fc8d05643cb34ed3a01e275dedd59fc8855a1115d2dbb7e3fbab12260f926cbb

Sharing

Copy URL Twitter E-mail

General

Target

fc8d05643cb34ed3a01e275dedd59fc8855a1115d2dbb7e3fbab12260f926cbb
Size

1.1MB
MD5

64fa0d33beefc555c8d62b61b6e0f527
SHA1

4762ae5daf5c93b8030ad2a2c3d64c6babc732ad
SHA256

fc8d05643cb34ed3a01e275dedd59fc8855a1115d2dbb7e3fbab12260f926cbb
SHA512

26aafd21dd3d9a2fd18c5a9bd39c788067f3da31072edeade74421194449a67f53d10d8f9238ccc46b78c3e34a9ef1c266022c5dd2470a4c2be48d6fbb05e5c4
SSDEEP

12288:WqmA/32pP3cZGiEG0lTafqqt+GIcZw9W3+yrjNfzrNEXXw97+NgntyiS9yHk:6BcFEG0Vafq/AZwX0lzrNKg0NAty99K

Score

N/A

Malware Config

Signatures

Files

fc8d05643cb34ed3a01e275dedd59fc8855a1115d2dbb7e3fbab12260f926cbb
.exe windows x86

3c35a1a8eca6a0075839a9af5650bae4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersAddresses
GetAdaptersInfo
GetIfTable
GetBestInterfaceEx
GetIfEntry

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
GetCurrentDirectoryA
GetDriveTypeA
SetEnvironmentVariableA
IsValidCodePage
GetOEMCP
OutputDebugStringW
GetVersionExW
lstrcmpiW
SizeofResource
GetACP
LockResource
LoadResource
FindResourceW
GetPrivateProfileSectionW
WritePrivateProfileStringW
GetPrivateProfileStringW
InterlockedDecrement
CreateMutexW
GetLastError
CloseHandle
GetModuleFileNameW
GetSystemDefaultLCID
GetCurrentProcess
LoadLibraryW
InterlockedIncrement
GetProcAddress
FreeLibrary
DeviceIoControl
CreateFileW
lstrcpynW
GetWindowsDirectoryW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
lstrlenA
MultiByteToWideChar
GlobalMemoryStatusEx
GetModuleHandleW
lstrcmpW
GetComputerNameW
SetLastError
lstrlenW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetFileTime
GetCPInfo
GetSystemTimeAsFileTime
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
VirtualAlloc
HeapSize
ExitThread
RtlUnwind
RaiseException
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
SetErrorMode
LocalFileTimeToFileTime
GetCurrentDirectoryW
SystemTimeToFileTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalFlags
GetShortPathNameW
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetThreadLocale
GetStringTypeExW
MoveFileW
GetDiskFreeSpaceW
GetFullPathNameW
SetFileTime
GetFileAttributesW
GlobalGetAtomNameW
FindFirstFileW
FileTimeToLocalFileTime
FindNextFileW
FindClose
SuspendThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
LoadLibraryExW
CompareStringA
InterlockedExchange
GlobalFree
FormatMessageW
LocalFree
GetPrivateProfileIntW
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
GetVersionExA
ResetEvent
ReadFile
OpenProcess
ResumeThread
Sleep
GetNativeSystemInfo
FlushInstructionCache
VirtualProtect
GetModuleHandleA
GetCurrentProcessId
WriteProcessMemory
VirtualQuery
ExitProcess
GetModuleFileNameA
GetTickCount
DeleteFileW
CreateThread
SetEvent
WaitForSingleObject
TerminateThread
CreateEventW
GetSystemTime
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
WideCharToMultiByte
LoadLibraryA
lstrcmpiA
GetTempPathW
GetTempFileNameW
lstrcatW
HeapAlloc
GetProcessHeap
HeapFree
GetVersion
GetCurrentThreadId
lstrcpyW
GetLocaleInfoW
GetSystemDirectoryW
GetSystemInfo

user32

BringWindowToTop
TranslateAcceleratorW
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
TranslateMessage
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
GrayStringW
TabbedTextOutW
GetMenuStringW
RemoveMenu
GetWindowThreadProcessId
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
GetWindowTextLengthW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
GetMessageTime
PeekMessageW
ScrollWindow
TrackPopupMenu
MessageBoxW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetDlgCtrlID
SystemParametersInfoA
IsChild
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
CreateIconIndirect
DrawTextExW
GetCapture
GetWindowRgn
SetCursor
DestroyCursor
CopyIcon
CharUpperW
CharLowerW
SystemParametersInfoW
LoadImageW
MessageBoxA
ValidateRect
DrawIcon
IntersectRect
GetWindowWord
SetFocus
DrawStateW
DestroyIcon
DeleteMenu
DrawMenuBar
EqualRect
GetWindowPlacement
SetRectEmpty
MapWindowPoints
SetRect
DrawFrameControl
LoadStringW
IsWindowEnabled
CharUpperBuffA
GetIconInfo
GetDC
GetFocus
HideCaret
ShowCaret
BeginPaint
EndPaint
SetCapture
IsWindowVisible
InvalidateRect
PtInRect
ReleaseCapture
DestroyWindow
UnregisterClassW
LoadCursorW
RegisterClassExW
CreateWindowExW
SetWindowRgn
UnregisterClassA
WindowFromPoint
GetWindowRect
SetTimer
GetMenu
SetMenu
GetWindowInfo
CallWindowProcW
MoveWindow
ShowWindow
GetWindowTextW
DefWindowProcW
InflateRect
DrawTextW
GetClassLongW
DrawIconEx
ClientToScreen
ScreenToClient
GetSystemMenu
IsZoomed
EnableMenuItem
CreatePopupMenu
InsertMenuItemW
GetMenuItemInfoW
IsRectEmpty
FillRect
GetDesktopWindow
LockWindowUpdate
SetScrollRange
GetClientRect
SetPropW
SetScrollInfo
OffsetRect
GetWindowDC
ReleaseDC
CharNextW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
SetParent
RemovePropW
SetWindowLongW
SetScrollPos
GetScrollRange
GetScrollPos
GetScrollInfo
EnableScrollBar
SetWindowPos
GetKeyState
CopyAcceleratorTableW
UnhookWindowsHookEx
GetSysColorBrush
LoadAcceleratorsW
ReuseDDElParam
UnpackDDElParam
SetCursorPos
GetMessagePos
SendMessageW
PostThreadMessageW
GetTabbedTextExtentA
RegisterClipboardFormatW
GetDCEx
IsMenu
UpdateWindow
IsIconic
KillTimer
ShowScrollBar
EnableWindow
PostQuitMessage
GetWindow
GetSysColor
GetSystemMetrics
DestroyMenu
CopyRect
LoadMenuW
GetSubMenu
DrawEdge
CreateMenu
DrawFocusRect
AppendMenuW
ModifyMenuW
LoadIconW
CheckMenuItem
InsertMenuW
GetCursorPos
SetForegroundWindow
GetMenuItemCount
GetMenuItemID
GetMenuState
PostMessageW
RegisterDeviceNotificationW
ExitWindowsEx
wsprintfW
RedrawWindow
IsWindow
CallNextHookEx
GetWindowLongW
GetParent
GetClassNameW
GetPropW
GetActiveWindow
SetWindowsHookExW
DispatchMessageW
GetMessageW
FindWindowW

gdi32

CreatePatternBrush
SelectClipRgn
GetRgnBox
IntersectClipRect
LineTo
MoveToEx
CreatePen
ExcludeClipRect
GetPixel
GetTextExtentPoint32W
TextOutW
Rectangle
PtInRegion
GetTextMetricsW
CreateEllipticRgn
DPtoLP
LPtoDP
Ellipse
CreateDCW
SetPolyFillMode
SetROP2
SetMapMode
SetTextAlign
GetViewportExtEx
GetWindowExtEx
StartDocW
PtVisible
UnrealizeObject
SetBrushOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
SetRectRgn
GetMapMode
GetCharWidthW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetViewportOrgEx
GetBkColor
GetTextColor
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceW
GetTextExtentPoint32A
GetWindowOrgEx
SetViewportOrgEx
PatBlt
StretchDIBits
RectVisible
GetClipBox
ExtSelectClipRgn
SetStretchBltMode
SetDIBitsToDevice
CreateDIBSection
CreateDIBitmap
GetTextExtentPointW
GetStockObject
CreateFontIndirectW
SaveDC
SetBkMode
RestoreDC
Polygon
StretchBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetDeviceCaps
SelectPalette
RealizePalette
BitBlt
CreateBitmap
SetBkColor
SetTextColor
GetObjectW
CreateICW
GetDIBits
DeleteDC
CreateRectRgn
CombineRgn
CreateRectRgnIndirect
GetRegionData
ExtCreateRegion
OffsetRgn
CreateSolidBrush
DeleteObject
ExtTextOutW
Escape
CreateFontW

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
GetJobW
OpenPrinterW
ClosePrinter

advapi32

OpenServiceW
RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
FreeSid
AllocateAndInitializeSid
CheckTokenMembership
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryValueExW
GetFileSecurityW
SetFileSecurityW
RegEnumKeyW
RegOpenKeyW
RegSetValueW
StartServiceW
DeleteService
QueryServiceStatus
ControlService
RegCloseKey
OpenSCManagerA
CloseServiceHandle
CreateServiceW
OpenSCManagerW
RegCreateKeyW
RegQueryValueW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW

shell32

DragFinish
ExtractIconExW
Shell_NotifyIconW
ShellExecuteW
SHGetFileInfoW
DragQueryFileW
ExtractIconW

comctl32

InitCommonControlsEx
ImageList_GetIconSize
ImageList_DrawEx
ImageList_Destroy
_TrackMouseEvent
ImageList_Draw
ImageList_GetIcon
ImageList_GetImageCount

shlwapi

PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW

oledlg

OleUIBusyW

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoInitializeEx
CoSetProxyBlanket
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
StgCreateDocfileOnILockBytes

oleaut32

VariantClear
SysFreeString
SysStringLen
SysAllocString
SysAllocStringByteLen
VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect

setupapi

SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

imagehlp

ImageDirectoryEntryToData

ws2_32

WSAGetLastError
WSASetEvent
WSASocketW
WSACreateEvent
WSAResetEvent
WSAWaitForMultipleEvents
WSAIoctl
inet_ntoa
WSAAddressToStringW
WSACleanup
WSAStartup
inet_addr

psapi

GetProcessImageFileNameW

Sections

.text
Size: 840KB - Virtual size: 837KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3c35a1a8eca6a0075839a9af5650bae4

Headers

File Characteristics

Imports

iphlpapi

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

setupapi

imagehlp

ws2_32

psapi

Sections

.text Size: 840KB - Virtual size: 837KB

.rdata Size: 184KB - Virtual size: 180KB

.data Size: 20KB - Virtual size: 39KB

.rsrc Size: 56KB - Virtual size: 53KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 840KB - Virtual size: 837KB

.rdata
Size: 184KB - Virtual size: 180KB

.data
Size: 20KB - Virtual size: 39KB

.rsrc
Size: 56KB - Virtual size: 53KB

.rmnet
Size: 60KB - Virtual size: 60KB