9dfbc67fc9dc209fd57c2993f186cea06891b9435742464bd4b59a145697c522

Sharing

Copy URL Twitter E-mail

General

Target

9dfbc67fc9dc209fd57c2993f186cea06891b9435742464bd4b59a145697c522
Size

544KB
MD5

705cca12e403e2de104ea794ccfa53f0
SHA1

1884cc47f3e7fa774687ae7758e0236655cc4bd8
SHA256

9dfbc67fc9dc209fd57c2993f186cea06891b9435742464bd4b59a145697c522
SHA512

2757d4485fd6b9ff0644d193560b5aa4ed845f941f3082520b01fa9edbf13830e50b153eb7c381cbb93d46052f3ff1ca83ac46c9547eef921b4403dbfad4e75f
SSDEEP

6144:DPIVpyrF2z/Guun0iBNktZ5D6rmtuaczz0UTUASsctV/wQ2BZW2vd1a86v+/vlfT:7IVpqu4/atZ56RQp7wHg21lTcoA

Score

N/A

Malware Config

Signatures

Files

9dfbc67fc9dc209fd57c2993f186cea06891b9435742464bd4b59a145697c522
.exe windows x86

1b3fa52a0a72a67b646552c403c19ffd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiSetClassInstallParamsA
SetupDiChangeState
SetupDiDestroyDeviceInfoList

winmm

sndPlaySoundA

powrprof

ReadGlobalPwrPolicy

kernel32

CreateEventA
CreateThread
ResetEvent
WinExec
SetEvent
WaitForSingleObject
FreeLibrary
GetSystemDirectoryA
lstrcatA
LoadLibraryA
GetSystemPowerStatus
GlobalAlloc
GlobalFree
Sleep
GlobalLock
CreateFileA
WriteFile
CloseHandle
GlobalUnlock
GetWindowsDirectoryA
GetPrivateProfileStringA
CreateProcessA
FormatMessageA
LocalFree
GetStringTypeExW
GetStringTypeExA
GetEnvironmentVariableW
GetEnvironmentVariableA
lstrlenA
lstrcmpiW
lstrcmpiA
CompareStringW
CompareStringA
lstrlenW
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
lstrcpyA
SizeofResource
LockResource
LoadResource
FindResourceA
SetLastError
GetModuleFileNameA
GetCurrentProcessId
MulDiv
GlobalSize
CopyFileA
GetModuleFileNameW
InterlockedDecrement
SetThreadPriority
ResumeThread
GetCurrentThreadId
SuspendThread
InterlockedIncrement
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
FreeResource
GetAtomNameA
lstrcmpA
GetThreadLocale
FileTimeToSystemTime
SystemTimeToFileTime
GlobalFlags
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GetCPInfo
GetOEMCP
GetPrivateProfileIntA
WritePrivateProfileStringA
GetCurrentDirectoryA
SetErrorMode
MoveFileA
DeleteFileA
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetShortPathNameA
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SetFileTime
SetFileAttributesA
GetFileAttributesA
GetFileTime
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RaiseException
ExitThread
HeapSize
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
GetFileType
GetConsoleCP
GetConsoleMode
FatalAppExitA
VirtualFree
HeapDestroy
HeapCreate
GetACP
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
SetConsoleCtrlHandler
GetTimeZoneInformation
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
GetLocalTime
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetEnvironmentVariableA
GetLocaleInfoW
GetVersionExA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
GetTimeFormatA

user32

RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassLongA
GetCapture
IsChild
WinHelpA
SendDlgItemMessageA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
IsDialogMessageA
MoveWindow
ScrollWindowEx
ClientToScreen
GetDesktopWindow
InflateRect
GetMenuItemInfoA
DestroyMenu
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetWindowDC
SetCursor
ShowOwnedPopups
DeleteMenu
DestroyIcon
GetNextDlgTabItem
CreateDialogIndirectParamA
GetDialogBaseUnits
GetClassInfoExA
GetClassInfoA
AdjustWindowRectEx
ScreenToClient
EqualRect
IsWindow
CopyRect
GetScrollInfo
PtInRect
SetWindowPlacement
GetDlgCtrlID
CallWindowProcA
SetWindowLongA
OffsetRect
IntersectRect
SystemParametersInfoA
DestroyWindow
GetWindowPlacement
GetWindow
SetMenuItemBitmaps
BeginDeferWindowPos
LoadBitmapA
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
UnregisterClassA
GetSysColor
GetSysColorBrush
SetWindowsHookExA
CallNextHookEx
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
UnhookWindowsHookEx
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
GetWindowThreadProcessId
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
DeferWindowPos
SetActiveWindow
GetMessageTime
GetMessagePos
EndDeferWindowPos
GetDlgItem
MapWindowPoints
TrackPopupMenuEx
GetActiveWindow
LoadStringA
LoadIconA
LoadCursorA
RegisterClassA
ShowWindow
GetMessageA
RegisterWindowMessageA
PostQuitMessage
EndDialog
BeginPaint
EndPaint
DefWindowProcA
TrackPopupMenu
SetScrollRange
GetScrollRange
GetScrollPos
SetForegroundWindow
PostMessageA
LoadMenuA
CreateMenu
SetMenu
SetWindowTextA
SetScrollInfo
GetSystemMetrics
GetMenuCheckMarkDimensions
GetTopWindow
ShowScrollBar
IsIconic
MessageBoxA
CharLowerA
CharLowerW
CharUpperA
CharUpperW
FindWindowA
SendMessageA
UpdateWindow
TranslateMessage
DispatchMessageA
PeekMessageA
SetScrollPos
ScrollWindow
CreateWindowExA
GetWindowLongA
GetWindowRect
SetWindowPos
DialogBoxParamA
UnregisterDeviceNotification
RegisterDeviceNotificationA
GetDC
ReleaseDC
GetClientRect
GetMenu

gdi32

SetBkMode
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
Escape
TextOutA
RectVisible
PtVisible
StartDocA
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
GetPixel
GetWindowExtEx
PolylineTo
PolyBezierTo
ExtSelectClipRgn
CreateDIBPatternBrushPt
RestoreDC
SaveDC
GetTextExtentPoint32A
ExtTextOutA
CreateFontIndirectA
GetObjectA
CreatePatternBrush
GetStockObject
SetBkColor
SelectObject
DeleteObject
SelectPalette
RealizePalette
CreateBitmap
SetDIBits
CreateDIBitmap
CreatePalette
BitBlt
DeleteDC
GetTextMetricsA
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
SetArcDirection
SetColorAdjustment
SelectClipRgn
GetClipRgn
CreateRectRgn
SelectClipPath
GetViewportExtEx
SetTextColor
GetClipBox
GetDCOrgEx
CreateDCA
CopyMetaFileA
CreateCompatibleDC
GetDeviceCaps
DPtoLP
PatBlt
GetMapMode
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateHatchBrush
CreateSolidBrush
ExtCreatePen
CreatePen
SetViewportOrgEx

comdlg32

GetSaveFileNameA
GetFileTitleA

advapi32

RegSetValueA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegSetValueExA

shell32

ExtractIconA
SHGetFolderPathA
SHGetFileInfoA

ole32

ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
StringFromCLSID
WriteFmtUserTypeStg
SetConvertStg
CoTaskMemFree
CoTreatAsClass
CreateBindCtx
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoDisconnectObject
CoCreateInstance
StringFromGUID2
WriteClassStg
CreateStreamOnHGlobal
CLSIDFromString

oleaut32

OleLoadPicture
SysStringLen
SysFreeString
SysAllocStringByteLen
SysStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
VariantCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen
VarDateFromStr
VarBstrFromCy
VarBstrFromDec
VarDecFromStr
VarCyFromStr
VarBstrFromDate

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathRemoveExtensionA

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

Sections

.text
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

I�S�u
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1b3fa52a0a72a67b646552c403c19ffd

Headers

File Characteristics

Imports

setupapi

winmm

powrprof

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

oleacc

winspool.drv

Sections

.text Size: 428KB - Virtual size: 427KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 16KB - Virtual size: 36KB

.rsrc Size: 4KB - Virtual size: 1KB

I�S�u Size: 20KB - Virtual size: 20KB

.text
Size: 428KB - Virtual size: 427KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 16KB - Virtual size: 36KB

.rsrc
Size: 4KB - Virtual size: 1KB

I�S�u
Size: 20KB - Virtual size: 20KB