dc131bad583c0afd4b81058a3d841f3a523ace428878522349a6b4e8437f6f59

Sharing

Copy URL Twitter E-mail

General

Target

dc131bad583c0afd4b81058a3d841f3a523ace428878522349a6b4e8437f6f59
Size

193KB
MD5

84131a7090442c3a6fd1767a26ac975c
SHA1

6cb58af9df705167e4bab74489bc393e2c9ede5b
SHA256

dc131bad583c0afd4b81058a3d841f3a523ace428878522349a6b4e8437f6f59
SHA512

2fcda4ddbb8ba73154f262d8429a638cd029bb8a29a854e97f965d5c5217d55855a2cd7899d000dab4107ce85edc17db3fa8c4ad6887ec885af2a3ee6bae88b8
SSDEEP

3072:4f2aKQY0yaOZyZh00X1SQgS8C7Zwvu8fjG53WmnwPDPG3v5Aqv4+yhhSG:4f2KyaOkZh0YSQn8ywi2bPG3vuqQnh

Score

N/A

Malware Config

Signatures

Files

dc131bad583c0afd4b81058a3d841f3a523ace428878522349a6b4e8437f6f59
.exe windows x86

b81dbbbe5a52ad35bf1af3c244ec6143

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
timeSetEvent

shlwapi

PathFileExistsW
PathCombineW

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

wininet

InternetOpenA
InternetReadFile
InternetOpenUrlA
InternetCloseHandle

gdiplus

GdipFree
GdipCreateBitmapFromFile
GdipDisposeImage
GdipGetImagePixelFormat
GdipAlloc
GdipCreateBitmapFromFileICM
GdipCloneImage

user32

SetRect
SendMessageTimeoutA
ReleaseDC
GetParent
RegisterWindowMessageA
DispatchMessageA
GetClassNameA
GetWindowLongA
ShowWindow
GetFocus
EndPaint
PostMessageA
DrawTextA
PostThreadMessageA
CreateAcceleratorTableA
InvalidateRgn
DestroyAcceleratorTable
EnumDisplayDevicesA
SendNotifyMessageA
KillTimer
wsprintfA
GetClassInfoExA
CallWindowProcA
DestroyWindow
wvsprintfA
ReleaseCapture
SetTimer
GetWindowTextA
RegisterClassExA
CreateWindowExA
SetWindowTextA
SetWindowLongA
BeginPaint
RedrawWindow
SetCapture
GetDesktopWindow
GetWindow
SendMessageA
SetParent
IsWindow
UnregisterClassA
LoadCursorA
CopyRect
EqualRect
GetClientRect
SetFocus
CreateDialogParamA
GetActiveWindow
InvalidateRect
GetDlgItem
MsgWaitForMultipleObjects
CharNextA
GetDC
GetWindowTextLengthA
IsChild
FindWindowA
MoveWindow
FillRect
PeekMessageA
GetSysColor
GetQueueStatus
GetWindowRect
DefWindowProcA
SetWindowPos

kernel32

GlobalFree
DisableThreadLibraryCalls
GetLongPathNameW
WriteFile
GlobalAlloc
GetProcessId
SetFilePointer
WideCharToMultiByte
GetFileSize
CreateFileMappingA
LocalFree
Sleep
UnmapViewOfFile
EnumResourceTypesA
CreateFileW
LocalAlloc
CreateFileA
GetFileAttributesA
GetTickCount
MapViewOfFile
ReadFile
GlobalSize
CloseHandle

version

GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA

gdi32

CreateCompatibleBitmap
CreateDIBSection
GetDeviceCaps
RealizePalette
DeleteObject
ExtEscape
SetStretchBltMode
BitBlt
GetDIBits
GetObjectA
SelectPalette
CreateDIBitmap
CreateSolidBrush
DeleteDC
SelectObject
StretchDIBits
GetStockObject
CreateFontA
CreateCompatibleDC
SetBkMode

advapi32

RegSetValueExA
CryptHashData
RegEnumKeyExA
CryptAcquireContextA
CryptDestroyKey
CryptCreateHash
RegQueryInfoKeyA
CryptImportKey
RegQueryValueExA
RegCreateKeyExA
CryptEncrypt
RegDeleteValueA
CryptDestroyHash
RegEnumValueA
RegOpenKeyExA
CryptReleaseContext
CryptGetHashParam
RegCloseKey
RegDeleteKeyA

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

ole32

OleUninitialize
CoCreateInstance
StringFromGUID2
CreateItemMoniker
GetRunningObjectTable
OleLockRunning
OleInitialize
CoGetClassObject
CoSetProxyBlanket
CreateStreamOnHGlobal
CreateBindCtx
CoTaskMemAlloc
BindMoniker
CoTaskMemFree
StgOpenStorage
CoInitializeSecurity
CoUninitialize
CoTaskMemRealloc
CoInitialize
StgIsStorageFile
CLSIDFromProgID
StgCreateDocfile
CLSIDFromString

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b81dbbbe5a52ad35bf1af3c244ec6143

Headers

File Characteristics

Imports

winmm

shlwapi

setupapi

wininet

gdiplus

user32

kernel32

version

gdi32

advapi32

shell32

ole32

Sections

.text Size: 111KB - Virtual size: 111KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 75KB - Virtual size: 74KB

.tls Size: 1024B - Virtual size: 112KB

.text
Size: 111KB - Virtual size: 111KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 75KB - Virtual size: 74KB

.tls
Size: 1024B - Virtual size: 112KB