3fca18b43f80188032af2fc4b3351bce3a7606d51cbe0b815efe7b5a999d6f54

Sharing

Copy URL Twitter E-mail

General

Target

3fca18b43f80188032af2fc4b3351bce3a7606d51cbe0b815efe7b5a999d6f54
Size

304KB
MD5

51c61d20b552a6b2c953a5f5976982e0
SHA1

32999e9e5176cf98797c3108fcb91863305d0ccf
SHA256

3fca18b43f80188032af2fc4b3351bce3a7606d51cbe0b815efe7b5a999d6f54
SHA512

ad1cacbd3e8994e889c797fc3c03a37266768ca6088ffacdf57d9ce393e767e91cbe08ff727f3e09c0798c4aa51237435ab3a9843679deff7d4ad7ab16fcca80
SSDEEP

6144:NVNghTLXxSDaD11+qmeotlkqTlAhpCU+Cf0xN0xj8i2WV:NVNeTdG6meNOlATJ0xN0xj8id

Score

N/A

Malware Config

Signatures

Files

3fca18b43f80188032af2fc4b3351bce3a7606d51cbe0b815efe7b5a999d6f54
.exe windows x86

6f5f7e052123d4b0d97e5fc3a6608fb7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
HeapReAlloc
HeapSize
GetTimeZoneInformation
HeapFree
HeapAlloc
GetSystemTime
GetCPInfo
GetACP
GetOEMCP
ExitProcess
GetLocalTime
GetModuleHandleA
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStdHandle
HeapDestroy
HeapCreate
SetUnhandledExceptionFilter
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentDirectoryA
GetTempFileNameA
IsBadWritePtr
IsBadCodePtr
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrlenA
GetComputerNameA
GetVersionExA
GetDriveTypeA
GetVolumeInformationA
lstrcpyA
CloseHandle
DeviceIoControl
CreateFileA
ReadFile
SetFilePointer
LocalFree
LocalAlloc
VirtualAlloc
VirtualFree
FindResourceA
LoadResource
lstrcatA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
RtlUnwind
SetErrorMode
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
LocalFileTimeToFileTime
SystemTimeToFileTime
GetShortPathNameA
GetFileSize
GetModuleFileNameA
FindFirstFileA
GetThreadLocale
GetStringTypeExA
MoveFileA
FindClose
DeleteFileA
LockFile
SetEndOfFile
UnlockFile
GetCurrentProcess
FlushFileBuffers
WriteFile
GetVersion
DuplicateHandle
LocalReAlloc
GetProcessVersion
TlsGetValue
GlobalReAlloc
TlsSetValue
EnterCriticalSection
GlobalHandle
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
LoadLibraryA
lstrcmpA
GetProcAddress
GlobalAlloc
GlobalDeleteAtom
GetCurrentThread
WaitForSingleObject
GetDiskFreeSpaceA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFullPathNameA
GetLastError
SetLastError
GetFileTime
SetFileTime
WideCharToMultiByte
GetFileAttributesA
ReleaseMutex
CreateMutexA
FreeLibrary
GlobalFlags
lstrcmpiA
MulDiv
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
GlobalFree
LockResource
IsBadReadPtr
GetStringTypeA
GetStringTypeW

user32

ValidateRect
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
IsZoomed
OffsetRect
ReleaseDC
GetDC
ClientToScreen
PtInRect
SetTimer
KillTimer
WindowFromPoint
SetRect
IntersectRect
SetParent
IsRectEmpty
DeleteMenu
GetSystemMenu
CharUpperA
GetClassNameA
LoadStringA
WaitMessage
ShowOwnedPopups
MessageBoxA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
EnableMenuItem
CheckMenuItem
TranslateMessage
GetMessageA
PostQuitMessage
LoadCursorA
GetSysColorBrush
GetDCEx
LockWindowUpdate
SetCapture
InvertRect
InsertMenuA
DestroyIcon
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
GetSysColor
DispatchMessageA
GetFocus
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScreenToClient
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
FillRect
IsDialogMessageA
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
UnhookWindowsHookEx
GetForegroundWindow
SetForegroundWindow
GetPropA
RemovePropA
CallWindowProcA
GetMessagePos
GetWindowRect
RegisterWindowMessageA
GetNextDlgTabItem
EndDialog
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetLastActivePopup
BringWindowToTop
IsWindowVisible
EqualRect
CopyRect
SetWindowLongA
InvalidateRect
GetDlgItem
GetKeyState
SetWindowPos
GetDlgCtrlID
GetSubMenu
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
GetClassInfoA
DestroyMenu
SetFocus
GetActiveWindow
GetWindowLongA
ShowWindow
IsWindow
GetDesktopWindow
IsWindowEnabled
GetWindow
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
PostMessageA
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
ShowScrollBar
GetClientRect
InflateRect
LoadMenuA
CreatePopupMenu
GetMenuItemCount
AppendMenuA
GetMenuStringA
GetMenuItemID
IsIconic
UpdateWindow
GetCursorPos
GetParent
LoadIconA
wsprintfA
LoadBitmapA
EnableWindow
SendMessageA
MoveWindow
SetWindowTextA
SetScrollPos
IsChild
CallNextHookEx
SetPropA
GetMessageTime
GetTopWindow
UnregisterClassA

gdi32

SetTextColor
CreateBitmap
SelectObject
GetTextExtentPointA
GetTextMetricsA
DeleteDC
StretchDIBits
CreateCompatibleBitmap
DeleteObject
SaveDC
RestoreDC
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
GetClipBox
BitBlt
CreateCompatibleDC
SetTextAlign
CreateRectRgn
GetDeviceCaps
CreateSolidBrush
CreatePatternBrush
RectVisible
TextOutA
PtVisible
Escape
LPtoDP
ExtTextOutA
CreateFontIndirectA
CombineRgn
SetRectRgn
PatBlt
CreateRectRgnIndirect
IntersectClipRect
SetBkColor
GetObjectA

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
SetFileSecurityA
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueA
GetFileSecurityA

shell32

ExtractIconA
DragQueryFileA
SHGetFileInfoA
DragFinish
Shell_NotifyIconA

comctl32

ord17
ImageList_Destroy

wsock32

getpeername
bind
accept
inet_addr
gethostbyname
gethostname
listen
shutdown
WSACleanup
WSAStartup
WSASetLastError
WSAGetLastError
ntohs
recv
send
htons
ioctlsocket
htonl
closesocket
sendto
WSAAsyncSelect
inet_ntoa
socket
recvfrom
connect

Sections

.text
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.mjg
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6f5f7e052123d4b0d97e5fc3a6608fb7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

Sections

.text Size: 184KB - Virtual size: 184KB

.rdata Size: 42KB - Virtual size: 41KB

.data Size: 11KB - Virtual size: 24KB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 31KB - Virtual size: 32KB

.reloc Size: 24KB - Virtual size: 24KB

.mjg Size: - Virtual size: 4KB

.text
Size: 184KB - Virtual size: 184KB

.rdata
Size: 42KB - Virtual size: 41KB

.data
Size: 11KB - Virtual size: 24KB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 31KB - Virtual size: 32KB

.reloc
Size: 24KB - Virtual size: 24KB

.mjg
Size: - Virtual size: 4KB