c619a09666625831ffadaa0e0069da06cf0ab95d891134978d795e8139b9dd91

Sharing

Copy URL Twitter E-mail

General

Target

c619a09666625831ffadaa0e0069da06cf0ab95d891134978d795e8139b9dd91
Size

882KB
MD5

f44ac5eede5e52180d0b295d25338e3f
SHA1

fd506ad5b0a76f02e5be20540a90eb0c39873d64
SHA256

c619a09666625831ffadaa0e0069da06cf0ab95d891134978d795e8139b9dd91
SHA512

7207c663d2ebc830f37aee1b5de5ea2aa8590ddf463be73b077b68baa36a5cc4c2ca2ec6dcecf3257fbae9eb308d694633d7ede4e6d51075d6eb34f2f6f45e6f
SSDEEP

12288:L5+uaaucjvepukh6atxj4k4U6C0hlxEyDaUu+wh+pcdjLESItV2:oupu6eph6et4k4UglxXm+zud0c

Score

N/A

Malware Config

Signatures

Files

c619a09666625831ffadaa0e0069da06cf0ab95d891134978d795e8139b9dd91
.exe windows x86

21ea39e40337fcf5b25a57138dab8786

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

urlmon

CreateURLMoniker
RegisterBindStatusCallback

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

wininet

InternetReadFile
HttpQueryInfoA
HttpSendRequestA
InternetCloseHandle
HttpOpenRequestA
InternetConnectA
InternetOpenA

kernel32

GetVolumeInformationA
GetDriveTypeA
GetModuleFileNameA
GetSystemDirectoryA
HeapAlloc
FlushInstructionCache
GetCurrentProcess
GlobalFree
GlobalUnlock
GlobalAlloc
GlobalLock
SetFileAttributesA
GetFileAttributesA
CopyFileA
WriteFile
CloseHandle
CreateFileA
FreeLibrary
GetProcAddress
LoadLibraryA
OpenProcess
EnterCriticalSection
LeaveCriticalSection
GetLastError
InterlockedIncrement
lstrcpynA
CreateThread
GetTempFileNameA
GetWindowsDirectoryA
GetTempPathA
InterlockedDecrement
CreateDirectoryA
DeleteFileA
MoveFileExA
CreateProcessA
MulDiv
lstrcmpA
MultiByteToWideChar
LockResource
LoadResource
SizeofResource
FindResourceA
GetCurrentThreadId
ExitThread
GlobalReAlloc
SetLastError
IsBadWritePtr
OutputDebugStringA
lstrcmpiA
VirtualProtect
VirtualQuery
GetModuleHandleA
InitializeCriticalSection
DeleteCriticalSection
LoadLibraryExA
IsDBCSLeadByte
GetCommandLineA
lstrcpyA
lstrcatA
lstrlenA
WinExec
lstrlenW
WideCharToMultiByte
GetProcessHeap
HeapFree
GetVersionExA
GetThreadLocale
GetLocaleInfoA
HeapReAlloc
GetSystemTimeAsFileTime
GetStartupInfoA
ExitProcess
GetOEMCP
GetCPInfo
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
TerminateProcess
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetACP
InterlockedExchange
RtlUnwind
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetFileType
GetCurrentProcessId
LCMapStringA
LCMapStringW
GetSystemInfo
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FlushFileBuffers
SetEndOfFile
LocalFree
SetCurrentDirectoryA
RaiseException

user32

wsprintfA
GetClassInfoExA
RegisterWindowMessageA
ClientToScreen
GetUpdateRect
SetWindowRgn
GetCursor
OffsetRect
IntersectRect
MessageBoxA
InvertRect
GetForegroundWindow
UnregisterClassA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
EqualRect
SetForegroundWindow
LoadMenuA
GetSubMenu
IsWindowVisible
TrackPopupMenu
DestroyMenu
LoadStringA
SetClassLongA
CreateAcceleratorTableA
CharNextA
RegisterClassExA
DestroyWindow
IsWindow
GetFocus
IsChild
SetFocus
BeginPaint
EndPaint
InvalidateRgn
ReleaseDC
GetDC
FillRect
ReleaseCapture
GetSysColor
PostQuitMessage
DestroyAcceleratorTable
CharUpperBuffA
GetSystemMetrics
LoadIconA
RemoveMenu
GetMenuItemCount
CheckMenuItem
SetCapture
GetCursorPos
DestroyIcon
GetDesktopWindow
SetRect
RedrawWindow
ShowWindow
MoveWindow
SetMenu
SetWindowTextA
PostMessageA
DialogBoxParamA
SendDlgItemMessageA
GetClassNameA
GetActiveWindow
GetDlgItemTextA
EndDialog
GetWindow
GetWindowRect
SystemParametersInfoA
MapWindowPoints
GetParent
SetDlgItemTextA
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
MessageBeep
GetMessagePos
ScreenToClient
GetClientRect
PtInRect
KillTimer
SetWindowPos
SendMessageA
InvalidateRect
SetTimer
LoadCursorA
SetCursor
CallWindowProcA
GetWindowLongA
SetWindowLongA
DefWindowProcA
CreateWindowExA
CreatePopupMenu
BringWindowToTop
GetCapture
InsertMenuA

gdi32

GetTextExtentPoint32W
GetBkColor
GetTextAlign
GetTextColor
GetTextExtentPoint32A
GetTextMetricsA
OffsetRgn
SetTextColor
SetBkMode
SelectObject
CreateFontIndirectA
GetObjectA
GetStockObject
DeleteObject
SelectClipRgn
CreateDIBSection
ExtCreateRegion
CombineRgn
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
GetCurrentObject
IntersectClipRect

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

advapi32

RegCloseKey
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA

shell32

Shell_NotifyIconA
ShellExecuteA
ExtractIconExA

ole32

CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
OleLockRunning
CreateStreamOnHGlobal
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
OleInitialize
OleUninitialize
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoInitialize

oleaut32

SysFreeString
SysStringLen
SysAllocString
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
VariantClear
DispCallFunc
VariantInit
LoadRegTypeLi
LoadTypeLi
OleCreateFontIndirect
VarUI4FromStr

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21ea39e40337fcf5b25a57138dab8786

Headers

File Characteristics

Imports

winmm

urlmon

version

wininet

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 12KB - Virtual size: 14KB

.rsrc Size: 144KB - Virtual size: 140KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 12KB - Virtual size: 14KB

.rsrc
Size: 144KB - Virtual size: 140KB