2c1bb92c42a9b1bc15b610a78063fb610a606fe962752ae69e39ee1cf52a5e0f

Sharing

Copy URL

Twitter E-mail

General

Target

2c1bb92c42a9b1bc15b610a78063fb610a606fe962752ae69e39ee1cf52a5e0f
Size

1.1MB
MD5

361c2f53db2d71c1a3683efd71649b0c
SHA1

88b8d546172ad770f1a5d6a7dce9557c48ac066a
SHA256

2c1bb92c42a9b1bc15b610a78063fb610a606fe962752ae69e39ee1cf52a5e0f
SHA512

e23cd642ae69cb52e52ac3aefaece2e25b330026e4af79d8dff3398ea6ffe39b60ce465c2a06ed5ea28cc8b57dfbae2e468bdf615d1559bc439ebb1934e9ca74
SSDEEP

24576:sbpJlh1ed4BYFDwsrJvhQYt+1Tij4bzE1q9ey7:F/DwIKYt4TiNJy7

Score

N/A

Malware Config

Signatures

Files

2c1bb92c42a9b1bc15b610a78063fb610a606fe962752ae69e39ee1cf52a5e0f
.exe windows x86

3f7ddeae35258786d110c43accbf6224

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
GetProcAddress
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreW
FreeResource
FindResourceW
LoadResource
GlobalLock
GlobalAlloc
SizeofResource
GlobalUnlock
GlobalFree
LockResource
MulDiv
InterlockedDecrement
InterlockedIncrement
LocalFree
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
CreateFileA
GetStringTypeW
GetConsoleMode
GetConsoleCP
GetLocaleInfoA
LoadLibraryA
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
ExitProcess
HeapSize
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
RtlUnwind
RaiseException
HeapReAlloc
CreateThread
ExitThread
GetStartupInfoA
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetFileAttributesW
DeleteFileW
GetLongPathNameW
GetTempPathW
lstrlenW
GetFileAttributesW
CreateDirectoryW
GetTempFileNameW
GetFullPathNameW
MultiByteToWideChar
WideCharToMultiByte
ResumeThread
GetCurrentThreadId
GetTickCount
WaitForSingleObject
GetLastError
WriteFile
SetFileTime
SetEndOfFile
GetFileSize
lstrcmpW
CreateFileW
ReadFile
SetFilePointer
CloseHandle
WinExec
CreateEventW
ResetEvent
GetModuleFileNameW
Sleep
GetModuleHandleW
SetEvent
GetStringTypeA
CreateProcessW

user32

CreateCaret
HideCaret
ClientToScreen
CreateAcceleratorTableW
GetSysColor
ShowCaret
InvalidateRgn
SetWindowPos
SetWindowLongW
GetWindowLongW
PostQuitMessage
KillTimer
DestroyAcceleratorTable
GetWindow
SetCaretPos
FillRect
DrawTextW
DrawIconEx
CharPrevW
RedrawWindow
MoveWindow
SetWindowTextW
MapWindowPoints
ShowWindow
SystemParametersInfoW
GetWindowTextW
GetClientRect
GetParent
SetTimer
OffsetRect
SetCursor
CharNextW
IntersectRect
IsRectEmpty
LoadImageW
LoadCursorW
GetClassInfoExW
SetPropW
RegisterClassExW
RegisterClassW
EnableWindow
DestroyIcon
GetPropW
CallWindowProcW
DefWindowProcW
CharNextA
LoadStringW
LoadBitmapW
EndPaint
DestroyWindow
UpdateLayeredWindow
SetWindowRgn
ScreenToClient
GetMessageW
IsIconic
IsChild
SetCapture
PostMessageW
GetKeyState
GetFocus
SetFocus
BeginPaint
PtInRect
GetUpdateRect
GetDC
TranslateMessage
InvalidateRect
ReleaseDC
MonitorFromWindow
GetCursorPos
IsWindow
CreateWindowExW
ReleaseCapture
SendMessageW
GetMonitorInfoW
DispatchMessageW
GetWindowTextLengthW
GetWindowRect
IsZoomed

gdi32

CreateRectRgnIndirect
CombineRgn
Rectangle
GetObjectW
CreateRoundRectRgn
CreateRectRgn
CreatePen
GetStockObject
CreateFontIndirectW
CreateDIBSection
DeleteDC
GetTextMetricsW
CreateCompatibleDC
BitBlt
GetDeviceCaps
CreateSolidBrush
TextOutW
GetCharABCWidthsW
ExtTextOutW
SelectClipRgn
SetBkMode
SetBkColor
StretchBlt
SetTextColor
SelectObject
SetStretchBltMode
GetTextExtentPoint32W
SetBitmapBits
GetBitmapBits
GetClipBox
CreateCompatibleBitmap
ExtSelectClipRgn
RoundRect
DeleteObject

advapi32

RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey

shell32

SHBrowseForFolderW
ShellExecuteW
SHGetPathFromIDListW

ole32

OleLockRunning
CreateStreamOnHGlobal
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleUninitialize
OleInitialize

oleaut32

OleLoadPicture
SysFreeString
SysAllocString

wininet

HttpQueryInfoW
InternetReadFile
InternetOpenUrlW
InternetCloseHandle
InternetSetOptionW
InternetOpenW

riched20

ord4

comctl32

_TrackMouseEvent

msimg32

AlphaBlend

Sections

.text
Size: 464KB - Virtual size: 461KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f7ddeae35258786d110c43accbf6224

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

wininet

riched20

comctl32

msimg32

Sections

.text Size: 464KB - Virtual size: 461KB

.rdata Size: 92KB - Virtual size: 88KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 464KB - Virtual size: 461KB

.rdata
Size: 92KB - Virtual size: 88KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 60KB - Virtual size: 59KB