8140f6ccc8e953c23f9e8e2b35c66e4f170dcab6065ca193060bde1d86b23117

Sharing

Copy URL Twitter E-mail

General

Target

8140f6ccc8e953c23f9e8e2b35c66e4f170dcab6065ca193060bde1d86b23117
Size

652KB
MD5

f9eba97f0eef157778bdd537a1d44df7
SHA1

2db79d504eb8eb0a8c1655315ce65597228ac447
SHA256

8140f6ccc8e953c23f9e8e2b35c66e4f170dcab6065ca193060bde1d86b23117
SHA512

b2d3cac1a93f91885497924d92b183d0d35980ad1871a793fa750f5dd66525a771f5aeefca7aa7570c765af619d8e0a36c29b70a062e9776e72c3a14ffa7203c
SSDEEP

12288:GvLmk23she0y3681ucbRiCQ/4jUIHhCXZyYEdPBzTcU:Gvp23sr8QcbWwjVeZylk

Score

N/A

Malware Config

Signatures

Files

8140f6ccc8e953c23f9e8e2b35c66e4f170dcab6065ca193060bde1d86b23117
.exe windows x86

3f0fbbe04c697681a6d01dce9afe9d24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetArcDirection
CopyMetaFileA
PolyBezier
SetMapMode
PolyBezierTo
ScaleWindowExtEx
Pie
StartPage
SetWindowExtEx
GetObjectA
ScaleViewportExtEx
SetTextColor
GetMapMode
SaveDC
EndDoc
CreatePen
GetWindowExtEx
CloseFigure
SetTextJustification
CreateCompatibleBitmap
RectVisible
GetBkMode
GetClipRgn
RestoreDC
TextOutA
CreatePenIndirect
CombineRgn
FillPath
EndPage
LineTo
SetWindowOrgEx
SelectClipPath
SelectObject
DPtoLP
GetRgnBox
GetTextAlign
GetBitmapBits
GetCurrentObject
GetBoundsRect
GetFontData
CreateBitmap
PolylineTo
GetClipBox
GetTextCharacterExtra
SetViewportOrgEx
BitBlt
OffsetViewportOrgEx
SetPaletteEntries
LPtoDP
InvertRgn
ExcludeClipRect
PtInRegion
CreateEllipticRgn

kernel32

GetModuleFileNameA
LCMapStringW
GetCurrentThread
TlsGetValue
VirtualFree
SetEnvironmentVariableA
GetSystemTime
GetStdHandle
GetFileType
CompareStringA
HeapCreate
InterlockedDecrement
GetCPInfo
GetModuleHandleA
HeapFree
TerminateProcess
GetStartupInfoA
CloseHandle
HeapReAlloc
FreeEnvironmentStringsA
HeapAlloc
GetCurrentProcessId
TlsSetValue
RtlUnwind
GetLocalTime
SetHandleCount
GetLastError
GetVersion
UnhandledExceptionFilter
SetLastError
IsBadWritePtr
GetStringTypeW
GetCommandLineA
TlsFree
VirtualQuery
GetCurrentThreadId
WideCharToMultiByte
CompareStringW
ReadFile
GetCurrentProcess
FreeEnvironmentStringsW
FlushFileBuffers
HeapDestroy
ExitProcess
GetTimeZoneInformation
WriteFile
EnterCriticalSection
GetProcAddress
GetEnvironmentStrings
FatalAppExitA
DeleteCriticalSection
GetTickCount
VirtualAlloc
LeaveCriticalSection
QueryPerformanceCounter
TlsAlloc
InitializeCriticalSection
SetFilePointer
GetStringTypeA
InterlockedExchange
SetStdHandle
InterlockedIncrement
LoadLibraryA
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetACP
LCMapStringA
MultiByteToWideChar
GetOEMCP
CreateMutexA

user32

OffsetRect
InflateRect
GetCursorPos
GetActiveWindow
GetMenu
EnumChildWindows
RegisterClassA
CreatePopupMenu
FindWindowA
DestroyWindow
InvalidateRgn
MessageBoxA
GetWindowLongA
GetSystemMetrics
GetWindowTextA
WindowFromPoint
DrawIcon
SetWindowPos
CloseClipboard
GetDC
PostMessageA
MessageBeep
RegisterClassExA
GetMessageTime
DestroyCursor
CharNextA
CreateAcceleratorTableA
UnhookWindowsHookEx
PostQuitMessage
PostThreadMessageA
GetMessageA
CreateIconIndirect
SetForegroundWindow
KillTimer
SetFocus
LoadStringA
CreateWindowExA
GetKeyboardState
DrawFocusRect
TranslateMessage
DestroyIcon
GetClipboardData
ShowWindow
TranslateAcceleratorA
ReleaseDC
GetDlgItem
GetWindow
DefWindowProcA
PeekMessageA

wsock32

WSACleanup

winmm

mmioRead
mmioClose
mmioOpenA
timeGetTime
mciGetErrorStringA
waveOutGetNumDevs
waveOutClose
mixerGetNumDevs
waveOutRestart
mixerOpen
mixerGetDevCapsA
mixerSetControlDetails
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutReset
waveOutPause
mixerClose
mmioAscend
PlaySoundA
mixerGetLineControlsA
mixerGetLineInfoA
mmioDescend
waveOutGetDevCapsA
waveOutWrite
mixerGetControlDetailsA
mciSendCommandA
waveOutOpen

shlwapi

PathFindExtensionA
PathIsUNCA
PathRemoveExtensionA
PathFindFileNameA

comctl32

ImageList_Destroy
ImageList_Add
ImageList_GetImageInfo
ImageList_ReplaceIcon
ord17
ImageList_Remove
ImageList_GetIcon
ImageList_SetBkColor
ImageList_LoadImageA
PropertySheetA
DestroyPropertySheetPage
ImageList_GetImageCount
ImageList_Replace
ImageList_DragMove
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Create
ImageList_DragLeave
_TrackMouseEvent
ImageList_GetIconSize
InitCommonControlsEx
ImageList_EndDrag
ImageList_BeginDrag
CreatePropertySheetPageA
ImageList_Draw
ImageList_AddMasked

ole32

OleInitialize
GetClassFile
OleRun
StgIsStorageILockBytes
CLSIDFromProgID
OleQueryCreateFromData
OleQueryLinkFromData
StgIsStorageFile
CoLockObjectExternal
OleCreateFromData
OleSetClipboard
OleGetClipboard
CoRegisterMessageFilter
CoRegisterClassObject
CoGetClassObject
DoDragDrop
CoCreateInstance

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 448KB - Virtual size: 447KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f0fbbe04c697681a6d01dce9afe9d24

Headers

File Characteristics

Imports

gdi32

kernel32

user32

wsock32

winmm

shlwapi

comctl32

ole32

Sections

.text Size: 68KB - Virtual size: 65KB

.rdata Size: 448KB - Virtual size: 447KB

.data Size: 100KB - Virtual size: 97KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 68KB - Virtual size: 65KB

.rdata
Size: 448KB - Virtual size: 447KB

.data
Size: 100KB - Virtual size: 97KB

.rsrc
Size: 32KB - Virtual size: 28KB