ca075c67bf4d53a9e17591c0748af26deed14f0a5278ad3630bb8d7b09620271

Sharing

Copy URL Twitter E-mail

General

Target

ca075c67bf4d53a9e17591c0748af26deed14f0a5278ad3630bb8d7b09620271
Size

124KB
MD5

17cbc53ddcdd29accb4dfef09d9ad22b
SHA1

8d54872ed672141ab60747c0162014f245f606c6
SHA256

ca075c67bf4d53a9e17591c0748af26deed14f0a5278ad3630bb8d7b09620271
SHA512

2d3b7bc376894cf2863b62377e71a100c765cf00e67f309bf3876c03f8380138b935e9f37ea810417559fc5be55b2ff1da8f8ac6e9d7cc67e67c9562aca66cee
SSDEEP

3072:05XePO3ivbETgBsnhkgmSiw7RQWalBhSbJlLfBHT:QX27D1Kiw9Rc8vF

Score

1^/10

Malware Config

Signatures

Files

ca075c67bf4d53a9e17591c0748af26deed14f0a5278ad3630bb8d7b09620271
.exe windows x86

93aa2d27c8ab58063b5ce2d6fbf674f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
GetPrivateProfileStringW
GetPrivateProfileIntW
DebugBreak
OutputDebugStringW
lstrlenA
HeapDestroy
GetLastError
CreateMutexW
FreeResource
GlobalFree
GlobalHandle
LockResource
LoadResource
FindResourceW
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
Sleep
LoadLibraryA
GetProcAddress
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
CreateProcessW
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCommandLineA
GetCommandLineW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapCreate
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapSize
TerminateProcess
SetLastError
TlsAlloc
ExitProcess
GetVersion
GetStartupInfoW
GetModuleHandleA
HeapFree
ExitThread
TlsGetValue
TlsSetValue
CreateThread
WideCharToMultiByte
MultiByteToWideChar
HeapAlloc
HeapReAlloc
RtlUnwind
WaitForSingleObject
GetModuleFileNameW
WritePrivateProfileStringW
GetCurrentThreadId
GlobalAlloc
GlobalLock
GlobalUnlock
InitializeCriticalSection
DeleteCriticalSection
lstrcmpW
EnterCriticalSection
LeaveCriticalSection
lstrcmpiW
InterlockedIncrement
SetProcessWorkingSetSize
WriteFile
InterlockedDecrement
CreateFileW
CloseHandle
GetCurrentProcess
FlushInstructionCache
lstrlenW
SetUnhandledExceptionFilter
InterlockedExchange

user32

FillRect
GetClientRect
BeginPaint
SetWindowLongW
InvalidateRect
PtInRect
DefWindowProcW
GetWindowTextW
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
DrawTextW
GetWindowThreadProcessId
CreateDialogIndirectParamW
GetClassInfoW
RegisterClassW
EndDialog
SetCursor
LoadCursorW
GetWindowLongW
CallWindowProcW
GetParent
RegisterClassExW
GetClassInfoExW
RegisterWindowMessageW
GetSysColor
GetDlgItem
ReleaseDC
SendMessageW
SetForegroundWindow
EndPaint
GetDC
SetFocus
CharNextW
wvsprintfW
MessageBoxW
KillTimer
CopyRect
SetTimer
ScreenToClient
DialogBoxParamW
ShowWindow
FindWindowW
PostQuitMessage
GetWindowRect
SystemParametersInfoW
MapWindowPoints
GetSystemMetrics
LoadImageW
IsDialogMessageW
PostMessageW
EqualRect
LoadStringW
wsprintfW
CreateWindowExW
GetWindowTextLengthW
SetWindowTextW
InvalidateRgn
SetCapture
ReleaseCapture
CreateAcceleratorTableW
GetDesktopWindow
RedrawWindow
DestroyWindow
IsWindow
GetClassNameW
SetWindowPos
GetFocus
IsChild
GetWindow

gdi32

SetBkMode
SetTextColor
SelectObject
CreateSolidBrush
CreateFontW
CreateFontIndirectW
DeleteDC
BitBlt
CreateCompatibleBitmap
GetDeviceCaps
GetObjectW
GetStockObject
ExtTextOutW
DeleteObject
CreateCompatibleDC
SetBkColor

advapi32

RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW

ole32

CoInitialize
CoUninitialize
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
CoCreateInstance
CLSIDFromString
CLSIDFromProgID

oleaut32

OleCreateFontIndirect
SysAllocStringLen
LoadRegTypeLi
SysStringLen
DispCallFunc
VariantClear
SysAllocString
SysFreeString

comctl32

_TrackMouseEvent
InitCommonControlsEx

wininet

InternetSetOptionW
InternetReadFile
InternetOpenW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
InternetCloseHandle
InternetCrackUrlW
HttpQueryInfoW
InternetGetConnectedState

shlwapi

PathFileExistsW
PathCombineW
PathAppendW

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93aa2d27c8ab58063b5ce2d6fbf674f5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

wininet

shlwapi

iphlpapi

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 16KB - Virtual size: 15KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 8KB - Virtual size: 7KB