c8b5e1b0ccd479ee4712407e9dc2bef530e32c2255258e84a614f8a4f76ff8d1

Sharing

Copy URL Twitter E-mail

General

Target

c8b5e1b0ccd479ee4712407e9dc2bef530e32c2255258e84a614f8a4f76ff8d1
Size

852KB
MD5

37961efd8ced124e0da3f897ec8a47fd
SHA1

140700f013d9628915004539ec5bbeef9ab52591
SHA256

c8b5e1b0ccd479ee4712407e9dc2bef530e32c2255258e84a614f8a4f76ff8d1
SHA512

66e87daef4637f98bb565b76cb1cfe4085b890c06b37d95b9b571c11b02907b2cc4945001161aae1da469886f906448123cbc0382dc9c24cf672568b2db0e256
SSDEEP

12288:2Dvc/imNloRMimO+Sm/DFS34b6HAGD88CiZJlMl0WWWWWoC:2DvCpNSarzFS3vH1nZJl9

Score

N/A

Malware Config

Signatures

Files

c8b5e1b0ccd479ee4712407e9dc2bef530e32c2255258e84a614f8a4f76ff8d1
.exe windows x86

fca5ecb46fb2d83827125d7268fde808

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

MakeSureDirectoryPathExists

kernel32

HeapFree
HeapAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
RaiseException
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapReAlloc
HeapSize
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
Sleep
WaitForSingleObject
CreateThread
GetProfileStringA
TerminateProcess
TerminateThread
CopyFileA
GetTempFileNameA
GetTempPathA
DeleteFileA
FindClose
FindFirstFileA
GetLongPathNameA
GlobalUnlock
GlobalLock
GlobalAlloc
GetFileAttributesA
RemoveDirectoryA
SetFileAttributesA
GetModuleFileNameA
CreateProcessA
GetVersionExA
GetLastError
GetCurrentThread
GetCurrentProcess
lstrcatA
lstrcpyA
GetEnvironmentVariableA
GetProcAddress
GetModuleHandleA
LoadResource
FindResourceA
LockResource
GlobalFree
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
GetVersion
FreeLibrary
LoadLibraryA
LocalFree
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetLastError
MulDiv
lstrcpynA
lstrcmpA
CloseHandle
FindNextFileA
DuplicateHandle
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
GetFullPathNameA
GetThreadLocale
GlobalFlags
SizeofResource
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
GetCurrentDirectoryA
GetFileSize
RtlUnwind
GetFileTime
SetErrorMode
GetTickCount

user32

RegisterClipboardFormatA
PostThreadMessageA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
CheckMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
GetDC
ReleaseDC
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
SendMessageA
PostMessageA
SetForegroundWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
LoadBitmapA
SetRect
GetWindowLongA
IsWindowEnabled
ShowWindow
GetFocus
GetDlgItem
GetWindowTextA
IsIconic
GetSystemMetrics
DrawIcon
SetParent
GetKeyState
LoadIconA
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
CreateWindowExA
MessageBeep
GetWindowRect
FindWindowA
GetCursorPos
CreatePopupMenu
AppendMenuA
SetMenuItemBitmaps
KillTimer
EnableWindow
IsWindowVisible
GetClientRect
SetTimer
InvalidateRect
InflateRect
GetSysColorBrush
LoadCursorA
LoadStringA
GetDesktopWindow
PtInRect
GetClassNameA
CharUpperA
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
SetCursor
PostQuitMessage
DestroyMenu
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
SetPropA
EnableMenuItem

gdi32

BitBlt
CreateCompatibleDC
GetClipBox
CreateDIBitmap
GetTextExtentPointA
LPtoDP
GetBkColor
GetTextColor
DPtoLP
GetMapMode
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateSolidBrush
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
DeleteObject
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
PatBlt
GetObjectA
SetBkColor
SetTextColor

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA

comctl32

ImageList_AddMasked
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString
CLSIDFromProgID
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
VarDateFromStr
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen

Sections

.text
Size: 420KB - Virtual size: 418KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fca5ecb46fb2d83827125d7268fde808

Headers

File Characteristics

Imports

imagehlp

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 420KB - Virtual size: 418KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 32KB - Virtual size: 47KB

.rsrc Size: 320KB - Virtual size: 319KB

.text
Size: 420KB - Virtual size: 418KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 32KB - Virtual size: 47KB

.rsrc
Size: 320KB - Virtual size: 319KB