ae94c0940ffdfc3993f66d2255708403e7b31ed375d7412601e30695d52ba44b

Sharing

Copy URL Twitter E-mail

General

Target

ae94c0940ffdfc3993f66d2255708403e7b31ed375d7412601e30695d52ba44b
Size

538KB
MD5

cee7926d520aa658c0df1e3b4fe29239
SHA1

d1acef489753bf812b1a8bca0df9ba8b10d8fc65
SHA256

ae94c0940ffdfc3993f66d2255708403e7b31ed375d7412601e30695d52ba44b
SHA512

b17d0f15205577e48db9f94045b0c8c0936ba2111f983d217de93a22a7b16e5146003331e4d79aaa99747d8431a7ff7e7c1f85d53d9ce5483cafe8b805505372
SSDEEP

12288:j5BgVIbmkfje66sEOVj6aFfxxqEZjP3MA+WtTtJi1aXJd/6o3NsRzCENdLn1:jTgyK4jRuWtFf/PZ7M6Zk1aZM0eBx

Score

N/A

Malware Config

Signatures

Files

ae94c0940ffdfc3993f66d2255708403e7b31ed375d7412601e30695d52ba44b
.zip
.exe
.exe windows x86

58c0f923223d683bdd74f583c2260755

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

inet_addr
gethostbyname
gethostname
WSAStartup
WSACleanup

winmm

mciSendStringW
joyGetPosEx
joyGetDevCapsW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_ReplaceIcon
CreateStatusWindowW
ImageList_GetIconSize

psapi

GetProcessImageFileNameW

wininet

InternetCloseHandle
InternetReadFileExA
InternetOpenUrlW
InternetReadFile
InternetOpenW

shlwapi

StrCmpLogicalW

uxtheme

IsAppThemed
EnableThemeDialogTexture
SetWindowTheme

dwmapi

DwmGetWindowAttribute

kernel32

GetCPInfo
DeleteCriticalSection
GetModuleFileNameW
GetFullPathNameW
SetDllDirectoryW
SetCurrentDirectoryW
FindResourceW
SizeofResource
LoadResource
LockResource
GetFileAttributesW
GetModuleHandleExW
GetShortPathNameW
FindFirstFileW
FindNextFileW
FindClose
Beep
MoveFileW
OutputDebugStringW
CreateProcessW
GetProcessId
WideCharToMultiByte
MultiByteToWideChar
GetExitCodeProcess
WriteProcessMemory
ReadProcessMemory
GetCurrentProcessId
OpenProcess
TerminateProcess
SetPriorityClass
SetLastError
SetEnvironmentVariableW
GetEnvironmentVariableW
GetLocalTime
GetDateFormatW
GetTimeFormatW
GetDiskFreeSpaceExW
GetDriveTypeW
CreateFileW
DeviceIoControl
SetVolumeLabelW
GetVolumeInformationW
GetDiskFreeSpaceW
GetCurrentDirectoryW
CreateDirectoryW
ReadFile
DeleteFileW
WriteFile
SetFileAttributesW
FileTimeToLocalFileTime
GetVersionExW
GetSystemTimeAsFileTime
SetFileTime
GetFileSizeEx
GetDateFormatEx
GetTickCount64
GetSystemTime
GetSystemDefaultUILanguage
GetComputerNameW
GetSystemWindowsDirectoryW
GetTempPathW
EnterCriticalSection
LeaveCriticalSection
VirtualProtect
FormatMessageW
QueryDosDeviceW
CompareStringW
RemoveDirectoryW
CopyFileW
GetCurrentProcess
WaitForSingleObject
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetPrivateProfileStringW
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
WritePrivateProfileStringW
WritePrivateProfileSectionW
SetEndOfFile
GetACP
GetFileType
GetStdHandle
SetFilePointerEx
SystemTimeToFileTime
FileTimeToSystemTime
GetFileSize
IsWow64Process
VirtualAllocEx
VirtualFreeEx
EnumResourceNamesW
LoadLibraryExW
GlobalSize
IsDebuggerPresent
IsProcessorFeaturePresent
RtlUnwind
RaiseException
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCommandLineA
GetCommandLineW
GetModuleHandleW
FreeLibrary
GetProcAddress
LoadLibraryW
CreateMutexW
CloseHandle
GetExitCodeThread
SetThreadPriority
CreateThread
GetStringTypeExW
lstrcmpiW
GetLastError
GetCurrentThreadId
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
SetErrorMode
InitializeCriticalSection
Sleep
GetTickCount
MulDiv
IsValidCodePage
HeapSize
HeapReAlloc
HeapQueryInformation
HeapAlloc
HeapFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringW
GetConsoleOutputCP
GetStartupInfoW
QueryPerformanceCounter
GetConsoleMode
GetProcessHeap
FindFirstFileExW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
GetStringTypeW
FlushFileBuffers
ReadConsoleW
WriteConsoleW
InitializeSListHead
DecodePointer
LocalFileTimeToFileTime
VirtualQuery
ExitProcess

user32

AdjustWindowRect
GetDlgItem
MessageBeep
GetCursorInfo
GetLastInputInfo
GetSystemMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringW
ExitWindowsEx
GetPropW
FlashWindow
GetClassLongW
SetMenu
SetPropW
RemovePropW
GetSysColor
RedrawWindow
DrawTextW
SetParent
GetClassInfoExW
AdjustWindowRectEx
SystemParametersInfoW
DefDlgProcW
GetAncestor
UpdateWindow
GetMessagePos
GetSysColorBrush
FillRect
CallWindowProcW
CheckRadioButton
IntersectRect
GetUpdateRect
PtInRect
CreateDialogIndirectParamW
CreateAcceleratorTableW
DestroyAcceleratorTable
InsertMenuItemW
RemoveMenu
SetMenuItemInfoW
GetMenuItemInfoW
SetMenuDefaultItem
CreateMenu
CreatePopupMenu
SetMenuInfo
DestroyMenu
TrackPopupMenuEx
GetDesktopWindow
CopyImage
CreateIconIndirect
CreateIconFromResourceEx
DrawIconEx
EnumClipboardFormats
GetWindow
BringWindowToTop
MessageBoxW
GetQueueStatus
GetLastActivePopup
GetShellWindow
DestroyWindow
DestroyIcon
MapVirtualKeyW
SetLayeredWindowAttributes
GetKeyboardLayoutNameW
ActivateKeyboardLayout
GetGUIThreadInfo
GetWindowTextW
mouse_event
WindowFromPoint
GetSystemMetrics
keybd_event
SetKeyboardState
GetKeyboardState
SetDlgItemTextW
GetAsyncKeyState
AttachThreadInput
SendInput
UnregisterHotKey
RegisterHotKey
PostQuitMessage
SendMessageTimeoutW
CharUpperW
UnhookWindowsHookEx
SetWindowsHookExW
PostThreadMessageW
IsCharAlphaNumericW
IsCharUpperW
IsCharLowerW
ToUnicodeEx
GetKeyboardLayout
CallNextHookEx
CharLowerW
ReleaseDC
GetDC
OpenClipboard
GetClipboardData
GetClipboardFormatNameW
CloseClipboard
SetClipboardData
EmptyClipboard
PostMessageW
FindWindowW
EndDialog
IsWindow
DispatchMessageW
TranslateMessage
ShowWindow
CountClipboardFormats
SetWindowLongW
ScreenToClient
IsDialogMessageW
SendMessageW
IsWindowEnabled
GetWindowLongW
SendDlgItemMessageW
DialogBoxParamW
SetForegroundWindow
DefWindowProcW
RegisterWindowMessageW
GetIconInfo
GetMonitorInfoW
EnumDisplayMonitors
GetClientRect
GetLayeredWindowAttributes
IsIconic
IsZoomed
EnumWindows
GetWindowTextLengthW
SetWindowTextW
EnableWindow
GetKeyState
TranslateAcceleratorW
KillTimer
PeekMessageW
GetFocus
GetClassNameW
GetWindowThreadProcessId
GetForegroundWindow
GetMessageW
SetTimer
GetParent
GetDlgCtrlID
SetWindowPos
SetWindowRgn
SetFocus
IsChild
MapWindowPoints
SetActiveWindow
EnumChildWindows
ClientToScreen
MoveWindow
GetWindowRect
IsCharAlphaW
BlockInput
CheckMenuItem
IsWindowVisible
LoadImageW
RemoveClipboardFormatListener
AddClipboardFormatListener
LoadAcceleratorsW
EnableMenuItem
GetMenu
CreateWindowExW
IsClipboardFormatAvailable
RegisterClassExW
GetCursorPos
InvalidateRect
VkKeyScanExW
LoadCursorW
MapVirtualKeyExW

gdi32

GetPixel
SetBkMode
GetClipBox
CreatePatternBrush
GetObjectW
EnumFontFamiliesExW
CreateDIBSection
GdiFlush
SetBkColor
CreateFontIndirectW
GetStockObject
GetTextMetricsW
CreateSolidBrush
GetCharABCWidthsW
SetBrushOrgEx
CreateDCW
BitBlt
CreateCompatibleBitmap
DeleteDC
GetSystemPaletteEntries
SelectObject
GetDIBits
CreateCompatibleDC
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateEllipticRgn
CreateFontW
SetTextColor
GetDeviceCaps
DeleteObject

advapi32

RegDeleteValueW
RegDeleteKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerW
CreateProcessWithLogonW
GetUserNameW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegOpenKeyExW
RegCloseKey
RegConnectRegistryW

shell32

SHBrowseForFolderW
DragFinish
ExtractIconW
DragQueryPoint
SHEmptyRecycleBinW
SHFileOperationW
SHGetPathFromIDListW
DragQueryFileW
SHGetDesktopFolder
SHGetMalloc
SHGetFolderPathW
SHCreateItemFromParsingName
ShellExecuteExW
Shell_NotifyIconW

ole32

CoCreateInstance
OleUninitialize
CLSIDFromString
CoInitialize
CoUninitialize
CoTaskMemFree
OleInitialize
CLSIDFromProgID
CoGetObject
StringFromGUID2
CreateStreamOnHGlobal

oleaut32

SafeArrayGetLBound
GetActiveObject
OleLoadPicture
SafeArrayUnaccessData
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnlock
SafeArrayPtrOfIndex
SafeArrayLock
SafeArrayGetDim
SafeArrayDestroy
SafeArrayGetUBound
VariantCopyInd
SafeArrayCopy
SysAllocString
VariantChangeType
VariantClear
SafeArrayCreate
SysFreeString
SysStringLen

Sections

.text
Size: 714KB - Virtual size: 714KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58c0f923223d683bdd74f583c2260755

Headers

File Characteristics

Imports

wsock32

winmm

version

comctl32

psapi

wininet

shlwapi

uxtheme

dwmapi

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 714KB - Virtual size: 714KB

.rdata Size: 170KB - Virtual size: 169KB

.data Size: 27KB - Virtual size: 39KB

.rsrc Size: 308KB - Virtual size: 308KB

.text
Size: 714KB - Virtual size: 714KB

.rdata
Size: 170KB - Virtual size: 169KB

.data
Size: 27KB - Virtual size: 39KB

.rsrc
Size: 308KB - Virtual size: 308KB