c4f749138bfd882971fcef7fd0cb8e22b416932dde32d926f891fd12ac73b00d

Sharing

Copy URL Twitter E-mail

General

Target

c4f749138bfd882971fcef7fd0cb8e22b416932dde32d926f891fd12ac73b00d
Size

288KB
MD5

de6b8ca53cc379afc4ba620a12f42fad
SHA1

0edc7b0bed42acab924999be77783abfc8208317
SHA256

c4f749138bfd882971fcef7fd0cb8e22b416932dde32d926f891fd12ac73b00d
SHA512

bcb5dcb13aed395cfc8f3a5375606256076f18a528bb84f53fbb1dcb70b6e06b31e7e1cf2b8295e8c499c7e20ef2e093bdf3746dc206b71426106533e10ec0ab
SSDEEP

3072:G0vN4DwbWZXbyvGJjC4vtKo3wId3MbG8hi17Vz2ZDAfuK7Qo40Bdf8lYBc48PKqj:GqRWZXbJJjnvnAm8bG8hiBEL03ce

Score

N/A

Malware Config

Signatures

Files

c4f749138bfd882971fcef7fd0cb8e22b416932dde32d926f891fd12ac73b00d
.exe windows x86

5d8daaee282418f5f1fca629bd134331

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
GetStartupInfoA
GetCommandLineA
TerminateProcess
HeapReAlloc
ExitThread
CreateThread
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetCPInfo
LCMapStringA
LCMapStringW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetDriveTypeA
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
SetErrorMode
GetFileTime
GetFileAttributesA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GlobalFlags
InterlockedIncrement
GetCurrentDirectoryA
WritePrivateProfileStringA
FreeResource
GlobalFindAtomA
lstrcatA
lstrcmpW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
GlobalGetAtomNameA
GlobalAddAtomA
SuspendThread
SetEvent
SetThreadPriority
InterlockedDecrement
GlobalFree
MulDiv
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
GetLocalTime
GetCurrentProcess
SetLastError
LoadLibraryA
GetProcAddress
FreeLibrary
GetModuleFileNameA
GetComputerNameA
WinExec
CreateEventA
GetSystemDirectoryA
Sleep
WaitForSingleObject
CreateToolhelp32Snapshot
Process32First
OpenProcess
GetPriorityClass
CloseHandle
Process32Next
GetSystemTime
SystemTimeToTzSpecificLocalTime
CompareStringW
CompareStringA
ResumeThread
lstrlenA
lstrcmpiA
GetVersion
FindResourceA
LoadResource
LockResource
SizeofResource
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetSystemTimeAsFileTime
GetVersionExA

user32

GetMenuItemInfoA
InflateRect
LoadCursorA
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
ClientToScreen
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetWindowTextA
IsDialogMessageA
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetWindowTextA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
RegisterClassA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
PtInRect
GetSystemMetrics
RegisterWindowMessageA
LoadMenuA
DestroyMenu
GetClassNameA
SetWindowPos
WinHelpA
SetFocus
EqualRect
GetDlgItem
SetWindowLongA
GetDlgCtrlID
GetMenu
UnpackDDElParam
ReuseDDElParam
GetClassInfoA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
InvalidateRect
UpdateWindow
IsIconic
InsertMenuItemA
CreatePopupMenu
IntersectRect
OffsetRect
SetRectEmpty
CopyRect
BringWindowToTop
SetMenu
ShowWindow
IsWindow
GetWindow
TranslateAcceleratorA
SetMenuItemBitmaps
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
KillTimer
WaitMessage
PeekMessageA
DispatchMessageA
UnhookWindowsHookEx
GetMenuState
DefWindowProcA
GetMenuItemID
GetMenuItemCount
GetSubMenu
UnregisterClassA
FindWindowA
SetForegroundWindow
SendMessageA
SetTimer
GetClientRect
ExitWindowsEx
EnableWindow
PostMessageA
wsprintfA
PostQuitMessage
GetDesktopWindow
PostThreadMessageA
LoadIconA
CharUpperA
GetSysColor

gdi32

CreateFontIndirectA
GetTextExtentPoint32A
PtVisible
CreateSolidBrush
GetPixel
BitBlt
GetStockObject
CreatePatternBrush
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
GetDeviceCaps
SetMapMode
SetBkMode
RestoreDC
SaveDC
DeleteObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
RectVisible

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
InitiateSystemShutdownA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegEnumKeyA
RegOpenKeyA

shell32

DragQueryFileA
DragFinish

comctl32

ImageList_Draw
ImageList_GetImageInfo
ord17
ImageList_Destroy

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oleaut32

VariantClear
VariantChangeType
VariantInit

urlmon

URLDownloadToFileA

ws2_32

bind
sendto
recvfrom
send
htonl
WSAStartup
WSACleanup
socket
WSAAsyncSelect
closesocket
accept
recv
select
__WSAFDIsSet
WSASetLastError
ioctlsocket
WSAGetLastError
setsockopt
gethostname
gethostbyname
inet_addr
htons
connect

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d8daaee282418f5f1fca629bd134331

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

urlmon

ws2_32

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 8KB - Virtual size: 20KB

.rsrc Size: 84KB - Virtual size: 82KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 8KB - Virtual size: 20KB

.rsrc
Size: 84KB - Virtual size: 82KB