c0812852c7b025c0c9783f18c1ba9d820f590f139775ff95acd2eccf1946189e

Sharing

Copy URL Twitter E-mail

General

Target

c0812852c7b025c0c9783f18c1ba9d820f590f139775ff95acd2eccf1946189e
Size

592KB
MD5

c5349d83cded421e4dcc5fa78353292d
SHA1

c7399a0ac16c83a6e1843b3a85d7ce4df19f3b91
SHA256

c0812852c7b025c0c9783f18c1ba9d820f590f139775ff95acd2eccf1946189e
SHA512

1b0afabebdeaf50e9456ab7147b86385d8dfba4ec0d1f3b5f0643e333e7d930aae2a30d3eee1dba22729280f623bfae62174facc12b1352bd8e4048909f0feed
SSDEEP

6144:D4rDwe71enGMbeChkO6+iYw+QSOdu2ZLBtbcV6M0ETAgezkGCNMoOxGp:sPv1GZHiAY35BtI0P/zbC

Score

N/A

Malware Config

Signatures

Files

c0812852c7b025c0c9783f18c1ba9d820f590f139775ff95acd2eccf1946189e
.exe windows x86

fbd665fe28731ce79ffebe832a0fa744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdiplusStartup
GdiplusShutdown
GdipFree
GdipDrawImageRectI
GdipGetImageGraphicsContext
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCloneImage
GdipGetAllPropertyItems
GdipGetPropertySize
GdipImageRotateFlip
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageHeight
GdipGetImageWidth
GdipSaveImageToFile
GdipDisposeImage
GdipLoadImageFromFileICM
GdipLoadImageFromFile
GdipDeleteGraphics
GdipAlloc
GdipCreateBitmapFromScan0

kernel32

GlobalGetAtomNameA
FreeResource
InterlockedIncrement
GetThreadLocale
GetModuleFileNameW
InterlockedDecrement
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetFullPathNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileAttributesA
GetFileTime
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
WritePrivateProfileStringA
GetCurrentDirectoryA
GlobalFindAtomA
GetCPInfo
GetOEMCP
SetErrorMode
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
VirtualProtect
VirtualAlloc
VirtualQuery
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RaiseException
HeapSize
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetDriveTypeA
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
lstrcmpW
GetCurrentProcessId
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GetModuleHandleA
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
MulDiv
SetLastError
GetSystemInfo
GetVolumeInformationA
GetTempFileNameA
Sleep
GetCurrentProcess
GetExitCodeProcess
ExitProcess
GetExitCodeThread
TerminateThread
GlobalFree
SetFilePointer
GetModuleFileNameA
GetTempPathA
GetVersionExA
CreateDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetFileSize
ReadFile
DeleteFileA
CreateFileA
WriteFile
GetLocalTime
lstrcatA
CreateSemaphoreA
CreateThread
LocalAlloc
WaitForSingleObject
LocalHandle
LocalFree
ReleaseSemaphore
CloseHandle
lstrcpyA
GetWindowsDirectoryA
Beep
LoadLibraryA
GetProcAddress
FreeLibrary
MoveFileA
CopyFileA
FindResourceA
LoadResource
LockResource
SizeofResource
lstrlenA
CompareStringW
CompareStringA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
GlobalFlags

user32

IsDialogMessageA
MoveWindow
ShowWindow
TabbedTextOutA
DrawTextExA
GrayStringA
ClientToScreen
BeginPaint
EndPaint
WindowFromPoint
DestroyMenu
GetSysColorBrush
LoadCursorA
CopyAcceleratorTableA
IsRectEmpty
InvalidateRgn
MessageBeep
UnregisterClassA
RegisterClipboardFormatA
PostThreadMessageA
SetPropA
GetPropA
RemovePropA
IsWindow
SetFocus
GetWindowTextLengthA
GetWindowTextA
SetActiveWindow
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
GetCursorPos
ValidateRect
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
PostQuitMessage
GetMenuItemID
GetSubMenu
EnableMenuItem
CheckMenuItem
CreatePopupMenu
GetActiveWindow
IsCharAlphaA
wvsprintfA
wsprintfA
GetForegroundWindow
UpdateWindow
GetDesktopWindow
GetMenuState
GetMenuItemCount
AppendMenuA
DrawEdge
GetDC
DrawTextA
GetWindow
GetClassNameA
SetWindowTextA
KillTimer
SetTimer
GetNextDlgGroupItem
GetParent
PostMessageA
DrawIconEx
ReleaseCapture
SetCapture
GetCapture
IsWindowVisible
ReleaseDC
GetWindowDC
FrameRect
InflateRect
CopyRect
DrawStateA
SetForegroundWindow
SetRect
GetKeyState
LoadImageA
GetSystemMetrics
EnableWindow
GetFocus
CharNextA
SetWindowContextHelpId
MapDialogRect
CreateDialogIndirectParamA
GetNextDlgTabItem
InvalidateRect
GetClientRect
EndDialog
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetClassLongA
GetWindowRect
IsZoomed
IsIconic
SendMessageA
DrawIcon
DestroyIcon
PtInRect
CharUpperA
SetMenuItemBitmaps

gdi32

CreateBitmap
GetClipBox
SetTextColor
GetObjectA
GetStockObject
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetDeviceCaps
ExtSelectClipRgn
DeleteDC
CreateRectRgnIndirect
GetMapMode
GetRgnBox
MoveToEx
LineTo
SetBkColor
CreateSolidBrush
DeleteObject
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetBkColor
CreatePen
SetPixel
GetTextExtentPoint32A
RoundRect
CreateBrushIndirect
CreateFontA
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetTextColor

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
SHGetDesktopFolder
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHGetFolderPathA

comctl32

ord17

shlwapi

PathFileExistsA
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
StrRetToStrA
PathIsUNCA

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoFreeUnusedLibraries
CoTaskMemFree
OleInitialize
OleUninitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantTimeToSystemTime
SafeArrayDestroy
SysAllocString
SystemTimeToVariantTime
VariantCopy
OleCreateFontIndirect
SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocStringLen
OleLoadPicture
VariantClear
VariantChangeType
VariantInit

urlmon

URLDownloadToFileA

id3lib

?Find@ID3_Tag@@QBEPAVID3_Frame@@W4ID3_FrameID@@@Z
?Contains@ID3_Frame@@QBE_NW4ID3_FieldID@@@Z
?GetField@ID3_Frame@@QBEPAVID3_Field@@W4ID3_FieldID@@@Z
??1ID3_Tag@@UAE@XZ
?GetMp3HeaderInfo@ID3_Tag@@QBEPBUMp3_Headerinfo@@XZ
?Link@ID3_Tag@@QAEIPBDG@Z
??0ID3_Tag@@QAE@PBD@Z
?HasV2Tag@ID3_Tag@@QBE_NXZ

Sections

.text
Size: 360KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbd665fe28731ce79ffebe832a0fa744

Headers

File Characteristics

Imports

gdiplus

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

id3lib

Sections

.text Size: 360KB - Virtual size: 357KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 16KB - Virtual size: 27KB

.rsrc Size: 108KB - Virtual size: 107KB

.text
Size: 360KB - Virtual size: 357KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 16KB - Virtual size: 27KB

.rsrc
Size: 108KB - Virtual size: 107KB