d3b4fc6f45e6449a43bed87f3be88222a3a36697edf4ef97f8433fbcb60165d0

Sharing

Copy URL Twitter E-mail

General

Target

d3b4fc6f45e6449a43bed87f3be88222a3a36697edf4ef97f8433fbcb60165d0
Size

232KB
MD5

938ae98d1aff9320dd0c1d1bcdcd2534
SHA1

e38f3c06edc3b221fa69bd0b009220df544cd678
SHA256

d3b4fc6f45e6449a43bed87f3be88222a3a36697edf4ef97f8433fbcb60165d0
SHA512

96e53b4e5441769595e5dfd13d84487e7b5ccb3532fe2de2039ae35621f576a689106259de5586a38dd3a98a65635abbb4966b9c9879a0b76cb980ff47c116b3
SSDEEP

6144:p6hpkt6aScPxNwr0w7khgyS9wjp7lx8+:o/xbcDUWgyS9QR6+

Score

N/A

Malware Config

Signatures

Files

d3b4fc6f45e6449a43bed87f3be88222a3a36697edf4ef97f8433fbcb60165d0
.exe windows x86

a9ab9c5e601e665adf84233d220be8a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

CreateMenu
GetMenuItemInfoA
KillTimer
RegisterClassA
GetWindow
UnregisterClassA
DrawIconEx
GetKeyNameTextA
SetScrollPos
DefWindowProcA
GetSysColor
GetFocus
SetParent
RemovePropA
RemoveMenu
MessageBeep
SetWindowsHookExA
SetWindowLongA
InsertMenuItemA
CharLowerA
GetMenuState
SetWindowPlacement
SetWindowLongW
LoadStringA
OffsetRect
CharToOemA
CharLowerBuffA
LoadIconA
EnumWindows
SystemParametersInfoA
TranslateMDISysAccel
GetSystemMetrics
DrawAnimatedRects
SetActiveWindow
ChildWindowFromPoint
TranslateMessage
AdjustWindowRectEx
GetCapture
SendMessageA
IsIconic
SetCapture
IsWindowEnabled
GetWindowLongW
ReleaseCapture
GetActiveWindow
CharNextW
BeginPaint
EqualRect
GetScrollPos
GetCursorPos
DispatchMessageW
IsWindowUnicode
PeekMessageW
IsChild
GetIconInfo
IsZoomed
GetKeyboardType
MapVirtualKeyA
DrawMenuBar
SetScrollRange
SetMenu
SetClipboardData
GetScrollInfo
IsWindow
TrackPopupMenu
LoadBitmapA
MessageBoxA
DestroyMenu
OemToCharA
SendMessageW
GetKeyboardLayoutList
CreateWindowExA
DrawEdge
SetRect
IsDialogMessageW
ScrollWindow
GetWindowRect
InsertMenuA
SetWindowPos
GetLastActivePopup
GetScrollRange
CallWindowProcA
MapWindowPoints
ReleaseDC
DrawIcon
SetPropA
EmptyClipboard
ActivateKeyboardLayout
SetWindowTextA
OpenClipboard
GetClientRect
LoadCursorA
GetParent
GetSystemMenu
DrawFrameControl
DrawTextA
EnumThreadWindows
FrameRect
MsgWaitForMultipleObjects
GetWindowPlacement
EnableWindow
GetKeyboardLayoutNameA
RedrawWindow
IsDialogMessageA
GetWindowLongA
DestroyIcon
DestroyWindow
GetDesktopWindow
GetWindowDC
EndPaint
DefMDIChildProcA
CreateIcon
PostQuitMessage
WindowFromPoint
GetClipboardData
CharUpperBuffA
GetMenuStringA
CloseClipboard
GetDlgItem
EnableMenuItem
GetKeyState
DispatchMessageA
GetMenuItemCount
IsWindowVisible
GetDCEx
PtInRect
CloseClipboard
IsWindowVisible
CallWindowProcA
ShowWindow
PostMessageA
GetLastActivePopup
GetKeyNameTextA
SetWindowsHookExA
DrawAnimatedRects
RemovePropA
ScreenToClient
LoadIconA
IsDialogMessageA
EnumWindows
WindowFromPoint
TrackPopupMenu
WaitMessage
GetWindowRect
DrawEdge
GetClientRect
InvalidateRect
CheckMenuItem
GetDesktopWindow
GetDlgItem
UpdateWindow
GetMenuItemID
CreateIcon
DrawMenuBar
FindWindowA
SetParent
DeleteMenu
SendMessageA
SetWindowTextA
GetCapture
GetWindowPlacement
GetWindowLongW
UnregisterClassA
GetKeyboardType
OemToCharA
GetActiveWindow
GetPropA
AdjustWindowRectEx
GetParent
SetMenuItemInfoA
IntersectRect
GetWindowDC
RemoveMenu
SetWindowPos
MapWindowPoints
CreateWindowExA
GetCursorPos
EmptyClipboard
GetSystemMetrics
GetWindow
GetKeyState
GetTopWindow
ShowOwnedPopups
PeekMessageA
DispatchMessageW
BeginPaint
GetKeyboardLayoutList
DispatchMessageA
ClientToScreen
LoadStringA
DrawTextA
ScrollWindow
GetFocus
MessageBeep
CharNextW
RegisterWindowMessageA
IsDialogMessageW
SetScrollRange
GetKeyboardLayoutNameA
EndPaint
CharUpperBuffA
LoadKeyboardLayoutA
MoveWindow
EnableScrollBar
GetIconInfo
GetScrollRange
SystemParametersInfoA
MapVirtualKeyA
InflateRect
GetClassNameA
wsprintfA
DefFrameProcA
IsChild
CharLowerA
EnumChildWindows
LoadCursorA
TranslateMDISysAccel
OffsetRect
KillTimer
IsRectEmpty
GetClassLongA
GetClipboardData
ReleaseCapture
CallNextHookEx
GetScrollPos
CharLowerBuffA
SetWindowLongA
DestroyWindow
SetClipboardData
ShowScrollBar
SetScrollPos
EnableWindow
IsWindowEnabled
GetWindowThreadProcessId
GetClassInfoA
GetSystemMenu
IsIconic
GetWindowLongA
RedrawWindow
SetClassLongA
IsWindow
SetCapture
GetCursor
CharNextA
SetWindowPlacement

oleaut32

VariantChangeType
SysReAllocStringLen
RegisterTypeLib
SafeArrayCreate
VariantCopyInd
SysFreeString
VariantCopyInd
SysAllocStringLen
OleLoadPicture
SafeArrayUnaccessData
VariantChangeType
SafeArrayPtrOfIndex
SafeArrayGetElement
SysStringLen
SysReAllocStringLen
SafeArrayPtrOfIndex
SysFreeString
SysAllocStringLen
SafeArrayCreate
SafeArrayUnaccessData
VariantChangeType
OleLoadPicture
SafeArrayUnaccessData
SysFreeString
SafeArrayCreate
RegisterTypeLib
SysAllocStringLen
SafeArrayGetElement
GetErrorInfo
OleLoadPicture
VariantChangeType
GetErrorInfo
SafeArrayPtrOfIndex
SafeArrayGetElement
SysAllocStringLen
OleLoadPicture
SafeArrayGetElement
VariantChangeType
SafeArrayUnaccessData
RegisterTypeLib
VariantCopyInd
OleLoadPicture
SafeArrayPtrOfIndex
SysFreeString
SysStringLen
SysAllocStringLen
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
SysReAllocStringLen
SafeArrayGetElement
SafeArrayCreate
GetErrorInfo
VariantChangeType

kernel32

LocalAlloc
GetCurrentProcessId
GetModuleHandleA
ExitThread
VirtualAllocEx
GetCurrentProcess
GetCurrentThread
LoadLibraryExA
ExitProcess
GetOEMCP
lstrlenA
LoadLibraryA
GetLastError
GetCurrentThreadId
GetVersionExA
VirtualAlloc
GlobalAlloc
VirtualAlloc
FindFirstFileA
ResetEvent
GetEnvironmentStrings
lstrlenA
GetTickCount
GetFullPathNameA
MulDiv

advapi32

RegDeleteKeyA
RegEnumValueA
RegQueryInfoKeyA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyA
RegLoadKeyA
RegEnumKeyA
RegDeleteValueA
GetLengthSid
RegEnumKeyExA
RegLoadKeyA

comctl32

ImageList_Write
ImageList_Create
ImageList_Add
ImageList_GetBkColor
ImageList_Destroy
ImageList_DrawEx
ImageList_GetBkColor
ImageList_DragShowNolock
ImageList_DragShowNolock
ImageList_Write
ImageList_Remove

msvcrt

sqrt
sprintf
clock
wcschr
exit
memmove
atol
malloc
srand
srand
mbstowcs
atol
memcpy
wcscspn
wcschr
rand
exit
sprintf
swprintf
clock
memset
sqrt
sqrt
rand
atol
_acmdln
clock
swprintf
wcstol
memset
sqrt
sprintf
exit
wcscspn
mbstowcs
time

shell32

SHGetDesktopFolder
SHGetFileInfoA
Shell_NotifyIconA
SHFileOperationA
SHGetSpecialFolderLocation
SHGetFileInfoA
SHGetFolderPathA
SHGetSpecialFolderLocation
SHFileOperationA
SHGetDiskFreeSpaceA
SHGetFolderPathA
Shell_NotifyIconA
SHFileOperationA
DragQueryFileA
Shell_NotifyIconA
SHGetDiskFreeSpaceA

comdlg32

GetFileTitleA
GetSaveFileNameA
FindTextA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA
FindTextA
GetOpenFileNameA
ChooseColorA
FindTextA
GetOpenFileNameA
ChooseColorA
GetFileTitleA
GetSaveFileNameA
GetSaveFileNameA
FindTextA

ole32

OleCreateStaticFromData
CoTaskMemFree
MkParseDisplayName
CoDisconnectObject
CoGetObjectContext
CoReleaseMarshalData
OleRegGetUserType
WriteClassStm
CreateBindCtx
CoGetObjectContext
MkParseDisplayName
CoRevokeClassObject
OleCreateStaticFromData
CoUnmarshalInterface
CLSIDFromString
CreateOleAdviseHolder
CoGetMalloc
PropVariantClear
StgOpenStorage
CLSIDFromProgID
MkParseDisplayName
CoFreeUnusedLibraries
CreateBindCtx
CoRegisterClassObject
CoGetContextToken
OleCreateStaticFromData
CoRegisterClassObject
StgOpenStorage
CreateBindCtx
CoGetContextToken

version

VerFindFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA

gdi32

LineTo
GetRgnBox
GetDIBits
RestoreDC
CreateFontIndirectA
BitBlt
SetTextColor
CreateFontIndirectA
GetObjectA
CreateBrushIndirect
LineTo
SetBkColor
CreateDIBSection

shlwapi

PathIsContentTypeA
PathIsDirectoryA
SHEnumValueA
PathFileExistsA

Sections

CODE
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9ab9c5e601e665adf84233d220be8a3

Headers

File Characteristics

Imports

user32

oleaut32

kernel32

advapi32

comctl32

msvcrt

shell32

comdlg32

ole32

version

gdi32

shlwapi

Sections

CODE Size: 70KB - Virtual size: 70KB

.data Size: 38KB - Virtual size: 37KB

.text Size: 38KB - Virtual size: 38KB

text Size: 57KB - Virtual size: 56KB

BSS Size: 13KB - Virtual size: 12KB

.tls Size: 512B - Virtual size: 53B

.rdata Size: 512B - Virtual size: 64KB

INIT Size: 512B - Virtual size: 24B

.rsrc Size: 12KB - Virtual size: 12KB

CODE
Size: 70KB - Virtual size: 70KB

.data
Size: 38KB - Virtual size: 37KB

.text
Size: 38KB - Virtual size: 38KB

text
Size: 57KB - Virtual size: 56KB

BSS
Size: 13KB - Virtual size: 12KB

.tls
Size: 512B - Virtual size: 53B

.rdata
Size: 512B - Virtual size: 64KB

INIT
Size: 512B - Virtual size: 24B

.rsrc
Size: 12KB - Virtual size: 12KB