c57efdf88b62acd6d29a9982bb332e0b62a2adb2e9f4063489295a6d253edefd

Sharing

Copy URL

Twitter E-mail

General

Target

c57efdf88b62acd6d29a9982bb332e0b62a2adb2e9f4063489295a6d253edefd
Size

1.8MB
MD5

2015735256f2b0b8701060903186c8b6
SHA1

2ffb24987ec5cea32ee6c245ba820243fb8a8db8
SHA256

c57efdf88b62acd6d29a9982bb332e0b62a2adb2e9f4063489295a6d253edefd
SHA512

69815e9083a17dafb6079e0c4aba59bcb7a912a9953b6fd827b14aa4f6a29f315462b7032d09be02d2d2530f9ea3c8a49e9b4f562ae0f9bc8783d2e5ab7d1bf5
SSDEEP

24576:7N7G7N8ACfDKjg16jeYpNwb94ov744BZsxuUuBodlOMSPCWs4c:GQdkTwb6S744B+uxBodlOXPCR4

Score

N/A

Malware Config

Signatures

Files

c57efdf88b62acd6d29a9982bb332e0b62a2adb2e9f4063489295a6d253edefd
.exe windows x86

c05c25e46b1dfaa76423c79529c78a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueA
RegCloseKey

comctl32

ImageList_AddMasked
ImageList_ReplaceIcon
_TrackMouseEvent
InitCommonControls
ImageList_Destroy
ImageList_Create

gdi32

GetDeviceCaps
DeleteObject
CombineRgn
CreateRectRgn
GetDIBits
DeleteDC
SelectObject
CreateDCA
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
PatBlt
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
StretchBlt
IntersectClipRect
CreatePen
CreatePatternBrush
SetRectRgn
GetTextColor
CopyMetaFileA
GetCurrentObject
CreateFontIndirectA
CreateRectRgnIndirect
Polygon
Polyline
CreateSolidBrush
GetCharWidthA
GetTextExtentPoint32A
GetStockObject
CreatePalette
RealizePalette
CreateDIBitmap
GetObjectA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateCompatibleDC
LPtoDP
CreateCompatibleBitmap
GetMapMode
DPtoLP
GetBkColor
ExcludeClipRect
GetTextExtentPointA
BitBlt

kernel32

GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
CreateThread
ExitThread
HeapReAlloc
HeapSize
GetACP
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LockResource
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
HeapAlloc
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
ReadFile
SetFilePointer
GetFileSize
WriteFile
LockResource
LoadResource
SizeofResource
FindResourceA
CloseHandle
CreateFileA
lstrcpy
CreateDirectoryA
GetModuleFileNameA
GetModuleHandleA
GetLastError
CreateMutexA
GetTickCount
lstrcmp
HeapFree
RtlUnwind
SetErrorMode
CopyFileA
GlobalSize
GetFileTime
GetFileAttributesA
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
Sleep
GetTempPathA
GlobalUnlock
GlobalLock
GlobalAlloc
LocalFree
FormatMessageA
TlsAlloc
InitializeCriticalSection
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
GetCurrentThread
SetLastError
lstrcpyn
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetVersion
GetCurrentThreadId
DeleteFileA
GlobalGetAtomNameA
lstrcmpi
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetProcAddress
GlobalFree
LocalAlloc
LocalLock
MultiByteToWideChar
LocalUnlock
MulDiv
CreateProcessA
lstrcat
lstrlen
WinExec
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
SetFileAttributesA

oleaut32

VariantCopy
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantClear
VariantTimeToSystemTime
SysStringLen
SysAllocStringLen
SysFreeString

olepro32

OleCreateFontIndirect
OleLoadPicture

shell32

Shell_NotifyIcon
ShellExecuteA
SHGetFileInfo

user32

ValidateRect
TranslateMessage
GetMessageA
DestroyMenu
SetWindowContextHelpId
MapDialogRect
GetDesktopWindow
IsClipboardFormatAvailable
WindowFromPoint
CharUpperA
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
PostThreadMessageA
IsDialogMessage
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
IsWindowVisible
GetScrollInfo
SetScrollInfo
GetTopWindow
IsChild
wsprintfA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetDlgCtrlID
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetForegroundWindow
wvsprintfA
IntersectRect
GetWindowPlacement
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
DialogBoxIndirectParamA
GetClassNameA
GetSystemMenu
CheckDlgButton
SetFocus
SetWindowTextA
EndDialog
WinHelpA
LoadStringA
BeginPaint
EndPaint
GetLastActivePopup
MessageBoxA
SetMenuDefaultItem
SetWindowPos
GetWindowDC
SystemParametersInfoA
SetWindowRgn
GetSysColorBrush
FindWindowA
GetScrollRange
SetScrollPos
GetScrollPos
CopyRect
LockWindowUpdate
GetCursorPos
SetRect
RedrawWindow
ShowWindow
UpdateWindow
CopyIcon
GetDC
ReleaseDC
InflateRect
SetCursor
GetMessagePos
MessageBeep
SetWindowLongA
ClientToScreen
CreatePopupMenu
AppendMenuA
GetNextDlgTabItem
GetKeyState
PtInRect
GetCapture
ReleaseCapture
SetCapture
DestroyCaret
CreateCaret
SetCaretPos
ShowCaret
EnableScrollBar
ShowScrollBar
GetFocus
FillRect
OffsetRect
PostMessageA
GetClassInfoA
LoadCursorA
DefWindowProcA
RegisterClipboardFormatA
GetParent
DestroyCursor
OpenClipboard
EmptyClipboard
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
RegisterClipboardFormatA
CheckMenuItem
SetClipboardData
CloseClipboard
SetForegroundWindow
LoadMenuA
EnableMenuItem
GetSubMenu
SetPropA
PostQuitMessage
IsIconic
GetSystemMetrics
DrawIcon
KillTimer
InvalidateRect
SetTimer
GetDlgItem
LoadBitmapA
LoadIconA
GrayStringA
DrawTextA
TabbedTextOutA
GetSysColor
GetClientRect
GetActiveWindow
MoveWindow
EnableWindow
SendMessageA
IsWindow
GetWindowRect
GetWindow
GetWindowLongA
ScreenToClient
GetWindowTextA
IsWindowUnicode
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
HideCaret
UnregisterClassA
GetDialogBaseUnits

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

ws2_32

htons
socket
bind
recv
getpeername
listen
ioctlsocket
accept
WSAStartup
WSAGetLastError
closesocket
send

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
OleFlushClipboard
OleGetClipboard
ReleaseStgMedium
CreateILockBytesOnHGlobal
CLSIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
OleDuplicateData
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
OleSetClipboard

oledlg

OleUIBusyA

Sections

.text
Size: 452KB - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2lqivayb
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 368KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dy4j2mwl
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dzvwqib8
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yojoyj73
Size: 572KB - Virtual size: 580KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 12KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c05c25e46b1dfaa76423c79529c78a7a

Headers

File Characteristics

Imports

advapi32

comctl32

gdi32

kernel32

oleaut32

olepro32

shell32

user32

winspool.drv

ws2_32

comdlg32

ole32

oledlg

Sections

.text Size: 452KB - Virtual size: 448KB

2lqivayb Size: 96KB - Virtual size: 96KB

.data Size: 108KB - Virtual size: 108KB

.rsrc Size: 368KB - Virtual size: 367KB

dy4j2mwl Size: 4KB - Virtual size: 4KB

dzvwqib8 Size: 188KB - Virtual size: 188KB

yojoyj73 Size: 572KB - Virtual size: 580KB

.mackt Size: 12KB - Virtual size: 32KB

.text
Size: 452KB - Virtual size: 448KB

2lqivayb
Size: 96KB - Virtual size: 96KB

.data
Size: 108KB - Virtual size: 108KB

.rsrc
Size: 368KB - Virtual size: 367KB

dy4j2mwl
Size: 4KB - Virtual size: 4KB

dzvwqib8
Size: 188KB - Virtual size: 188KB

yojoyj73
Size: 572KB - Virtual size: 580KB

.mackt
Size: 12KB - Virtual size: 32KB