7d5879d1acb9aabb2a9907c159fd43784c86550dc7f0e7315fc92877b0745036

Sharing

Copy URL Twitter E-mail

General

Target

7d5879d1acb9aabb2a9907c159fd43784c86550dc7f0e7315fc92877b0745036
Size

929KB
MD5

16f49f3b7d6c260226183cdc87a88282
SHA1

cd16c86ca4ce46954e7f180dc75fa2e4c171b5b1
SHA256

7d5879d1acb9aabb2a9907c159fd43784c86550dc7f0e7315fc92877b0745036
SHA512

1a0a0e22bc110fbffbd36fa9046d5086f65bc186f800bd3ad2e915eddaac352988bb66e7d3b14decd4a0c033291d4b903c021ca3d434418b40fd0c8b61b677b7
SSDEEP

6144:Tcjidvp9KWsF1AxPiFgksFjSmP/kDS+kvsMQNioGbOnlCufcx/E0tgv36fqvkh+p:5HKjF1QrFLPcDkvbahcxcpFjUs

Score

N/A

Malware Config

Signatures

Files

7d5879d1acb9aabb2a9907c159fd43784c86550dc7f0e7315fc92877b0745036
.exe windows x86

3c8e0716b316fb6b7230b010310681c2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
VirtualQuery
GetLocalTime
GetSystemTimeAsFileTime
lstrcmpiW
LoadLibraryExW
WriteConsoleW
CreateFileW
FlushFileBuffers
GetStringTypeW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
LCMapStringW
GetCurrentProcessId
GetConsoleMode
GetConsoleOutputCP
GetFileType
SetFilePointerEx
WriteFile
GetStdHandle
GetCommandLineA
GetModuleHandleExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
QueryPerformanceCounter
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
LoadLibraryExA
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
EncodePointer
OutputDebugStringW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetSystemInfo
DeleteFileW
GlobalFlags
MultiByteToWideChar
GetFileAttributesW
FindClose
RemoveDirectoryW
TerminateProcess
GetCurrentProcess
FindNextFileW
GetCommandLineW
SetLastError
FindFirstFileW
FreeLibrary
GetProcAddress
LoadLibraryW
GetTickCount
FindResourceW
LoadResource
LockResource
FreeResource
SizeofResource
MulDiv
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
ExitProcess
OpenEventW
SetWaitableTimer
CreateWaitableTimerW
LeaveCriticalSection
RaiseException
GetCurrentThreadId
GetModuleHandleW
IsDebuggerPresent
ResetEvent
CreateEventW
CloseHandle
CreateThread
SetEvent
GetDiskFreeSpaceExW
GetModuleFileNameW
GetSystemDirectoryW
GetTimeZoneInformation
TryEnterCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree

user32

IsWindowVisible
RegisterClassExW
GetClassInfoExW
FillRect
CopyRect
FrameRect
DrawTextW
DrawEdge
BeginPaint
EndPaint
MonitorFromWindow
SetActiveWindow
GetMonitorInfoW
SetForegroundWindow
PostMessageW
CreateWindowExW
LoadStringW
GetActiveWindow
ClientToScreen
CharNextW
GetCursorPos
CreateMenu
PostQuitMessage
AppendMenuW
TranslateAcceleratorW
UnregisterClassW
EnumDisplayDevicesW
EnumDisplaySettingsW
GetDesktopWindow
SetWindowLongW
GetSystemMetrics
MessageBoxW
GetWindowLongW
SetWindowPos
SetLayeredWindowAttributes
DestroyWindow
GetSysColor
InvalidateRect
DestroyMenu
CreateAcceleratorTableW
DestroyAcceleratorTable
GetSubMenu
TrackPopupMenu
CreatePopupMenu
DeleteMenu
GetNextDlgTabItem
IsIconic
IntersectRect
IsRectEmpty
WinHelpW
SetMenu
IsWindowEnabled
IsChild
GetDlgCtrlID
IsDialogMessageW
DrawIcon
GetTopWindow
SetWindowRgn
GetWindow
GetSystemMenu
GetLastActivePopup
SetRect
IsZoomed
DestroyIcon
LoadIconW
LoadCursorW
LoadImageW
GetDC
RedrawWindow
SendMessageW
DefWindowProcW
GetDlgItem
CallWindowProcW
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
GetWindowTextW
GetWindowTextLengthW
SetWindowTextW
ShowWindow
EnableWindow
GetWindowRect
GetFocus
IsWindow
SetFocus
GetClientRect
GetParent
ScreenToClient
EqualRect
MoveWindow
GetKeyState
SetCursor
AdjustWindowRectEx
MsgWaitForMultipleObjects
EnumWindows
GetAncestor
GetClassNameW
ReleaseDC
GetWindowThreadProcessId
SetTimer
KillTimer

gdi32

CombineRgn
GetClipBox
CreateRoundRectRgn
CreateEllipticRgn
CreateRectRgn
SetTextColor
SetBkMode
SelectClipRgn
SetBkColor
CreateSolidBrush
ExtSelectClipRgn
ExtTextOutW
BitBlt
CreateCompatibleBitmap
SelectObject
CreateDIBSection
SetDIBColorTable
DeleteObject
DeleteDC
CreateFontIndirectW
SetStretchBltMode
GetObjectW
GetDeviceCaps
GetStockObject
CreateCompatibleDC
GdiAlphaBlend

advapi32

RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueW
QueryServiceStatus
CloseServiceHandle
OpenSCManagerW
ControlService
StartServiceW
OpenServiceW
RegCloseKey

shell32

ShellExecuteW
Shell_NotifyIconW
DragFinish
DragQueryFileW
SHAppBarMessage

ole32

CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoInitializeEx
CreateStreamOnHGlobal
CoUninitialize
CoCreateInstance

oleaut32

VarUI4FromStr
SystemTimeToVariantTime

comctl32

InitCommonControlsEx
ImageList_AddMasked
ImageList_Create
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_Destroy

skinhu

SkinH_Attach

ws2_32

WSACleanup

uxtheme

DrawThemeBackground
CloseThemeData
OpenThemeData

gdiplus

GdipDrawImageRectI
GdipDisposeImage
GdipGetImagePixelFormat
GdipFree
GdipBitmapLockBits
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipCreateBitmapFromStream
GdipSetCompositingMode
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipCloneImage
GdipGetImagePaletteSize
GdipGetImageHeight
GdiplusShutdown
GdiplusStartup
GdipAlloc
GdipGetImagePalette
GdipBitmapUnlockBits

Sections

.text
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 486KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c8e0716b316fb6b7230b010310681c2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

skinhu

ws2_32

uxtheme

gdiplus

Sections

.text Size: 320KB - Virtual size: 319KB

.rdata Size: 86KB - Virtual size: 86KB

.data Size: 9KB - Virtual size: 13KB

.rsrc Size: 486KB - Virtual size: 485KB

.reloc Size: 26KB - Virtual size: 26KB

.text
Size: 320KB - Virtual size: 319KB

.rdata
Size: 86KB - Virtual size: 86KB

.data
Size: 9KB - Virtual size: 13KB

.rsrc
Size: 486KB - Virtual size: 485KB

.reloc
Size: 26KB - Virtual size: 26KB