801caf7aaaa9fcae34bbf53eb4dd1049750e97815ac72fd59c5daba5cdd45ad9

Sharing

Copy URL

Twitter E-mail

General

Target

801caf7aaaa9fcae34bbf53eb4dd1049750e97815ac72fd59c5daba5cdd45ad9
Size

985KB
MD5

a58ac8cf5d50a9522f1752f2934c9cba
SHA1

5c37f8844e7cf09740909699b71962d73e6921cc
SHA256

801caf7aaaa9fcae34bbf53eb4dd1049750e97815ac72fd59c5daba5cdd45ad9
SHA512

bc2dc62222254fecc2664219e5d6e1d286efa16df72a41192bdc22f5c63f7af06ec3c9e53475c1507d5ad4f40b8a0ff813f4397c15ed137225dff06fd34cf591
SSDEEP

24576:r6GTYyL7QMPVvOsJRh/GPFqVNcuG1if/aPy:r6hBMPVvOsjNYkVNc5YaPy

Score

N/A

Malware Config

Signatures

Files

801caf7aaaa9fcae34bbf53eb4dd1049750e97815ac72fd59c5daba5cdd45ad9
.exe windows x86

884c9b0e91c512e644e13f00be53a82b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

htonl
ntohl
htons

kernel32

lstrcatW
MultiByteToWideChar
CreateProcessW
MoveFileW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
SetFilePointer
GetFileSize
GetCurrentThreadId
LoadLibraryW
FreeLibrary
GetVersionExW
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GlobalReAlloc
GetLocalTime
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
VirtualQuery
InterlockedIncrement
GetSystemInfo
InterlockedDecrement
InterlockedCompareExchange
GetSystemDefaultLangID
LoadLibraryA
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
RaiseException
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
TerminateProcess
UnhandledExceptionFilter
lstrlenW
IsDebuggerPresent
ExitThread
CreateThread
GetFileAttributesW
GetSystemTimeAsFileTime
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
GetOEMCP
IsValidCodePage
HeapCreate
VirtualFree
VirtualAlloc
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
lstrcpynW
GetEnvironmentVariableW
GetLogicalDrives
GetDiskFreeSpaceExW
GetProcessHeap
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetTempPathW
GetProcAddress
LockResource
FreeResource
CreateFileA
SizeofResource
FindResourceExW
LoadResource
FindResourceW
GetModuleHandleW
WriteFile
GetLongPathNameW
ReadFile
CreateFileW
GetCurrentProcess
Sleep
CreateEventW
GetLastError
GetModuleFileNameW
ReleaseMutex
GetPrivateProfileIntW
WaitForSingleObject
CloseHandle
GetPrivateProfileStringW
CreateMutexW
WritePrivateProfileStringW
DeleteFileW
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoW

user32

SetWindowLongW
GetClassInfoW
MapWindowPoints
GetWindow
DefWindowProcW
RegisterClassExW
GetSysColor
FillRect
DrawTextW
GetParent
EqualRect
CopyRect
CreateWindowExW
GetKeyState
FindWindowA
InflateRect
IsIconic
ReleaseCapture
SetCapture
LoadCursorW
SetCursor
CallWindowProcW
RegisterWindowMessageW
SetCaretPos
GetWindowLongW
HideCaret
ShowCaret
UnhookWindowsHookEx
GetWindowTextW
CreateCaret
EndPaint
SetWindowsHookExW
SetWindowPos
GetMenuState
CallNextHookEx
GetWindowRect
DrawIconEx
IsWindowVisible
GetSystemMetrics
FindWindowExW
ReleaseDC
GetClassInfoExW
UpdateLayeredWindow
GetClassNameW
PostMessageW
GetDC
BeginPaint
IsWindow
IsRectEmpty
GetCursorPos
InvalidateRect
EnableWindow
IntersectRect
GetAncestor
UnionRect
GetDesktopWindow
KillTimer
ScreenToClient
SetTimer
GetClientRect
WindowFromPoint
SystemParametersInfoW
ClientToScreen
IsZoomed
SetWindowRgn
OffsetRect
SetFocus
SendMessageTimeoutW
GetActiveWindow
PtInRect
PostQuitMessage
UpdateWindow
ShowWindow
SetRect
DestroyWindow
LoadImageW
GetSystemMenu
UnregisterClassA
SendMessageW
DispatchMessageW
TranslateMessage
GetMessageW
MessageBoxW
GetCapture

gdi32

GetTextMetricsW
CreatePen
SetBkMode
DeleteDC
BitBlt
ExcludeClipRect
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
GetStockObject
DeleteObject
GetObjectW
GetDeviceCaps
ExtCreateRegion
CombineRgn
GetTextExtentPoint32W
CreateSolidBrush
SetTextColor
SetBkColor
ExtTextOutW
Rectangle
CreateRectRgn
CreateFontIndirectW

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

shell32

SHBrowseForFolderW
SHGetFolderPathW
SHGetPathFromIDListW
SHGetMalloc

ole32

CoUninitialize
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize

shlwapi

PathGetDriveNumberW
PathFileExistsW

comctl32

_TrackMouseEvent
InitCommonControlsEx

imm32

ImmReleaseContext

gdiplus

GdipGetImageGraphicsContext
GdipCreateFromHDC
GdipGetImagePixelFormat
GdipDisposeImage
GdipCloneImage
GdipDrawImageRectI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCloneBitmapAreaI
GdipSetWorldTransform
GdipCreateHBITMAPFromBitmap
GdipRotateMatrix
GdipCreateBitmapFromScan0
GdipTranslateMatrix
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipDeleteMatrix
GdipGraphicsClear
GdipCreateMatrix
GdipDeleteGraphics
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRectI

msimg32

AlphaBlend

Sections

.text
Size: 348KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 556KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

884c9b0e91c512e644e13f00be53a82b

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

imm32

gdiplus

msimg32

Sections

.text Size: 348KB - Virtual size: 346KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 556KB - Virtual size: 553KB

.text
Size: 348KB - Virtual size: 346KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 556KB - Virtual size: 553KB