7ea33aebef0b23329014cc26d3236fcf57366e47bf1c6c2db400902029dc54a1

Sharing

Copy URL Twitter E-mail

General

Target

7ea33aebef0b23329014cc26d3236fcf57366e47bf1c6c2db400902029dc54a1
Size

1.4MB
MD5

d56467d23c744d5793692b2e4160709f
SHA1

f0d85e826ec5f259c78d07b109457ad88a928e53
SHA256

7ea33aebef0b23329014cc26d3236fcf57366e47bf1c6c2db400902029dc54a1
SHA512

c9f1f3a1720c9b38bbc69e208bd1815fd987508558e89596372b9ca6cd8c274e8f5629f5fdf34fc894a4340f2a7e2aebc2784e3c21d2005a0276507817463fae
SSDEEP

24576:F2e7jumtQjURu8H88PU3Cm5E06fcie9UhTuGQCdptloJhIIbjMHywH:FH7juSPMR5E06gWlQoptlQIIbjyyw

Score

1^/10

Malware Config

Signatures

Files

7ea33aebef0b23329014cc26d3236fcf57366e47bf1c6c2db400902029dc54a1
.exe windows x86

fbf5384d80fc53d2a38424a8ec4464c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GlobalFlags
SizeofResource
GetCPInfo
GetOEMCP
FindResourceExA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
RtlUnwind
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
GetTimeZoneInformation
GetLocalTime
GetStartupInfoA
GetCommandLineA
CreateThread
ExitThread
GetACP
SetStdHandle
GetFileType
RaiseException
HeapSize
HeapReAlloc
FatalAppExitA
GetVersionExA
SetErrorMode
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
GetProcessVersion
TlsGetValue
LocalReAlloc
QueryDosDeviceA
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetCurrentThread
VirtualProtect
lstrcmpA
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
LockResource
FindResourceA
LoadResource
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
LoadLibraryA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
lstrcpynA
GetFileTime
GetFileAttributesA
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
FindNextFileA
FindFirstFileA
SetLastError
FindClose
FormatMessageA
LocalFree
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
ReleaseMutex
Sleep
WaitForSingleObject
CreateMutexA
GetLastError
GetSystemTime
MultiByteToWideChar
FlushFileBuffers
OpenFileMappingA
GetCurrentProcessId
GetCurrentProcess
GetCurrentThreadId
lstrcpyA
GetEnvironmentVariableA
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CreateProcessA
GetFileAttributesExA
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
CopyFileA
GetModuleFileNameA
lstrlenA
GlobalAlloc
DeviceIoControl
GlobalFree
CreateFileA
CloseHandle
GetModuleHandleA
GetProcAddress
HeapDestroy
SetUnhandledExceptionFilter

user32

LoadCursorA
GetSysColorBrush
GetClassNameA
PtInRect
ClientToScreen
GetDialogBaseUnits
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InflateRect
SetCapture
ReleaseCapture
WaitMessage
WindowFromPoint
InsertMenuA
DeleteMenu
GetMenuStringA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
SetCursor
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetSystemMetrics
CharUpperA
SendMessageA
ShowOwnedPopups
PostQuitMessage
DestroyMenu
LoadStringA
GetDC
wsprintfA
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
ReleaseDC
wvsprintfA
MapDialogRect
GetAsyncKeyState
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
GetScrollInfo
SetMenuItemBitmaps
PeekMessageA
SetWindowsHookExA
OemToCharA
CharToOemA
MessageBoxA
LoadMenuA
GetSubMenu
SetMenuDefaultItem
GetCursorPos
TrackPopupMenu
GetMenuItemID
LoadIconA
IsWindow
SetTimer
KillTimer
ShowWindow
SetWindowPos
SetForegroundWindow
GetForegroundWindow
GetWindowThreadProcessId
UnregisterClassA
EnableWindow
PostMessageA
GetDesktopWindow
AttachThreadInput
SetScrollPos

gdi32

ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetTextExtentPoint32A
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
EnumFontFamiliesExA
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
SetBkMode
SelectPalette
RestoreDC
SaveDC
StartDocA
DeleteDC
GetStockObject
CreateFontIndirectA
SelectObject
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetPolyFillMode
SetROP2
DeleteObject
GetDeviceCaps
CreateRectRgnIndirect
PatBlt
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetWindowExtEx
GetDCOrgEx
GetClipBox
GetTextMetricsA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

InitializeSecurityDescriptor
RegDeleteKeyA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
SetSecurityDescriptorDacl

shell32

Shell_NotifyIconA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetFileInfoA
DragAcceptFiles
DragFinish
SHFileOperationA
ShellExecuteA
DragQueryFileA

comctl32

ImageList_Read
ImageList_Merge
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ord14
ord13
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ord17
ImageList_Write

dbghelp

MiniDumpWriteDump

msvcrt

??0exception@@QAE@ABV0@@Z
_beginthread
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_strlwr
_memicmp

ws2_32

closesocket
bind
setsockopt
socket
connect
send
accept
__WSAFDIsSet
listen
WSAGetLastError
recv
WSAStartup
ntohs
ntohl
htons
htonl
gethostname
gethostbyname
inet_ntoa
select
WSACleanup

msvcp60

??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

Sections

.text
Size: 1012KB - Virtual size: 1009KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 352KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

InsCount
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbf5384d80fc53d2a38424a8ec4464c2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

dbghelp

msvcrt

ws2_32

msvcp60

setupapi

Sections

.text Size: 1012KB - Virtual size: 1009KB

.rdata Size: 60KB - Virtual size: 56KB

.data Size: 352KB - Virtual size: 366KB

InsCount Size: 4KB - Virtual size: 4B

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 1012KB - Virtual size: 1009KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 352KB - Virtual size: 366KB

InsCount
Size: 4KB - Virtual size: 4B

.rsrc
Size: 16KB - Virtual size: 12KB