9740209b371081d4a36183cc227fc5f978c9bba65b3db7c4a58f6a64c7514d89

Sharing

Copy URL

Twitter E-mail

General

Target

9740209b371081d4a36183cc227fc5f978c9bba65b3db7c4a58f6a64c7514d89
Size

547KB
MD5

4284e33d5acd0c3f537bc0a03b27b289
SHA1

8e446941e1b727fd4b32002c3848c568b473817b
SHA256

9740209b371081d4a36183cc227fc5f978c9bba65b3db7c4a58f6a64c7514d89
SHA512

0561ccf43541531af17012294379e0e2bc5b3c3595691eb0ea44ff54ad8988633fb327220ce0a484602442a87f52cba11dbee5d4def415377a035891949510c5
SSDEEP

12288:vCzsqD+hNP0S2H1b49jHmB8uso9Jk9tw:qVcNP0S2H1YjHmD9Kw

Score

N/A

Malware Config

Signatures

Files

9740209b371081d4a36183cc227fc5f978c9bba65b3db7c4a58f6a64c7514d89
.exe windows x86

810ca1aef2389c75bf53dbe31979e9b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
OpenEventA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
InitializeCriticalSectionAndSpinCount
LoadLibraryW
IsValidCodePage
GetACP
HeapReAlloc
HeapSize
HeapAlloc
VirtualFree
HeapFree
HeapCreate
HeapDestroy
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
ExitProcess
GetSystemInfo
VirtualAlloc
RaiseException
RtlUnwind
IsBadReadPtr
HeapValidate
GetStartupInfoA
GetCommandLineA
FlushFileBuffers
SetFilePointer
WriteFile
CreateFileA
GetCurrentProcess
GetModuleHandleW
InterlockedIncrement
GetCurrentThread
GetLocaleInfoA
GetOEMCP
GetCPInfo
GlobalFlags
lstrcmpA
FormatMessageA
SetEvent
CloseHandle
CompareStringA
MultiByteToWideChar
LoadLibraryA
lstrcmpW
GetCurrentThreadId
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
GetCurrentProcessId
LocalReAlloc
TlsSetValue
GlobalAlloc
GlobalReAlloc
GlobalLock
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
LocalAlloc
LocalFree
LoadResource
LockResource
SizeofResource
FindResourceA
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
lstrlenA
GetModuleHandleA
GetProcAddress
GetAtomNameA
GlobalGetAtomNameA
GetLastError
SetLastError
TlsAlloc
VirtualProtect
GetModuleFileNameA
FindClose
RemoveDirectoryA
Sleep

user32

InflateRect
PtInRect
GetClipboardFormatNameA
UnpackDDElParam
ReuseDDElParam
DestroyMenu
TranslateAcceleratorA
LoadAcceleratorsA
ReleaseCapture
SetCursor
SetRectEmpty
ShowWindow
SetWindowTextA
GetForegroundWindow
SetForegroundWindow
ShowOwnedPopups
IsWindowVisible
UpdateWindow
BringWindowToTop
GetMenuCheckMarkDimensions
GetDesktopWindow
GetActiveWindow
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
LoadMenuA
SetMenuItemBitmaps
ModifyMenuA
InsertMenuItemA
GetSubMenu
GetMenuItemInfoA
GetMenuState
GetMenuItemID
GetMenuItemCount
EnableMenuItem
CheckMenuItem
IsMenu
CreatePopupMenu
GrayStringA
DrawTextExA
DrawTextA
FillRect
LoadBitmapA
GetSysColorBrush
ValidateRect
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
LoadIconA
GetClientRect
MapWindowPoints
GetSysColor
DispatchMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
CopyRect
EndDeferWindowPos
LoadCursorA
UnregisterHotKey
BeginDeferWindowPos
DeferWindowPos
GetTopWindow
GetWindow
GetCapture
WinHelpA
TrackPopupMenu
GetDlgItem
GetWindowTextA
TranslateMessage
RegisterWindowMessageA
CreateMenu
PostQuitMessage
PeekMessageA
UnhookWindowsHookEx
IsWindow
SendMessageA
PostMessageA
TabbedTextOutA
GetWindowThreadProcessId
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetParent
GetWindowLongA
MessageBoxA
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
GetKeyState
DestroyWindow
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
SetMenu
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
InvalidateRect

gdi32

CreateSolidBrush
CreateBitmap
CreateFontIndirectA
CreatePatternBrush
GetBkColor
PtVisible
RectVisible
BitBlt
GetPixel
TextOutA
GetTextExtentPoint32A
Escape
SelectObject
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteObject
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
GetObjectType
GetStockObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
ExtTextOutA

comctl32

_TrackMouseEvent
ord17
ImageList_DragShowNolock

comdlg32

GetSaveFileNameA
ChooseColorA
GetOpenFileNameA

advapi32

RevertToSelf
SetThreadToken
RegCloseKey
RegEnumKeyA
FreeSid
OpenSCManagerA
SetServiceStatus
AllocateAndInitializeSid
QueryServiceStatus
RegOpenKeyExA
LookupPrivilegeValueW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CreateServiceA
RegQueryValueExA
RegisterServiceCtrlHandlerA
RegSetValueExA
OpenServiceA
OpenProcessToken
StartServiceCtrlDispatcherA
OpenThreadToken
SetEntriesInAclA
GetTokenInformation

ole32

StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize

oleaut32

VariantClear
VariantChangeType
VariantInit

crypt32

CryptImportPublicKeyInfo
CertGetCertificateChain
CertFindCertificateInStore
CertAddCertificateContextToStore
CertFreeCertificateContext
CertFreeCertificateChain
CertAddEncodedCertificateToStore
CertDeleteCertificateFromStore
CertCreateCertificateContext
CertVerifyCertificateChainPolicy
CryptEncodeObject

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

shell32

DragQueryFileA
DragFinish

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 467KB - Virtual size: 466KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 1003KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

810ca1aef2389c75bf53dbe31979e9b7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

comdlg32

advapi32

ole32

oleaut32

crypt32

winspool.drv

shell32

oleacc

Sections

.text Size: 467KB - Virtual size: 466KB

.data Size: 12KB - Virtual size: 1003KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 65KB - Virtual size: 64KB

.text
Size: 467KB - Virtual size: 466KB

.data
Size: 12KB - Virtual size: 1003KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 65KB - Virtual size: 64KB