e8ec02bc88c1e9ea4c50f63b1de09c515a2804ecf32665129853a84fe265765d

Sharing

Copy URL Twitter E-mail

General

Target

e8ec02bc88c1e9ea4c50f63b1de09c515a2804ecf32665129853a84fe265765d
Size

1.0MB
MD5

42138b5c87113d9351a5405dc2ebbdd8
SHA1

3fe2c0d3cab6d2ea73b9b7162ed9ed151ceceffe
SHA256

e8ec02bc88c1e9ea4c50f63b1de09c515a2804ecf32665129853a84fe265765d
SHA512

f53bb7626a2610d2da67f207b7d338e7d90e7e95fa209b20ac75f2a41ebf1fb59f9e718466caff4a2886e6fce4b8191c6deb3db75288856501fd7db9b8c9e6bb
SSDEEP

24576:fV4SP46Xqzo5/ITt8o5tzDBt6iBlfuxNqVy0:PV5wTyeDzTC50

Score

N/A

Malware Config

Signatures

Files

e8ec02bc88c1e9ea4c50f63b1de09c515a2804ecf32665129853a84fe265765d
.exe windows x86

957af2ee631070ecbb78050bd103b5c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

ioctlsocket
WSAStartup
WSASend
WSARecv
WSAEventSelect
WSACleanup
ntohs
WSAWaitForMultipleEvents
WSACreateEvent
closesocket
connect
socket
htonl
send
gethostname
WSAGetLastError
WSAEnumNetworkEvents
ntohl
WSACloseEvent
accept
inet_addr
gethostbyname
setsockopt
bind
listen
htons
WSASetLastError

kernel32

GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentProcessId
MulDiv
LocalFree
GlobalAlloc
WritePrivateProfileStringA
GetPrivateProfileStringA
lstrcmpA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileSize
GetThreadLocale
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetFullPathNameA
CreateFileA
GetModuleFileNameW
GlobalFlags
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
GlobalDeleteAtom
TlsFree
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
GetFileAttributesA
GetFileTime
SetErrorMode
HeapFree
HeapAlloc
VirtualAlloc
HeapReAlloc
GetCommandLineA
GetProcessHeap
GetStartupInfoA
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetDriveTypeA
GetTimeFormatA
GetDateFormatA
GetFileType
GetTimeZoneInformation
ExitProcess
HeapSize
GetACP
GetStringTypeA
GetStringTypeW
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetTickCount
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
lstrcmpW
GetModuleHandleA
GetProcAddress
GetVersionExA
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
FindFirstFileA
FindNextFileA
RemoveDirectoryA
LockFile
LockFileEx
UnlockFile
GetSystemInfo
FindFirstFileW
FindNextFileW
FindClose
Sleep
ResetEvent
SignalObjectAndWait
ReleaseMutex
CreateMutexW
SetEvent
GetSystemTime
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
GetTempPathW
FlushFileBuffers
GetFileInformationByHandle
GetDiskFreeSpaceW
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
CreateFileW
GetFileAttributesW
MoveFileW
MoveFileExW
DeleteFileW
GetCurrentThreadId
GetVersionExW
FormatMessageA
SetLastError
PulseEvent
InterlockedIncrement
WaitForSingleObject
InterlockedDecrement
CreateEventW
GetModuleFileNameA
CreateProcessA
CreateMutexA
GetVersion
CompareStringA
GetLastError
InterlockedExchange
MultiByteToWideChar
CompareStringW
GetEnvironmentVariableW
DeleteFileA
SetCurrentDirectoryA
CloseHandle
CreateThread
WinExec
lstrlenA
lstrcatA
lstrcpyA
FreeLibrary
LoadLibraryA
GetWindowsDirectoryA
FindResourceA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
DeleteCriticalSection

user32

GetWindowDC
BeginPaint
EndPaint
WindowFromPoint
GetCursorPos
PostQuitMessage
KillTimer
SetTimer
ValidateRect
TranslateMessage
GetMessageA
ShowOwnedPopups
TranslateAcceleratorA
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
DestroyMenu
ReuseDDElParam
UnpackDDElParam
SetCursorPos
DestroyCursor
FindWindowA
DrawIcon
SetWindowRgn
GetMenuItemInfoA
GetSysColorBrush
UnregisterClassA
SetWindowTextA
IsDialogMessageA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GrayStringA
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
GetMenu
PostMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetDesktopWindow
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
CharUpperA
RemoveMenu
GetMenuItemID
GetMenuItemCount
ClientToScreen
GetSubMenu
LoadMenuA
FrameRect
CopyRect
UpdateWindow
CopyIcon
LoadCursorA
InflateRect
ReleaseDC
GetDC
GetParent
GetWindowRect
InvalidateRect
IsWindow
SendMessageA
SetWindowLongA
SetCursor
SetCapture
RedrawWindow
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
ReleaseCapture
PtInRect
GetWindowThreadProcessId
ShowWindow
BeginDeferWindowPos
MoveWindow
GetClientRect
MessageBeep
GetSysColor
EnableWindow
GetActiveWindow

gdi32

SetMapMode
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
CreateCompatibleDC
CreateSolidBrush
CreateCompatibleBitmap
PatBlt
CreateEllipticRgn
LPtoDP
Ellipse
DeleteObject
SetBkMode
RestoreDC
SaveDC
GetDeviceCaps
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetTextColor
GetBkColor
GetTextExtentPoint32A
CreateFontIndirectA
GetObjectA
DeleteDC
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegQueryValueA

shell32

DragFinish
DragQueryFileA
ShellExecuteA

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oleaut32

SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

wsock32

recv

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 885KB - Virtual size: 888KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 124KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

957af2ee631070ecbb78050bd103b5c8

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

wsock32

iphlpapi

Sections

.text Size: 885KB - Virtual size: 888KB

.rdata Size: 124KB - Virtual size: 128KB

.data Size: 10KB - Virtual size: 28KB

.rsrc Size: 38KB - Virtual size: 40KB

.text
Size: 885KB - Virtual size: 888KB

.rdata
Size: 124KB - Virtual size: 128KB

.data
Size: 10KB - Virtual size: 28KB

.rsrc
Size: 38KB - Virtual size: 40KB