f3399919f9591170ea1a72bab52309662a8c400246981a90eb387b46b9ce3c35

Sharing

Copy URL Twitter E-mail

General

Target

f3399919f9591170ea1a72bab52309662a8c400246981a90eb387b46b9ce3c35
Size

396KB
MD5

0ac1f9be0fc63a85fb2ee24bef3d800f
SHA1

58fd1617be7f47ef4b7c9dc72aae7e8d79e87535
SHA256

f3399919f9591170ea1a72bab52309662a8c400246981a90eb387b46b9ce3c35
SHA512

0d0e8cd817200ae131b904d643c93b0bec8051acdcec06b885ec90956f7cbaa88cee01516186b51d058797e80758411daad96ea3d18a2bcb92bd61f148297ac3
SSDEEP

6144:KlRuJHiy1A3Xg0CAkh5H+nEYilWkbIKPFvvmmMGcjF9an01nPek0r:KlR+j1+nEYilxIBm4F9c0VF

Score

N/A

Malware Config

Signatures

Files

f3399919f9591170ea1a72bab52309662a8c400246981a90eb387b46b9ce3c35
.exe windows x86

3888c768fa71dea9032e38b70d9c6571

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipCreateBitmapFromHBITMAP
GdipSaveImageToFile
GdipDisposeImage
GdipGetImageEncodersSize
GdipGetImageEncoders
GdiplusShutdown
GdiplusStartup

kernel32

GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
WritePrivateProfileStringA
GetCurrentDirectoryA
GetProcessVersion
GetCPInfo
GetOEMCP
SizeofResource
SetErrorMode
RtlUnwind
CreateThread
ExitThread
HeapFree
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
GetStartupInfoA
GetCommandLineA
RaiseException
SetStdHandle
GetFileType
HeapReAlloc
HeapSize
UnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
LCMapStringA
TlsAlloc
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
MultiByteToWideChar
WideCharToMultiByte
SetLocaleInfoA
WriteProfileStringA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetProfileIntA
GetProfileStringA
CreateDirectoryA
GetDiskFreeSpaceExA
GetSystemDirectoryA
GetVersion
CloseHandle
Process32Next
Process32First
CreateToolhelp32Snapshot
Sleep
WinExec
GetTickCount
DeleteFileA
lstrlenA
GlobalUnlock
GlobalFree
GlobalLock
GlobalAlloc
GetModuleFileNameA
LoadLibraryA
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
GetFileTime
GetFileSize
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetThreadLocale
GetFullPathNameA
lstrcpynA
lstrcatA
FreeLibrary
GetProcAddress
GetACP
lstrcpyA
CreateFileA
InterlockedExchange
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
FormatMessageA
LocalFree
SetLastError
InterlockedDecrement
InterlockedIncrement
FindResourceA
LoadResource
LockResource
GlobalGetAtomNameA
GetModuleHandleA
MulDiv
lstrlenW
DeviceIoControl
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetShortPathNameA
GetLastError
WaitForSingleObject
TerminateProcess
FindFirstFileA
FindClose
GlobalMemoryStatus
LCMapStringW

user32

LoadCursorA
PtInRect
GetSysColorBrush
CharNextA
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
InflateRect
RegisterClipboardFormatA
PostThreadMessageA
DestroyMenu
LoadStringA
MapDialogRect
SetWindowContextHelpId
EndDialog
CreateDialogIndirectParamA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetActiveWindow
ScreenToClient
CopyRect
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
CharUpperA
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
SetForegroundWindow
SetWindowLongA
SetWindowPos
IntersectRect
GetWindowPlacement
OffsetRect
SystemParametersInfoA
GetWindow
SetFocus
GetDlgCtrlID
IsChild
InvalidateRect
AdjustWindowRectEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
IsWindowUnicode
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
SetCursor
PostQuitMessage
EnumWindows
IsWindowEnabled
GetWindowLongA
GetWindowDC
ReleaseDC
GetForegroundWindow
GetWindowTextA
GetWindowThreadProcessId
MessageBoxA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetDC
GetCapture
ClientToScreen
RegisterWindowMessageA
SendMessageTimeoutA
EnumChildWindows
GetClassNameA
GetWindowRect
WindowFromPoint
EqualRect
UpdateWindow
FindWindowExA
IsWindow
IsWindowVisible
PostMessageA
KillTimer
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
UnregisterHotKey
GetSystemMenu
AppendMenuA
SendMessageA
SetTimer
LoadIconA
EnableWindow
FindWindowA
GetDesktopWindow
GetMessageA
TranslateMessage
DispatchMessageA
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
CallWindowProcA

gdi32

SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetStockObject
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextColor
GetBkColor
GetMapMode
PatBlt
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
DPtoLP
LPtoDP
CreateBitmap
GetDeviceCaps
CreateCompatibleDC
CreateCompatibleBitmap
GetTextExtentPointA
CreateDIBitmap
BitBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

comctl32

ord17

oledlg

ord8

ole32

OleFlushClipboard
CoInitialize
CoUninitialize
StgOpenStorage
StgIsStorageFile
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringByteLen
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
VariantChangeType
VariantCopy
SysAllocStringLen
VariantClear
SysFreeString

wsock32

send
recv
closesocket
setsockopt
connect
htons
socket
gethostbyname
getprotobyname
inet_ntoa
ntohs
ioctlsocket
WSACleanup
WSAStartup

oleacc

ObjectFromLresult

wininet

InternetCanonicalizeUrlA
InternetCrackUrlA

Sections

.text
Size: 308KB - Virtual size: 307KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 40.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3888c768fa71dea9032e38b70d9c6571

Headers

File Characteristics

Imports

gdiplus

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

oleacc

wininet

Sections

.text Size: 308KB - Virtual size: 307KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 16KB - Virtual size: 40.0MB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 308KB - Virtual size: 307KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 16KB - Virtual size: 40.0MB

.rsrc
Size: 8KB - Virtual size: 7KB