69f86fe4645bbfa483580d3af13950f408f5904999c15b1cf4bb7659a77607d5

Sharing

Copy URL Twitter E-mail

General

Target

69f86fe4645bbfa483580d3af13950f408f5904999c15b1cf4bb7659a77607d5
Size

1.5MB
MD5

5475549e6fbcd0e51d54a9a2fff7467f
SHA1

f092dc2ba53f175a1ca6efd0e8b5103e5e6ba1e9
SHA256

69f86fe4645bbfa483580d3af13950f408f5904999c15b1cf4bb7659a77607d5
SHA512

0e5cc76354d580ce3011601d5a0a3bd02cd45e39f258affa6b5476e6eaedb23541728ed3d98187ab09ee2c263f24a0d59146269f85fa9e1388df62dbeebde17b
SSDEEP

24576:/i15iXheajgh3v1YslhFHxqhG9EJc0Qj0T0:/i15iXhs1YslhFHxq

Score

N/A

Malware Config

Signatures

Files

69f86fe4645bbfa483580d3af13950f408f5904999c15b1cf4bb7659a77607d5
.exe windows x86

fda75b93224ad63db3cc0ae0089ff097

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
SetStdHandle
GetFileType
RaiseException
GetACP
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WritePrivateProfileStringA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetErrorMode
InterlockedExchange
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
ReleaseMutex
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
lstrlenW
GetCurrentThread
GetFileTime
GetFileSize
GetFileAttributesA
GetThreadLocale
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
MulDiv
GlobalLock
GlobalUnlock
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FindNextFileA
SetLastError
lstrcmpA
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrcpyA
WinExec
GetWindowsDirectoryA
SetLocaleInfoA
CreateMutexA
GetLastError
GetDiskFreeSpaceExA
GetTickCount
GlobalMemoryStatus
GlobalAlloc
DeviceIoControl
GlobalFree
GetProfileIntA
GetProcAddress
FreeLibrary
lstrcatA
LoadLibraryA
lstrlenA
GetVersion
FindFirstFileA
FindClose
GetProfileStringA
WriteProfileStringA
CreateToolhelp32Snapshot
Process32First
OpenProcess
WaitForSingleObject
TerminateProcess
Process32Next
Sleep
GetModuleFileNameA
DeleteFileA
GetSystemDirectoryA
GetModuleHandleA
FindResourceA
LoadResource
LockResource
SizeofResource
CreateFileA
WriteFile
GetEnvironmentStrings
CloseHandle

user32

CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsWindowEnabled
GetMessageA
TranslateMessage
GetActiveWindow
ValidateRect
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetParent
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
wsprintfA
LoadCursorA
FindWindowA
PostMessageA
FindWindowExA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
CopyIcon
GetSysColor
SetWindowLongA
SetCursor
PtInRect
ReleaseCapture
SetCapture
MessageBeep
GetWindowRect
OffsetRect
InvalidateRect
CreatePopupMenu
LoadMenuA
GetSubMenu
GetCursorPos
GetDesktopWindow
RedrawWindow
IsIconic
CharNextA
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
EnableWindow
SetTimer
KillTimer
MessageBoxA
DefDlgProcA
IsWindowUnicode
IsWindow
GetSysColorBrush
GetClassNameA
WindowFromPoint
InflateRect
DestroyMenu
LoadStringA
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
CharUpperA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
DestroyWindow

gdi32

IntersectClipRect
DeleteObject
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
LPtoDP
DPtoLP
PatBlt
GetMapMode
GetTextColor
GetBkColor
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetObjectA
CreateFontIndirectA
GetStockObject
GetDeviceCaps
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
GetUserNameA

shell32

ShellExecuteA

comctl32

ImageList_ReplaceIcon
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoGetClassObject
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
CLSIDFromProgID
OleFlushClipboard
OleIsCurrentClipboard
CLSIDFromString

olepro32

ord253

oleaut32

SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
VariantClear
SysFreeString
SysStringLen
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
VariantTimeToSystemTime

wsock32

setsockopt
closesocket
recv
gethostbyname
htons
connect
getprotobyname
socket
WSAStartup
shutdown
WSACleanup
gethostname
send

wininet

InternetCanonicalizeUrlA
InternetCrackUrlA
InternetGetConnectedState
InternetOpenA
InternetOpenUrlA
InternetCloseHandle
HttpQueryInfoA
InternetReadFile

winmm

timeGetTime

Sections

.text
Size: 304KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 24.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fda75b93224ad63db3cc0ae0089ff097

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

wininet

winmm

Sections

.text Size: 304KB - Virtual size: 302KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 28KB - Virtual size: 24.0MB

.rsrc Size: 1.1MB - Virtual size: 1.1MB

.text
Size: 304KB - Virtual size: 302KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 28KB - Virtual size: 24.0MB

.rsrc
Size: 1.1MB - Virtual size: 1.1MB