13b7ba8da61f72c5fe7fd46791e71c36135b297527aebc6d3413ccf094b42ec4

Sharing

Copy URL Twitter E-mail

General

Target

13b7ba8da61f72c5fe7fd46791e71c36135b297527aebc6d3413ccf094b42ec4
Size

3.3MB
MD5

f028859a62acca6b889afdc3ae8367b6
SHA1

0b2ae397c60adcb84638d661903c325a1afb38be
SHA256

13b7ba8da61f72c5fe7fd46791e71c36135b297527aebc6d3413ccf094b42ec4
SHA512

1cf204976d77883851a3f09fde2d77b521eea89512a810e150e258f5eca3efb8ff8923035122e0502365bd92fd12949b69785a9fbd21cf9bc6bf165cc56fe594
SSDEEP

98304:O0oHanWAA5uE8n3T0lAp35FIHQmIw64CDo/bySQv5ld+eb+DTY:O0VWAA5uE8nolA5+w+NCDnJlX+DTY

Score

N/A

Malware Config

Signatures

Files

13b7ba8da61f72c5fe7fd46791e71c36135b297527aebc6d3413ccf094b42ec4
.exe windows x86

84aba642d282edf2494c597c45920ace

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
lstrcmpW
GlobalFindAtomA
GlobalGetAtomNameA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GlobalFlags
GetThreadLocale
FileTimeToSystemTime
WritePrivateProfileStringA
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
InterlockedIncrement
FlushFileBuffers
LockFile
UnlockFile
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetFullPathNameA
GetCPInfo
GetOEMCP
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesA
GetFileTime
GetTickCount
HeapFree
HeapAlloc
VirtualProtect
GetSystemInfo
VirtualQuery
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RtlUnwind
ExitProcess
RaiseException
HeapSize
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
GetConsoleCP
GetConsoleMode
Sleep
GetACP
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
SetEnvironmentVariableA
InterlockedCompareExchange
CreateFileW
DeviceIoControl
GetFileAttributesW
CreateDirectoryW
AreFileApisANSI
FormatMessageA
LocalFree
InterlockedDecrement
GetModuleFileNameW
FreeResource
GlobalFree
GlobalUnlock
MulDiv
GlobalAddAtomA
GetCurrentProcessId
SetLastError
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryA
GlobalLock
lstrcmpA
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
GetProcAddress
DeleteFileA
GetVersion
CloseHandle
GetDiskFreeSpaceExA
CompareStringA
GetModuleHandleA
GetModuleFileNameA
LockResource
FindClose
VirtualAlloc
GetLastError
FindFirstFileA
GetFileSizeEx
InterlockedExchange
MultiByteToWideChar
CompareStringW
ReadFile
SizeofResource
WideCharToMultiByte
WriteFile
VirtualFree
SetFilePointerEx
LoadResource
SetEndOfFile
lstrlenA
SetFilePointer
FindResourceA
GetFileSize
CreateFileA

user32

SetCapture
ReleaseCapture
CharNextA
CopyAcceleratorTableA
IsRectEmpty
SetRect
InvalidateRect
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
UnregisterClassA
DestroyMenu
RegisterClipboardFormatA
PostThreadMessageA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
PtInRect
GetDlgCtrlID
LoadCursorA
CallWindowProcA
SetWindowLongA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetMenuItemID
GetMenuItemCount
GetSubMenu
CopyRect
UnhookWindowsHookEx
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowTextLengthA
GetWindowTextA
EnableWindow
GetSystemMetrics
DispatchMessageA
PostMessageA
PeekMessageA
GetWindow
SetFocus
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
GetSysColorBrush
ShowWindow
MoveWindow
TranslateMessage
SendMessageA
GetClientRect
DrawIcon
CharUpperA
LoadIconA
LoadStringA
IsIconic
SetWindowTextA
IsDialogMessageA
DefWindowProcA
CheckMenuItem
EnableMenuItem
GetMenuState
ModifyMenuA
GetParent
GetFocus
LoadBitmapA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
PostQuitMessage
SetCursor

advapi32

RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

GetStockObject
GetDeviceCaps
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
RestoreDC
SetBkColor
SetTextColor
SetMapMode
GetClipBox
DeleteDC
ExtSelectClipRgn
SaveDC
DeleteObject
GetObjectA
GetViewportExtEx
GetWindowExtEx
GetRgnBox
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
CreateBitmap
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoRegisterMessageFilter
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
SysAllocStringByteLen
SysFreeString
SysStringLen
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString

Sections

.text
Size: 432KB - Virtual size: 430KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84aba642d282edf2494c597c45920ace

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

comctl32

shlwapi

oledlg

oleacc

gdi32

winspool.drv

comdlg32

ole32

oleaut32

Sections

.text Size: 432KB - Virtual size: 430KB

.rdata Size: 92KB - Virtual size: 90KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 432KB - Virtual size: 430KB

.rdata
Size: 92KB - Virtual size: 90KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 40KB - Virtual size: 39KB