a294a600f7cccd75c7c85cb439d75909ff439797e84c50452ef980feb2b1239b

Sharing

Copy URL

Twitter E-mail

General

Target

a294a600f7cccd75c7c85cb439d75909ff439797e84c50452ef980feb2b1239b
Size

334KB
MD5

fcfac5dcee032ab5e219d977d5acaede
SHA1

e0c8432f71ad74229b3ff5732a1524e516784429
SHA256

a294a600f7cccd75c7c85cb439d75909ff439797e84c50452ef980feb2b1239b
SHA512

d1881e1351fd3aaa1e459476f3d51c3b476a3da2d7383c923c284c28c2288e8c2c88f8ff2efc315a10584632d5423da29cbe799ea303d97172137bdff264b823
SSDEEP

3072:3ddjcqGgSXTEik+X5aaBPzlmiUttx1JDeumgdPLfpdJHF6a4wuDeWxjUUiF01AOJ:XjFGgcRaaB5enHFK+01A+/YA3tnsG

Score

N/A

Malware Config

Signatures

Files

a294a600f7cccd75c7c85cb439d75909ff439797e84c50452ef980feb2b1239b
.exe windows x86

4ad6c8c24801d40f4890f08b9ad86cbb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shlwapi

SHDeleteKeyW
PathFileExistsW

ws2_32

WSAStartup
WSACleanup

imm32

ImmGetCompositionStringW
ImmGetVirtualKey
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmGetContext

msvfw32

ICCompressorFree
ICCompressorChoose

wininet

HttpAddRequestHeadersW
InternetErrorDlg

winmm

waveOutReset
waveOutPrepareHeader
waveOutOpen
waveOutUnprepareHeader
waveOutClose
timeSetEvent
timeKillEvent
waveOutWrite
waveOutGetDevCapsW
mmioAscend
mmioClose
mmioCreateChunk
mmioDescend
mmioOpenA
mmioOpenW
mmioRead
mmioWrite
timeBeginPeriod
timeGetTime
timeGetDevCaps
timeEndPeriod

kernel32

LocalAlloc
LocalFileTimeToFileTime
LocalFree
LockResource
MapUserPhysicalPages
MapViewOfFile
MoveFileW
MulDiv
MultiByteToWideChar
OpenEventW
OpenProcess
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReleaseMutex
ReleaseSemaphore
RemoveDirectoryW
ResetEvent
ResumeThread
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetLastError
SetThreadPriority
SizeofResource
SystemTimeToFileTime
TerminateProcess
TlsGetValue
UnmapViewOfFile
VirtualAlloc
VirtualFree
WideCharToMultiByte
HeapAlloc
_llseek
_lread
lstrcmpW
lstrcmpiW
lstrcpynW
lstrlenW
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GetVersionExW
GetVersionExA
GetVersion
GetTimeFormatW
GetTickCount
GetThreadPriority
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryA
GetSystemDefaultLangID
LoadResource
GetStartupInfoW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetMailslotInfo
GetLogicalDrives
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameA
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetExitCodeProcess
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetComputerNameExA
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindFirstFileExW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
FatalAppExitA
ExitThread
ExitProcess
EnterCriticalSection
DuplicateHandle
DosDateTimeToFileTime
DeleteFileW
DeleteFileA
DeleteCriticalSection
DebugBreak
CreateThread
CreateSemaphoreW
CreateProcessW
CreateMutexA
CreateMailslotA
CreateFileW
CreateFileMappingW
CreateFileA
CreateDirectoryW
CopyFileW
CompareStringW
CompareFileTime
CloseHandle
HeapFree
LoadLibraryA
LeaveCriticalSection
IsDBCSLeadByte
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
GetStdHandle
InitializeCriticalSection
LoadLibraryW
WriteFile

gdi32

SetTextColor
SetTextAlign
SetStretchBltMode
SetRectRgn
SetPolyFillMode
SetPixelV
SetPixel
SetMapMode
SetDIBitsToDevice
SetDIBits
PlayEnhMetaFileRecord
PatBlt
PaintRgn
OffsetRgn
MoveToEx
ModifyWorldTransform
MaskBlt
LineTo
LPtoDP
SetBrushOrgEx
SetBkMode
SetBkColor
SetBitmapBits
SelectPalette
SelectObject
SelectClipRgn
SelectClipPath
SaveDC
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
PtVisible
PolylineTo
Polyline
Polygon
UnrealizeObject
TranslateCharsetInfo
TextOutW
StrokePath
StretchDIBits
StretchBlt
StartPage
StartDocW
SetWinMetaFileBits
IntersectClipRect
GetWorldTransform
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextMetricsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetTextColor
GetTextCharset
GetTextAlign
GetSystemPaletteEntries
GetStockObject
GetPolyFillMode
GetPixel
GetPath
GetPaletteEntries
GetOutlineTextMetricsW
GetObjectW
GetNearestPaletteIndex
GetNearestColor
GetMetaFileBitsEx
GetMapMode
GetKerningPairsW
GetGlyphOutlineW
GetFontData
GetEnhMetaFileW
GetEnhMetaFileHeader
GetDeviceCaps
GetDIBits
GetCurrentObject
GetClipRgn
GetClipBox
GetCharWidthW
GetBkMode
GetBkColor
GetBitmapBits
GdiFlush
FrameRgn
FillRgn
FillPath
ExtTextOutW
ExtCreatePen
Escape
EnumFontFamiliesW
EnumFontFamiliesExW
EnumEnhMetaFile
EndPath
EndPage
EndDoc
Ellipse
DeleteObject
DeleteMetaFile
DeleteEnhMetaFile
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateMetaFileW
CreateHatchBrush
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmapIndirect
CreateBitmap
CombineRgn
CloseMetaFile
CloseFigure
CloseEnhMetaFile
BitBlt
BeginPath
PolyPolygon
PolyBezierTo

ole32

CoInitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
OleDraw
ReleaseStgMedium
StgCreateDocfile
StgIsStorageFile
StgOpenStorage
CoFreeUnusedLibraries

oleaut32

SysFreeString
SysAllocString
VariantClear

shell32

DragQueryFileW
DragFinish
SHChangeNotify
DragAcceptFiles
SHGetDesktopFolder
SHGetFolderPathW
SHGetMalloc
SHGetSpecialFolderPathA
CommandLineToArgvW
SHCreateDirectoryExW
SHBrowseForFolderW
ShellExecuteA
ShellExecuteW

comdlg32

CommDlgExtendedError
ChooseColorW
GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW
PrintDlgW

Sections

.text
Size: 227KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ad6c8c24801d40f4890f08b9ad86cbb

Headers

File Characteristics

Imports

version

shlwapi

ws2_32

imm32

msvfw32

wininet

winmm

kernel32

gdi32

ole32

oleaut32

shell32

comdlg32

Sections

.text Size: 227KB - Virtual size: 228KB

.rdata Size: 57KB - Virtual size: 60KB

.data Size: 13KB - Virtual size: 68KB

.idata Size: 9KB - Virtual size: 12KB

.rsrc Size: 25KB - Virtual size: 28KB

.text
Size: 227KB - Virtual size: 228KB

.rdata
Size: 57KB - Virtual size: 60KB

.data
Size: 13KB - Virtual size: 68KB

.idata
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 25KB - Virtual size: 28KB