4011497e336722ea136d51ac4e57cca2c7cbb1a056b6d00b37ba709b824e7ada

Sharing

Copy URL

Twitter E-mail

General

Target

4011497e336722ea136d51ac4e57cca2c7cbb1a056b6d00b37ba709b824e7ada
Size

3.5MB
MD5

e6a8b2e74823261fc793fced36f0764f
SHA1

69bd7cbb506a9c8224f74a7dc024758d6caf0e6e
SHA256

4011497e336722ea136d51ac4e57cca2c7cbb1a056b6d00b37ba709b824e7ada
SHA512

5ec3cd011b158fc858487d08c3ead65acc1531261619b83186cafc20c3a8c7b81666cc31ec2dd273885839a647a31b1c93bed8e6dcdc1c109658a096fb15bd33
SSDEEP

49152:LeRDXNPpIUb3aE6p6tIQb0VeSgnkkJiJZGdSWEw5EnT2PMy/5UB9V+71:LenPpdHIQb00S4k+EEdPQT2Em5UB981

Score

1^/10

Malware Config

Signatures

Files

4011497e336722ea136d51ac4e57cca2c7cbb1a056b6d00b37ba709b824e7ada
.exe windows x86

d2f2c6a37b7beaf099aa6c2b6a17375a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAddBackslashW
PathRemoveFileSpecW
PathIsDirectoryW
StrChrW
PathRenameExtensionW
PathFileExistsW
PathRemoveExtensionW
StrCpyNW
PathFindFileNameW
StrRChrW
PathFindExtensionW

winmm

timeBeginPeriod
timeEndPeriod

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
UnhandledExceptionFilter
HeapSize
FindResourceA
GlobalAddAtomA
GetProfileStringA
FindResourceW
lstrcmpiW
CloseHandle
GetFileSize
CreateFileW
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
lstrcmpW
Sleep
LockResource
LoadResource
SizeofResource
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
UnmapViewOfFile
lstrlenA
MapViewOfFile
CreateFileMappingW
GetLastError
CreateDirectoryW
GetFileAttributesW
lstrcpyW
FindClose
FindFirstFileW
GetVersionExW
SetEvent
lstrcatW
GetModuleFileNameW
GetPrivateProfileIntW
WritePrivateProfileStringW
ResumeThread
MulDiv
GetTimeZoneInformation
TerminateProcess
ExitThread
CreateThread
HeapReAlloc
RaiseException
HeapAlloc
HeapFree
RtlUnwind
ExitProcess
GetStartupInfoW
GetTickCount
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetProcessVersion
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDiskFreeSpaceW
GetFileTime
SetFileTime
GetTempFileNameW
lstrcmpiA
GetCurrentThread
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
lstrcmpA
FormatMessageW
LocalFree
SuspendThread
SetThreadPriority
GlobalGetAtomNameW
GetShortPathNameW
GetThreadLocale
GetStringTypeExW
GetVolumeInformationW
DeleteFileW
MoveFileW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GlobalFree
LoadLibraryA
GetVersion
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleW
SetLastError
GetCurrentDirectoryW
GetFullPathNameW
GetCPInfo
IsDBCSLeadByte
GetSystemDirectoryW
WaitForSingleObject
lstrcpynW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetPrivateProfileSectionNamesW
GetPrivateProfileStringW
GetModuleHandleA
LoadLibraryW
GetProcAddress
FreeLibrary
GetCurrentThreadId
InterlockedIncrement
CreateEventW
InterlockedDecrement
CompareStringA

user32

PostThreadMessageW
RegisterClipboardFormatW
GetNextDlgGroupItem
GetMenuStringW
InsertMenuW
GetClassNameW
SetWindowContextHelpId
ShowOwnedPopups
IsZoomed
LoadStringW
InvertRect
GetSystemMenu
DeleteMenu
GetMessageW
ValidateRect
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
DestroyMenu
GetDesktopWindow
TranslateAcceleratorW
LoadAcceleratorsW
CharUpperW
GetActiveWindow
CreateDialogIndirectParamW
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
wvsprintfW
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetScrollRange
SetScrollPos
GetTopWindow
IsChild
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
DestroyWindow
SetPropW
GetPropW
RemovePropW
DefWindowProcW
GetMessageTime
GetForegroundWindow
IsIconic
GetWindowPlacement
MoveWindow
GetDlgCtrlID
GetWindowTextLengthW
IsDialogMessageW
SetDlgItemTextW
SetDlgItemInt
SendDlgItemMessageW
GetDlgItemTextW
GetDlgItemInt
MessageBoxW
GrayStringW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
IntersectRect
GetFocus
IsWindowEnabled
AdjustWindowRect
SetWindowTextW
CreateWindowExW
GetWindowTextW
SetFocus
EndDialog
TranslateMessage
DispatchMessageW
PostQuitMessage
InflateRect
GetClientRect
wsprintfW
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CountClipboardFormats
IsClipboardFormatAvailable
SetActiveWindow
UpdateWindow
ShowScrollBar
GetLastActivePopup
SetForegroundWindow
RegisterWindowMessageW
IsWindowVisible
SetCursor
MessageBeep
DestroyCursor
LockWindowUpdate
LoadIconW
LoadMenuW
GetSubMenu
CreatePopupMenu
WindowFromPoint
ScreenToClient
EqualRect
SetRectEmpty
CallWindowProcW
MapDialogRect
CreateMenu
AppendMenuW
LoadBitmapW
DrawStateW
DestroyIcon
CopyAcceleratorTableW
GetMenuItemCount
GetMenuItemInfoW
SetMenuItemInfoW
SetWindowsHookExW
CallNextHookEx
UnhookWindowsHookEx
ClientToScreen
GetClassLongW
FillRect
GetDCEx
LoadCursorW
GetSysColorBrush
BeginDeferWindowPos
EndDeferWindowPos
IsRectEmpty
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
SystemParametersInfoW
ReleaseDC
GetDC
SetWindowRgn
EnableWindow
SetRect
GetParent
GetWindowRect
GetSystemMetrics
DrawFocusRect
GetSysColor
OffsetRect
DrawEdge
DrawFrameControl
CopyRect
RedrawWindow
IsWindow
SendMessageW
SetCapture
GetCapture
ReleaseCapture
InvalidateRect
PtInRect
GetMessagePos
DrawTextW
CharNextW
GetCursorPos
GetKeyState
MsgWaitForMultipleObjects
PeekMessageW
SetParent
SetTimer
GetWindow
SetWindowPos
GetDlgItem
KillTimer
FindWindowExW
ShowWindow
GetWindowLongW
SetWindowLongW
PostMessageW

gdi32

DPtoLP
SaveDC
RestoreDC
SelectPalette
SetMapMode
SetBkColor
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
ExtTextOutW
GetViewportExtEx
GetWindowExtEx
PtVisible
TextOutW
Escape
GetCharWidthW
CreateFontW
LPtoDP
CreateRectRgn
CombineRgn
SetRectRgn
CreatePatternBrush
GetMapMode
CreateSolidBrush
GetBkColor
GetPixel
SetPixel
Ellipse
PatBlt
GetTextColor
RectVisible
CreateBitmap
StretchDIBits
GetClipBox
CreateRectRgnIndirect
SetBkMode
CreateDIBSection
CreatePalette
GetDeviceCaps
RealizePalette
CreatePen
Rectangle
GetDIBits
CreatePolygonRgn
GetRgnBox
CreateCompatibleBitmap
SetBrushOrgEx
StretchBlt
BitBlt
SetStretchBltMode
DeleteDC
SetDIBitsToDevice
GetTextExtentPoint32W
GetTextMetricsW
CreateFontIndirectW
EnumFontsW
GetObjectW
GetStockObject
DeleteObject
GetFontUnicodeRanges
GetCharWidth32W
SelectObject
CreateDCW
CreateCompatibleDC
ExtTextOutA
GetTextExtentPointA
CreateDIBitmap
SetTextColor

comdlg32

ReplaceTextW
GetFileTitleW
ChooseColorW
FindTextW
GetOpenFileNameW
GetSaveFileNameW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueW
RegCloseKey
RegDeleteValueW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyW
SetFileSecurityW
GetFileSecurityW
RegCreateKeyW

shell32

DragQueryFileW
ShellExecuteW
Shell_NotifyIconW
SHFileOperationW
SHBrowseForFolderW
DragFinish
SHGetMalloc
SHGetPathFromIDListW
DragAcceptFiles
SHGetFileInfoW
ExtractIconW
SHGetSpecialFolderPathW
SHGetDesktopFolder

comctl32

ImageList_AddMasked
ImageList_GetImageCount
ImageList_GetIcon
ImageList_Draw
ImageList_GetImageInfo
ord17
ImageList_Destroy
ImageList_Create

oledlg

OleUIBusyW

ole32

CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleFlushClipboard
CoTaskMemAlloc
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoUninitialize
CoCreateInstance
OleIsCurrentClipboard
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
StgOpenStorageOnILockBytes

olepro32

ord253

oleaut32

SysAllocString
VariantClear
SysAllocStringLen
VariantCopy
VariantChangeType
SysStringLen
VariantTimeToSystemTime
GetErrorInfo
SysFreeString

Sections

.text
Size: 500KB - Virtual size: 497KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2f2c6a37b7beaf099aa6c2b6a17375a

Headers

File Characteristics

Imports

shlwapi

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 500KB - Virtual size: 497KB

.text1 Size: 20KB - Virtual size: 18KB

.rdata Size: 100KB - Virtual size: 96KB

.data Size: 28KB - Virtual size: 132KB

.data1 Size: 44KB - Virtual size: 42KB

.tls Size: 4KB - Virtual size: 12B

.rsrc Size: 2.9MB - Virtual size: 2.9MB

.text
Size: 500KB - Virtual size: 497KB

.text1
Size: 20KB - Virtual size: 18KB

.rdata
Size: 100KB - Virtual size: 96KB

.data
Size: 28KB - Virtual size: 132KB

.data1
Size: 44KB - Virtual size: 42KB

.tls
Size: 4KB - Virtual size: 12B

.rsrc
Size: 2.9MB - Virtual size: 2.9MB