81e86d39caa68d9cd34c5e5b22d008da8757bd456cd2355734221242243162b2

Sharing

Copy URL Twitter E-mail

General

Target

81e86d39caa68d9cd34c5e5b22d008da8757bd456cd2355734221242243162b2
Size

512KB
MD5

076661b381fdf0c3e202db667432ba7d
SHA1

f27460dd08931e64c7ffdadfc9ec0eaaf1f947b7
SHA256

81e86d39caa68d9cd34c5e5b22d008da8757bd456cd2355734221242243162b2
SHA512

44e9f6b675c1f8878c7399d50f5c69ab8c054293d9986e4b931b44e2513808bbba67fcc4efd27bacc7d1db422f7b7ca7f960878a097e384f01988657af5bb554
SSDEEP

12288:bHzX3c2vQMgQeWwKBdqHHJc3nCIT+GkyeknHmR5J5jDKPK3:fPeFKSHH0nCIT+PkHs5jmC3

Score

N/A

Malware Config

Signatures

Files

81e86d39caa68d9cd34c5e5b22d008da8757bd456cd2355734221242243162b2
.exe windows x86

22ef999aa624e595725c52ec718a93ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStdHandle
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
IsBadCodePtr
SetEnvironmentVariableA
HeapReAlloc
TerminateProcess
GetCommandLineA
GetStartupInfoA
InterlockedExchange
IsBadReadPtr
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapAlloc
HeapFree
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
GetOEMCP
GetCPInfo
SetErrorMode
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
GlobalFlags
VirtualProtect
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
WritePrivateProfileStringA
LocalAlloc
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GlobalAddAtomA
WaitForSingleObject
SetLastError
GlobalFree
lstrcpynA
GetCurrentThread
GetCurrentThreadId
GlobalDeleteAtom
lstrcmpA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcatA
ReadFile
FileTimeToLocalFileTime
FileTimeToSystemTime
WriteFile
SetFileAttributesA
GetFileTime
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
lstrcpyA
GetFileAttributesA
GetFullPathNameA
InterlockedIncrement
LoadLibraryA
GetProcAddress
FreeLibrary
CompareStringW
CompareStringA
MulDiv
FreeResource
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenA
lstrcmpiA
GetVersion
InterlockedDecrement
MultiByteToWideChar
RaiseException
CopyFileA
FindFirstFileA
FindNextFileA
FindClose
CreateFileA
CloseHandle
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateProcessA
FormatMessageA
LocalFree
GetModuleFileNameA
CreateDirectoryA
DeleteFileA
GetLastError
GetTickCount
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
UnhandledExceptionFilter

user32

ReleaseCapture
SetCapture
IsRectEmpty
DestroyMenu
GetSysColorBrush
WinHelpA
GetCapture
CreateWindowExA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
EqualRect
SetScrollInfo
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowTextA
SetFocus
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
CharNextA
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
CreateDialogIndirectParamA
DestroyWindow
GetNextDlgTabItem
EndDialog
wsprintfA
SetMenuItemBitmaps
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
PostMessageA
DrawIcon
SendMessageA
IsIconic
GetClientRect
LockWindowUpdate
RedrawWindow
SetActiveWindow
LoadIconA
GetDlgItem
IsWindow
EnableWindow
GetSystemMetrics
UnregisterClassA
DispatchMessageA
GetActiveWindow
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetLastActivePopup
IsWindowEnabled
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
UnhookWindowsHookEx
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
PostQuitMessage
RegisterWindowMessageA
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetClassNameA
GetClassLongA
GetWindowLongA
GetWindowRgn
IsWindowVisible
RegisterClipboardFormatA
PostThreadMessageA
DrawTextA
SetRect
CharUpperA
GetDC
ReleaseDC
GetDesktopWindow
SetCursor
LoadCursorA
CopyRect
PtInRect
SetRectEmpty
OffsetRect
LoadBitmapA
DrawEdge
DrawFocusRect
UpdateWindow
InvalidateRect
GetParent
TabbedTextOutA
DrawTextExA
GrayStringA
GetScrollInfo
GetMenu
AdjustWindowRectEx
IsMenu
GetWindowRect
MapWindowPoints
SetWindowRgn

gdi32

GetBkColor
GetRgnBox
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
CreateFontIndirectA
SetMapMode
SetBkMode
SetBkColor
FillRgn
OffsetRgn
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateRectRgn
GetPixel
CreatePolygonRgn
CreateBitmap
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
GetMapMode
CreatePen
DeleteDC
CreateCompatibleBitmap
GetCurrentPositionEx
GetDeviceCaps
SaveDC
GetTextExtentPoint32A
RestoreDC
DeleteObject
GetStockObject
SelectObject
GetTextColor
SetTextColor
StretchBlt
Rectangle
CreateCompatibleDC
GetObjectA
GetClipBox

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA

comctl32

ord17
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Draw
ImageList_GetImageInfo
ImageList_Destroy
ImageList_Create

shlwapi

PathRemoveFileSpecA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
PathCompactPathA
PathFindExtensionA
PathFindFileNameA

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
OleInitialize
CreateStreamOnHGlobal
OleIsCurrentClipboard

oleaut32

SysAllocStringByteLen
SysFreeString
VariantCopy
VariantInit
VariantClear
SysAllocStringLen
OleLoadPicture
SysStringLen
VariantChangeType
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect

ws2_32

WSACleanup
WSAStartup

wininet

InternetOpenUrlA
InternetSetFilePointer
InternetQueryDataAvailable
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetWriteFile
FtpFindFirstFileA
FtpOpenFileA
InternetReadFile
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetOpenA
InternetConnectA
InternetCloseHandle

gdiplus

GdiplusShutdown

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22ef999aa624e595725c52ec718a93ce

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

wininet

gdiplus

Sections

.text Size: 304KB - Virtual size: 303KB

.rdata Size: 96KB - Virtual size: 94KB

.data Size: 20KB - Virtual size: 32KB

.rsrc Size: 88KB - Virtual size: 123KB

.text
Size: 304KB - Virtual size: 303KB

.rdata
Size: 96KB - Virtual size: 94KB

.data
Size: 20KB - Virtual size: 32KB

.rsrc
Size: 88KB - Virtual size: 123KB