d75b2d492b5ad2a1bccabe3be5b3d8e50ab4e717d85b7d41becd369e18d29eaf

Sharing

Copy URL Twitter E-mail

General

Target

d75b2d492b5ad2a1bccabe3be5b3d8e50ab4e717d85b7d41becd369e18d29eaf
Size

3.3MB
MD5

fd6192e5bc213df37f498518034105df
SHA1

f6c5009d23f602b90e5692bc78ea116eb97a931a
SHA256

d75b2d492b5ad2a1bccabe3be5b3d8e50ab4e717d85b7d41becd369e18d29eaf
SHA512

660e08360a1f024e69972525ea56613361b71761dc88e3f6e97d238cadef42a13fd52ea72f5789c783a17e15e52493ac1b3ce7536a7c87fb6a4334afef44bea4
SSDEEP

98304:H8zy8gQhgPdrTkfYfFMMK3c7o5KwIS3t9raXI91Lr5:HsgdrTkfYfF63c7wKwT9yIHP5

Score

N/A

Malware Config

Signatures

Files

d75b2d492b5ad2a1bccabe3be5b3d8e50ab4e717d85b7d41becd369e18d29eaf
.exe windows x86

140f83f3f683e5cf48d78fd1fe72be9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStringTypeA
SetHandleCount
Sleep
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapSize
GetProfileStringA
InterlockedExchange
HeapReAlloc
GetACP
GetFileType
SetStdHandle
HeapFree
HeapAlloc
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
TerminateProcess
ExitProcess
RtlUnwind
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetShortPathNameA
GetStringTypeExA
FindFirstFileA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
DuplicateHandle
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalAlloc
GetCurrentThread
GetThreadLocale
lstrcmpA
MulDiv
SetLastError
lstrcpynA
FormatMessageA
LocalFree
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GetProcAddress
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
GetTickCount
GetVolumeInformationA
DeleteFileA
CreateFileA
ReadFile
CloseHandle
CopyFileA
MultiByteToWideChar
WideCharToMultiByte
CreateDirectoryA
GetModuleFileNameA
GetStringTypeW
GetCurrentDirectoryA

user32

WindowFromPoint
FindWindowA
GetDCEx
LockWindowUpdate
SetParent
BeginPaint
GetWindowDC
ClientToScreen
wvsprintfA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
LoadIconA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetNextDlgGroupItem
GetMenuItemCount
GetSubMenu
GetMenuItemID
CopyAcceleratorTableA
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
EnableWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
SendMessageA
UnpackDDElParam
PostMessageA
SetScrollPos
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
LoadImageA
InvalidateRect
CopyRect
DrawIcon
DrawEdge
GetWindowRect
GetCursorPos
PtInRect
KillTimer
MessageBeep
PostThreadMessageA
GetMenuStringA
DeleteMenu
InsertMenuA
GetMenu
SetRect
GetParent
SetTimer
DestroyIcon
GetSysColor
MessageBoxA
GetSystemMetrics
LoadBitmapA
GetClientRect
UpdateWindow
GetDC
ReleaseDC
CharUpperA
LoadStringA
GetSysColorBrush
GetClassNameA
LoadCursorA
DestroyCursor
SetCursorPos
SetCapture
RedrawWindow
InflateRect
IsZoomed
BringWindowToTop
EndPaint
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
GetMessageA
TranslateMessage
ValidateRect
SetCursor
ShowOwnedPopups
PostQuitMessage
CharNextA
GrayStringA
DrawTextA
TabbedTextOutA

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
DeleteObject
CreateRectRgn
SetMapMode
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextColor
GetBkColor
GetTextExtentPoint32A
GetTextMetricsA
SetRectRgn
CombineRgn
CreateFontIndirectA
DPtoLP
LPtoDP
SetBkMode
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateRectRgnIndirect
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetMapMode
CreateCompatibleBitmap
GetStockObject
PatBlt
CreateCompatibleDC
GetObjectA
BitBlt
StretchBlt
CreateDIBitmap
GetTextExtentPointA
GetDeviceCaps

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyA
RegCloseKey
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegSetValueA
RegQueryValueA
GetFileSecurityA
SetFileSecurityA

shell32

SHGetFileInfoA
DragQueryFileA
DragFinish
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
ExtractIconA

comctl32

InitCommonControlsEx
ord17

oledlg

ord8

ole32

CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoRegisterMessageFilter
CoRevokeClassObject
CoCreateInstance
OleFlushClipboard
OleRun
CLSIDFromString
CLSIDFromProgID
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
OleIsCurrentClipboard

olepro32

ord253

oleaut32

VariantClear
SysFreeString
SysAllocStringLen
VariantChangeType
SysAllocString
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
VariantCopy
SysAllocStringByteLen
SafeArrayGetElement
VariantTimeToSystemTime
SysStringLen

wsock32

WSAStartup
socket
setsockopt
ioctlsocket
htons
htonl
sendto
recvfrom
WSAGetLastError
ntohl
gethostname
WSACleanup
closesocket

shlwapi

PathFileExistsA

ws2_32

WSACreateEvent
WSAEnumNetworkEvents
WSAResetEvent
WSACloseEvent
WSAWaitForMultipleEvents
WSAEventSelect

Sections

.text
Size: 840KB - Virtual size: 838KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

140f83f3f683e5cf48d78fd1fe72be9b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

shlwapi

ws2_32

Sections

.text Size: 840KB - Virtual size: 838KB

.rdata Size: 112KB - Virtual size: 110KB

.data Size: 52KB - Virtual size: 67KB

.rsrc Size: 2.3MB - Virtual size: 2.3MB

.text
Size: 840KB - Virtual size: 838KB

.rdata
Size: 112KB - Virtual size: 110KB

.data
Size: 52KB - Virtual size: 67KB

.rsrc
Size: 2.3MB - Virtual size: 2.3MB