b5bf3f37f66486e4c7ffbeb08f2ea1e9b49eb7e83654caf37d8b52314ac146aa

Sharing

Copy URL Twitter E-mail

General

Target

b5bf3f37f66486e4c7ffbeb08f2ea1e9b49eb7e83654caf37d8b52314ac146aa
Size

764KB
MD5

1ca545a3099ae054e9a3de8357f4a01b
SHA1

453a50bfdc2aee19bf64f1699f3aafd6cdaff4ae
SHA256

b5bf3f37f66486e4c7ffbeb08f2ea1e9b49eb7e83654caf37d8b52314ac146aa
SHA512

9199f38030ff4686d7dbcc4ef9cc91977302302415afadcc4b0bf8448df3d0fbfafd6025d83c7e014eca96976cd9a78da7c264ea1abe145eff4232d7b5f394df
SSDEEP

12288:M2BvQ5fj5/hmrJ+O0DsfOyGEZJ2Tduu81HoV6G9+gaU7Dmr5iIfAGIXFN:31ujcHr4UkIxuV64+/UnS5WN

Score

N/A

Malware Config

Signatures

Files

b5bf3f37f66486e4c7ffbeb08f2ea1e9b49eb7e83654caf37d8b52314ac146aa
.exe windows x86

3f908201570d3dec2a30a1458fb263e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInAddBuffer
waveOutReset
waveInOpen
waveInUnprepareHeader
waveInClose
waveInStart
waveInReset
waveInGetNumDevs
waveInPrepareHeader

comdlg32

GetSaveFileNameA
GetOpenFileNameA

user32

BeginPaint
RemoveMenu
DestroyIcon
GetWindowPlacement
TrackPopupMenu
GetSystemMetrics
MessageBeep
GetTopWindow
SetFocus
UnhookWindowsHookEx
GetActiveWindow
ReleaseDC
SetRect
ReuseDDElParam
KillTimer
GetWindowRect
GetWindowTextLengthW
CloseClipboard
WindowFromPoint
DrawFocusRect
IsRectEmpty
DrawFrameControl
LoadIconW
TranslateMessage
SetWindowLongW
RegisterClassExW
GetCapture
RegisterWindowMessageW
EnumWindows
GetMenuState
ShowWindow
GetKeyboardLayout
LoadStringW
ClientToScreen
TrackPopupMenuEx
CreateMenu
SetRectEmpty
GetForegroundWindow
GetWindowThreadProcessId
IsWindowEnabled
UnpackDDElParam
MoveWindow
AttachThreadInput
LoadAcceleratorsW
SendMessageW
EndPaint
DestroyWindow
ReleaseCapture
GetSysColorBrush
GetSystemMenu
GetDoubleClickTime
FillRect
CreateWindowExW
GetCursorPos
SetCapture
CallNextHookEx
DrawEdge
LoadCursorW
RegisterClassW
DefWindowProcW
MessageBoxW
LoadBitmapW
OpenClipboard
wsprintfW
GetMenu
IsWindowVisible
EnableWindow
ModifyMenuW
DestroyAcceleratorTable
SetClipboardData
SetWindowPlacement
SetMenuItemInfoW
GetClassNameW
GetClassInfoExW

kernel32

GetTempPathA
SuspendThread
HeapCreate
IsBadReadPtr
GetDriveTypeA
ResumeThread
RtlUnwind
HeapSize
GetStartupInfoA
WriteConsoleA
lstrcmpA
GetEnvironmentStrings
SetStdHandle
GlobalReAlloc
GetFileTime
FlushFileBuffers
GetLocaleInfoW
FreeLibrary
WaitForMultipleObjects
SetUnhandledExceptionFilter
ResetEvent
lstrcpyW
GetTempPathW
GetCommandLineW
LoadResource
GetStringTypeW
InterlockedIncrement
VirtualFree
GetTimeFormatA
IsValidCodePage
LCMapStringA
GetFileType
GetLastError
FreeEnvironmentStringsA
LoadLibraryW
lstrcmpiA
CreateMutexW
OutputDebugStringW
Sleep
GetStringTypeA
ReadFile
QueryPerformanceFrequency
lstrcpynW
QueryPerformanceCounter
CreateThread
HeapAlloc
GetVersion
UnmapViewOfFile
ExitThread
CreateDirectoryW
DeviceIoControl
TerminateThread
GetCPInfo
TlsFree
GetStdHandle
InitializeCriticalSection
HeapFree
GetFileAttributesA
TlsGetValue
CompareStringW
SetThreadPriority
FileTimeToSystemTime
IsDebuggerPresent
DeleteFileW
GlobalSize
GlobalLock
SetEndOfFile
CompareStringA
lstrcmpW
GetVersionExA
GetDateFormatA
GetConsoleOutputCP
SetHandleCount
DeleteCriticalSection
IsValidLocale
GetCurrentThreadId
IsBadWritePtr
UnhandledExceptionFilter
GlobalAlloc
WaitForSingleObject
GetModuleFileNameW
CreateFileW
LockResource
SetErrorMode
HeapDestroy
LeaveCriticalSection
GetStartupInfoW
LocalAlloc
HeapReAlloc
CreateFileA
GetCurrentProcess
SetFilePointer
FindFirstFileA
GetTickCount
FindFirstFileW
VirtualQuery
GetConsoleCP
GetCurrentDirectoryW
TlsAlloc
VirtualAlloc
EnterCriticalSection
LockFile
GetSystemTime
SizeofResource
GetSystemDirectoryW
CreateDirectoryA
InterlockedDecrement
FreeResource
WideCharToMultiByte
OutputDebugStringA
GetFileAttributesW
GlobalUnlock
MulDiv
GetFileSize
TerminateProcess
GetModuleHandleW
GetModuleHandleA
GetCurrentProcessId
GlobalFree
ExitProcess
MultiByteToWideChar
GetVersionExW
GetCurrentThread
FindNextFileA
SetEvent
GetModuleFileNameA
TlsSetValue
GetTimeZoneInformation
GetUserDefaultLCID
GetSystemDirectoryA
CloseHandle
FreeEnvironmentStringsW
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
DeleteFileA
GetLocaleInfoA
lstrlenA
GetStringTypeExW
GetProcAddress
WriteFile
SetEnvironmentVariableA
LocalFree
SetLastError
GetOEMCP
UnlockFile
GetLocalTime
lstrcmpiW
FindResourceW
GetEnvironmentStringsW
GetACP
LoadLibraryA
WriteConsoleW
lstrlenW
RaiseException
InterlockedExchange
GetConsoleMode
GetProcessHeap
SetFileAttributesW
FileTimeToLocalFileTime
FindClose
VirtualProtect
GetCommandLineA
SystemTimeToFileTime
SetFileTime
LCMapStringW

comctl32

ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_DragEnter
ImageList_LoadImageA
ImageList_Create
ImageList_AddMasked
InitCommonControlsEx
ImageList_Add
ImageList_Remove
_TrackMouseEvent
DestroyPropertySheetPage
ImageList_DrawEx
ImageList_Destroy
CreatePropertySheetPageA
ImageList_Draw
ImageList_GetImageCount
ord17

gdi32

CreateHatchBrush
DeleteMetaFile
RealizePalette
StretchDIBits
Escape
GetTextExtentPoint32A
CreateFontIndirectA
SetViewportOrgEx
SelectClipRgn
CreateCompatibleDC
OffsetViewportOrgEx
PlayMetaFile
GetMapMode
GetCurrentObject
CreateSolidBrush
CombineRgn
GetArcDirection
CreateDCA
GetCharWidthA
CreateBrushIndirect
StartDocA
ScaleWindowExtEx
GetStockObject
SetMapMode
CreateDIBitmap
CreateRectRgn
GetBkColor
PatBlt
SelectPalette
SetTextColor
SetTextAlign
CreatePolygonRgn
ScaleViewportExtEx
SetBitmapBits
UnrealizeObject

advapi32

RegCloseKey
ChangeServiceConfigA
RegEnumKeyExA
RegOpenKeyExA
QueryServiceConfigA
RegDeleteKeyA
RegOpenKeyA
CloseServiceHandle
OpenSCManagerA
ControlService

shlwapi

PathFindExtensionA
PathIsUNCA
UrlUnescapeA

shell32

DragFinish
DragAcceptFiles
SHGetSpecialFolderLocation
ord155
SHGetMalloc
SHGetSpecialFolderPathA
ShellExecuteExA
SHChangeNotify
SHGetFileInfoA

ole32

CLSIDFromProgID
StringFromCLSID
GetClassFile
OleRegGetUserType
CoTaskMemAlloc
StgOpenStorage
CoTaskMemFree
OleDuplicateData
OleSaveToStream
StgCreateDocfileOnILockBytes
OleIsCurrentClipboard
OleRun
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
OleUninitialize
StgIsStorageILockBytes
CoRegisterMessageFilter
CreateBindCtx

Sections

.text
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 484KB - Virtual size: 480KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f908201570d3dec2a30a1458fb263e0

Headers

File Characteristics

Imports

winmm

comdlg32

user32

kernel32

comctl32

gdi32

advapi32

shlwapi

shell32

ole32

Sections

.text Size: 120KB - Virtual size: 117KB

.rdata Size: 484KB - Virtual size: 480KB

.data Size: 108KB - Virtual size: 106KB

.rsrc Size: 48KB - Virtual size: 45KB

.text
Size: 120KB - Virtual size: 117KB

.rdata
Size: 484KB - Virtual size: 480KB

.data
Size: 108KB - Virtual size: 106KB

.rsrc
Size: 48KB - Virtual size: 45KB