2f16bbbc6239966c49b79a23fcb2a586a53773c91314ee555ce876f9b390b1ee

Sharing

Copy URL

Twitter E-mail

General

Target

2f16bbbc6239966c49b79a23fcb2a586a53773c91314ee555ce876f9b390b1ee
Size

1.3MB
MD5

a92c93aefd0f03ed66d0266d0086556d
SHA1

fcacef3a8934120683313d165ec6e8a6543053c1
SHA256

2f16bbbc6239966c49b79a23fcb2a586a53773c91314ee555ce876f9b390b1ee
SHA512

a49630dc6ce39e001ad803029fc554db408b1a2097a40af9df252ceaa4e98aa84ab62b0371c5da07fd1fd78c23533d2c80096d00344681d1043f49a9d9bf1d23
SSDEEP

24576:2ftnktC19VL5qj4LMa+ua69q8Q02Ynm1XW2R3YmhoYw/yyPrNP9SImNgIJeUmvX5:rsp869Aot3seUo

Score

N/A

Malware Config

Signatures

Files

2f16bbbc6239966c49b79a23fcb2a586a53773c91314ee555ce876f9b390b1ee
.exe windows x86

53a60560bf34d412d5548448c89005f3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
Sleep
GetCurrentThreadId
GetTickCount
GetSystemDirectoryW
LocalFree
FormatMessageW
GetDriveTypeW
GetLogicalDrives
GetVolumeInformationW
SetLastError
GetSystemTime
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
HeapReAlloc
WriteConsoleW
FlushFileBuffers
SetStdHandle
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetStringTypeW
QueryPerformanceFrequency
TerminateProcess
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoW
GetFileType
SetFilePointerEx
GetStdHandle
GetModuleHandleExW
ExitProcess
GetProcessHeap
GetConsoleCP
ReadConsoleW
GetConsoleMode
VirtualQuery
RaiseException
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineW
LoadLibraryExW
ExitThread
CreateThread
DecodePointer
EncodePointer
HeapAlloc
HeapFree
RtlUnwind
QueryPerformanceCounter
OutputDebugStringW
GetFullPathNameW
MulDiv
WriteProcessMemory
ReadProcessMemory
VirtualQueryEx
OpenProcess
CreateProcessW
GetCurrentProcessId
GetCurrentProcess
GetCPInfo
GetThreadLocale
CompareStringW
lstrcmpiW
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
lstrcmpW
GlobalMemoryStatusEx
TlsSetValue
TlsGetValue
TlsAlloc
SystemTimeToFileTime
GetModuleHandleW
GetModuleFileNameW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
WaitForSingleObject
CloseHandle
GetTimeFormatW
GetDateFormatW
FileTimeToSystemTime
GetLocalTime
GetFileTime
GetFileInformationByHandle
CompareFileTime
VirtualFree
VirtualAlloc
GetSystemInfo
CreateEventW
ResetEvent
SetEvent
FindNextFileW
FindFirstFileW
FindClose
WideCharToMultiByte
MoveFileExW
DeviceIoControl
GetLastError
WriteFile
SetFilePointer
SetEndOfFile
ReadFile
HeapSize
GetFileSizeEx
GetFileAttributesW
GetDiskFreeSpaceExW
DeleteFileW
CreateFileW
LoadLibraryW
GetProcAddress
FreeLibrary
MultiByteToWideChar
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetTempFileNameW
CreateDirectoryW
TlsFree
lstrlenW

user32

DestroyMenu
CreatePopupMenu
TranslateAcceleratorW
DestroyAcceleratorTable
CreateAcceleratorTableW
ReleaseCapture
SetCapture
GetKeyNameTextW
GetKeyState
ChangeClipboardChain
SetClipboardViewer
IsDlgButtonChecked
CheckDlgButton
DialogBoxIndirectParamW
RegisterClassExW
UnregisterClassW
PostQuitMessage
DrawFrameControl
DrawEdge
MessageBoxW
SendDlgItemMessageW
GetCapture
SetActiveWindow
IsWindowEnabled
DeferWindowPos
TrackPopupMenuEx
GetMenuItemCount
GetMenuItemID
EnableMenuItem
GetSystemMenu
GetMenuState
MapVirtualKeyW
keybd_event
BringWindowToTop
GetDoubleClickTime
PostMessageW
SystemParametersInfoW
TranslateMDISysAccel
DefMDIChildProcW
InsertMenuItemW
GetWindowDC
IsWindow
PeekMessageW
DispatchMessageW
TranslateMessage
LoadIconW
GetDlgItemTextW
SetDlgItemTextW
CheckMenuItem
SetDlgItemInt
RegisterWindowMessageW
SetCaretPos
ShowCaret
HideCaret
GetWindowThreadProcessId
GetSysColorBrush
WindowFromPoint
DrawIcon
GetMessageW
IsDialogMessageW
MsgWaitForMultipleObjectsEx
GetScrollInfo
CreateIconIndirect
SetMenuItemInfoW
DrawIconEx
LoadCursorW
GetDesktopWindow
FillRect
GetSysColor
GetCaretPos
GetCursor
MessageBeep
OpenClipboard
CloseClipboard
EmptyClipboard
CreateWindowExW
ShowWindow
GetWindowPlacement
IsZoomed
DestroyCaret
GetCaretBlinkTime
CreateCaret
GetCursorPos
EnableScrollBar
ScrollWindowEx
GetIconInfo
LoadImageW
DestroyIcon
EndDialog
GetComboBoxInfo
ValidateRect
GetFocus
SetWindowPos
MoveWindow
CallWindowProcW
CallNextHookEx
UnhookWindowsHookEx
GetDlgItemInt
SetMenuInfo
GetWindowTextLengthW
EndPaint
BeginPaint
DrawTextW
DefFrameProcW
SetWindowsHookExW
GetWindow
GetClassNameW
SetParent
MapWindowPoints
ScreenToClient
GetWindowTextW
SetWindowTextW
SetForegroundWindow
EnableWindow
SetFocus
IsWindowVisible
EndDeferWindowPos
BeginDeferWindowPos
IsChild
SetScrollInfo
ShowScrollBar
GetSystemMetrics
GetParent
SetWindowLongW
GetWindowLongW
PtInRect
OffsetRect
ClientToScreen
SetCursor
GetWindowRect
InvalidateRect
ReleaseDC
GetDC
KillTimer
SetTimer
GetDlgItem
DestroyWindow
DefWindowProcW
SendMessageW
GetPriorityClipboardFormat
IsClipboardFormatAvailable
RegisterClipboardFormatW
GetClipboardData
SetClipboardData
GetClientRect
UpdateWindow
CreateDialogIndirectParamW

gdi32

CreateFontIndirectW
CreatePatternBrush
RestoreDC
CreateBitmap
GetTextMetricsW
GetObjectW
GetDIBits
SetPixel
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
EndPage
EndDoc
StartPage
StartDocW
SetMapMode
GetDeviceCaps
DeleteDC
CreateDIBSection
MoveToEx
LineTo
GetTextExtentPoint32W
CreatePen
TextOutW
GetBkColor
SetBkMode
RectVisible
IntersectClipRect
ExcludeClipRect
ExtTextOutW
SetTextColor
SetBkColor
GetPixel
BitBlt
SetWindowOrgEx
SelectObject
SaveDC
DeleteObject
StretchBlt
CreateCompatibleBitmap
CreateCompatibleDC

comdlg32

GetSaveFileNameW
GetOpenFileNameW
PageSetupDlgW
PrintDlgW
ChooseColorW
ChooseFontW

advapi32

OpenProcessToken
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
GetTokenInformation

shell32

SHGetFolderPathW
DragAcceptFiles
DragQueryFileW
CommandLineToArgvW
ShellExecuteW
SHBrowseForFolderW
SHGetDesktopFolder
SHGetPathFromIDListW
ord190
ord23
ord21
ord17
ord24
ord25
SHGetFileInfoW
ord152
ord18
SHGetSpecialFolderLocation

ole32

OleInitialize
ReleaseStgMedium
CoTaskMemFree
CoTaskMemAlloc
CoCreateGuid
OleUninitialize

comctl32

ImageList_Create
ImageList_GetIcon
ord14
ord13
ImageList_Destroy
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_DrawEx
InitCommonControlsEx
ImageList_GetIconSize
_TrackMouseEvent
ImageList_SetImageCount
ImageList_Replace
ImageList_Copy
ImageList_Read
ImageList_Add
ImageList_WriteEx

shlwapi

StrRetToBufW

psapi

GetModuleInformation
GetModuleFileNameExW
GetModuleBaseNameW
EnumProcessModules

Exports

Exports

extern_can_paste
text_custom_parser

Sections

.text
Size: 873KB - Virtual size: 872KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 239KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53a60560bf34d412d5548448c89005f3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

shlwapi

psapi

Exports

Exports

Sections

.text Size: 873KB - Virtual size: 872KB

.rdata Size: 96KB - Virtual size: 96KB

.data Size: 57KB - Virtual size: 135KB

.rsrc Size: 239KB - Virtual size: 239KB

.reloc Size: 58KB - Virtual size: 58KB

.text
Size: 873KB - Virtual size: 872KB

.rdata
Size: 96KB - Virtual size: 96KB

.data
Size: 57KB - Virtual size: 135KB

.rsrc
Size: 239KB - Virtual size: 239KB

.reloc
Size: 58KB - Virtual size: 58KB