1c56169ddb9bc1a82281e8da09339004c9ced7def3c8b51e50c5e79cc34ce186

Sharing

Copy URL Twitter E-mail

General

Target

1c56169ddb9bc1a82281e8da09339004c9ced7def3c8b51e50c5e79cc34ce186
Size

765KB
MD5

b5b1c87fc92c9e75a9ea4f49d6f027bc
SHA1

05af9a8ce44731abcb788fa9333ef1f7088e1977
SHA256

1c56169ddb9bc1a82281e8da09339004c9ced7def3c8b51e50c5e79cc34ce186
SHA512

aab5b75f33ee4e1f56976e4d6695693b2ab17614e600fdec61711e78f5d6482d0b2ce6e0543204ab89c72a3b41636a567d1e7337e365559cac6a62078ad302f5
SSDEEP

12288:UCsYxBCEWhuxlUuocakkXi7SCLZwyWJk1IY7TmOD5h3S4cM:LsYNWI/UuP7SCLZwXoXT9QM

Score

N/A

Malware Config

Signatures

Files

1c56169ddb9bc1a82281e8da09339004c9ced7def3c8b51e50c5e79cc34ce186
.exe windows x86

21d71469e1ce7c871935d2e488844c92

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSAStartup
WSACleanup
gethostname
gethostbyname

kernel32

GetTimeZoneInformation
GetSystemTime
GetLocalTime
RtlUnwind
HeapFree
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
CreateThread
ExitThread
GetACP
SetStdHandle
GetFileType
TerminateProcess
HeapSize
HeapReAlloc
SetErrorMode
HeapDestroy
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileTime
GetFileAttributesA
SizeofResource
GlobalSize
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetCurrentThread
FileTimeToLocalFileTime
VirtualFree
GetPrivateProfileIntA
GetWindowsDirectoryA
QueryPerformanceFrequency
MultiByteToWideChar
lstrcpyA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetCurrentDirectoryA
ExpandEnvironmentStringsA
WideCharToMultiByte
LoadLibraryA
GetProcAddress
FreeLibrary
QueryPerformanceCounter
lstrlenW
GetModuleFileNameA
FileTimeToDosDateTime
MoveFileA
SetFileAttributesA
WritePrivateProfileStringA
DeleteFileA
GlobalAlloc
GlobalFree
FindFirstFileA
GetPrivateProfileStringA
lstrcmpA
FindNextFileA
FindClose
lstrcmpiA
CreateDirectoryA
CreateFileA
GetFileSize
CloseHandle
OpenFile
CopyFileA
GetLastError
GlobalLock
GlobalUnlock
GetProfileStringA
FileTimeToSystemTime
SetLastError
GetThreadLocale
SetEndOfFile
GetFullPathNameA
GetVolumeInformationA
FlushFileBuffers
UnlockFile
LockFile
GetCurrentProcess
SetFilePointer
ReadFile
CreateEventA
DuplicateHandle
lstrcpynA
ResumeThread
SuspendThread
SetThreadPriority
InterlockedIncrement
SetEvent
FormatMessageA
GetProfileIntA
InterlockedDecrement
GetTickCount
GlobalAddAtomA
lstrcatA
GlobalGetAtomNameA
lstrlenA
GlobalFindAtomA
GlobalDeleteAtom
LoadResource
FindResourceA
GetModuleHandleA
InterlockedExchange
LockResource
RaiseException
CreateSemaphoreA
MulDiv
GetVersion
WaitForSingleObject
WriteFile
CreateMutexA
Sleep
ReleaseMutex
GetCurrentThreadId
CreateProcessA
WritePrivateProfileSectionA
GetEnvironmentStrings
GetPrivateProfileSectionA
OpenProcess
GetTempPathA
GlobalMemoryStatus
LocalAlloc
LocalFree
GetCurrentDirectoryA
HeapCreate

user32

LoadStringA
CharUpperA
GetWindowDC
BeginPaint
EndPaint
CharNextA
DefMDIChildProcA
GetAsyncKeyState
MapDialogRect
PostQuitMessage
ShowOwnedPopups
GetNextDlgGroupItem
MessageBeep
SetWindowContextHelpId
CopyAcceleratorTableA
GetDCEx
InvertRect
PostThreadMessageA
GetActiveWindow
CreateDialogIndirectParamA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetNextDlgTabItem
IsWindowEnabled
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
EqualRect
GetScrollInfo
GetScrollRange
GetScrollPos
GetTopWindow
MessageBoxA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
DefFrameProcA
DrawMenuBar
GetWindowTextLengthA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
SetWindowPos
IntersectRect
GetWindowPlacement
SetMenuItemInfoA
SetRect
GrayStringA
DrawTextA
TabbedTextOutA
GetSystemMenu
RedrawWindow
GetClassLongA
FillRect
BeginDeferWindowPos
EndDeferWindowPos
GetSysColorBrush
EndDialog
wsprintfA
DestroyMenu
OffsetRect
InflateRect
GetSysColor
MapVirtualKeyA
keybd_event
IsWindow
GetPropA
GetLastActivePopup
SetMenu
UpdateWindow
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
EnumWindows
GetWindowThreadProcessId
UnregisterHotKey
RegisterHotKey
SetForegroundWindow
SetWindowLongA
SystemParametersInfoA
GetDC
ReleaseDC
GetSystemMetrics
IsZoomed
InvalidateRect
GetClipboardData
SetMenuDefaultItem
DeleteMenu
InsertMenuA
SetPropA
LoadImageA
RegisterWindowMessageA
GetClassNameA
GetWindowTextA
IsIconic
PtInRect
GetDesktopWindow
ReleaseCapture
TranslateMDISysAccel
ReuseDDElParam
BringWindowToTop
UnpackDDElParam
GetMessageA
TranslateAcceleratorA
LoadAcceleratorsA
wvsprintfA
TranslateMessage
ValidateRect
GetDlgItem
TrackPopupMenu
GetKeyState
SetCapture
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
ModifyMenuA
ScreenToClient
LockWindowUpdate
RegisterClipboardFormatA
KillTimer
SetTimer
GetForegroundWindow
GetWindow
GetClientRect
LoadIconA
LoadMenuA
GetCursorPos
WindowFromPoint
IsChild
GetMenuItemCount
GetMenuItemInfoA
GetMenuState
GetMenuItemID
EnableMenuItem
GetParent
UnionRect
IsRectEmpty
SetRectEmpty
GetWindowLongA
ShowWindow
CreatePopupMenu
GetWindowRect
CopyRect
ClientToScreen
GetSubMenu
AppendMenuA
IsMenu
CheckMenuItem
GetMenuStringA
DestroyIcon
GetCursor
PostMessageA
SetCursor
LoadCursorA
EnableWindow
SendMessageA
LoadBitmapA
IsWindowVisible
SetParent
DeferWindowPos
HideCaret
ShowCaret
UnregisterClassA
DrawFocusRect
DefDlgProcA
ExcludeUpdateRgn
IsWindowUnicode

gdi32

CreateDIBitmap
GetTextExtentPointA
GetTextExtentPoint32A
SetMapMode
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SelectClipRgn
ExcludeClipRect
ScaleWindowExtEx
IntersectClipRect
SetTextAlign
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
CreateSolidBrush
GetBkColor
GetTextMetricsA
LPtoDP
GetMapMode
DPtoLP
CombineRgn
CopyMetaFileA
SetRectRgn
SetBkMode
RestoreDC
SaveDC
GetStockObject
SetViewportOrgEx
CreateRectRgnIndirect
PatBlt
SetBkColor
SetTextColor
GetClipBox
CreateFontA
GetCharWidthA
SelectObject
StretchDIBits
DeleteDC
Escape
TextOutA
RectVisible
PtVisible
CreateRectRgn
CreateCompatibleBitmap
BitBlt
GetTextColor
GetDeviceCaps
GetObjectA
ExtTextOutA
CreateCompatibleDC
EnumFontFamiliesA
CreateBitmap
DeleteObject
CreateFontIndirectA

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegEnumKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyA

shell32

DragAcceptFiles
SHGetPathFromIDListA
Shell_NotifyIconA
DragFinish
SHGetDesktopFolder
SHGetMalloc
SHGetSpecialFolderLocation
ShellExecuteExA
ShellExecuteA
SHGetFileInfoA
DragQueryFileA

comctl32

ImageList_BeginDrag
ord17
ImageList_AddMasked
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_DragMove
ImageList_EndDrag
ImageList_DragLeave
ImageList_DragEnter
ImageList_GetIconSize
ImageList_DrawIndirect
ImageList_Destroy
ImageList_Create
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA

oledlg

ord8

ole32

RevokeDragDrop
CoLockObjectExternal
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
OleGetClipboard
ReleaseStgMedium
CoCreateInstance
OleUninitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleDuplicateData
OleInitialize
CLSIDFromString
CoGetClassObject
CLSIDFromProgID
CoFreeUnusedLibraries
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
RegisterDragDrop
CoUninitialize
CoInitialize

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SafeArrayGetDim
VariantChangeType
SysAllocStringByteLen
VariantCopy
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
VariantClear
SysAllocString
SysFreeString

wininet

FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
GetUrlCacheEntryInfoA
DeleteUrlCacheEntry
FindCloseUrlCache
InternetSetOptionA
InternetQueryOptionA
GetUrlCacheEntryInfoExA

Exports

Exports

?interfaceMap@CCustomControlSite@@1UAFX_INTERFACEMAP@@B

Sections

.text
Size: 500KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

..
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

21d71469e1ce7c871935d2e488844c92

Headers

File Characteristics

Imports

wsock32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

Exports

Exports

Sections

.text Size: 500KB - Virtual size: 500KB

.rdata Size: 132KB - Virtual size: 132KB

.data Size: 22KB - Virtual size: 51KB

.rsrc Size: 85KB - Virtual size: 85KB

.. Size: 23KB - Virtual size: 24KB

.text
Size: 500KB - Virtual size: 500KB

.rdata
Size: 132KB - Virtual size: 132KB

.data
Size: 22KB - Virtual size: 51KB

.rsrc
Size: 85KB - Virtual size: 85KB

..
Size: 23KB - Virtual size: 24KB