c19ac9aa898cfeb0313c9a4d82a3f3277994afecc966fca13218e3e419fc37d1

Sharing

Copy URL Twitter E-mail

General

Target

c19ac9aa898cfeb0313c9a4d82a3f3277994afecc966fca13218e3e419fc37d1
Size

824KB
MD5

a86c074c00bfedee533860368fa7ba32
SHA1

365513df14160e376440fd3f151ffcddfedf0808
SHA256

c19ac9aa898cfeb0313c9a4d82a3f3277994afecc966fca13218e3e419fc37d1
SHA512

6415a4e4768094669d32e72e7734a04a8483364431b9c5020373335b526305c835f321ed503f7a796b87cdb882c30a9d37fd77009eb889c9e01d6af355b133f0
SSDEEP

12288:LAoHxoXH4CdmgnnNTWKfFGlGiy6uAPoOjipVYao+5fW:MoCYCcgn1WK6GiyXfOjKWaoE

Score

N/A

Malware Config

Signatures

Files

c19ac9aa898cfeb0313c9a4d82a3f3277994afecc966fca13218e3e419fc37d1
.exe windows x86

01da2753e236a283adf8b820e38c3e52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
ExitThread
CreateThread
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapAlloc
HeapFree
GetCommandLineA
ExitProcess
HeapReAlloc
TerminateProcess
HeapSize
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
FileTimeToLocalFileTime
SetErrorMode
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
InterlockedIncrement
GlobalFlags
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
InterlockedDecrement
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
SetLastError
MulDiv
GlobalLock
GlobalUnlock
RaiseException
CompareStringA
CompareStringW
MultiByteToWideChar
GetVersion
CreateSemaphoreA
WritePrivateProfileStringA
lstrcpynA
GetShortPathNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryA
GetProcAddress
DeleteCriticalSection
CopyFileA
lstrcmpA
GetFileAttributesA
FindFirstFileA
FindClose
FindNextFileA
GetFileSizeEx
ResetEvent
SetEvent
SetFilePointerEx
PulseEvent
FileTimeToSystemTime
lstrcmpiA
CreateDirectoryA
GetSystemDirectoryA
lstrcatA
InitializeCriticalSection
CreateEventA
GetTempPathA
GetTempFileNameA
lstrlenA
GetStartupInfoA
CreateProcessA
WaitForSingleObject
GetModuleHandleA
WriteFile
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
ReleaseSemaphore
EnterCriticalSection
LeaveCriticalSection
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExA
CreateFileA
GetLastError
FormatMessageA
LocalFree
GetFileSize
GlobalAlloc
GlobalFree
ReadFile
GetModuleFileNameA
Sleep
GetTickCount
OutputDebugStringA
CloseHandle

user32

GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
SetParent
PostThreadMessageA
KillTimer
SetRect
ReleaseCapture
GetSysColorBrush
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DestroyMenu
InflateRect
SetRectEmpty
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageA
MapWindowPoints
GetKeyState
IsWindowVisible
UpdateWindow
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
SetScrollInfo
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
GetMenuState
CopyRect
GetWindowTextLengthA
GetWindowTextA
GetFocus
GetParent
SetFocus
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowLongA
SetWindowTextA
GetWindowLongA
IsDialogMessageA
IsDlgButtonChecked
SendDlgItemMessageA
GetDlgItem
UnregisterClassA
CharUpperA
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
IsRectEmpty
CharNextA
SetForegroundWindow
GetDesktopWindow
GetWindowRect
IsZoomed
IsIconic
GetSystemMenu
AppendMenuA
DrawIcon
GetDlgCtrlID
SetWindowPos
ShowScrollBar
SetScrollRange
SetCapture
GetMessagePos
WindowFromPoint
SetScrollPos
GetScrollPos
ReleaseDC
GetDC
PostMessageA
CheckMenuItem
PtInRect
SetCursor
GetSystemMetrics
LoadCursorA
LoadIconA
SetTimer
GetClientRect
LoadMenuA
GetMenuItemID
GetMenu
GetMenuItemCount
GetSubMenu
GetCursorPos
EnableWindow
InvalidateRect
SendMessageA
SetActiveWindow
MessageBoxA
wsprintfA
IsWindow
TrackPopupMenu

gdi32

CreatePatternBrush
GetStockObject
SetRectRgn
CombineRgn
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
IntersectClipRect
ExcludeClipRect
SetMapMode
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
DeleteObject
RestoreDC
SaveDC
ExtTextOutA
GetCharWidthA
StretchDIBits
DeleteDC
GetTextExtentPoint32A
GetTextMetricsA
SelectObject
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
PatBlt
CreateRectRgnIndirect
CreateFontA
BitBlt
CreateCompatibleDC
GetObjectA
CreateCompatibleBitmap
CreateDIBitmap

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

SHGetFileInfoA
SHGetPathFromIDListA
SHBrowseForFolderA
Shell_NotifyIconA
ExtractAssociatedIconA

comctl32

ImageList_ReplaceIcon
ord17
ImageList_Destroy
ImageList_Create

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize

oleaut32

OleCreateFontIndirect
SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysFreeString

ws2_32

send
setsockopt
socket
htons
WSAGetLastError
closesocket
connect
gethostbyname
inet_addr
WSAIoctl
WSAStartup
ntohs
recv

Sections

.text
Size: 316KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 412KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01da2753e236a283adf8b820e38c3e52

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 316KB - Virtual size: 312KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 16KB - Virtual size: 27KB

.rsrc Size: 412KB - Virtual size: 408KB

.text
Size: 316KB - Virtual size: 312KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 16KB - Virtual size: 27KB

.rsrc
Size: 412KB - Virtual size: 408KB