fb02573db26973e3be1dbdb5abef0844a6491efaad5085d5b5dcbc55c4e49c20

Sharing

Copy URL

Twitter E-mail

General

Target

fb02573db26973e3be1dbdb5abef0844a6491efaad5085d5b5dcbc55c4e49c20
Size

4.1MB
MD5

e832768205e42b11656c5edfc5fa23be
SHA1

a946b430837e10a68fbffe6f6c241a63d24b85cf
SHA256

fb02573db26973e3be1dbdb5abef0844a6491efaad5085d5b5dcbc55c4e49c20
SHA512

86573254273521207feff42aefab136585d7c6737a622d39202d3e542ee9ee7c81357afae7071ea61526c9d93e7d0f86944c02bfc57296ff87ad9cd2d15df5e4
SSDEEP

49152:8qt2nRkwSvUAbs5kcRan4uwtEF599WzQ1HLEg8Gq/A2qXrxWME9SGhs:RtakpUAebanNfWz0LEjGSA2srPYJh

Score

N/A

Malware Config

Signatures

Files

fb02573db26973e3be1dbdb5abef0844a6491efaad5085d5b5dcbc55c4e49c20
.exe windows x86

80fb3b8f4c73ef435bb47d52288b2793

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

closesocket
WSAIoctl
WSASocketA
gethostbyname
gethostname
WSAAsyncGetHostByAddr
WSAStartup
WSACleanup
htonl
inet_addr
shutdown
select
ntohs
send
recvfrom
recv
connect
accept
bind
socket
inet_ntoa
WSAAsyncGetHostByName
htons
WSAGetLastError
setsockopt
WSACancelAsyncRequest
sendto

kernel32

GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetOEMCP
SetErrorMode
GlobalReAlloc
RtlUnwind
VirtualAlloc
VirtualQuery
GetTimeFormatA
GetDateFormatA
GetLocalTime
ExitProcess
CreateDirectoryA
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetHandleCount
GetStdHandle
SetStdHandle
ExitThread
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetTimeZoneInformation
GetDriveTypeA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
GetProfileIntA
GetCurrentThread
ConvertDefaultLocale
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
WinExec
WriteConsoleA
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
LocalAlloc
VirtualProtect
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
SuspendThread
SetThreadPriority
lstrcmpA
GetFileTime
InterlockedDecrement
SetLastError
CopyFileA
GlobalSize
LocalFree
GlobalFree
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
GetModuleHandleA
GetStringTypeA
LCMapStringA
GetCPInfo
LCMapStringW
GetStringTypeW
WriteFile
SetEndOfFile
GetFileType
GetFileSize
GetSystemInfo
GetFileAttributesA
ResumeThread
lstrcpyA
FormatMessageA
CreateEventA
CreateThread
WaitForSingleObject
SetEvent
GetCurrentProcessId
TerminateThread
MoveFileA
GlobalAlloc
GlobalLock
GlobalUnlock
SetPriorityClass
QueryPerformanceCounter
QueryPerformanceFrequency
DeleteFileA
GetExitCodeThread
lstrcpynA
EnumResourceNamesA
EnumResourceLanguagesA
FindResourceExA
GetCurrentDirectoryA
SetUnhandledExceptionFilter
AllocConsole
CreateProcessA
SetCurrentDirectoryA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetModuleFileNameA
GetExitCodeProcess
TerminateProcess
GetStringTypeExA
CompareStringW
CompareStringA
lstrlenW
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
InterlockedIncrement
FindNextFileA
FindFirstFileA
FindClose
CreateFileA
SetFilePointer
ReadFile
FileTimeToLocalFileTime
FileTimeToSystemTime
LoadLibraryA
GetProcAddress
HeapAlloc
GetProcessHeap
HeapFree
OpenProcess
CloseHandle
FreeLibrary
Sleep
LeaveCriticalSection
EnterCriticalSection
EnumSystemLocalesA
GetTickCount
MulDiv
lstrlenA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetSystemTimeAsFileTime
GetUserDefaultLangID

user32

RegisterClipboardFormatA
CreateMenu
ShowOwnedPopups
WaitMessage
MapDialogRect
GetAsyncKeyState
MapVirtualKeyA
GetMessageA
ValidateRect
SetRect
wsprintfA
ShowWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
EndPaint
BeginPaint
GetMenuStringA
AppendMenuA
RemoveMenu
CreateDialogIndirectParamA
IsWindowEnabled
EndDialog
SetMenuItemBitmaps
EnableMenuItem
GetMenuCheckMarkDimensions
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
GetWindowTextLengthA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
SetWindowPlacement
CallWindowProcA
IntersectRect
SystemParametersInfoA
TrackPopupMenuEx
DestroyCursor
DestroyMenu
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
FrameRect
GetIconInfo
CreateIconIndirect
SetWindowLongA
SetCapture
ReleaseCapture
EnableScrollBar
ShowCaret
HideCaret
SetCaretPos
CreateCaret
GetClassLongA
SetClassLongA
EqualRect
IsZoomed
OffsetRect
SetParent
SetCursor
DrawTextW
TranslateMessage
DispatchMessageA
PeekMessageA
LoadAcceleratorsA
TranslateAcceleratorA
CheckMenuItem
GetSysColorBrush
BringWindowToTop
SetMenuDefaultItem
InflateRect
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
PostQuitMessage
GetWindowThreadProcessId
GetDlgCtrlID
SetForegroundWindow
DrawMenuBar
GetMenu
DefWindowProcA
LoadCursorA
GetParent
LoadMenuA
SetMenuItemInfoA
ModifyMenuA
GetSubMenu
GetMenuItemInfoA
GetMenuState
GetMenuItemID
GetMenuItemCount
FindWindowExA
SetWindowTextW
GetDlgItem
GetSysColor
DestroyIcon
ReleaseDC
GetWindowDC
DrawFocusRect
CopyRect
LoadStringA
IsIconic
DeleteMenu
LockWindowUpdate
GetDCEx
SetCursorPos
SetWindowRgn
DrawIcon
MessageBoxA
PostMessageA
GetTopWindow
GetWindowTextA
GetWindow
CharUpperA
LoadIconA
GetKeyState
MessageBeep
PtInRect
GetCursorPos
GetDesktopWindow
IsWindowVisible
InsertMenuA
CreatePopupMenu
BeginDeferWindowPos
MoveWindow
DeferWindowPos
FindWindowA
UnionRect
IsRectEmpty
SetRectEmpty
ReuseDDElParam
GetClipboardData
InsertMenuItemA
EndDeferWindowPos
GetSystemMenu
GetWindowLongA
GetWindowRect
GetClientRect
GetWindowPlacement
GetSystemMetrics
GetFocus
IsChild
SetWindowPos
RedrawWindow
FlashWindow
LoadImageA
FillRect
DrawStateA
PostThreadMessageA
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
CopyAcceleratorTableA
GetCursor
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
GetWindowRgn
DrawIconEx
DrawFrameControl
IsMenu
CreateAcceleratorTableA
LoadMenuIndirectA
IsWindow
InvalidateRect
UpdateWindow
UnregisterClassA
SendMessageA
EnableWindow
KillTimer
SetTimer
GetDC
LoadBitmapA
TrackPopupMenu
SetMenu
IsClipboardFormatAvailable
UnpackDDElParam

gdi32

LineTo
MoveToEx
SetTextAlign
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
CopyMetaFileA
ExtSelectClipRgn
CreatePatternBrush
SelectPalette
ExtCreatePen
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetTextMetricsA
GetCharWidthA
CreateEllipticRgn
Ellipse
EnumFontFamiliesExA
OffsetRgn
GetViewportOrgEx
IntersectClipRect
ExcludeClipRect
SetMapMode
GetWindowOrgEx
GetTextFaceA
GetPixel
SetTextColor
CreateBitmap
SetBkColor
SetBkMode
SetStretchBltMode
StretchDIBits
GetDeviceCaps
CreateFontIndirectA
GetObjectA
PatBlt
LPtoDP
DPtoLP
GetMapMode
GetBitmapDimensionEx
SetBitmapDimensionEx
GetBkColor
GetStockObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetPixel
BitBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetDIBits
SetDIBits
Rectangle
GetTextExtentPoint32A
GetTextColor
CreatePen
CreateFontA
RestoreDC
SaveDC
CreateSolidBrush
GetStretchBltMode
FrameRgn
ExtCreateRegion
GetTextCharset
EnumFontFamiliesA
RealizePalette
FillRgn
GetNearestColor
CreateRoundRectRgn
CreatePolygonRgn
CreatePalette
StretchBlt
SetDIBitsToDevice
GetClipBox
CreateDIBSection
DeleteObject
DeleteDC
CreateDIBitmap

comdlg32

ChooseFontA
GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryInfoKeyA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegDeleteValueA

shell32

Shell_NotifyIconA
ShellExecuteExA
DragFinish
DragQueryFileA
ShellExecuteA

comctl32

ImageList_Replace
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Draw
_TrackMouseEvent
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_GetImageInfo
ImageList_Duplicate
ord17
ImageList_GetIcon
ImageList_Add

shlwapi

UrlUnescapeA
PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA

wsock32

WSASetLastError
WSAAsyncSelect

ole32

CreateStreamOnHGlobal
CoCreateInstance
CoDisconnectObject
DoDragDrop
ReleaseStgMedium
CoTaskMemAlloc
CoTaskMemFree
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleDuplicateData
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleTranslateAccelerator
IsAccelerator

oleaut32

VariantCopy
SystemTimeToVariantTime
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysFreeString
SysStringLen
SysAllocStringByteLen
VariantTimeToSystemTime
LoadTypeLi
SysAllocString

wininet

InternetCrackUrlA
InternetOpenUrlA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA
InternetQueryDataAvailable
InternetQueryOptionA
InternetCanonicalizeUrlA

winmm

PlaySoundA

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 440KB - Virtual size: 439KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80fb3b8f4c73ef435bb47d52288b2793

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

wsock32

ole32

oleaut32

wininet

winmm

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 440KB - Virtual size: 439KB

.data Size: 44KB - Virtual size: 129KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 440KB - Virtual size: 439KB

.data
Size: 44KB - Virtual size: 129KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB