba890d6
SHA1

4e152677b1f0d4fcf1aabcc3f39540b391081ed9
SHA256

52963e0eaa02f57cfd05fd2e0d8f9581a929f7cac0a41c52bfcfd6f3db62500b
SHA512

4de1793ab18e79f4c973ef982fdb5ebd108c1ae3da380274f9064e0b83de2293b93ba91bfb44127345eac52fbee12f64899f484df0057feb283290e0cc3e2d06
SSDEEP

6144:SSi66uQqV4Y98OVDHDptH24dVMpDK3wz29iz/ylDzTfMd8Is8VG/y:SSN40lVVngz2R/fMd8z8V

Score

N/A

Malware Config

Signatures

Files

52963e0eaa02f57cfd05fd2e0d8f9581a929f7cac0a41c52bfcfd6f3db62500b
.exe windows x86

5b85fe4c466d2e84978185d2b2b972bb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNIA
StrCmpIW
HashData
StrChrA
StrCSpnW
StrCSpnA
SHSetValueW
SHSetValueA
StrCmpNIW
SHRegGetBoolUSValueA
SHQueryValueExW
SHQueryValueExA
SHQueryInfoKeyW
SHGetValueW
SHGetValueA
SHEnumKeyExW
StrCmpW
StrDupA
SHRegSetUSValueA
StrDupW
StrFormatByteSizeW
StrRChrIW
StrStrA
StrStrIA
StrStrIW
StrStrW
StrToIntA
StrToIntExA
StrToIntExW
StrToIntW
StrTrimA
UrlApplySchemeW
UrlCombineW
UrlCreateFromPathW
UrlUnescapeA
UrlUnescapeW
SHDeleteValueW
SHDeleteValueA
SHDeleteKeyW
SHDeleteKeyA
ord16
SHCopyKeyA
SHAutoComplete
PathUnquoteSpacesW
PathUnquoteSpacesA
PathUnExpandEnvStringsW
PathStripPathW
PathSearchAndQualifyA
PathRenameExtensionW
PathRemoveFileSpecW
PathRemoveFileSpecA
PathRemoveExtensionW
PathRemoveBackslashW
PathRemoveArgsA
PathRelativePathToW
PathIsURLW
PathIsUNCServerW
PathIsRootW
PathIsRelativeW
PathIsFileSpecW
PathIsDirectoryW
PathIsDirectoryEmptyW
PathIsContentTypeW
PathIsContentTypeA
PathGetArgsA
PathFindOnPathW
PathFindFileNameW
PathFindFileNameA
PathFindExtensionW
PathFileExistsW
PathFileExistsA
PathCompactPathExW
PathCombineW
PathAppendW
PathAppendA
PathAddExtensionW
PathAddBackslashW
StrCmpNW

ws2_32

WSADuplicateSocketW
WSACreateEvent
WSAEventSelect
socket
ntohs
closesocket
WSAAddressToStringA
WSCInstallProvider

kernel32

CompareStringA
CompareStringW
ConnectNamedPipe
CopyFileW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileW
CreateMutexA
CreateMutexW
CreateProcessW
CreateThread
CreateTimerQueueTimer
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeleteTimerQueueTimer
DeviceIoControl
DuplicateHandle
EndUpdateResourceW
EnterCriticalSection
EnumCalendarInfoW
EnumSystemCodePagesW
EnumTimeFormatsA
ExitProcess
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileW
FindResourceA
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FormatMessageW
FreeLibrary
FreeLibraryAndExitThread
FreeResource
CompareFileTime
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProfileIntA
GetShortPathNameW
GetStdHandle
GetStringTypeExA
GetSystemDefaultUILanguage
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetSystemWindowsDirectoryA
GetTempFileNameA
GetTempFileNameW
GetTempPathA
GetTempPathW
GetTickCount
GetTimeFormatW
GetUserDefaultLCID
GetUserDefaultUILanguage
GetVersion
GetVersionExA
GlobalAlloc
GlobalFree
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
HeapReAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadReadPtr
IsDBCSLeadByte
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
LockResource
MapUserPhysicalPages
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenFile
OpenMutexA
OpenThread
QueryPerformanceCounter
RaiseException
ReadConsoleOutputA
ReadFile
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
ReplaceFileA
ResumeThread
RtlMoveMemory
SearchPathA
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleInformation
SetLastError
SetSystemTime
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStructW
_hwrite
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW
CloseHandle
GetACP

msvcrt

_wremove
iswpunct
_strnset

user32

InflateRect
InsertMenuA
InsertMenuItemA
InsertMenuItemW
InsertMenuW
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsDialogMessageW
IsDlgButtonChecked
IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadAcceleratorsW
LoadCursorA
LoadIconA
LoadImageA
LoadImageW
LoadMenuA
LoadMenuW
LoadStringA
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuW
MonitorFromPoint
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageA
SendMessageCallbackW
SendMessageTimeoutA
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetDlgItemInt
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenu
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoA
SetMenuItemInfoW
SetParent
SetPropA
SetPropW
SetRect
SetRectEmpty
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
TrackMouseEvent
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorA
TranslateAcceleratorW
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WindowFromPoint
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowTextLengthA
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowInfo
GetWindowDC
GetWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollBarInfo
GetPropW
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMonitorInfoA
GetMessageW
GetMessagePos
GetMessageExtraInfo
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardLayoutList
GetKeyState
GetGUIThreadInfo
GetForegroundWindow
GetFocus
GetDlgItemTextW
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassNameA
GetClassInfoW
GetClassInfoExW
GetClassInfoExA
GetClassInfoA
GetCapture
GetActiveWindow
FindWindowExW
FindWindowExA
FillRect
EqualRect
EnumWindows
EnumThreadWindows
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawTextA
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageA
DialogBoxParamW
DialogBoxParamA
DialogBoxIndirectParamA
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
DdeAbandonTransaction
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateDialogParamW
CopyRect
CloseClipboard
ClientToScreen
CheckRadioButton
CheckMenuRadioItem
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperA
CharPrevW
CharPrevA
CharNextW
CharNextExA
CharNextA
CharLowerW
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BeginPaint
BeginDeferWindowPos
AppendMenuW
AppendMenuA
AdjustWindowRectEx
AdjustWindowRect
ActivateKeyboardLayout
DispatchMessageW

advapi32

AllocateAndInitializeSid
CloseServiceHandle
CreateProcessWithLogonW
ElfCloseEventLog
ElfDeregisterEventSource
EnumServicesStatusA
FreeSid
GetTokenInformation
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
LsaQueryInfoTrustedDomain
OpenProcessToken
OpenSCManagerA
OpenThreadToken
RegCloseKey
RegConnectRegistryW
RegCreateKeyExA
RegCreateKeyExW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyA
RegEnumKeyExA
RegEnumKeyExW
RegEnumValueW
RegOpenKeyA
RegOpenKeyExW
RegQueryInfoKeyA
RegQueryInfoKeyW
RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegSetValueExW
RegisterTraceGuidsA
SystemFunction001
SystemFunction024
SystemFunction025
SystemFunction026
TraceEvent
UnregisterTraceGuids

rpcrt4

CStdStubBuffer_QueryInterface
CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
NdrVaryingArrayMemorySize
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
IUnknown_Release_Proxy
NdrCStdStubBuffer_Release
NdrClientCall2
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
RpcImpersonateClient

gdi32

BitBlt
ChoosePixelFormat
CloseMetaFile
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateFontA
CreateFontIndirectA
CreateFontIndirectW
CreateMetaFileA
CreatePen
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteMetaFile
DeleteObject
Ellipse
EnumFontFamiliesExA
ExtTextOutA
ExtTextOutW
GetClipBox
GetDeviceCaps
GetObjectA
GetObjectW
GetTextExtentPoint32W
GetTextExtentPointA
GetTextExtentPointW
GetTextMetricsA
LPtoDP
LineTo
MoveToEx
PatBlt
Polygon
Polyline
Rectangle
RestoreDC
SaveDC
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetTextColor
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutW

opengl32

glPixelStorei
glNormal3dv
glLighti
glGetTexLevelParameteriv
glGetTexLevelParameterfv
glGetPixelMapusv
glCopyTexImage1D
glColor3fv
GlmfCloseMetaFile
glRasterPos4dv
glRasterPos4fv
glStencilOp
glTexCoord4dv
glTexCoord4i
glTexCoord4sv
glVertex4iv
wglGetCurrentContext
glMapGrid1d

shfolder

SHGetFolderPathA

dbghelp

lmi
UnDecorateSymbolName
SymGetLineNext64
vc7fpo

winspool.drv

WritePrinter
SetPrinterDataExA
GetPrinterDriverA
ord201
EXTDEVICEMODE
DeviceMode
DeviceCapabilitiesW
AddPrinterW
GetJobW

Sections

.text
Size: 221KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b85fe4c466d2e84978185d2b2b972bb

Headers

File Characteristics

Imports

shlwapi

ws2_32

kernel32

msvcrt

user32

advapi32

rpcrt4

gdi32

opengl32

shfolder

dbghelp

winspool.drv

Sections

.text Size: 221KB - Virtual size: 224KB

.rdata Size: 29KB - Virtual size: 31KB

.data Size: 22KB - Virtual size: 23KB

.idata Size: 16KB - Virtual size: 19KB

.rsrc Size: 10KB - Virtual size: 11KB

.text
Size: 221KB - Virtual size: 224KB

.rdata
Size: 29KB - Virtual size: 31KB

.data
Size: 22KB - Virtual size: 23KB

.idata
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 10KB - Virtual size: 11KB