153e58b470746335f4185912338b25756bca97a7ff85790650de006d21d41fc1

Sharing

Copy URL Twitter E-mail

General

Target

153e58b470746335f4185912338b25756bca97a7ff85790650de006d21d41fc1
Size

728KB
MD5

340b0c7c1efe0250315de4f406b17631
SHA1

6cdf05916b66c73d591e77c32ed5746c4d63f4ca
SHA256

153e58b470746335f4185912338b25756bca97a7ff85790650de006d21d41fc1
SHA512

9009b930875d8c2f4573b8eb99bbeee86c71c7f3ffd52227667fef37ad1b6cff2e9e335469665962a7b724aa9444c837d1870457b86a67a1a997c9e287fe5341
SSDEEP

6144:6F8i56wiZb8chDhTKotWJwBwyQlTgALXqo1jmUZxL6xQGQgg:6qRDhxtTBwPZNLXqs76P

Score

N/A

Malware Config

Signatures

Files

153e58b470746335f4185912338b25756bca97a7ff85790650de006d21d41fc1
.exe windows x86

bfa0d3e5a5e0b76f119bf3d948a205e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

stlang

LocalizeString

mfc42u

ord2859
ord800
ord3871
ord540
ord5871
ord2854
ord613
ord1634
ord1633
ord6871
ord289
ord1143
ord2114
ord4155
ord1088
ord6193
ord283
ord4128
ord4292
ord5784
ord472
ord2559
ord1921
ord3716
ord3614
ord4401
ord795
ord823
ord861
ord755
ord535
ord2810
ord470
ord3688
ord6115
ord3568
ord5783
ord858
ord5436
ord6379
ord5446
ord6390
ord5568
ord2910
ord538
ord2606
ord4273
ord6655
ord4667
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord4616
ord3733
ord617
ord3397
ord296
ord561
ord641
ord801
ord2506
ord5297
ord5208
ord2613
ord5261
ord4370
ord4847
ord4992
ord6048
ord1767
ord5276
ord4419
ord5977
ord324
ord2294
ord4229
ord2806
ord5210
ord4124
ord6195
ord1165
ord5949
ord3087
ord4704
ord541
ord3312
ord5857
ord6107
ord6211
ord922
ord2858
ord6451
ord6874
ord5142
ord6330
ord6456
ord665
ord1971
ord5438
ord3313
ord5180
ord354
ord6919
ord4197
ord2403
ord2015
ord4213
ord2570
ord4392
ord3577
ord616
ord5674
ord537
ord5785
ord2855
ord5732
ord4272
ord6279
ord6278
ord2756
ord6867
ord6168
ord3792
ord3711
ord790
ord3915
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4390
ord1768
ord4073
ord6051
ord2567
ord5047
ord2371
ord4279
ord2397
ord4270
ord5781
ord2406
ord3621
ord3658
ord825
ord567
ord556
ord323
ord609
ord809
ord640
ord3566
ord3569
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3592
ord3825
ord815
ord1569

msvcrt

_controlfp
?terminate@@YAXXZ
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
iswspace
_wcsnicmp
_wtoi
wcstol
wcscmp
memmove
wcsstr
wcsncmp
wcschr
floor
wcscpy
wcsncpy
_ftol
wcslen
__CxxFrameHandler

kernel32

GetStartupInfoW
GetModuleHandleW
ExpandEnvironmentStringsW
MultiByteToWideChar
GlobalUnlock
GlobalFree
FindResourceW
SizeofResource
LoadResource
LockResource
GlobalAlloc
GlobalLock
GetModuleFileNameW
GetCurrentThreadId

user32

GetWindowRect
GetSubMenu
TrackPopupMenuEx
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
DrawFocusRect
InflateRect
CopyRect
SetCursor
GetParent
GetNextDlgTabItem
GetClientRect
OffsetRect
DrawStateW
FillRect
GetSysColor
ReleaseDC
GetDC
CreateIconIndirect
GetIconInfo
LoadImageW
DestroyMenu
DestroyCursor
SendMessageW
GetWindowLongW
DestroyIcon
FrameRect
EnableWindow
SetRect
PtInRect
SetFocus
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
FindWindowW
LoadIconW
SetTimer
SetWindowLongW
SetLayeredWindowAttributes
RedrawWindow
DrawEdge
GetFocus
EnableMenuItem
KillTimer
IsIconic
GetSystemMetrics
DrawIcon
GetDlgItem
SetWindowPos
GetSystemMenu
RemoveMenu
AppendMenuW
SetRectEmpty
LoadBitmapW
SystemParametersInfoW
InvalidateRect
SetWindowRgn

gdi32

Rectangle
GetTextExtentPoint32W
Ellipse
CreateSolidBrush
RoundRect
CreatePen
CreateFontIndirectW
CreateRectRgn
CombineRgn
GetObjectW
GetPixel
SetPixel
CreateBitmap
SelectObject
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
DeleteObject

shell32

ShellExecuteExW

comctl32

ord17
_TrackMouseEvent

ole32

CreateStreamOnHGlobal
CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemFree

oleaut32

SysAllocString
SysFreeString
VariantClear
SafeArrayGetElement

winmm

PlaySoundW

msimg32

GradientFill

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdiplus

GdipCreatePath
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdipCreateFromHDC
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectI
GdipDeletePath
GdipDisposeImage
GdipFree
GdipCloneImage
GdipAlloc
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdiplusStartup
GdiplusShutdown
GdipFillPath
GdipDeleteBrush
GdipCreateSolidFill
GdipSetSmoothingMode
GdipCloneBrush
GdipDeleteGraphics

shlwapi

PathFindFileNameW
PathSkipRootW
PathCanonicalizeW
PathMakePrettyW
PathParseIconLocationW
PathRemoveArgsW

Sections

.text
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 426KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bfa0d3e5a5e0b76f119bf3d948a205e4

Headers

File Characteristics

Imports

stlang

mfc42u

msvcrt

kernel32

user32

gdi32

shell32

comctl32

ole32

oleaut32

winmm

msimg32

version

gdiplus

shlwapi

Sections

.text Size: 72KB - Virtual size: 68KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 428KB - Virtual size: 426KB

.tc Size: 204KB - Virtual size: 204KB

.text
Size: 72KB - Virtual size: 68KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 428KB - Virtual size: 426KB

.tc
Size: 204KB - Virtual size: 204KB