5d6e0e907e911e270b5cd3973a7713642d0fdc8baf0d374b92fcc8f7dbe44d29

Sharing

Copy URL Twitter E-mail

General

Target

5d6e0e907e911e270b5cd3973a7713642d0fdc8baf0d374b92fcc8f7dbe44d29
Size

340KB
MD5

761177a016ebfd96923b7731d509f79c
SHA1

3e142843e9c76e18a15a1bf2274b0246186cc93e
SHA256

5d6e0e907e911e270b5cd3973a7713642d0fdc8baf0d374b92fcc8f7dbe44d29
SHA512

43de14f0a71288c4b1606fb721034a5404e411154455573aabb04c2b52832cf2abecf3fac0fed943be2814f78bdcd8fcac180d8c7d43ce4ee1ed1adf8dc51ebe
SSDEEP

6144:InmR9yh6+A+YJ7G6+S2lL0H/Mq5Owl3SMUfv76cOp8KQg4DXFh:InmR9yhpALC6MlL0fJ6P7fhbh

Score

N/A

Malware Config

Signatures

Files

5d6e0e907e911e270b5cd3973a7713642d0fdc8baf0d374b92fcc8f7dbe44d29
.exe windows x86

b4209671749a292d0d0834bf8a0677e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetSystemTimeAsFileTime
RtlUnwind
HeapAlloc
HeapFree
TerminateProcess
RaiseException
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
GetModuleFileNameA
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
GetLocaleInfoW
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
SetErrorMode
FindResourceA
GlobalAddAtomA
GetProfileStringA
InterlockedExchange
GetFileTime
GetFileSize
GetFileAttributesW
SizeofResource
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MulDiv
SetLastError
GetModuleHandleA
LoadLibraryA
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
GetModuleHandleW
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcmpiW
GetThreadLocale
GetFullPathNameW
lstrcpynW
GetVolumeInformationW
lstrcpyW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
GlobalUnlock
GlobalFree
LockResource
FindResourceW
LoadResource
FormatMessageW
LocalFree
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
lstrlenA
GetLastError
lstrlenW
InterlockedIncrement
FreeLibrary
LoadLibraryW
GetProcAddress
DeleteFileW
GetCommandLineW
CreateThread
CloseHandle
Sleep
ExitProcess
InterlockedDecrement
FindFirstFileW
FindClose
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
GetCPInfo
GetTickCount

user32

InvalidateRect
InflateRect
RegisterClipboardFormatW
PostThreadMessageW
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
CharNextW
GetSysColorBrush
PtInRect
GetClassNameW
GetDesktopWindow
LoadCursorW
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
DestroyMenu
LoadStringW
MoveWindow
SetWindowTextW
IsDialogMessageW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpW
GetClassInfoW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
DefWindowProcW
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
wsprintfW
SendMessageW
LoadIconW
AppendMenuW
GetSystemMenu
DrawIcon
GetClientRect
UnregisterClassW
CallWindowProcW
RemovePropW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
RegisterWindowMessageW
OffsetRect
IntersectRect
SystemParametersInfoW
GetWindowPlacement
GetWindowRect
MessageBeep
CharUpperW
MapDialogRect
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
GetSystemMetrics
IsIconic
EnableWindow
PostMessageW
PostQuitMessage
SetCursor
MessageBoxW
GetWindowLongW
IsWindowEnabled
GetLastActivePopup
GetParent
SetWindowsHookExW
GetCursorPos
PeekMessageW
IsWindowVisible
RegisterClassW
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
ShowWindow

gdi32

CreateSolidBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetWindowExtEx
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
GetViewportExtEx
GetDeviceCaps
DeleteObject
CreateBitmap
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectW
SetBkColor
SetTextColor
ExtTextOutA
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
GetClipBox

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

comctl32

ord17

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoInitializeEx
CoUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

VariantClear
SysAllocString
VariantChangeType
VariantCopy
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen
SysFreeString

winmm

PlaySoundW

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4209671749a292d0d0834bf8a0677e9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

winmm

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 12KB - Virtual size: 30KB

.rsrc Size: 40KB - Virtual size: 37KB

.vmp0 Size: 64KB - Virtual size: 63KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 12KB - Virtual size: 30KB

.rsrc
Size: 40KB - Virtual size: 37KB

.vmp0
Size: 64KB - Virtual size: 63KB