93e8f07bc93f52b4646431ea31169c340bb0248689dc369b1102fe8a99e822e8

Sharing

Copy URL Twitter E-mail

General

Target

93e8f07bc93f52b4646431ea31169c340bb0248689dc369b1102fe8a99e822e8
Size

569KB
MD5

a8a116f11b1b8d6a572ca574c28da10c
SHA1

c8c5545d9caaa26f1bb9014a55cfb9f39491e0b4
SHA256

93e8f07bc93f52b4646431ea31169c340bb0248689dc369b1102fe8a99e822e8
SHA512

aab0c9931a05f9e7c3cf9c7f806c566acae434c8adfba48d7b54d5992d45e82f35f486080c505d221cefb895f1c8beeff45030552aabd04e9b25a87c92004b2d
SSDEEP

6144:BWW88vGyE92vofU0GWHbNVsQ1Q6PQfY62D0ouAZEGdHYjA1OqZW4jbYW/:BWW88vV/vbws2Q+62D7lEJlqZWu/

Score

N/A

Malware Config

Signatures

Files

93e8f07bc93f52b4646431ea31169c340bb0248689dc369b1102fe8a99e822e8
.exe windows x86

0b25f076f6481fbf75977d8ef82aaf15

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLongPathNameW
QueryDosDeviceW
GetLogicalDriveStringsW
GetPrivateProfileIntW
WaitForSingleObject
FlushInstructionCache
CreateEventW
CreateDirectoryW
Sleep
SetEvent
GetTickCount
WaitForMultipleObjects
VirtualProtect
ResetEvent
OutputDebugStringW
WideCharToMultiByte
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetModuleHandleA
GetSystemInfo
GetVersionExW
GetModuleHandleW
CreateProcessW
GetStartupInfoW
SetFilePointer
SystemTimeToFileTime
LocalFileTimeToFileTime
TlsGetValue
OpenThread
TlsSetValue
GetEnvironmentVariableW
GetProcessHeap
HeapAlloc
TlsAlloc
SetEnvironmentVariableW
ReleaseMutex
TlsFree
HeapFree
SetFilePointerEx
ReadFile
GetFileSizeEx
FormatMessageW
GetSystemTime
SetLastError
GetSystemTimeAsFileTime
CreateFileA
OpenProcess
GetCurrentProcess
MultiByteToWideChar
FindFirstFileW
FindClose
FindNextFileW
GetTempPathW
GetTempFileNameW
DeleteFileW
lstrlenA
DeleteCriticalSection
HeapDestroy
InitializeCriticalSection
EnterCriticalSection
GetCurrentThreadId
GetCurrentProcessId
LeaveCriticalSection
LocalFree
CreateFileW
DeviceIoControl
CloseHandle
InterlockedIncrement
CreateMutexW
GetLastError
GetCommandLineW
LoadLibraryExW
LoadLibraryW
GetProcAddress
FreeLibrary
GetModuleFileNameW
lstrlenW
InterlockedDecrement
GetVersion

user32

RegisterClassExW
CallWindowProcW
SetWindowPos
GetDlgItem
GetClientRect
SetWindowTextW
SetFocus
SetTimer
KillTimer
DrawTextW
EndDialog
AdjustWindowRectEx
GetMenu
IsRectEmpty
CreateWindowExW
EnableWindow
SetWindowRgn
InflateRect
InvalidateRect
PtInRect
LoadImageW
MapWindowPoints
MoveWindow
ScreenToClient
UpdateWindow
DestroyMenu
TrackPopupMenu
DeleteMenu
ClientToScreen
DialogBoxParamW
SendMessageTimeoutW
PostQuitMessage
CreateDialogParamW
IsZoomed
RedrawWindow
EndPaint
CharUpperW
CharLowerW
SetCursor
IntersectRect
MonitorFromPoint
GetMonitorInfoW
DrawEdge
DrawFocusRect
GetWindowTextLengthW
GetWindowTextW
GetSubMenu
LoadMenuW
GetSysColor
GetSysColorBrush
GetDC
SetCapture
GetCapture
ReleaseCapture
GetClassInfoExW
LoadCursorW
wsprintfW
MessageBoxW
GetActiveWindow
GetSystemMetrics
PostMessageW
SetWindowLongW
DestroyIcon
IsWindow
DispatchMessageW
TranslateMessage
GetMessageW
SystemParametersInfoW
GetDlgCtrlID
GetParent
EnumWindows
SendMessageW
GetWindowLongW
IsWindowVisible
IsWindowEnabled
SetForegroundWindow
SwitchToThisWindow
GetWindow
FindWindowW
GetWindowRect
GetWindowThreadProcessId
LoadBitmapW
CharNextW
LoadStringW
DestroyWindow
DefWindowProcW
ShowWindow
PeekMessageW
BeginPaint

gdi32

ExtTextOutW
CreatePen
SetViewportOrgEx
GetClipBox
MoveToEx
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
SaveDC
BitBlt
LineTo
SetTextColor
SetBkMode
GetStockObject
SetBkColor
StretchBlt
RestoreDC
DeleteDC
CreateRoundRectRgn
CreateFontW
GetObjectW
CreateFontIndirectW
CreateSolidBrush
DeleteObject

advapi32

RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegCloseKey
GetTokenInformation
OpenProcessToken
RegQueryValueExA

shell32

CommandLineToArgvW
ord680
ShellExecuteExW
ShellExecuteW

ole32

CoInitialize
CoUninitialize

oleaut32

VariantChangeType
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
VariantInit
VariantClear
SysFreeString
SysAllocString
SysStringLen

comctl32

_TrackMouseEvent
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Destroy
ImageList_Draw

msimg32

TransparentBlt

shlwapi

SHGetValueW
PathIsRelativeW
PathRemoveFileSpecW
PathCombineW
PathFileExistsW
StrStrIW
StrChrW
PathAppendW
StrCmpNIW

msvcp60

?find_first_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGII@Z
?substr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV12@II@Z
?_Tidy@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEX_N@Z
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@ABV12@II@Z
?_Eos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEXI@Z
?_C@?1??_Nullstr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@CAPBGXZ@4GB
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
?_Grow@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAE_NI_N@Z
?_Split@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ

msvcrt

__dllonexit
exit
swscanf
swprintf
_snwprintf
wcsrchr
strerror
wcstok
_errno
_CxxThrowException
_ftol
wcsncmp
wcschr
_vsnprintf
_beginthreadex
_purecall
_except_handler3
_wcsnicmp
iswspace
wcsstr
wcscpy
_wfopen
_onexit
fclose
wcscmp
wcsncpy
_vsnwprintf
_wtoi
iswdigit
malloc
vswprintf
memmove
realloc
??2@YAPAXI@Z
wcsncat
free
_wcsicmp
wcslen
__CxxFrameHandler
?terminate@@YAXXZ
_exit
_controlfp
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
_XcptFilter
fwrite

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

psapi

GetModuleFileNameExW

wininet

InternetGetConnectedState

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0b25f076f6481fbf75977d8ef82aaf15

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

msimg32

shlwapi

msvcp60

msvcrt

version

psapi

wininet

iphlpapi

Sections

.text Size: 216KB - Virtual size: 214KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 16KB - Virtual size: 16KB

.rsrc Size: 308KB - Virtual size: 308KB

.text
Size: 216KB - Virtual size: 214KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 308KB - Virtual size: 308KB