51dd99e4e3969a79cb1b80fa7b72f816a6dfdfeed85959b92dbab9b6d5dd44f2

Sharing

Copy URL

Twitter E-mail

General

Target

51dd99e4e3969a79cb1b80fa7b72f816a6dfdfeed85959b92dbab9b6d5dd44f2
Size

839KB
MD5

08b84e71eabc58f304c1a7f70d109260
SHA1

7be73d6b5d887d333a0d1d439c6f5e408d72962c
SHA256

51dd99e4e3969a79cb1b80fa7b72f816a6dfdfeed85959b92dbab9b6d5dd44f2
SHA512

a13b3e81994c1d5f713cc08338d1f2c28da1b1c5f2fad4af9d7810424989ddc26bce262464d9d7025457bef949916534eb22ec33e92a352876a7c4aaa066ea58
SSDEEP

24576:Gv42PTBFiiB09amBjJEkCRJpvT3QWOjMyAwLB:GQ29sA03FCkCRJpvT3zOjMBwL

Score

N/A

Malware Config

Signatures

Files

51dd99e4e3969a79cb1b80fa7b72f816a6dfdfeed85959b92dbab9b6d5dd44f2
.exe windows x86

ddd96d8e303f6ba0095b17f9ecd4af1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteFileW
GetFileType
CopyFileW
GlobalAddAtomW
GetStartupInfoW
GlobalLock
GetFileTime
GlobalDeleteAtom
ResumeThread
Sleep
InterlockedExchange
CreateThread
WaitForSingleObject
VirtualQuery
FileTimeToLocalFileTime
GetProcessTimes
CreateEventW
GetTempFileNameW
FileTimeToSystemTime
GetSystemDefaultUILanguage
IsValidLocale
DeleteCriticalSection
HeapDestroy
GlobalMemoryStatus
SetEnvironmentVariableA
GetModuleHandleW
GetUserDefaultLCID
GetProcAddress
SetLastError
SetConsoleCP
lstrcatA
AddAtomA
GetModuleHandleA
LoadLibraryExA
lstrcpyA
GetEnvironmentStringsW
GetACP
FlushInstructionCache
GetTickCount
GetCurrentThreadId
GetTempPathW
GetLocaleInfoA
GetStartupInfoA
GlobalFree
SetUnhandledExceptionFilter
GetCurrentProcess
WritePrivateProfileStringW
SizeofResource
GetThreadLocale
IsProcessorFeaturePresent
ExitProcess
MultiByteToWideChar
HeapSetInformation
GetCurrentThread
RaiseException
GetSystemInfo
lstrcpyW
RtlUnwind
QueryPerformanceCounter
CreateFileW
GlobalSize
FindFirstFileW
IsValidCodePage
TlsAlloc
LeaveCriticalSection
SetHandleCount
LockFile
DuplicateHandle
GetFileAttributesExW
InterlockedIncrement
GetThreadTimes
InitializeCriticalSectionAndSpinCount
LoadLibraryW
VirtualLock
GetConsoleMode
ExitThread
FreeEnvironmentStringsW
GlobalHandle
CloseHandle
lstrlenA
LocalReAlloc
GlobalGetAtomNameW
GetLongPathNameW
FreeResource
SetStdHandle
LoadLibraryExW
SetEndOfFile
UnhandledExceptionFilter
CreateMutexW
TlsSetValue
FindFirstFileExW
SearchPathW
FormatMessageW
GetWindowsDirectoryW
GetVolumeInformationW
WriteConsoleW
GetProcessWorkingSetSize
FindResourceExW
GetPrivateProfileIntW
HeapFree
GlobalUnlock
GlobalReAlloc
lstrcmpA
CompareStringA
UnlockFile
SetFilePointer
SetThreadPriority
PeekNamedPipe
GetStdHandle
LoadResource
lstrcmpiW
MoveFileExW
ReadFile
DeleteAtom
GetDriveTypeW
FreeLibrary
GetProcessHeap
GetPrivateProfileStringW
GlobalFlags
VirtualUnlock
FlushFileBuffers
HeapSize
LocalFree
GetProfileIntW
LoadLibraryA
LockResource
GetLastError
GlobalFindAtomW
GetLocaleInfoW
GetFileInformationByHandle
GetFileAttributesW
WideCharToMultiByte
TlsGetValue
IsDebuggerPresent
GetVersionExW
GetNumberFormatW
LocalAlloc
GetCommandLineW
lstrcmpW
HeapAlloc
VirtualFree
FindResourceW
InitializeCriticalSection
GetSystemTimeAsFileTime
FindClose
GetTimeZoneInformation
GetCurrentProcessId
VirtualProtect
GlobalAlloc
GetModuleFileNameW
MulDiv
ConvertDefaultLocale
HeapQueryInformation
EnumSystemLocalesA
InterlockedCompareExchange
HeapReAlloc
FindNextFileW
lstrlenW
GetConsoleCP
SetErrorMode
GetFileSizeEx
GetVersion
SuspendThread
GetCurrentDirectoryW
InterlockedDecrement
CompareStringW
GetFullPathNameW
GetSystemDirectoryW
GetOEMCP
WriteFile
TlsFree
ReleaseMutex
EnterCriticalSection
HeapCreate
GetFileSize

user32

DrawIcon
SetCursor
SetCapture
UnregisterClassW
ClientToScreen
GetWindow
DefMDIChildProcW
DestroyIcon
WinHelpW
PostThreadMessageW
InvalidateRect
RemoveMenu
ValidateRect
RegisterClassW
LoadBitmapW
SetLayeredWindowAttributes
GetOpenClipboardWindow
GetMessageTime
GetClassInfoExW
SetDlgItemTextW
CharUpperW
CopyIcon
IntersectRect
CheckDlgButton
EnableScrollBar
EndDialog
IsClipboardFormatAvailable
TranslateMessage
GetDlgItem
UpdateWindow
IsWindowEnabled
DrawStateW
IsChild
GetScrollPos
MapVirtualKeyExW
EnableMenuItem
BeginDeferWindowPos
CreateIconFromResourceEx
UnregisterClassA
LoadCursorW
GetMenu
IsRectEmpty
InsertMenuW
MapWindowPoints
DrawTextExW
DrawEdge
EnableWindow
GetWindowDC
GetWindowRect
RealChildWindowFromPoint
PtInRect
InsertMenuItemW
LoadImageW
CallWindowProcW
GetWindowRgn
GetMenuCheckMarkDimensions
GetProcessWindowStation
GetDoubleClickTime
GetDlgItemTextW
GetScrollInfo
MapDialogRect
GetMenuItemInfoW
IsZoomed
GetKeyState
FrameRect
GetUpdateRect
MapVirtualKeyW
GetDlgCtrlID
GetClassLongW
GetSystemMenu
GetForegroundWindow
SetActiveWindow
LoadIconW
SetScrollRange
GetCaretPos
CreateWindowExW
DrawFrameControl
SetPropW
GetLastActivePopup
InflateRect
SendMessageW
GetDesktopWindow
CreateMenu
GetClassInfoW
CopyImage
DrawFocusRect
GetScrollRange
DestroyCursor
RegisterClipboardFormatW
CharUpperBuffW
RemovePropW
CharNextW
TranslateAcceleratorW
UpdateLayeredWindow
IsDialogMessageW
PostMessageW
GetNextDlgTabItem
SetWindowRgn
GetMenuStringW
DispatchMessageW
SetScrollInfo
PostQuitMessage
IsMenu
GetTopWindow
SetWindowContextHelpId
WaitMessage
GetClientRect
SetWindowLongW
SetParent
DeleteMenu
IsIconic
GetDC
CloseClipboard
ReleaseCapture
GetMessagePos
CopyRect
GetWindowLongW
GetMonitorInfoW
SetMenu
OffsetRect
TrackPopupMenu
GetMessageW
DefFrameProcW
DrawTextW
CreatePopupMenu
SystemParametersInfoW
ModifyMenuW
KillTimer
GetQueueStatus
EndPaint
GetFocus
GetIconInfo
AppendMenuW
CheckMenuItem
PeekMessageW
UnpackDDElParam
LoadMenuW
GetCapture
FillRect
DialogBoxIndirectParamW
OpenClipboard
SetWindowPlacement
ReleaseDC
SetTimer
GetPropW
GetClipboardViewer
SetWindowTextW
GetWindowThreadProcessId
GetSysColorBrush
TabbedTextOutW
CreateDialogIndirectParamW
MonitorFromPoint
GetSubMenu
SetRect
GetDialogBaseUnits
UnionRect
UnhookWindowsHookEx
MonitorFromWindow
DefWindowProcW
ScrollWindow
ShowOwnedPopups
GetMenuState
SetClipboardData
GetNextDlgGroupItem
CreateIcon
ShowWindow
GetClassNameW
GetSystemMetrics
SetFocus
SetScrollPos
MoveWindow
InvertRect
HideCaret
DialogBoxParamW
EqualRect
SetMenuItemBitmaps
InvalidateRgn
ClipCursor
ReuseDDElParam
SetWindowsHookExW
CallNextHookEx
TranslateMDISysAccel
EmptyClipboard
GetKeyNameTextW
SetWindowPos
LoadAcceleratorsW
GetAsyncKeyState
DrawIconEx
GetWindowTextW
RegisterWindowMessageW
GetMenuItemID
SetMenuDefaultItem
EndDeferWindowPos
GetWindowTextLengthW
AdjustWindowRectEx

gdi32

CreateDIBSection
DPtoLP
ScaleViewportExtEx
ExtSelectClipRgn
GetViewportOrgEx
CreateSolidBrush
RestoreDC
Rectangle
GetPixel
GetTextColor
GetBitmapBits
LineTo
GetNearestPaletteIndex
SetBkColor
ExcludeClipRect
TextOutW
OffsetRgn
GetStockObject
CreateRoundRectRgn
SetDIBitsToDevice
CreateHatchBrush
RoundRect
CreateDCW
FrameRgn
SetTextColor
CreateRectRgnIndirect
CreateFontW
BitBlt
SaveDC
Polyline
GetBoundsRect
EnumFontFamiliesW
CreateRectRgn
CreatePolygonRgn
SetWindowOrgEx
SelectPalette
GetBkMode
GetViewportExtEx
CreatePalette
Polygon
SetROP2
SetStretchBltMode
GetTextCharsetInfo
CreateEllipticRgn
SetLayout
GetDeviceCaps
GetTextExtentPointW
GetTextFaceW
SetPixelV
SetPolyFillMode
OffsetWindowOrgEx
GetWindowExtEx
CreateCompatibleDC
CreateBitmap
SetViewportExtEx
SetDIBColorTable
CreatePen
GetRgnBox
GetWindowOrgEx
GetBkColor
GetTextExtentPoint32W
CreateFontIndirectW
PatBlt
ExtTextOutW
OffsetViewportOrgEx
CombineRgn
StretchBlt
Ellipse
SelectClipRgn
SetWindowExtEx
PtVisible
DeleteDC
GetSystemPaletteEntries
GetCurrentObject
GetObjectW
CreatePatternBrush
SetBitmapBits
SetBkMode
SetDIBits
PtInRegion
SetPaletteEntries
MoveToEx
SetMapMode
GetLayout
GetObjectType
SetPixel
GetPaletteEntries
SetViewportOrgEx
SetRectRgn
IntersectClipRect
RealizePalette
DeleteObject
CreateDIBitmap
GetTextMetricsW
GetMapMode
ExtFloodFill
SelectObject
LPtoDP
ScaleWindowExtEx
RectVisible
FillRgn
CreateCompatibleBitmap
Escape
SetTextAlign
CopyMetaFileW
EnumFontFamiliesExW
GetClipBox

winspool.drv

ClosePrinter

comdlg32

GetSaveFileNameW
GetFileTitleW
GetOpenFileNameW

advapi32

RegQueryValueExA
RegCreateKeyExW
GetTokenInformation
RegQueryValueW
RegDeleteValueW
RegEnumKeyExW
AllocateAndInitializeSid
RegDeleteKeyW
RegOpenKeyExW
RegQueryInfoKeyW
OpenProcessToken
CheckTokenMembership
RegOpenKeyExA
RegSetValueExW
RegEnumKeyW
CryptGenRandom
RegQueryValueExW
FreeSid
RegEnumValueW
RegCloseKey

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteExW
SHGetDesktopFolder
SHAppBarMessage
DuplicateIcon
SHGetSpecialFolderLocation
DragQueryFileW
ExtractIconExW
Shell_NotifyIconW
SHGetFileInfoW
ShellExecuteW
DragFinish

ole32

CoFreeUnusedLibraries
CoGetClassObject
CoRevokeClassObject
OleTranslateAccelerator
OleDuplicateData
OleDestroyMenuDescriptor
CoUninitialize
CoRegisterMessageFilter
CoLockObjectExternal
IsAccelerator
CoTaskMemFree
CLSIDFromString
CoInitializeEx
CoTaskMemAlloc
OleLockRunning
ReleaseStgMedium
OleInitialize
CoCreateInstance
StringFromGUID2
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
DoDragDrop
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleCreateMenuDescriptor
RegisterDragDrop
RevokeDragDrop
CoInitialize
CreateILockBytesOnHGlobal
CoTaskMemRealloc
CoCreateGuid
OleUninitialize
StgOpenStorageOnILockBytes
CLSIDFromProgID
CoRegisterClassObject

oleaut32

VarBstrFromDate
SysAllocStringByteLen
SysAllocStringLen
VariantCopy
SysStringByteLen
OleCreateFontIndirect
VarBstrCmp
SafeArrayDestroy
SysStringLen
VarBstrCat
VariantInit
VarUI4FromStr
LoadTypeLi
SystemTimeToVariantTime
VariantClear
VariantTimeToSystemTime
VariantChangeType
UnRegisterTypeLi
SysFreeString
RegisterTypeLi
SysAllocString

comctl32

_TrackMouseEvent
ImageList_DragShowNolock
ImageList_DragMove
ImageList_GetIconSize
InitCommonControlsEx
ord17

shlwapi

PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
PathIsUNCW
PathFindFileNameW

rpcrt4

NdrProxyErrorHandler

Sections

.text
Size: 571KB - Virtual size: 570KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bzz
Size: - Virtual size: 5.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddd96d8e303f6ba0095b17f9ecd4af1f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

rpcrt4

Sections

.text Size: 571KB - Virtual size: 570KB

.bzz Size: - Virtual size: 5.2MB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 214KB - Virtual size: 213KB

.tls Size: - Virtual size: 101B

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 14KB - Virtual size: 14KB

.text
Size: 571KB - Virtual size: 570KB

.bzz
Size: - Virtual size: 5.2MB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 214KB - Virtual size: 213KB

.tls
Size: - Virtual size: 101B

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 14KB - Virtual size: 14KB