4af3a397ed15ffc6a17b93cd41170bd6f50d67aa3f4fce15945e36a7ebb7eab9

Sharing

Copy URL

Twitter E-mail

General

Target

4af3a397ed15ffc6a17b93cd41170bd6f50d67aa3f4fce15945e36a7ebb7eab9
Size

732KB
MD5

51ae1d001153bbe3d1260360815861d6
SHA1

693c528d2f5dcfc8d937913092e6aa2c397887f5
SHA256

4af3a397ed15ffc6a17b93cd41170bd6f50d67aa3f4fce15945e36a7ebb7eab9
SHA512

c866eabb1043ae915b7769b3b089ccdb44c046bdddd2dee50ef05fb717cdc33ee65e0146f11ba3f4202a729d10b894307ffdf818b2c9ae5e1aef546575e90577
SSDEEP

12288:LOJz+NSfkx30a8JTmkXWxz3X2LI/cRa2ZHRh/GPFFQVRbyA2uY:mJVdmkG3X2LIj4HRh/GPFqVNcuY

Score

1^/10

Malware Config

Signatures

Files

4af3a397ed15ffc6a17b93cd41170bd6f50d67aa3f4fce15945e36a7ebb7eab9
.exe windows x86

1db5e77f0c106ecab3c344c66d631920

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

htonl
ntohl
htons

kernel32

lstrcatW
MultiByteToWideChar
MoveFileW
CreateProcessW
GetFileSize
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
SetFilePointer
GetCurrentThreadId
LoadLibraryW
FreeLibrary
GetVersionExW
MulDiv
GlobalReAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
InterlockedExchange
GetLocalTime
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
InterlockedCompareExchange
GetSystemDefaultLangID
VirtualQuery
InterlockedIncrement
GetSystemInfo
InterlockedDecrement
LoadLibraryA
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
RaiseException
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
TerminateProcess
UnhandledExceptionFilter
lstrlenW
IsDebuggerPresent
ExitThread
CreateThread
GetDiskFreeSpaceExW
GetSystemTimeAsFileTime
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
GetOEMCP
IsValidCodePage
HeapCreate
VirtualFree
VirtualAlloc
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
lstrcpynW
GetTempPathW
GetProcAddress
LockResource
GetProcessHeap
GetLocaleInfoW
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FreeResource
SizeofResource
FindResourceExW
LoadResource
SetStdHandle
FindResourceW
GetModuleHandleW
WriteFile
GetLongPathNameW
ReadFile
CreateFileW
GetCurrentProcess
GetFileAttributesW
GetEnvironmentVariableW
GetLogicalDrives
Sleep
CreateEventW
GetLastError
GetModuleFileNameW
ReleaseMutex
GetPrivateProfileIntW
WaitForSingleObject
CloseHandle
GetPrivateProfileStringW
CreateMutexW
WritePrivateProfileStringW
DeleteFileW
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoW

user32

GetParent
MapWindowPoints
GetWindow
GetClassNameW
GetCursorPos
PostMessageW
InflateRect
GetSysColor
FillRect
DrawTextW
ScreenToClient
WindowFromPoint
EnableWindow
ClientToScreen
GetAncestor
FindWindowA
RegisterWindowMessageW
IsIconic
GetDesktopWindow
SendMessageTimeoutW
SetCursor
SetCaretPos
HideCaret
ShowCaret
SystemParametersInfoW
CreateCaret
IsZoomed
EndPaint
SetWindowRgn
GetWindowRect
GetActiveWindow
IsWindowVisible
FindWindowExW
BeginPaint
GetWindowTextW
IsRectEmpty
GetSystemMenu
InvalidateRect
GetMenuState
UnionRect
DrawIconEx
GetSystemMetrics
SetWindowPos
GetClassInfoExW
EqualRect
CopyRect
GetClientRect
KillTimer
SetTimer
GetKeyState
GetCapture
ReleaseCapture
SetCapture
IntersectRect
ReleaseDC
GetDC
OffsetRect
PtInRect
RegisterClassExW
LoadCursorW
DefWindowProcW
SetWindowLongW
UnhookWindowsHookEx
CreateWindowExW
SetWindowsHookExW
GetClassInfoW
CallNextHookEx
IsWindow
CallWindowProcW
GetWindowLongW
PostQuitMessage
ShowWindow
SetRect
UpdateWindow
DestroyWindow
LoadImageW
UpdateLayeredWindow
UnregisterClassA
SendMessageW
DispatchMessageW
TranslateMessage
GetMessageW
MessageBoxW
SetFocus

gdi32

GetTextMetricsW
ExcludeClipRect
CreateRectRgn
SetBkMode
GetStockObject
CreatePen
DeleteDC
SelectObject
CreateDIBSection
BitBlt
DeleteObject
GetObjectW
GetDeviceCaps
ExtCreateRegion
CombineRgn
CreateSolidBrush
SetTextColor
GetTextExtentPoint32W
SetBkColor
ExtTextOutW
Rectangle
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectW

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

shell32

SHBrowseForFolderW
SHGetFolderPathW
SHGetPathFromIDListW
SHGetMalloc

ole32

CoCreateInstance
CreateStreamOnHGlobal
CoInitialize
CoUninitialize

shlwapi

PathGetDriveNumberW
PathFileExistsW

comctl32

InitCommonControlsEx
_TrackMouseEvent

imm32

ImmReleaseContext

gdiplus

GdipCloneImage
GdipDrawImageRectRectI
GdipDrawImageRectI
GdipBitmapUnlockBits
GdipCloneBitmapAreaI
GdipSetWorldTransform
GdipCreateHBITMAPFromBitmap
GdipRotateMatrix
GdipCreateBitmapFromScan0
GdipTranslateMatrix
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipDeleteMatrix
GdipGraphicsClear
GdipCreateMatrix
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipCreateFromHDC
GdipGetImagePixelFormat
GdipDisposeImage
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
GdipGetImageHeight
GdipGetImageWidth
GdipBitmapLockBits

msimg32

AlphaBlend

Sections

.text
Size: 348KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 556KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1db5e77f0c106ecab3c344c66d631920

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

imm32

gdiplus

msimg32

Sections

.text Size: 348KB - Virtual size: 346KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 556KB - Virtual size: 553KB

.text
Size: 348KB - Virtual size: 346KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 556KB - Virtual size: 553KB