d44116d0d3fe716f2f5fc5b12e421cde2ccd31f2e2ab185044c86f35b9cdb8a6

Sharing

Copy URL Twitter E-mail

General

Target

d44116d0d3fe716f2f5fc5b12e421cde2ccd31f2e2ab185044c86f35b9cdb8a6
Size

272KB
MD5

01b99a070646c680bf7528740298a41e
SHA1

821089cf7c99bdd6401e519d225bc601fc4e318e
SHA256

d44116d0d3fe716f2f5fc5b12e421cde2ccd31f2e2ab185044c86f35b9cdb8a6
SHA512

78cd03e47d8ce6912aec4e04bf3b4d874e28ba4602759c9cb4552047683799d0b04cbccb472068749fc050b02aede39467ce703f8c596d7f4928daf546c1e0d7
SSDEEP

6144:xLXJAIdWqNJWQRcF+O3mfNXlaXSgi95eleq4VpeWrkl0fzXXxfnTlJnPt2c:hZAIQMJWVXp4gYzXt7nV

Score

N/A

Malware Config

Signatures

Files

d44116d0d3fe716f2f5fc5b12e421cde2ccd31f2e2ab185044c86f35b9cdb8a6
.exe windows x86

0613a21da1547f45c8dbf191b1c5e511

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCommMask
SetCommState
SetCommTimeouts
GetCommTimeouts
PurgeComm
LocalFree
GlobalReAlloc
GetCommState
GetFileType
WideCharToMultiByte
MultiByteToWideChar
LocalAlloc
FindResourceA
LoadResource
LockResource
GetLocalTime
GetDateFormatA
FreeLibrary
LoadLibraryA
GetProcAddress
CreateDirectoryA
SetFileAttributesA
GetFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetComputerNameA
MoveFileA
lstrcpynA
GetFileAttributesA
ResetEvent
lstrcmpA
GetFileSize
WaitCommEvent
WaitForMultipleObjects
GetOverlappedResult
SetEvent
CreateEventA
GetCommProperties
GetCommMask
GetLastError
CreateFileA
GetOEMCP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
SetUnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapAlloc
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
CreateThread
GetACP
CloseHandle
GlobalFree
ReadFile
GlobalAlloc
lstrlenA
GlobalMemoryStatus
GetCurrentThreadId
GetTickCount
lstrcatA
lstrcpyA
DeleteFileA
GetPrivateProfileStringA
GetCurrentDirectoryA
LCMapStringA
WriteFile
LCMapStringW
GetSystemDefaultLangID
Sleep
CopyFileA
SetFilePointer
lstrcmpiA
GlobalUnlock
GlobalLock

user32

GetDesktopWindow
GetClientRect
MessageBoxA
GetSystemMetrics
GetWindowRect
SetRect
GetDC
GetFocus
GetParent
EndPaint
SetWindowTextA
SendMessageA
GetDlgItem
GetDialogBaseUnits
SetWindowRgn
EnableWindow
SetWindowPos
CallNextHookEx
IsChild
SetCursor
SetTimer
WaitMessage
SetParent
CreateWindowExA
PostThreadMessageA
PeekMessageA
MsgWaitForMultipleObjects
EnumDisplaySettingsA
GetWindowLongA
ChangeDisplaySettingsA
wsprintfA
KillTimer
DefWindowProcA
GetKeyState
DialogBoxParamA
InvalidateRect
DestroyWindow
WinHelpA
PostQuitMessage
GetDlgCtrlID
CallWindowProcA
RegisterClassA
GetClassInfoA
GetWindowTextA
GetActiveWindow
SendDlgItemMessageA
SetFocus
ScreenToClient
GetCursorPos
EndDialog
FillRect
IsDlgButtonChecked
BeginPaint
SetWindowsHookExA
PostMessageA
CheckDlgButton
CheckRadioButton
UpdateWindow
ShowWindow
SetDlgItemTextA
SetDlgItemInt
ShowCursor
CreateDialogIndirectParamA
CopyRect
OffsetRect
ReleaseDC
GetDlgItemTextA
LoadIconA
LoadCursorA
RegisterClassExA
GetDlgItemInt
SetWindowLongA
GetMessageA
TranslateMessage
DispatchMessageA
UnregisterClassA
IsWindow

gdi32

GetStockObject
GetDeviceCaps
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
DeleteObject
CreatePolygonRgn
GetObjectA
CreateDIBitmap

comdlg32

GetOpenFileNameA

advapi32

RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListA

ole32

CoCreateInstance
CoTaskMemFree
CoUninitialize
CoInitialize

oleaut32

SysFreeString

avifil32

AVIFileRelease
AVIStreamWrite
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIStreamSetFormat
AVIFileCreateStreamA
AVIStreamRelease

msvfw32

MCIWndCreateA
ICImageDecompress
ICClose

avicap32

capGetDriverDescriptionA
capCreateCaptureWindowA

comctl32

ord17

winmm

mmioAscend
mciSendCommandA
mmioRead
mmioOpenA
mmioDescend
mmioClose

ws2_32

WSAWaitForMultipleEvents
WSASend
gethostbyname
connect
WSACloseEvent
WSAEnumNetworkEvents
send
sendto
WSAGetLastError
WSAGetOverlappedResult
WSASocketA
WSASetEvent
WSACreateEvent
htons
bind
listen
WSAAccept
closesocket
WSAEventSelect
WSAStartup
WSACleanup
recv

wininet

InternetOpenA
InternetCloseHandle
InternetConnectA
FtpOpenFileA
InternetWriteFile

japi

_Close_JPEG_Compressor@0
_End_JPEG_Compress@0
_Compress_One_Line@8
_Start_JPEG_Compress@16
_Init_JPEG_Compressor@4
_Close_JPEG_Decompressor@0
_End_JPEG_Decompress@0
_Decompress_One_Line@4
_Start_JPEG_Decompress@16
_Init_JPEG_Decompressor@4
_Start_JPEG_Compress_Mem@16

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0613a21da1547f45c8dbf191b1c5e511

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

avifil32

msvfw32

avicap32

comctl32

winmm

ws2_32

wininet

japi

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 100KB - Virtual size: 357KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 100KB - Virtual size: 357KB

.rsrc
Size: 16KB - Virtual size: 15KB