cd10a9b930b7719f33da57b6f4f82abe94b22ee6dd1c31f50505a578070b6642

Sharing

Copy URL Twitter E-mail

General

Target

cd10a9b930b7719f33da57b6f4f82abe94b22ee6dd1c31f50505a578070b6642
Size

220KB
MD5

0cb3ff1f47e9373ce216fb110d12ffc0
SHA1

e5ffac4aa8e24565d3ca3bbb3ab28cbc758809dc
SHA256

cd10a9b930b7719f33da57b6f4f82abe94b22ee6dd1c31f50505a578070b6642
SHA512

0e3cccf1341a54019f7dc2d782cdd119d1c932fc852763b0794bbb301092ce6575448df558ff18f426d01b11628abb0ebe7a9aad969ae264c5f532e8fce2a3c1
SSDEEP

6144:ZJPekFyTMDAl3PKKIOD2B/hgpNGpR1HNFu7t:ZZFyPfbT2B/yoN

Score

N/A

Malware Config

Signatures

Files

cd10a9b930b7719f33da57b6f4f82abe94b22ee6dd1c31f50505a578070b6642
.exe windows x86

a1985905f56f321735b1f5ce693942b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeW
GetTapeParameters
SetCommState
LoadResource
GetCurrentConsoleFont
VerLanguageNameW
GetVolumePathNameW
GetPrivateProfileStringW
DosDateTimeToFileTime
GetConsoleDisplayMode
GlobalFindAtomA
FindNextVolumeW
GetTempFileNameW
SetCommBreak
DeleteVolumeMountPointA
IsBadWritePtr
FillConsoleOutputAttribute
WriteConsoleOutputCharacterW
OutputDebugStringW
CreateMutexW
ReadConsoleOutputA
SetVDMCurrentDirectories
GetStringTypeExA
CopyFileA
PostQueuedCompletionStatus
GetSystemTimeAdjustment
WriteConsoleOutputAttribute
TransactNamedPipe
ReadConsoleOutputAttribute
MoveFileWithProgressW
LocalSize
SetThreadPriorityBoost
GlobalReAlloc
GetPrivateProfileStructW
GetNamedPipeHandleStateW
GetLogicalDriveStringsW
DeleteVolumeMountPointW
GetPrivateProfileSectionA
GetStartupInfoW
HeapWalk
GetTimeZoneInformation
GetLocalTime
SetFileAttributesW
GetStdHandle
GlobalAlloc
SetDefaultCommConfigA
SetTapeParameters
_hread
EnumCalendarInfoExW
SignalObjectAndWait
GenerateConsoleCtrlEvent
GetCommConfig
GetProcessAffinityMask
FindNextVolumeMountPointW
GetThreadSelectorEntry
SuspendThread
GlobalCompact
lstrcpyW
LoadModule
GetDateFormatW
HeapSize
UnregisterWait
GlobalFix
SetConsoleScreenBufferSize
FindNextVolumeMountPointA
OpenMutexA
TransmitCommChar
LoadLibraryA
GetModuleHandleA
GetFileAttributesW
IsValidLocale
CreateMutexA
FindClose
SetConsoleHardwareState
FlushViewOfFile
VDMOperationStarted
CopyFileExW
GetSystemDirectoryW
GetDiskFreeSpaceA
QueryDosDeviceA
SetPriorityClass
GetVolumePathNameA
GetLongPathNameA
SetWaitableTimer
GetOverlappedResult
LocalFileTimeToFileTime
GetLastError
CreateProcessW
FindResourceA
SetConsoleWindowInfo
FindFirstFileW
DeleteAtom
GetConsoleAliasExesW
PeekConsoleInputA
GetProfileSectionW
VerifyConsoleIoHandle
EnumDateFormatsA
InitializeCriticalSection
GetFileAttributesA
BuildCommDCBA
GetCalendarInfoA
lstrcmpiA
SystemTimeToTzSpecificLocalTime
GetConsoleKeyboardLayoutNameW
CreateFileW
GlobalHandle
GetVolumeNameForVolumeMountPointA
CreateEventA
GetPrivateProfileIntA
DuplicateConsoleHandle
VerLanguageNameA
GetACP
GetSystemTimeAsFileTime
FindFirstChangeNotificationW
MoveFileA
CreateMailslotW
WriteConsoleInputA
RaiseException
SetVolumeLabelA
InvalidateConsoleDIBits
GetHandleInformation
SizeofResource
CreateWaitableTimerA
GetDriveTypeA
SetStdHandle
GetTempPathA
SetFileApisToOEM
GetCurrentDirectoryW
WriteProfileSectionW
IsProcessorFeaturePresent
Heap32Next
SetEndOfFile
FreeEnvironmentStringsA
SetProcessWorkingSetSize
GetProcAddress
LockFile
VirtualAlloc
GetStartupInfoA

user32

GetFocus
SetLastErrorEx
GetKeyNameTextA
CloseWindowStation
MenuItemFromPoint
SendDlgItemMessageA
SendMessageCallbackA
GetScrollRange
GetActiveWindow
IsCharAlphaW
UserHandleGrantAccess
GetMenuItemRect
DdeFreeStringHandle
EnableMenuItem
DdeEnableCallback
DdeSetQualityOfService
EqualRect
SetSystemCursor
RegisterClassExA
AnyPopup
ScrollDC
GetPropW
GetSubMenu
ShowScrollBar
DrawFocusRect
SetWindowPlacement
GetPropA
LoadKeyboardLayoutA
GetDesktopWindow
GetDCEx
LoadKeyboardLayoutW
ReplyMessage
CreateAcceleratorTableW
SetProcessWindowStation
CharUpperBuffW
CloseDesktop
CreateWindowStationA
AnimateWindow
RealGetWindowClassW
GetWindowModuleFileNameA
PeekMessageW
SendNotifyMessageW
FlashWindowEx
SetRect
GetLastActivePopup
MsgWaitForMultipleObjectsEx
FindWindowA
CreateCursor
VkKeyScanExW
MessageBoxA
EnumDesktopWindows
DefMDIChildProcW
GetMenuState
DefMDIChildProcA
FrameRect
SetClassWord
ChangeDisplaySettingsW
EndMenu
SetDlgItemInt
GetClipboardFormatNameW
BroadcastSystemMessageW
EnumWindowStationsA
SetTimer
GetCapture
CharToOemW
HiliteMenuItem
GetWindowTextLengthA
ToUnicode
SetSysColors
GetMessageTime
RemoveMenu
DrawStateW
SetWindowsHookW
GetClassWord
ExcludeUpdateRgn
GetForegroundWindow
ShowOwnedPopups
MessageBoxIndirectA
SendIMEMessageExA
SetWinEventHook
SendMessageA
MoveWindow
FreeDDElParam
SetScrollRange
IsClipboardFormatAvailable
GetCursor
EnumDisplaySettingsExA
CheckRadioButton
RealGetWindowClassA
CreateAcceleratorTableA
LoadCursorA
ChangeMenuA
TranslateMessage
DdeGetQualityOfService
CharUpperBuffA
LoadCursorW
IsWindowVisible
AppendMenuW
ToAscii
GetThreadDesktop
MapVirtualKeyW
SetPropA
GetClassNameA
GetMessagePos
LoadIconA
GetWindowDC
SwitchDesktop

gdi32

CreateMetaFileA
CreateBrushIndirect
SetViewportOrgEx
MoveToEx
PatBlt
Arc
GetObjectW
GdiArtificialDecrementDriver
WidenPath
GetNearestColor
GetDCBrushColor
TextOutW
PolylineTo
ExtCreatePen
CreateFontIndirectExW
GdiGetDC
GetTextExtentExPointI
CloseEnhMetaFile
CreateHalftonePalette
GetEnhMetaFileW
GdiStartPageEMF
CopyEnhMetaFileW
GetTextExtentPointA
GetCharABCWidthsFloatW
ChoosePixelFormat
GetBoundsRect
BitBlt
SetSystemPaletteUse
GetAspectRatioFilterEx
SetBitmapBits
GetDCOrgEx
PtInRegion
CreateDIBitmap
EndPage
CreateEllipticRgn
SetMiterLimit
CombineTransform
RectInRegion
GetTextColor
CreateBitmap
SetViewportExtEx
GetClipBox
GetRandomRgn
SelectClipRgn
GetDeviceCaps
GetFontUnicodeRanges
Rectangle
PolyTextOutA
CreateDIBPatternBrush
GetBkMode
CopyMetaFileW
GetPolyFillMode
GetWindowExtEx
PaintRgn
PathToRegion
EnumMetaFile
GetTextExtentPointI
GetMiterLimit
AddFontResourceExW
PlayEnhMetaFile
GdiGetDevmodeForPage
SetDeviceGammaRamp
CheckColorsInGamut
GetCharABCWidthsI
EnumFontFamiliesExA
GetCharWidthI
StretchBlt
CreateDCA
StrokeAndFillPath
RemoveFontResourceA
GetMetaFileBitsEx
SetDIBitsToDevice
SetBrushOrgEx
GetTextExtentPoint32W
GetOutlineTextMetricsW
SetRectRgn
GetOutlineTextMetricsA
GdiPlayPrivatePageEMF
GetRgnBox
CreateFontIndirectExA
SetWindowOrgEx
DeleteEnhMetaFile
RectVisible
GetLayout
SetTextJustification
SetMapperFlags
CreateDIBSection
GetEnhMetaFileDescriptionA
OffsetWindowOrgEx
AbortPath
ResizePalette
GetBitmapBits
StartFormPage
GetDIBColorTable
SwapBuffers

shell32

StrRStrIW
StrCmpNA
StrChrW
StrChrIA
StrCmpNW
StrRChrA
StrRChrIA
StrChrA
StrStrA

shlwapi

SHDeleteKeyW
SHRegEnumUSValueA
SHRegOpenUSKeyW
PathIsSystemFolderA
SHRegSetUSValueA
PathIsPrefixA
StrNCatA
PathIsContentTypeW
StrFormatByteSizeW
UrlIsOpaqueW
UrlHashW
StrTrimW
PathFindFileNameA
SHRegWriteUSValueW
PathIsDirectoryW
StrPBrkW
PathRemoveBlanksW
SHRegCreateUSKeyW
PathSetDlgItemPathW
StrCSpnIW
SHQueryInfoKeyA
HashData
UrlGetLocationA
PathFindNextComponentW
StrCSpnW
SHQueryValueExW
PathSearchAndQualifyW
SHRegGetBoolUSValueW
UrlEscapeW
PathRelativePathToW
PathIsUNCW
PathMakePrettyA
SHCreateShellPalette
SHRegCloseUSKey
UrlUnescapeW
ChrCmpIW
PathFindNextComponentA
PathIsPrefixW
PathParseIconLocationW
SHRegDeleteUSValueW
PathMatchSpecW
PathIsDirectoryA
SHOpenRegStreamW
IntlStrEqWorkerW
StrToIntW
PathRemoveArgsA
PathRemoveArgsW
PathStripPathA
PathStripPathW
UrlCanonicalizeA
StrToIntA
PathIsUNCServerA
PathUnmakeSystemFolderW
StrCSpnA
PathFindOnPathA
PathMatchSpecA
PathIsFileSpecA
SHRegCreateUSKeyA
UrlCombineA
PathRemoveBlanksA
PathIsURLA
SHSetValueW
StrPBrkA
StrSpnW
SHEnumValueW
UrlGetPartA
UrlHashA
SHRegGetUSValueW
SHDeleteEmptyKeyA
StrTrimA
UrlCompareA
PathFindFileNameW
PathFindOnPathW
SHSetValueA
SHDeleteOrphanKeyA
SHGetValueW
StrCSpnIA
SHGetValueA
PathIsRelativeA
PathGetDriveNumberA

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
VerFindFileA
GetFileVersionInfoSizeA
VerFindFileW
VerQueryValueA
VerInstallFileA
GetFileVersionInfoA
VerInstallFileW

msvcrt

_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
fputs
fflush
free
malloc
memcpy
realloc
_stat
ferror
fputws
fclose
_statusfp
atoi
fputc
fopen
_ismbblead
fread
sprintf
_atodbl
fsetpos
ftell
feof
fwprintf
_beep
memmove
fprintf
_waccess
_errno
fseek
_exit
fwrite
_unlink
memset
printf

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a1985905f56f321735b1f5ce693942b8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

shlwapi

version

msvcrt

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 156KB - Virtual size: 152KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 156KB - Virtual size: 152KB