c4f325dabf3c5e492c6b40186feb95231d45f389d68fda201834736d107b633a

Sharing

Copy URL Twitter E-mail

General

Target

c4f325dabf3c5e492c6b40186feb95231d45f389d68fda201834736d107b633a
Size

568KB
MD5

79313d068ce1100853a2fc372efa3537
SHA1

6ea6eb83dc29c1d22e800e13ecf1165effac71b8
SHA256

c4f325dabf3c5e492c6b40186feb95231d45f389d68fda201834736d107b633a
SHA512

d79eb9c4042e8b9147a643bd82870074d9573e48df67a866d5163d0d713993fd0bcd6d09727047c59465b7c8297901f95f0c33654a716d6f1fab699eda5fb1db
SSDEEP

12288:ql82NAi1PL3fEht+xRq6QvJgWAFrDKOozsvsEQ7Fctf:J2Ci1LEE+KWAFvKOozsC8

Score

N/A

Malware Config

Signatures

Files

c4f325dabf3c5e492c6b40186feb95231d45f389d68fda201834736d107b633a
.exe windows x86

45594b0469b4bf2cc7d08b3d70e6e270

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
OpenFileMappingA
GetCurrencyFormatW
DuplicateHandle
LocalFileTimeToFileTime
SetConsoleMaximumWindowSize
GetModuleFileNameA
FatalAppExitW
GetPrivateProfileStructA
SetupComm
Process32NextW
GetConsoleInputWaitHandle
LockFileEx
GetQueuedCompletionStatus
UpdateResourceW
PeekNamedPipe
GetProfileStringA
GetProcessPriorityBoost
GetOEMCP
GetHandleInformation
SetTapeParameters
GetCommMask
SetLastError
ExitVDM
OpenSemaphoreA
GetUserDefaultLCID
WriteConsoleInputW
FreeLibrary
LocalFlags
ExitThread
GetConsoleKeyboardLayoutNameW
GetFileInformationByHandle
FindNextFileW
GetModuleHandleA
VerifyConsoleIoHandle
TransactNamedPipe
FormatMessageW
LoadLibraryA
GetDefaultCommConfigA
SetCommMask
DeleteTimerQueue
ResumeThread
GetLocalTime
SetNamedPipeHandleState
GetProfileStringW
SetConsoleCursorInfo
CompareFileTime
VirtualFreeEx
GetSystemTime
SetSystemPowerState
Sleep
Heap32Next
EscapeCommFunction
GetConsoleTitleW
GetProcessVersion
GetCurrentThreadId
TerminateJobObject
IsDBCSLeadByte
ReadFileScatter
GetNamedPipeHandleStateA
CreatePipe
IsBadReadPtr
SearchPathA
FreeEnvironmentStringsA
OutputDebugStringW
GetConsoleScreenBufferInfo
SetComputerNameW
PeekConsoleInputA
ReadConsoleOutputCharacterA
GetLocaleInfoA
IsValidLocale
GetVersion
VirtualAlloc
GetProcAddress

user32

OemToCharA
SetMessageQueue
CreateIconIndirect
IsDialogMessageA
GetKeyNameTextA
GetClipboardData
DlgDirSelectExW
SwapMouseButton
ToUnicodeEx
LoadMenuIndirectW
IsZoomed
SetWindowsHookA
DrawMenuBar
DdeCreateStringHandleA
SetCursorPos
GetUserObjectInformationW
DefWindowProcW
CopyImage
GetInputDesktop
GetDlgCtrlID
RemoveMenu
GetClassNameW
PostMessageA
MessageBoxExW
SetMessageExtraInfo
MsgWaitForMultipleObjects
SendIMEMessageExW
ChangeMenuA
DialogBoxParamA
SetDeskWallpaper
CopyAcceleratorTableW
GetKeyboardLayoutList
RealGetWindowClassA
GetProcessDefaultLayout
DispatchMessageA
LockWindowUpdate
GetWindowInfo
DefDlgProcA
GetCursorPos
ChildWindowFromPoint
GetCursorInfo
GetProcessWindowStation
CreateIconFromResourceEx
InsertMenuItemA
ScrollWindowEx

gdi32

SetAbortProc
TextOutA
CombineRgn
TranslateCharsetInfo
SetColorSpace
GetOutlineTextMetricsA
CreateBitmap
DeleteDC
PlayMetaFileRecord
GetWindowExtEx
ColorMatchToTarget
GetBitmapBits
GetEnhMetaFilePixelFormat
GetTextColor
GetStockObject
GetOutlineTextMetricsW
GdiPlayEMF
FlattenPath
GetBoundsRect
CreateCompatibleBitmap
SetViewportOrgEx
ColorCorrectPalette
CreateSolidBrush
GetMapMode
InvertRgn
Polyline
GetDeviceGammaRamp
AngleArc
GdiPlayJournal
EndFormPage
CreateBitmapIndirect
TextOutW
GetLogColorSpaceA
SetTextColor
AbortPath
GdiEndPageEMF
AddFontResourceExW
CreateCompatibleDC
GetObjectA
SetPixelV
StartPage
GetNearestColor
GetViewportExtEx
GetTextExtentPoint32A
PlayEnhMetaFileRecord
RestoreDC
GetTextFaceW
GetRgnBox
SetBoundsRect
GdiPlayScript
SetPixel
GdiGetPageHandle
SetPixelFormat
GetBitmapDimensionEx
EndPage
SetViewportExtEx
CreateColorSpaceA
EnumEnhMetaFile
SetDCPenColor
RoundRect
SetWinMetaFileBits
CreatePalette
PlayEnhMetaFile
GetCharWidth32A
FrameRgn
FillPath
EnumFontFamiliesW
LineDDA
SetDIBColorTable
DescribePixelFormat
GetCharWidthA
SelectObject
DeviceCapabilitiesExW
GetFontAssocStatus
GetDeviceCaps
GetTextExtentPointA
RemoveFontResourceExA
GetObjectType
CreateMetaFileA

opengl32

glIsTexture
glRasterPos2sv
glCopyTexImage1D
glTexCoord1dv
glGetPolygonStipple
glRectd
glClearColor
glMaterialfv
glRectdv
glDrawElements
glTexCoord4i
glBegin
glGetMapiv
wglUseFontBitmapsW
glTexCoord3i
glTexCoord2dv
glTexParameterf
glEvalPoint2
glRotated
glGetFloatv
glColor4ub
glGetIntegerv
glPixelMapfv
glEvalCoord2f
glIndexi
glPixelTransferf
glVertex3s
glGetMapdv
glMaterialf
glDrawArrays
wglDeleteContext
glGetPointerv
glTexCoord1s
glTexCoord2d
glArrayElement
glMultMatrixf
glMapGrid2d
glTexParameteri
glFlush
wglSetPixelFormat
wglGetLayerPaletteEntries
glColor3f
glVertex4s
glRasterPos2iv
glGetDoublev
glNormal3i
glMapGrid1d
glScissor
glColor4us
glTexSubImage2D
wglSwapLayerBuffers
glRasterPos2f
glPushAttrib
wglShareLists
glFinish
glVertex2dv
glTexCoord1fv
glLighti
glTexCoord4f
glIndexPointer
glColor3ub
wglMakeCurrent
glPopMatrix
glRasterPos3iv
glEndList
wglGetProcAddress
glColor3ubv
glGetTexParameterfv
GlmfBeginGlsBlock
glPopClientAttrib
glColor3usv
glTexCoord2iv
glVertex3dv
wglSwapMultipleBuffers
glColorMask
glTexImage2D
glTexEnviv
glStencilOp
glVertex4fv
glDeleteTextures
glLightModeliv
wglDescribePixelFormat
glMatrixMode
glTexCoord4s
glColor4uiv
glGetMapfv
glNewList
glTexCoord2f
glTexEnvfv
glTexCoord4d
glMapGrid2f
glGetMaterialiv
glGetPixelMapfv
glLoadIdentity
glVertex3sv
wglCreateContext
glRasterPos4f
glLightModeli
glMap2f
glColor3us
glColor4usv
glColor3s
glRasterPos4i

shell32

StrCmpNIA
StrCmpNW
StrChrA

shlwapi

SHRegEnumUSValueA
PathAddExtensionA
UrlIsOpaqueW
PathQuoteSpacesA
SHRegDeleteEmptyUSKeyA
PathFindOnPathW
SHRegWriteUSValueW
UrlCombineA
PathRemoveArgsW
PathMatchSpecW
SHRegSetUSValueA
PathIsSameRootW
PathFileExistsW
StrFormatByteSizeW
PathGetArgsA
SHRegQueryUSValueW
PathCanonicalizeA
StrNCatW
PathRemoveBlanksW
UrlCompareA
PathRemoveArgsA
PathIsRelativeW
SHSetValueA
PathIsFileSpecW
StrToIntExW
PathRenameExtensionA
SHRegOpenUSKeyA
StrDupA
UrlIsW
PathIsSameRootA
UrlGetLocationW
SHRegOpenUSKeyW
PathFindOnPathA
StrTrimW
StrSpnW
SHRegDeleteUSValueA
SHRegDeleteUSValueW
StrNCatA
PathGetCharTypeW
HashData
SHRegGetUSValueW

winmm

sndPlaySoundW
midiOutGetErrorTextA
waveOutBreakLoop
mixerGetLineControlsW
mmioSeek
midiStreamClose
joySetCapture
midiOutReset
midiInGetNumDevs
waveInGetNumDevs
mciGetYieldProc
midiOutGetDevCapsW
WOW32ResolveMultiMediaHandle
mciGetDeviceIDA
midiInOpen
midiInClose
waveInOpen
mmioStringToFOURCCW
midiInStop
PlaySoundA
midiInGetErrorTextA
waveInGetDevCapsA
waveInStart
waveOutSetPlaybackRate
joy32Message
timeEndPeriod
midiOutGetDevCapsA
mmioClose
mmTaskYield
waveOutPrepareHeader
waveInStop
timeGetTime
waveOutGetVolume
joyGetThreshold
sndPlaySoundA
midiInMessage
mmioOpenA
waveOutUnprepareHeader
mmioWrite
midiInStart
mciFreeCommandResource
midiDisconnect
auxGetVolume
PlaySoundW
mmTaskBlock
joyConfigChanged
midiOutUnprepareHeader
waveOutOpen
waveInPrepareHeader
mod32Message
mmioRenameA
waveOutGetPosition
auxGetDevCapsW
mciSetYieldProc
waveOutClose
mixerClose
joyReleaseCapture
NotifyCallbackData
midiOutOpen
waveInGetDevCapsW
mmioInstallIOProcA
mixerGetLineInfoW
mmioFlush
mciSendStringA
joyGetPosEx
midiConnect
waveOutPause
mciExecute
waveOutGetDevCapsA
waveInUnprepareHeader
joySetThreshold
midiInGetDevCapsW
mciLoadCommandResource
waveInAddBuffer
midiOutCacheDrumPatches
mmioCreateChunk
mmGetCurrentTask
mciGetDeviceIDW
waveOutGetID
midiInGetID
mciSetDriverData
waveOutSetPitch
waveInGetID
waveOutReset

msvcrt

_mbctoupper
_onexit
__dllonexit
_controlfp
_except_handler3
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_mbsnicmp
_mbslen
_callnewh
fabs
fwprintf
_strdate
_mbsnbcnt
_seterrormode
sprintf
_mbsncat
memcpy
cosh
signal
_vsnprintf
_splitpath
_iob
fprintf
ferror
fopen
fsetpos
feof
_wasctime
_mbsnextc
__set_app_type
fseek
ftell
_unlink
_sys_nerr
fclose
_ftol
_ftime
_i64tow
fread
_rmdir
_wcsdup
__crtLCMapStringA
memset
fputs
fwrite
_wremove
strcoll
_findfirsti64
fputc
printf

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 508KB - Virtual size: 506KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

45594b0469b4bf2cc7d08b3d70e6e270

Headers

File Characteristics

Imports

kernel32

user32

gdi32

opengl32

shell32

shlwapi

winmm

msvcrt

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 508KB - Virtual size: 506KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 508KB - Virtual size: 506KB