69368f00bdc71caa25651f668986f4569dbe269cceee61e50619269cd752fc1e

Sharing

Copy URL Twitter E-mail

General

Target

69368f00bdc71caa25651f668986f4569dbe269cceee61e50619269cd752fc1e
Size

568KB
MD5

037c960978c979cba3ab09a8f5f824ea
SHA1

ebe3d6ae97a1cf8e62440ce7e22b7b78cdfeea95
SHA256

69368f00bdc71caa25651f668986f4569dbe269cceee61e50619269cd752fc1e
SHA512

c6de358ba79f919ce34d63e86ec2bfe3f44abf85c6ae8f993c6f54f2bedca906634a994a3b665d43f805213cb214828b041617b247b30158b61db87923dca0cd
SSDEEP

12288:enlmapj6MCh88My9ceiuA9C6Q+8Q62MR+H:+YCyDEepA9C6Q+hTe+H

Score

N/A

Malware Config

Signatures

Files

69368f00bdc71caa25651f668986f4569dbe269cceee61e50619269cd752fc1e
.exe windows x86

dd6be5b79ef6782728b08ae38add8723

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetTempPathA
GetCommandLineA
InterlockedIncrement
LoadLibraryW
GetCurrentThreadId
WaitForSingleObject
InterlockedDecrement
GetCurrentProcess
FlushInstructionCache
IsProcessorFeaturePresent
GetThreadLocale
SetEndOfFile
GetLocaleInfoW
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
LoadLibraryA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoA
FreeLibrary
GetOEMCP
GetACP
SetFilePointer
ReadFile
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapSize
VirtualAlloc
LeaveCriticalSection
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
GetStringTypeW
GetStringTypeA
ExitProcess
GetModuleHandleA
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
lstrcmpW
lstrcmpiW
lstrlenA
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSection
GetUserDefaultLangID
Sleep
IsValidCodePage
SetLastError
GetProcAddress
GetCPInfo
LCMapStringW
LCMapStringA
CreateThread
ExitThread
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
FormatMessageA
LocalFree
FindNextFileW
FindFirstFileW
EnterCriticalSection
RaiseException
GetModuleHandleW
lstrlenW
WideCharToMultiByte
GetLastError
GetModuleFileNameW
SetEvent
CloseHandle
CreateEventA
LockResource
FindResourceExW
GetSystemTimeAsFileTime
GetSystemTime
FreeResource
SetFileAttributesW
GetFileAttributesW
GetTickCount
GetTempPathW
CreateDirectoryW
DeleteFileW
GetExitCodeProcess
ReleaseMutex
CreateMutexA
GetVersionExW
InterlockedCompareExchange
InterlockedExchange
CreateFileW
SetCurrentDirectoryW
CreateFileA
FindClose
RemoveDirectoryW

user32

LoadImageW
MessageBoxW
RegisterWindowMessageW
GetWindowTextLengthW
GetWindowTextW
CreateAcceleratorTableW
RegisterClassExW
LoadCursorW
GetClassInfoExW
GetFocus
DestroyAcceleratorTable
GetDesktopWindow
CallWindowProcW
DestroyWindow
FillRect
ReleaseCapture
GetClassNameW
IsChild
SetWindowLongW
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
ClientToScreen
CharNextW
UnregisterClassW
ScreenToClient
PostMessageW
EndPaint
BeginPaint
DrawIcon
DrawTextW
IsWindow
GetWindow
MapWindowPoints
AdjustWindowRectEx
GetParent
SetFocus
GetDC
GetWindowRect
SetWindowPos
MoveWindow
GetMenu
GetWindowLongW
GetSysColor
SystemParametersInfoW
GetActiveWindow
DialogBoxParamW
DefWindowProcW
GetIconInfo
DestroyIcon
LoadStringW
LoadIconW
SendMessageW
GetSystemMetrics
EnableScrollBar
UnregisterClassA
EndDialog
GetDlgItem
GetClientRect
SetWindowTextW
CreateWindowExW
SetCapture

gdi32

CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
ExtTextOutW
SetBkColor
SelectObject
CreateFontIndirectW
GetObjectW
DeleteObject
GetStockObject

ole32

OleLockRunning
CoGetClassObject
CLSIDFromProgID
StringFromGUID2
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoTaskMemFree
CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoCreateGuid
CLSIDFromString
StringFromCLSID

oleaut32

LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
SysStringByteLen
VarUI4FromStr
SysAllocString
SysAllocStringLen
SysStringLen
SysFreeString

advapi32

RegDeleteKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegOpenKeyExA
RegQueryValueExA
FreeSid
GetTokenInformation
OpenProcessToken
CheckTokenMembership
AllocateAndInitializeSid

comctl32

InitCommonControlsEx

shell32

SHGetFolderPathW
ord155
SHGetPathFromIDListW
ShellExecuteExW
SHGetFolderLocation

wininet

InternetReadFile
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestW
InternetConnectW
InternetOpenA
InternetCloseHandle
InternetGetLastResponseInfoW

Sections

.text
Size: 348KB - Virtual size: 345KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd6be5b79ef6782728b08ae38add8723

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

advapi32

comctl32

shell32

wininet

Sections

.text Size: 348KB - Virtual size: 345KB

.rdata Size: 100KB - Virtual size: 96KB

.data Size: 24KB - Virtual size: 30KB

.rsrc Size: 92KB - Virtual size: 89KB

.text
Size: 348KB - Virtual size: 345KB

.rdata
Size: 100KB - Virtual size: 96KB

.data
Size: 24KB - Virtual size: 30KB

.rsrc
Size: 92KB - Virtual size: 89KB