0f26f14344df30c3b614800a2cc0f92a8fd1daebdbe86d98a67cab907221ee91

Sharing

Copy URL Twitter E-mail

General

Target

0f26f14344df30c3b614800a2cc0f92a8fd1daebdbe86d98a67cab907221ee91
Size

3.4MB
MD5

f5f94179110801322826d68baaceb9d5
SHA1

bdf377e54d01dcb67fc13fe86bdac223840417c0
SHA256

0f26f14344df30c3b614800a2cc0f92a8fd1daebdbe86d98a67cab907221ee91
SHA512

62b1504ea5c8635c46dfc497cee1d3c5b3e7b6b157e080abc11ac613ead967e04719886610cd77fafe65b997f49ab85e9505c4066518b3760bbb65edac239a78
SSDEEP

12288:NuOCyamzqhf5UWOjLGIJnDTw5OhdgGyoCHmnGQs++/vjpUc:NuOCyNqhmiI5DuOOoMmg+WU

Score

N/A

Malware Config

Signatures

Files

0f26f14344df30c3b614800a2cc0f92a8fd1daebdbe86d98a67cab907221ee91
.exe windows x86

748094491f556696dc9324a21553f048

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Draw
ImageList_EndDrag
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DragLeave
FlatSB_ShowScrollBar
FlatSB_EnableScrollBar
InitializeFlatSB
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Create
ImageList_Destroy
ord17
_TrackMouseEvent
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_Remove
ImageList_GetImageInfo
ImageList_AddMasked

dsound

ord11

avcodec

ord957
ord956
ord958
ord509
ord504
ord493
ord423
ord422
ord513
ord511
ord510
ord953
ord433
ord444
ord453
ord459
ord421
ord428
ord466
ord437
ord429
ord438
ord448
ord850
ord424

avformat

ord234
ord233
ord24
ord159
ord128
ord118
ord97
ord59
ord45
ord232
ord61
ord117
ord54
ord25
ord56
ord307
ord297
ord124
ord32
ord39
ord290
ord19
ord127
ord129
ord298
ord50
ord259
ord260
ord21
ord20
ord40
ord36
ord42
ord119
ord122
ord121
ord311
ord31

ctvorbis

v_vorbisfile_transform_func
v_vorbisfile_skip_func
v_vorbisfile_wrote_func
v_vorbisfile_disconnect_func
v_vorbisfile_run_func
v_vorbisfile_tell_instance_reference_func
v_vorbisfile_encode_setup_vbr_func
v_vorbisfile_tell_stream_len_func
v_vorbisfile_bitrate_addblock_func
v_vorbisfile_query_func
v_vorbisfile_tell_stream_uid_func
v_vorbisfile_packet_blocksize_func
v_vorbisfile_connect_pin_func
v_vorbisfile_get_pin_func
v_vorbisfile_open_func
v_vorbisfile_compress_func
v_vorbisfile_add_comment_func

kernel32

GlobalAlloc
GetProcAddress
GetModuleHandleA
Sleep
CloseHandle
WriteFile
CreateFileA
lstrcpyA
WinExec
GlobalLock
FileTimeToSystemTime
SystemTimeToFileTime
GetLocalTime
GetTempPathA
GetSystemDirectoryA
OutputDebugStringA
QueryPerformanceCounter
GetModuleFileNameA
lstrcpynA
GetFullPathNameA
LocalFree
FormatMessageA
MulDiv
SetLastError
FreeResource
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
InterlockedDecrement
SetThreadPriority
ResumeThread
WaitForSingleObject
SetEvent
SuspendThread
CreateEventA
EnumResourceLanguagesA
ConvertDefaultLocale
lstrcmpA
GetCurrentThread
InterlockedIncrement
LocalAlloc
LeaveCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileA
SetErrorMode
FileTimeToLocalFileTime
GetFileTime
GetTickCount
GetDiskFreeSpaceA
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
TerminateProcess
GetSystemTimeAsFileTime
SetEnvironmentVariableA
SetCurrentDirectoryA
GetStartupInfoA
GetCommandLineA
ExitThread
CreateThread
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
SetStdHandle
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GlobalUnlock
GlobalReAlloc
GlobalFree
GetPrivateProfileStringA
WritePrivateProfileStringA
CreateDirectoryA
GetFileAttributesA
GetCurrentProcess
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
GetVolumeInformationA
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
lstrcatA

user32

EndDialog
IsWindowEnabled
GetDlgItem
CreateDialogIndirectParamA
SetActiveWindow
IntersectRect
SetWindowPos
CallWindowProcA
GetDlgCtrlID
RegisterClassA
GetScrollInfo
DeferWindowPos
AdjustWindowRectEx
GetMenu
SetForegroundWindow
GetScrollPos
GetScrollRange
TrackPopupMenu
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetLastActivePopup
GetForegroundWindow
GetWindowTextA
GetWindowTextLengthA
IsChild
SetFocus
SendDlgItemMessageA
RemovePropA
GetPropA
SetPropA
GetClassInfoExA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
WinHelpA
ValidateRect
GetCursorPos
GetMessageA
GetWindowDC
BeginPaint
EndPaint
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
ModifyMenuA
SetMenuItemBitmaps
wsprintfA
PostQuitMessage
ShowOwnedPopups
RegisterClassExA
GetMenuState
GetMenuItemInfoA
SetRectEmpty
TranslateAcceleratorA
SetMenu
BringWindowToTop
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
CharNextA
IsRectEmpty
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
GetIconInfo
CreateIconIndirect
DrawStateA
DestroyIcon
ScreenToClient
ClientToScreen
SetCursor
SetWindowLongA
SetRect
ExitWindowsEx
LoadCursorA
CopyIcon
PeekMessageA
DispatchMessageA
TranslateMessage
ReleaseDC
GetWindowRect
SetWindowRgn
IsIconic
GetSystemMenu
AppendMenuA
DrawIcon
PtInRect
GetSystemMetrics
UnregisterClassA
LoadIconA
GetParent
IsWindowVisible
GetDC
SendMessageA
EnableWindow
InvalidateRect
GetClientRect
CharUpperA
SystemParametersInfoA
GetClassNameA
RegisterWindowMessageA
GetMenuItemID
GetMenuItemCount
MessageBoxA
GetCapture
MapWindowPoints
DrawFrameControl
EqualRect
GetClipboardData
CloseClipboard
SetClipboardData
OpenClipboard
SetWindowContextHelpId
GetSysColorBrush
ReleaseCapture
GetClassInfoA
DefWindowProcA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetFocus
SetCapture
GetDesktopWindow
UpdateWindow
GetKeyState
MessageBeep
GetMessagePos
KillTimer
SetTimer
SetWindowPlacement
GetWindowPlacement
GetWindow
DestroyWindow
GetComboBoxInfo
IsWindow
LoadMenuA
LoadImageA
GetSysColor
GetSubMenu
TrackPopupMenuEx
PostMessageA
DestroyCursor
DestroyMenu
GetWindowLongA
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
DrawFocusRect
FrameRect
FillRect
OffsetRect
InflateRect
MapDialogRect
CopyRect
LoadBitmapA

gdi32

ScaleWindowExtEx
SetWindowExtEx
ExtSelectClipRgn
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
SelectClipRgn
MoveToEx
LineTo
ExcludeClipRect
SetMapMode
SetStretchBltMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
CreateBrushIndirect
CreatePatternBrush
CreateRectRgnIndirect
GetMapMode
GetViewportExtEx
GetTextColor
CreateDIBitmap
GetBitmapBits
GetRgnBox
SelectObject
BitBlt
GetObjectA
GetTextExtentPointA
CreateBitmap
SetBitmapBits
GetDeviceCaps
StretchBlt
DeleteDC
DeleteObject
CombineRgn
ExtCreateRegion
CreateDIBSection
CreatePenIndirect
CreateRoundRectRgn
Rectangle
GetStockObject
SetTextColor
SetBkColor
SetPixel
GetPixel
CreateFontIndirectA
CreateCompatibleBitmap
GetTextExtentPoint32A
GetTextMetricsA
CreatePen
CreateSolidBrush
GetBkColor
Polygon
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateRectRgn
RoundRect
CreateBitmapIndirect
CreateCompatibleDC

msimg32

AlphaBlend

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

AdjustTokenPrivileges
OpenProcessToken
RegQueryValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExA
LookupPrivilegeValueA

shell32

ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
ShellExecuteExA
DragQueryFileA
DragFinish

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize

oleaut32

SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
OleCreateFontIndirect
VariantCopy
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysFreeString

Sections

.text
Size: 392KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

748094491f556696dc9324a21553f048

Headers

File Characteristics

Imports

comctl32

dsound

avcodec

avformat

ctvorbis

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 392KB - Virtual size: 389KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 20KB - Virtual size: 38KB

.rsrc Size: 2.9MB - Virtual size: 2.9MB

.text
Size: 392KB - Virtual size: 389KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 20KB - Virtual size: 38KB

.rsrc
Size: 2.9MB - Virtual size: 2.9MB