178f2e199db88e96d1e2b5beed2c383728d3ff2b3e1c999ec4c83476ad63639e

Sharing

Copy URL Twitter E-mail

General

Target

178f2e199db88e96d1e2b5beed2c383728d3ff2b3e1c999ec4c83476ad63639e
Size

4.4MB
MD5

35e622a4bc1106bb4e5fab0d4b4e510d
SHA1

e7a707839ccadafe7ecbb6f52f244465032aa64d
SHA256

178f2e199db88e96d1e2b5beed2c383728d3ff2b3e1c999ec4c83476ad63639e
SHA512

04221b88069b27c2ee0e9f582294b14c4807e664ca827f9ebd991763a570697decf87b7cc2457bd45c9d56c1a0b92f951e8ca90488633484eeff1175f43f6b94
SSDEEP

98304:L/cBY6bPAmChUc3X5B8ScYED2d0+vz5p2WeMJxcz2HxlKoSvTqAWqn:L/cBY6TTsjX5kYIH+vBe6m2zKorqn

Score

N/A

Malware Config

Signatures

Files

178f2e199db88e96d1e2b5beed2c383728d3ff2b3e1c999ec4c83476ad63639e
.exe windows x86

3f7ddeae35258786d110c43accbf6224

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
GetProcAddress
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreW
FreeResource
FindResourceW
LoadResource
GlobalLock
GlobalAlloc
SizeofResource
GlobalUnlock
GlobalFree
LockResource
MulDiv
InterlockedDecrement
InterlockedIncrement
LocalFree
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
CreateFileA
GetStringTypeW
GetConsoleMode
GetConsoleCP
GetLocaleInfoA
LoadLibraryA
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
ExitProcess
HeapSize
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
RtlUnwind
RaiseException
HeapReAlloc
CreateThread
ExitThread
GetStartupInfoA
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetFileAttributesW
DeleteFileW
GetLongPathNameW
GetTempPathW
lstrlenW
GetFileAttributesW
CreateDirectoryW
GetTempFileNameW
GetFullPathNameW
MultiByteToWideChar
WideCharToMultiByte
ResumeThread
GetCurrentThreadId
GetTickCount
WaitForSingleObject
GetLastError
WriteFile
SetFileTime
SetEndOfFile
GetFileSize
lstrcmpW
CreateFileW
ReadFile
SetFilePointer
CloseHandle
WinExec
CreateEventW
ResetEvent
GetModuleFileNameW
Sleep
GetModuleHandleW
SetEvent
GetStringTypeA
CreateProcessW

user32

CreateCaret
HideCaret
ClientToScreen
CreateAcceleratorTableW
GetSysColor
ShowCaret
InvalidateRgn
SetWindowPos
SetWindowLongW
GetWindowLongW
PostQuitMessage
KillTimer
DestroyAcceleratorTable
GetWindow
SetCaretPos
FillRect
DrawTextW
DrawIconEx
CharPrevW
RedrawWindow
MoveWindow
SetWindowTextW
MapWindowPoints
ShowWindow
SystemParametersInfoW
GetWindowTextW
GetClientRect
GetParent
SetTimer
OffsetRect
SetCursor
CharNextW
IntersectRect
IsRectEmpty
LoadImageW
LoadCursorW
GetClassInfoExW
SetPropW
RegisterClassExW
RegisterClassW
EnableWindow
DestroyIcon
GetPropW
CallWindowProcW
DefWindowProcW
CharNextA
LoadStringW
LoadBitmapW
EndPaint
DestroyWindow
UpdateLayeredWindow
SetWindowRgn
ScreenToClient
GetMessageW
IsIconic
IsChild
SetCapture
PostMessageW
GetKeyState
GetFocus
SetFocus
BeginPaint
PtInRect
GetUpdateRect
GetDC
TranslateMessage
InvalidateRect
ReleaseDC
MonitorFromWindow
GetCursorPos
IsWindow
CreateWindowExW
ReleaseCapture
SendMessageW
GetMonitorInfoW
DispatchMessageW
GetWindowTextLengthW
GetWindowRect
IsZoomed

gdi32

CreateRectRgnIndirect
CombineRgn
Rectangle
GetObjectW
CreateRoundRectRgn
CreateRectRgn
CreatePen
GetStockObject
CreateFontIndirectW
CreateDIBSection
DeleteDC
GetTextMetricsW
CreateCompatibleDC
BitBlt
GetDeviceCaps
CreateSolidBrush
TextOutW
GetCharABCWidthsW
ExtTextOutW
SelectClipRgn
SetBkMode
SetBkColor
StretchBlt
SetTextColor
SelectObject
SetStretchBltMode
GetTextExtentPoint32W
SetBitmapBits
GetBitmapBits
GetClipBox
CreateCompatibleBitmap
ExtSelectClipRgn
RoundRect
DeleteObject

advapi32

RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey

shell32

SHBrowseForFolderW
ShellExecuteW
SHGetPathFromIDListW

ole32

OleLockRunning
CreateStreamOnHGlobal
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleUninitialize
OleInitialize

oleaut32

OleLoadPicture
SysFreeString
SysAllocString

wininet

HttpQueryInfoW
InternetReadFile
InternetOpenUrlW
InternetCloseHandle
InternetSetOptionW
InternetOpenW

riched20

ord4

comctl32

_TrackMouseEvent

msimg32

AlphaBlend

Sections

.text
Size: 464KB - Virtual size: 461KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f7ddeae35258786d110c43accbf6224

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

wininet

riched20

comctl32

msimg32

Sections

.text Size: 464KB - Virtual size: 461KB

.rdata Size: 92KB - Virtual size: 88KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 96KB - Virtual size: 95KB

.text
Size: 464KB - Virtual size: 461KB

.rdata
Size: 92KB - Virtual size: 88KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 96KB - Virtual size: 95KB