baec29b63cdf0a42c16e3291a8d41d4f24b44344a01616dbaa80949cf5c78eb4

Sharing

Copy URL Twitter E-mail

General

Target

baec29b63cdf0a42c16e3291a8d41d4f24b44344a01616dbaa80949cf5c78eb4
Size

860KB
MD5

706572309b9d2ac64c18d9509d568a59
SHA1

8484bf4958847009a3cc0ea2743067cc2f92ba20
SHA256

baec29b63cdf0a42c16e3291a8d41d4f24b44344a01616dbaa80949cf5c78eb4
SHA512

40537a5fdb449c1ae213981a5989dfb8fa93f898bc64e217aa2cf9dcc1101c33b126cc39004ca53ef582a05c379516565beb44670648d368f7235ac630c599ed
SSDEEP

6144:hZ1cRANGXteOQn8SvF07/NLnTxiFXmTBnJAwi3w8fPCBaRSx4u6d0teOOkMmzQiQ:hbcRANUI0DNLIFXmTBJbe9kb0GeTTnky

Score

1^/10

Malware Config

Signatures

Files

baec29b63cdf0a42c16e3291a8d41d4f24b44344a01616dbaa80949cf5c78eb4
.exe windows x86

8647b96e63722afbc0049b15920ad8d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetFileAttributesA
GetFileTime
SetErrorMode
RtlUnwind
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
ExitThread
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
GetProcessHeap
GetStartupInfoA
ExitProcess
HeapSize
GetTimeZoneInformation
SetHandleCount
GetOEMCP
GetFileType
GetACP
GetStringTypeA
GetStringTypeW
VirtualFree
HeapDestroy
HeapCreate
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
SetStdHandle
LCMapStringA
LCMapStringW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetCPInfo
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedDecrement
GetModuleFileNameW
FileTimeToSystemTime
lstrcmpA
FormatMessageA
LocalFree
GetCurrentProcessId
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
lstrcmpW
GetVersionExA
lstrlenA
CompareStringW
CompareStringA
GetVersion
InterlockedExchange
FreeResource
GlobalLock
GlobalUnlock
GlobalFree
CreateEventA
GlobalAlloc
CloseHandle
ResetEvent
SuspendThread
CreateThread
ResumeThread
lstrcpynA
SetEvent
MultiByteToWideChar
Sleep
WaitForSingleObject
GetTickCount
GetPrivateProfileIntA
WritePrivateProfileStringA
MulDiv
GetLastError
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetModuleFileNameA
SetCurrentDirectoryA
GetPrivateProfileStringA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
GetStdHandle
SizeofResource

user32

CharNextA
CopyAcceleratorTableA
IsRectEmpty
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageA
GetDCEx
LockWindowUpdate
SetParent
SetCursor
PostQuitMessage
KillTimer
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DestroyMenu
InflateRect
GetMessageA
TranslateMessage
ValidateRect
GetWindowThreadProcessId
ShowWindow
SetWindowTextA
IsDialogMessageA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
CheckMenuItem
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
ReleaseCapture
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
TrackPopupMenu
GetKeyState
SetForegroundWindow
IsWindowVisible
PostMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
PtInRect
DefWindowProcA
CallWindowProcA
SetWindowLongA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
CharUpperA
SetCapture
UnregisterClassA
LoadCursorA
GetSysColorBrush
SetRect
WindowFromPoint
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
IsChild
SetRectEmpty
CopyRect
GetDC
ReleaseDC
FillRect
GetDlgCtrlID
SetWindowPos
GetCursorPos
LoadImageA
GetMenu
GetSystemMetrics
IsIconic
GetSystemMenu
GetMenuItemID
GetMenuItemCount
AppendMenuA
DrawIcon
OffsetRect
MoveWindow
GetWindow
GetSysColor
UpdateWindow
GetDlgItem
IsWindow
RedrawWindow
InvalidateRect
GetClientRect
LoadIconA
EnableMenuItem
GetWindowRect
ScreenToClient
LoadMenuA
GetSubMenu
SetTimer
SendMessageA
EnableWindow
BeginDeferWindowPos

gdi32

SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
GetStockObject
ScaleViewportExtEx
GetCharWidthA
CreateFontA
StretchDIBits
GetBkColor
SetRectRgn
CombineRgn
GetMapMode
GetTextColor
GetRgnBox
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
CreateFontIndirectA
IntersectClipRect
ExcludeClipRect
SetMapMode
RestoreDC
SaveDC
PatBlt
CreateRectRgnIndirect
ExtTextOutA
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
CreateSolidBrush
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
BitBlt
GetCurrentObject
GetObjectA
SelectClipRgn

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA

shell32

ShellExecuteA

comctl32

ord17
ord6

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CreateStreamOnHGlobal

oleaut32

SysAllocString
OleCreateFontIndirect
SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysFreeString
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
OleLoadPicture
SystemTimeToVariantTime
VariantTimeToSystemTime

ws2_32

WSAAsyncSelect
WSAStartup
htonl
bind
sendto
WSAGetLastError
recvfrom
inet_ntoa
WSACleanup
gethostname
WSASetLastError
socket
setsockopt
ioctlsocket
htons
inet_addr
connect
select
closesocket
send
recv
gethostbyname
ntohs
accept

Sections

.text
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 368KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8647b96e63722afbc0049b15920ad8d3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 380KB - Virtual size: 379KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 16KB - Virtual size: 412KB

.rsrc Size: 368KB - Virtual size: 364KB

.text
Size: 380KB - Virtual size: 379KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 16KB - Virtual size: 412KB

.rsrc
Size: 368KB - Virtual size: 364KB