f70defb1807189651e47f09a550f14fed07b8b2670af9eac0f4fae3ef9225c35

Sharing

Copy URL Twitter E-mail

General

Target

f70defb1807189651e47f09a550f14fed07b8b2670af9eac0f4fae3ef9225c35
Size

513KB
MD5

746e565817904bdb7268d58106a47f41
SHA1

24347144913f7474c13c3d6d5e3a2f321cb66ec4
SHA256

f70defb1807189651e47f09a550f14fed07b8b2670af9eac0f4fae3ef9225c35
SHA512

c9785fcdd80c921f278130eff684c4c41f3bc5441d262b9621b204fcab1c45d969ea74a0b3dced2e43156c92edb100f2a3f444cf482ad2bb152053ca84183316
SSDEEP

12288:ss0g9TguXadBM4oZzfgTXUvVnFrQtVJcJY29pJ:X0GJ4oZbgTkvVFrBY2T

Score

N/A

Malware Config

Signatures

Files

f70defb1807189651e47f09a550f14fed07b8b2670af9eac0f4fae3ef9225c35
.exe windows x86

cbddd45bef021d4290adc1fa0c57cc72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
Sleep
FreeEnvironmentStringsA
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
UnhandledExceptionFilter
GetProfileStringA
InterlockedExchange
LCMapStringW
LCMapStringA
GetACP
HeapSize
HeapReAlloc
TerminateProcess
GetFileType
SetStdHandle
RaiseException
HeapAlloc
HeapFree
GetCommandLineA
GetStartupInfoA
GetTimeZoneInformation
GetLocalTime
RtlUnwind
GetTickCount
WritePrivateProfileStringA
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetProcessVersion
SizeofResource
GlobalAlloc
lstrcmpA
GetCurrentThread
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
GetFileAttributesA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
FormatMessageA
LocalFree
GetModuleFileNameA
MulDiv
SetLastError
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
VirtualProtect
FindResourceA
GlobalFree
GetSystemDefaultLCID
WideCharToMultiByte
lstrlenA
GetCurrentProcess
lstrcmpiA
CreateFileA
DeviceIoControl
CreateMutexA
GetLastError
GetVersionExA
FindResourceExA
LoadResource
LockResource
ExitProcess
lstrcpyA
FreeLibrary
lstrcpynA
CreateFileMappingA
MapViewOfFile
CloseHandle
GetSystemDirectoryA
GetCurrentThreadId
lstrcatA
LoadLibraryA
GetProcAddress
WinExec
IsBadReadPtr

user32

CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetTopWindow
MessageBoxA
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
RegisterWindowMessageA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
CreateDialogIndirectParamA
DestroyWindow
GetCapture
GetActiveWindow
SetActiveWindow
SetFocus
GetDlgItem
IsWindowEnabled
wsprintfA
GetThreadDesktop
SetForegroundWindow
FillRect
KillTimer
GetSystemMenu
DeleteMenu
AppendMenuA
SetRect
MapDialogRect
SetTimer
PostQuitMessage
FindWindowA
DrawIconEx
LoadImageA
ShowWindow
GetSystemMetrics
DrawFocusRect
GetSysColorBrush
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
DrawTextA
CopyRect
IntersectRect
GetCursorPos
SetWindowLongA
ValidateRect
SystemParametersInfoA
GetWindow
OffsetRect
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
UpdateWindow
SetRectEmpty
SetWindowPos
GetWindowLongA
GetClassNameA
InvalidateRect
GetClientRect
InflateRect
IsWindow
PostThreadMessageA
RegisterClipboardFormatA
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
EndDialog
DrawFrameControl
IsRectEmpty
GetMessagePos
ScreenToClient
PtInRect
FrameRect
GetDC
ReleaseDC
GetSysColor
RedrawWindow
UnhookWindowsHookEx
SetWindowsHookExA
CallNextHookEx
PostMessageA
EnableWindow
GetWindowRect
EnumChildWindows
GetKeyState
GetFocus
GetParent
LoadIconA
SendMessageA
LoadCursorA
SetWindowContextHelpId
GetMessageA
TranslateMessage
ShowOwnedPopups
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
GetDesktopWindow
SetCursor
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
CharUpperA
LoadStringA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
GetAsyncKeyState
ModifyMenuA
GetUserObjectInformationA
SetMenuItemBitmaps

gdi32

IntersectClipRect
MoveToEx
LineTo
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
GetTextColor
GetBkColor
LPtoDP
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
DeleteDC
PatBlt
SetBkColor
SetTextColor
GetClipBox
GetTextMetricsA
SetTextCharacterExtra
DeleteObject
GetCurrentObject
CreateBitmap
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
CreatePen
DPtoLP
GetTextExtentPoint32A
GetObjectA
CreateDIBitmap
GetTextExtentPointA
CreateFontIndirectA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
OpenProcessToken
GetUserNameA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
ControlService
CloseServiceHandle
OpenServiceA
OpenSCManagerA
RegDeleteValueA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish
StrStrIA
StrChrIA
StrRChrIA

comctl32

ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_Add
ImageList_GetImageInfo
ImageList_Draw
ImageList_Remove
ImageList_GetImageCount
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

CoFreeUnusedLibraries
CoRegisterMessageFilter
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

VariantClear
SysFreeString
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen
SysAllocStringLen

Sections

.text
Size: 300KB - Virtual size: 299KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 464KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cbddd45bef021d4290adc1fa0c57cc72

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 300KB - Virtual size: 299KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 12KB - Virtual size: 27KB

Size: 56KB - Virtual size: 53KB

.rsrc Size: 464KB - Virtual size: 480KB

.text
Size: 300KB - Virtual size: 299KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 464KB - Virtual size: 480KB