b5e8d0329aac341f07a4c4ca077c4554fef6d3fcd84511ddf5a3fb584611fe7b

Sharing

Copy URL

Twitter E-mail

General

Target

b5e8d0329aac341f07a4c4ca077c4554fef6d3fcd84511ddf5a3fb584611fe7b
Size

1.6MB
MD5

b2bff90676979108e622b84a3de9f001
SHA1

a0cfef462c7ce5db8112c6eca34679cdde82b47b
SHA256

b5e8d0329aac341f07a4c4ca077c4554fef6d3fcd84511ddf5a3fb584611fe7b
SHA512

422b9ce91938e44e15debfe4e10ee048195beb8dfa2902c44a53c4ee2191d1fc778f5b8b7c2497c3359de684af0094eb2cab8ce3cdd7197f53d051978f952886
SSDEEP

49152:SXOrPD+EnYZMgrKc33zBzblwHZ/ih1JEnqce4yhgoA+yeKthn:SXO/7YZMgrKYlzbaHZ/ihbEqi2goA+at

Score

1^/10

Malware Config

Signatures

Files

b5e8d0329aac341f07a4c4ca077c4554fef6d3fcd84511ddf5a3fb584611fe7b
.exe windows x86

8078efbf9db6065a48aec5d62d59e243

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
GlobalUnlock
GlobalLock
GetFullPathNameA
GlobalSize
CopyFileA
GlobalFree
ReleaseActCtx
GetModuleFileNameW
InterlockedDecrement
WaitForSingleObject
GetFileAttributesExA
GetFileAttributesA
GetFileSizeEx
GetFileTime
GetCurrentProcessId
TlsGetValue
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
CompareStringA
GetModuleHandleW
InterlockedIncrement
GlobalGetAtomNameA
lstrcmpA
SetThreadPriority
ResumeThread
GetCurrentThreadId
GlobalAddAtomA
GlobalFlags
lstrcmpW
GetVersionExA
GlobalDeleteAtom
GlobalFindAtomA
FreeResource
FindResourceA
InterlockedExchange
GetLocaleInfoA
GetUserDefaultUILanguage
GetACP
GetCPInfo
GetOEMCP
lstrcpyA
GetCurrentDirectoryA
GetWindowsDirectoryA
GetNumberFormatA
GetTempFileNameA
GetTempPathA
GetTickCount
GetProfileIntA
SearchPathA
VirtualProtect
FindResourceExW
HeapFree
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RtlUnwind
RaiseException
MulDiv
DecodePointer
SetStdHandle
GetFileType
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitThread
CreateThread
HeapQueryInformation
HeapSize
ExitProcess
GetSystemTimeAsFileTime
HeapCreate
GetStdHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
SetHandleCount
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
GetTimeZoneInformation
IsProcessorFeaturePresent
GetConsoleCP
GetConsoleMode
GetStringTypeW
LCMapStringW
CompareStringW
WriteConsoleW
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
CloseHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetModuleHandleA
CreateFileA
MultiByteToWideChar
lstrcmpiA
FormatMessageA
LocalFree
LocalAlloc
FreeLibrary
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
ActivateActCtx
LoadLibraryW
DeactivateActCtx
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
lstrlenA
EncodePointer
GetModuleFileNameA
LoadLibraryA
GetProcAddress
Sleep
QueryPerformanceCounter
GlobalAlloc
QueryPerformanceFrequency

user32

CreateDialogIndirectParamA
SetRectEmpty
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadCursorW
SetCursor
ShowOwnedPopups
DeleteMenu
InvalidateRect
SetTimer
KillTimer
RedrawWindow
GetMenuDefaultItem
CreatePopupMenu
IsRectEmpty
MapVirtualKeyA
SetCapture
GetAsyncKeyState
ReleaseCapture
InvertRect
DrawFocusRect
HideCaret
EnableScrollBar
NotifyWinEvent
MessageBeep
OffsetRect
GetIconInfo
CopyImage
LoadImageA
GetNextDlgGroupItem
DrawIconEx
IsZoomed
SetWindowRgn
SetParent
DestroyAcceleratorTable
WindowFromPoint
SetClassLongA
LoadMenuW
GetSystemMenu
DrawStateA
DrawEdge
DrawFrameControl
CopyAcceleratorTableA
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetRect
SetCursorPos
BringWindowToTop
LockWindowUpdate
GetKeyNameTextA
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
IsCharLowerA
MapVirtualKeyExA
UnionRect
UpdateLayeredWindow
MonitorFromPoint
IsMenu
InsertMenuItemA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
PostThreadMessageA
WaitMessage
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
CreateMenu
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
RegisterClipboardFormatA
CopyIcon
CharUpperBuffA
GetDoubleClickTime
SubtractRect
MapDialogRect
DrawIcon
DestroyCursor
GetWindowRgn
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
GetClientRect
PostMessageA
GetClassInfoExA
IsChild
GetNextDlgTabItem
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcA
GetMenu
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuA
EnableMenuItem
CheckMenuItem
IntersectRect
InflateRect
CopyRect
SetWindowPos
MoveWindow
SetWindowLongA
IsWindow
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
CheckDlgButton
GetScrollPos
SetScrollPos
SetFocus
GetFocus
RealChildWindowFromPoint
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
SetWindowTextA
DestroyIcon
SetWindowsHookExA
CallNextHookEx
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
GetWindowDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
GetWindowTextLengthA
GetWindowTextA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
UnhookWindowsHookEx
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
CharUpperA
GetSystemMetrics
GetDesktopWindow
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
DialogBoxParamA
DestroyWindow
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
EndDialog
GetCapture
GetClassLongA
SystemParametersInfoA
DestroyMenu
GetMenuItemInfoA
IsIconic
RegisterWindowMessageA
LoadIconW
RegisterClassA
WinHelpA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
SetActiveWindow
GetMonitorInfoA
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
GetClassInfoA
MonitorFromWindow
BeginDeferWindowPos

shell32

SHGetFileInfoA
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
DragFinish
DragQueryFileA
SHAppBarMessage
ShellExecuteA

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_GetIconSize

shlwapi

PathFindExtensionA
PathFindFileNameA
PathIsUNCA
PathStripToRootA
UrlUnescapeA
PathRemoveFileSpecW

wininet

InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA
InternetQueryDataAvailable
InternetOpenUrlA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetSetOptionExA

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

gdi32

GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetLayout
DeleteObject
SelectClipRgn
CreateRectRgn
GetObjectA
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateDCA
CopyMetaFileA
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
GetDeviceCaps
GetTextFaceA
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
SetPixelV
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
Rectangle
SetPixel
StretchBlt
SetDIBColorTable
Polygon
Ellipse
Polyline
CreateEllipticRgn
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateBitmap
CreateCompatibleDC
GetStockObject
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateFontIndirectA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
PatBlt
DPtoLP
GetTextExtentPoint32A
CreateDIBitmap
CreateCompatibleBitmap
GetTextMetricsA
EnumFontFamiliesA
GetTextCharsetInfo
GetBkColor
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreateDIBSection
CreateRoundRectRgn
CreatePolygonRgn
GetTextColor
ScaleViewportExtEx

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

comdlg32

GetFileTitleA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyExA

ole32

OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
DoDragDrop
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateStreamOnHGlobal
CoInitializeEx
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree

oleaut32

SysStringLen
VariantClear
VariantChangeType
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
VariantInit
SysAllocString
SysFreeString

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8078efbf9db6065a48aec5d62d59e243

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

msimg32

comctl32

shlwapi

wininet

oleacc

gdiplus

imm32

winmm

gdi32

winspool.drv

comdlg32

advapi32

ole32

oleaut32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 252KB - Virtual size: 252KB

.data Size: 22KB - Virtual size: 51KB

.rsrc Size: 124KB - Virtual size: 123KB

.reloc Size: 161KB - Virtual size: 161KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 252KB - Virtual size: 252KB

.data
Size: 22KB - Virtual size: 51KB

.rsrc
Size: 124KB - Virtual size: 123KB

.reloc
Size: 161KB - Virtual size: 161KB