ff7e56b7f7c2bc05b34fb2552e8b8202def1488aede186215cada505d741da2e

Sharing

Copy URL Twitter E-mail

General

Target

ff7e56b7f7c2bc05b34fb2552e8b8202def1488aede186215cada505d741da2e
Size

1.6MB
MD5

7d70c55bb6acd3ac4a12f3df60280262
SHA1

3231b5b371a8a29768ee776f627001a79df0ab57
SHA256

ff7e56b7f7c2bc05b34fb2552e8b8202def1488aede186215cada505d741da2e
SHA512

64da66a74ddbe7dfb6246035261706f9b0467a4a5f013fe9c9fcb005942b5a89b246331eccc78f2cb964d511135ec69d7226169636ba44c953fb858b24b7de49
SSDEEP

24576:lIX2tDwOMpbPbTjEJjw1hXAwrU4S7d3snxijRbker71JQ/ipPDS+LXjf1+uSw0Qy:uGtsEB7wr81LJsipPBjjUCa

Score

N/A

Malware Config

Signatures

Files

ff7e56b7f7c2bc05b34fb2552e8b8202def1488aede186215cada505d741da2e
.exe windows x86

4737fc1f9073c72ae60e5dd143094281

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
RtlUnwind
RaiseException
ExitThread
ExitProcess
HeapSize
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
QueryPerformanceCounter
GetCPInfo
GetOEMCP
IsValidCodePage
VirtualQuery
GetConsoleCP
GetConsoleMode
GetCurrentDirectoryA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
SetStdHandle
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetDriveTypeA
CreateFileA
SetEnvironmentVariableA
GetSystemInfo
HeapReAlloc
GetDriveTypeW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetStartupInfoW
SetErrorMode
GlobalFlags
SystemTimeToFileTime
LocalFileTimeToFileTime
lstrlenA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalGetAtomNameW
GetProfileIntW
GetDiskFreeSpaceW
SetFileTime
GetShortPathNameW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
lstrcmpiW
GetThreadLocale
GetStringTypeExW
MoveFileW
GetCurrentThread
ConvertDefaultLocale
CompareStringA
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrcmpW
GetVersionExA
FileTimeToSystemTime
FileTimeToLocalFileTime
SuspendThread
GetPrivateProfileIntW
GlobalSize
SetEvent
CreateEventW
GlobalFree
GetVersionExW
EnumResourceLanguagesW
EnumResourceTypesW
GetTempFileNameW
WritePrivateProfileStringW
GetPrivateProfileSectionNamesW
lstrcmpA
CopyFileW
EnumResourceNamesW
GetModuleHandleA
WaitForSingleObject
TerminateThread
GetExitCodeThread
ResumeThread
SetThreadPriority
CreateThread
Sleep
CompareStringW
lstrlenW
GetCurrentDirectoryW
lstrcpynW
GetVersion
LoadLibraryA
GetCurrentThreadId
GetUserDefaultLCID
GetPrivateProfileStringW
FindClose
FindFirstFileW
GetLocaleInfoW
InterlockedExchange
VirtualFree
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
lstrcmpiA
MultiByteToWideChar
IsBadReadPtr
GetProcessHeap
MulDiv
GlobalUnlock
GlobalLock
GlobalAlloc
FreeLibrary
FreeResource
WideCharToMultiByte
GetACP
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
InterlockedDecrement
GetFileAttributesW
GetCurrentProcessId
DeleteFileW
CreateDirectoryW
LocalFree
FormatMessageW
LoadLibraryW
GetProcAddress
GetModuleHandleW
CloseHandle
ReadFile
GetModuleFileNameW
GetFileSize
GetTempPathW
CreateFileW
GetLongPathNameW
SizeofResource
LoadResource
GetFileTime
FindResourceW
GetTickCount
FlushFileBuffers
LockResource
SetEndOfFile
SetFilePointer
GetLastError
WriteFile
GetTimeZoneInformation
SetLastError

user32

CharNextW
UnregisterClassW
PostThreadMessageW
InvalidateRgn
GetNextDlgGroupItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetTopWindow
GetMessageTime
CreateWindowExW
GetClassInfoExW
RegisterClassW
SystemParametersInfoA
IsIconic
DeleteMenu
GetWindowPlacement
SetForegroundWindow
DestroyWindow
TrackPopupMenu
InsertMenuW
AppendMenuW
EnableMenuItem
CheckMenuItem
GetClassInfoW
GetSysColorBrush
SetWindowTextW
MapDialogRect
AdjustWindowRectEx
GetCursor
GetMenuStringW
LookupIconIdFromDirectoryEx
CopyIcon
CreateIconFromResourceEx
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
UnionRect
DeferWindowPos
DrawIconEx
BringWindowToTop
IsZoomed
MoveWindow
LoadAcceleratorsW
DestroyAcceleratorTable
CreateAcceleratorTableW
CharUpperW
ToUnicodeEx
GetKeyboardState
IsCharLowerW
GetKeyNameTextW
GetKeyboardLayout
MapVirtualKeyExW
TranslateAcceleratorW
GetScrollInfo
GetDoubleClickTime
GetLastActivePopup
SetWindowRgn
GetDC
SetCursorPos
WindowFromPoint
GetMenuState
GetMenu
SetMenu
GetSystemMenu
DestroyMenu
CallWindowProcW
EndDeferWindowPos
BeginDeferWindowPos
DrawFocusRect
IsWindowEnabled
DrawStateW
SetActiveWindow
GetActiveWindow
GetClassLongW
CopyAcceleratorTableW
GetScrollPos
SetScrollPos
SetScrollRange
GetMenuDefaultItem
GetIconInfo
CreateIconIndirect
FillRect
DefWindowProcW
DrawFrameControl
GetSystemMetrics
DrawEdge
GetWindowTextW
GetDlgItem
CreatePopupMenu
IsWindowVisible
SetWindowPos
SetParent
EnableWindow
IsWindow
UnregisterClassA
RegisterWindowMessageW
LoadCursorW
PostMessageW
MessageBoxW
IsClipboardFormatAvailable
CallNextHookEx
GetClassNameW
UnhookWindowsHookEx
SetWindowsHookExW
ShowWindow
IsDialogMessageW
SetFocus
MapWindowPoints
SetWindowLongW
PeekMessageW
OffsetRect
GetDesktopWindow
InvertRect
GetCursorPos
GetCapture
SetCapture
ReleaseDC
LockWindowUpdate
TranslateMDISysAccel
DrawMenuBar
DefFrameProcW
EndPaint
BeginPaint
GetWindowDC
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
CreateDialogIndirectParamW
EndDialog
SetWindowContextHelpId
GetWindowThreadProcessId
PostQuitMessage
GetDCEx
ReleaseCapture
DispatchMessageW
TranslateMessage
GetMessageW
wsprintfW
GetWindow
RedrawWindow
CopyRect
EqualRect
GetWindowRgn
MapVirtualKeyW
ShowOwnedPopups
ValidateRect
GetKeyboardLayoutList
GetForegroundWindow
GetSysColor
DestroyIcon
UpdateWindow
GetWindowLongW
SendMessageW
LoadMenuW
ClientToScreen
GetSubMenu
GetMessagePos
ScreenToClient
InvalidateRect
RegisterClipboardFormatW
SystemParametersInfoW
GetFocus
LoadImageW
LoadIconW
LoadBitmapW
MessageBeep
SetTimer
InflateRect
HideCaret
KillTimer
SetCursor
GetDlgCtrlID
GetWindowRect
ShowCaret
GetMenuItemCount
GetParent
GetMenuItemInfoW
GetMenuItemID
GetNextDlgTabItem
PtInRect
IsMenu
GetKeyState
IsRectEmpty
SetRect
GetClientRect
SetRectEmpty
IsChild
IntersectRect

gdi32

ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetMapMode
ScaleWindowExtEx
ExtSelectClipRgn
SetRectRgn
RestoreDC
SaveDC
DPtoLP
CreateDCW
CopyMetaFileW
GetClipBox
GetRgnBox
CreatePolygonRgn
RoundRect
GetMapMode
GetWindowOrgEx
GetBkColor
SetBkMode
SetWindowExtEx
GetStockObject
GetBitmapBits
GetDIBits
SetStretchBltMode
PtVisible
CreateSolidBrush
Escape
CreatePen
RectVisible
GetTextMetricsW
CombineRgn
CreateFontIndirectW
Polygon
StretchBlt
StretchDIBits
SetPixel
GetPixel
GetTextColor
CreatePatternBrush
CreateBitmap
SetDIBits
TextOutW
SetTextColor
CreateFontW
GetViewportOrgEx
EnumFontFamiliesW
EnumFontFamiliesExW
GetTextExtentPoint32W
CreateRectRgnIndirect
CreateCompatibleBitmap
BitBlt
CreateRectRgn
PatBlt
PtInRegion
SetBkColor
SelectObject
DeleteObject
CreateDIBSection
CreateCompatibleDC
GetObjectW
DeleteDC
ExtTextOutW
GetDeviceCaps

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegQueryInfoKeyW
IsTextUnicode
RegDeleteValueW
RegOpenKeyW
RegDeleteKeyW
RegCreateKeyW
GetFileSecurityW
SetFileSecurityW
RegCreateKeyExW
RegEnumKeyW
RegSetValueW

shell32

SHFileOperationW
ExtractIconW
DragAcceptFiles
ShellExecuteW
DragQueryFileW
DragFinish
SHGetFolderPathW
SHGetFileInfoW

comctl32

InitCommonControlsEx
ImageList_GetIconSize
_TrackMouseEvent
ImageList_Destroy
ImageList_GetImageCount
ImageList_DrawEx

shlwapi

PathFileExistsW
PathAddBackslashW
StrTrimW
StrStrIW
StrStrIA
StrCpyW
PathFindExtensionW
PathRemoveExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

oledlg

OleUIBusyW
OleUIAddVerbMenuW

ole32

CoDisconnectObject
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleDuplicateData
ReleaseStgMedium
CoTaskMemFree
OleUninitialize
OleInitialize
DoDragDrop
CLSIDFromProgID
CoUninitialize
CreateStreamOnHGlobal
CLSIDFromString
CoInitialize
CoCreateInstance
CoTaskMemAlloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
RegisterDragDrop

oleaut32

SysAllocString
SysAllocStringLen
VariantClear
VariantInit
SysStringByteLen
SysAllocStringByteLen
VarBstrFromDate
VariantChangeTypeEx
VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
VarDateFromStr
VariantChangeType
SysStringLen
VariantCopy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayDestroy
OleCreateFontIndirect
LoadTypeLi
SysFreeString

gdiplus

GdiplusShutdown

winmm

PlaySoundW

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4737fc1f9073c72ae60e5dd143094281

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

winmm

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 244KB - Virtual size: 243KB

.data Size: 44KB - Virtual size: 60KB

.rsrc Size: 252KB - Virtual size: 251KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 244KB - Virtual size: 243KB

.data
Size: 44KB - Virtual size: 60KB

.rsrc
Size: 252KB - Virtual size: 251KB