450571eb69d7b321557b1d7ea5bc72208de1c9e9f800770b46953f8d22220fa9

Sharing

Copy URL

Twitter E-mail

General

Target

450571eb69d7b321557b1d7ea5bc72208de1c9e9f800770b46953f8d22220fa9
Size

4.1MB
MD5

c8d994630726befb9782d02d29580b04
SHA1

124e7067e9c778086f5bce4192e5263b18880e4d
SHA256

450571eb69d7b321557b1d7ea5bc72208de1c9e9f800770b46953f8d22220fa9
SHA512

7fc668116cc4a05ef65ab5bb2135f0fc127f3248be31749675288f27d1dd83cf4b9f85e067170072493dcd30fabf7b208568a30e87055903f1a8c0867df3cd49
SSDEEP

98304:SjvJky/eZEAEsINAMJEsINAM13G9AZIH45tbGr7gMc47:SbJkyUzINAMDINAM+xY3Gr7m47

Score

N/A

Malware Config

Signatures

Files

450571eb69d7b321557b1d7ea5bc72208de1c9e9f800770b46953f8d22220fa9
.exe windows x86

0e2a2a5d353ec0409b906b1551201b08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
RtlUnwind
GetSystemTimeAsFileTime
TerminateProcess
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
QueryPerformanceCounter
HeapDestroy
HeapCreate
IsBadWritePtr
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetTimeZoneInformation
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LoadResource
FindResourceA
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
LoadLibraryA
LocalFree
FormatMessageA
GetModuleFileNameA
CloseHandle
OpenMutexA
Sleep
DeleteFileA
FindClose
FindFirstFileA
GetTempPathA
GetPrivateProfileStringA
GetLastError
GetVersion
lstrcmpiA
lstrlenW
lstrlenA
CompareStringA
CompareStringW
CopyFileA
CreateDirectoryA
GetFileAttributesA
LocalAlloc
InterlockedDecrement
GetCurrentProcessId
GetCurrentDirectoryA
WritePrivateProfileStringA
SetErrorMode
GetFileTime
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcmpA
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetProfileIntA
SetLastError
FreeResource
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
GlobalFree
GlobalReAlloc
VirtualProtect
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
lstrcpyW
lstrcpyA
GetTickCount
OutputDebugStringA
GetCurrentThreadId
IsDBCSLeadByte
lstrcpynA
LoadLibraryExA
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
VirtualAlloc
VirtualFree
MulDiv
GetCurrentProcess
FlushInstructionCache
CreateFileA
GetModuleHandleA
GetProcAddress
HeapReAlloc
HeapAlloc
HeapSize
HeapFree
GetProcessHeap
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GlobalAlloc
GlobalLock
GlobalUnlock

user32

SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
LoadMenuA
DestroyMenu
GetActiveWindow
UnpackDDElParam
ReuseDDElParam
CreatePopupMenu
SetRectEmpty
SetMenu
DrawIcon
GetDesktopWindow
CopyAcceleratorTableA
IsRectEmpty
InflateRect
GetWindowDC
GrayStringA
DrawTextExA
TabbedTextOutA
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
IsWindowEnabled
ShowWindow
IsDialogMessageA
WinHelpA
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
ScrollWindow
MessageBoxA
TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
RegisterClipboardFormatA
EqualRect
GetScrollInfo
SetScrollInfo
RegisterClassA
GetDlgCtrlID
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetRect
GetWindowTextLengthA
GetWindowTextA
OffsetRect
ClientToScreen
UnionRect
IntersectRect
CopyRect
DrawTextA
GetMenu
SetCursor
TrackMouseEvent
GetCursorPos
GetCapture
ScreenToClient
SetWindowRgn
GetSubMenu
GetMenuItemID
GetClientRect
IsWindowVisible
EnableWindow
LoadCursorA
DefWindowProcA
GetClassInfoA
GetSysColor
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SendMessageA
GetWindowRect
AdjustWindowRectEx
IsWindow
GetMenuItemCount
PtInRect
LockWindowUpdate
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
LoadMenuIndirectA
SetWindowPos
GetDlgItem
GetFocus
IsChild
GetWindow
BeginPaint
EndPaint
GetUpdateRect
GetClassInfoExA
wsprintfA
RegisterClassExA
GetMenuItemInfoA
WindowFromPoint
GetSysColorBrush
PostThreadMessageA
CharNextA
DestroyAcceleratorTable
CreateAcceleratorTableA
InvalidateRgn
InvalidateRect
FillRect
SetCapture
ReleaseCapture
CallWindowProcA
GetWindowLongA
GetParent
GetDC
GetNextDlgGroupItem
MessageBeep
ShowScrollBar
TranslateAcceleratorA
PostMessageA
IsZoomed
UpdateWindow
GetSystemMetrics
LoadIconA
LoadAcceleratorsA
SetTimer
KillTimer
MoveWindow
SetFocus
CreateWindowExA
DestroyWindow
FindWindowA
CharUpperA
BringWindowToTop
SetActiveWindow
SetForegroundWindow
SetWindowTextA
UnregisterClassA
RegisterWindowMessageA
SetWindowLongA
RedrawWindow
ReleaseDC
InsertMenuItemA

gdi32

ExtCreateRegion
GetObjectA
OffsetRgn
GetRgnBox
CreateFontIndirectA
CreateDIBitmap
GetDIBits
SetDIBitsToDevice
SetStretchBltMode
CreateRectRgnIndirect
GetClipBox
StretchBlt
CreateBitmap
StretchDIBits
GetStockObject
SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
PlayEnhMetaFile
RealizePalette
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
SaveDC
RestoreDC
SetMapMode
GetViewportExtEx
CombineRgn
GetPixel
PtVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetMapMode
CreateEllipticRgn
LPtoDP
GetBkColor
GetTextColor
CreateCompatibleBitmap
CreateRectRgn
ExtSelectClipRgn
RectVisible
GetTextMetricsA
GetTextExtentPoint32A
SetTextColor
SetBkMode
Ellipse
CreatePatternBrush
SetBkColor
ExtTextOutA
Rectangle
LineTo
MoveToEx
GetNearestColor
CreatePen
CreateSolidBrush
CreateDCA
CreateDIBSection
BitBlt
DeleteDC
SelectObject
DeleteObject
GetWindowExtEx
GetDeviceCaps
CreateCompatibleDC

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegQueryValueA
RegSetValueExA
RegCreateKeyA
RegQueryValueExA
RegOpenKeyA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegQueryInfoKeyA
RegEnumKeyExA
RegCloseKey
RegEnumKeyA

shell32

DragQueryFileA
ShellExecuteA
DragFinish
SHGetFolderPathA

comctl32

ord17
ImageList_Draw
ImageList_GetImageInfo
ImageList_Destroy

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA
PathFileExistsA

oledlg

ord8

ole32

OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CreateStreamOnHGlobal
CoCreateInstance
OleLockRunning
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
CoInitialize
CoGetMalloc
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoDisconnectObject
CLSIDFromString
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CLSIDFromProgID
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject

oleaut32

SysFreeString
SysAllocStringByteLen
VariantInit
VariantClear
VariantCopy
SystemTimeToVariantTime
SysAllocString
VariantChangeType
SysStringLen
VarUI4FromStr
SafeArrayDestroy
OleCreateFontIndirect
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
LoadTypeLi
SysAllocStringLen

urlmon

RegisterBindStatusCallback
CreateURLMoniker

ws2_32

WSAStartup
WSACleanup

wininet

InternetGetConnectedState

winmm

waveOutWrite

Sections

.text
Size: 796KB - Virtual size: 795KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e2a2a5d353ec0409b906b1551201b08

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

ws2_32

wininet

winmm

Sections

.text Size: 796KB - Virtual size: 795KB

.rdata Size: 156KB - Virtual size: 154KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 256KB - Virtual size: 252KB

.text
Size: 796KB - Virtual size: 795KB

.rdata
Size: 156KB - Virtual size: 154KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 256KB - Virtual size: 252KB