cedd68f8d893ea4e521b46631bc568d8ec495fa52edcf40fc6714243dd6faf51

Sharing

Copy URL Twitter E-mail

General

Target

cedd68f8d893ea4e521b46631bc568d8ec495fa52edcf40fc6714243dd6faf51
Size

760KB
MD5

e97061376924c0ec1b0849949c6c3490
SHA1

46987c9de5bb5dd94c377d3769da4ca408c16b02
SHA256

cedd68f8d893ea4e521b46631bc568d8ec495fa52edcf40fc6714243dd6faf51
SHA512

50ea15292df387b203ca13216e5bd76a815c6f396bb0eec006062c00e1c20771f229dce3670538a820df1884ec0708a2fd074516b78e37efc9d8e68d8f3dbcba
SSDEEP

12288:iRvbyyunHeYzVczlPIfKDVwcP0EAGDtYyMyZaTb+agW4JC3tYe8y:65ge3z92KDVwZCYyMyYTyjW4KYe8y

Score

N/A

Malware Config

Signatures

Files

cedd68f8d893ea4e521b46631bc568d8ec495fa52edcf40fc6714243dd6faf51
.exe windows x86

b371dabeb18f757ac472fb7251bef140

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

user32

GetMenuItemCount
SendDlgItemMessageW
SetScrollPos
DrawFocusRect
GetMenuStringW
SetCursor
SetMenu
ScreenToClient
ValidateRect
CloseClipboard
TranslateMessage
ReuseDDElParam
RegisterClassW
DrawMenuBar
GetForegroundWindow
GetClassInfoW
InvalidateRect
EndDialog
CharUpperW
ShowWindow
PtInRect
LoadIconW
GetClassInfoExW
DrawTextExW
SendMessageW
InflateRect
GetMonitorInfoW
IsWindowVisible
MapWindowPoints
GetSystemMenu
RegisterClassExW
MessageBoxW
SetClipboardData
UpdateWindow
WinHelpW
InsertMenuItemW
EmptyClipboard
GetAsyncKeyState
GetParent
SetForegroundWindow
CheckMenuItem
SetScrollInfo
ReleaseCapture
TrackMouseEvent
GetScrollBarInfo
GetWindowDC
DrawIconEx
GetMessageTime
IsClipboardFormatAvailable
KillTimer
MonitorFromWindow
GetWindowRect
RegisterClipboardFormatW
UnpackDDElParam
SetTimer
GetMenu
CopyIcon
CreatePopupMenu
NotifyWinEvent
CreateWindowExW
LockWindowUpdate
SetRectEmpty
DefWindowProcW
SetWindowLongW
PeekMessageW
GetDesktopWindow
SetActiveWindow
SendDlgItemMessageA
SetMenuDefaultItem
DestroyWindow
OpenClipboard
CallWindowProcW
SetWindowPos

wsock32

WSACleanup

oleaut32

LoadTypeLi

gdi32

SetBkMode
DeleteObject
GetTextExtentPoint32W
CreateRectRgnIndirect
Rectangle
CreateCompatibleBitmap
EndPage
TextOutW
GetStockObject
GetPixel
RestoreDC
SetPixel
MoveToEx
EndDoc
StartPage
StartDocW
SaveDC
CreateRoundRectRgn
CreateFontW
CreateFontIndirectW
GetObjectW
CreateBrushIndirect
CreatePolygonRgn
PtVisible
GetDIBits
ExtTextOutW
OffsetViewportOrgEx
LineTo
SelectObject

kernel32

TerminateProcess
GetCurrentProcess
GetSystemInfo
lstrcmpiA
CreateThread
TlsAlloc
HeapFree
GetTimeFormatA
InterlockedExchange
FormatMessageA
GetSystemDirectoryA
GetDateFormatA
LCMapStringA
CreateFileA
VirtualQuery
SetHandleCount
GetEnvironmentStringsW
GlobalLock
GetModuleFileNameA
GetLocaleInfoA
FindNextFileA
WideCharToMultiByte
FileTimeToLocalFileTime
SetErrorMode
GetFileTime
SetFileTime
HeapCreate
TlsFree
IsBadReadPtr
LCMapStringW
TlsGetValue
GetFileType
CreateFileMappingA
UnlockFile
QueryPerformanceCounter
DeleteCriticalSection
SizeofResource
GetProcAddress
GetFileSize
FlushFileBuffers
CompareStringA
WaitForSingleObject
GetCPInfo
SetEnvironmentVariableA
HeapReAlloc
RaiseException
FreeLibrary
GetUserDefaultLCID
GetModuleHandleA
VirtualAlloc
GetLocaleInfoW
GlobalUnlock
GetCommandLineW
SetConsoleCtrlHandler
CreateFileW
CloseHandle
SetFilePointer
GetStdHandle
TlsSetValue
GetVersionExA
lstrcmpA
MultiByteToWideChar
ReadFile
IsBadCodePtr
GetCurrentProcessId
HeapSize
LocalReAlloc
LeaveCriticalSection
HeapAlloc
GetOEMCP
IsValidCodePage
GetStringTypeW
FindFirstFileA
WriteFile
GetEnvironmentStrings
GetCurrentThread
ExitProcess
GetACP
Sleep
MapViewOfFile
FreeEnvironmentStringsW
GetCurrentThreadId
SetUnhandledExceptionFilter
GetModuleFileNameW
InitializeCriticalSection
GetStartupInfoA
VirtualProtect
GetTimeZoneInformation
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
LocalAlloc
EnterCriticalSection
IsBadWritePtr
LoadLibraryA
IsValidLocale
GlobalSize
FatalAppExitA
UnhandledExceptionFilter
VirtualFree
GetStringTypeExW
SetStdHandle
LockFile
SetLastError
GetStartupInfoW
CreateDirectoryW
GetVersion
FreeResource
GetStringTypeA
GlobalFree
GetTickCount
HeapDestroy
InterlockedIncrement
RtlUnwind
GetLastError
GetModuleHandleW
GlobalAlloc
GetCommandLineA
CreateMutexW
CompareStringW
MulDiv

shell32

ShellExecuteExA
ExtractIconA
SHGetFileInfoA
ord155
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHChangeNotify
ExtractIconExA
SHGetPathFromIDListA

mpr

WNetEnumResourceA
WNetGetUniversalNameA
WNetCloseEnum
WNetOpenEnumA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b371dabeb18f757ac472fb7251bef140

Headers

File Characteristics

Imports

version

comdlg32

user32

wsock32

oleaut32

gdi32

kernel32

shell32

mpr

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 456KB - Virtual size: 453KB

.data Size: 104KB - Virtual size: 100KB

.rsrc Size: 108KB - Virtual size: 106KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 456KB - Virtual size: 453KB

.data
Size: 104KB - Virtual size: 100KB

.rsrc
Size: 108KB - Virtual size: 106KB