c4442379ecaf668977a8b9dd17f05c69c20d2cc75a219f1e1c59687e1bbbaf2e

Sharing

Copy URL Twitter E-mail

General

Target

c4442379ecaf668977a8b9dd17f05c69c20d2cc75a219f1e1c59687e1bbbaf2e
Size

181KB
MD5

005336ed9a96dcd55f542a9ab81734ce
SHA1

8b39d55236618d0bbee36f76bdd78afeeca7d31b
SHA256

c4442379ecaf668977a8b9dd17f05c69c20d2cc75a219f1e1c59687e1bbbaf2e
SHA512

c6bc278ae451456b97f566e52b1d2e54da04be26c4dcf90b37cb3ed16e5906c22fc79b55b048020c703f1f6f6427e271be3321681de85d15162eb6e002ef1c35
SSDEEP

3072:mWpF+yKH1uY7pShZ8omviMT9Ujd5x9WpLj84zfqWyfBW/7UywCseH:7QXH1nohZDIioWjd0EgiWyzNeH

Score

N/A

Malware Config

Signatures

Files

c4442379ecaf668977a8b9dd17f05c69c20d2cc75a219f1e1c59687e1bbbaf2e
.exe windows x86

de05247a4eae3fb384faf79406b920a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MoveWindow
SetCapture
GetWindowTextLengthA
IsWindow
CreateWindowExA
FindWindowA
UnregisterClassA
wvsprintfA
CreateDialogParamA
RegisterClassExA
PostThreadMessageA
EnumDisplayDevicesA
GetDlgItem
CreateAcceleratorTableA
CharNextA
SendNotifyMessageA
GetClassInfoExA
IsChild
GetClientRect
PostMessageA
GetParent
KillTimer
DestroyWindow
CallWindowProcA
SetWindowLongA
EndPaint
BeginPaint
GetFocus
RegisterWindowMessageA
wsprintfA
SetWindowTextA
DrawTextA
GetWindow
ReleaseCapture
GetWindowTextA
EqualRect
SetParent
GetActiveWindow
InvalidateRect
MsgWaitForMultipleObjects
GetDC
GetSysColor
DestroyAcceleratorTable
LoadCursorA
FillRect
ShowWindow
GetClassNameA
GetDesktopWindow
ReleaseDC
DispatchMessageA
GetWindowLongA
RedrawWindow
PeekMessageA
GetWindowRect
DefWindowProcA
SendMessageTimeoutA
SetTimer
SetFocus
CopyRect
SetRect
InvalidateRgn
SendMessageA
GetQueueStatus
SetWindowPos

gdi32

CreateDIBitmap
DeleteObject
SelectPalette
SelectObject
CreateCompatibleBitmap
GetDeviceCaps
CreateDIBSection
DeleteDC
BitBlt
CreateCompatibleDC
GetDIBits
ExtEscape
StretchDIBits
GetStockObject
GetObjectA
RealizePalette
CreateSolidBrush
SetStretchBltMode
CreateFontA
SetBkMode

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

kernel32

GetLongPathNameW
CreateFileMappingA
LocalAlloc
GlobalFree
Sleep
GlobalAlloc
GetFileSize
GetProcessHandleCount
MapViewOfFile
ReadFile
EnumResourceTypesA
UnmapViewOfFile
SetFilePointer
GetTickCount
DisableThreadLibraryCalls
CreateFileW
GetFileAttributesA
CreateFileA
WriteFile
LocalFree
GlobalSize
WideCharToMultiByte
CloseHandle

shlwapi

PathFileExistsW
PathCombineW

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

ole32

OleLockRunning
BindMoniker
OleInitialize
CLSIDFromProgID
CoCreateInstance
CoTaskMemAlloc
CreateStreamOnHGlobal
CoTaskMemFree
StringFromGUID2
CoUninitialize
StgOpenStorage
CreateBindCtx
CoInitializeSecurity
CreateItemMoniker
CoInitialize
CoGetClassObject
GetRunningObjectTable
CoSetProxyBlanket
StgIsStorageFile
StgCreateDocfile
OleUninitialize
CoTaskMemRealloc
CLSIDFromString

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoA
VerQueryValueA

advapi32

CryptImportKey
CryptGetHashParam
RegDeleteValueA
RegEnumKeyExA
RegCloseKey
CryptDestroyHash
RegOpenKeyExA
CryptCreateHash
RegQueryValueExA
CryptHashData
RegQueryInfoKeyA
CryptAcquireContextA
CryptDestroyKey
RegCreateKeyExA
RegEnumValueA
RegSetValueExA
CryptReleaseContext
CryptEncrypt
RegDeleteKeyA

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de05247a4eae3fb384faf79406b920a4

Headers

File Characteristics

Imports

user32

gdi32

wininet

kernel32

shlwapi

setupapi

ole32

shell32

version

advapi32

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 72KB - Virtual size: 72KB

.tls Size: 1024B - Virtual size: 240KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 72KB - Virtual size: 72KB

.tls
Size: 1024B - Virtual size: 240KB