431461aca37711eb94f552248cf36e31b6a1a66095bbd9a53185dfadca1378b0

Sharing

Copy URL Twitter E-mail

General

Target

431461aca37711eb94f552248cf36e31b6a1a66095bbd9a53185dfadca1378b0
Size

237KB
MD5

6e46651f53b11e7bab941de8d784a480
SHA1

9608d6ac3418856560d783b316b9331c2c594621
SHA256

431461aca37711eb94f552248cf36e31b6a1a66095bbd9a53185dfadca1378b0
SHA512

1922274aefa3df5f4f7b73c2361dab8f82a3fa229df86d90c982295f8d50f1e52a1cecaa2e533aa6c743df251d7521dc60ff4d740fb957314cae7f7b34f7112b
SSDEEP

6144:TjBUPyqHdgu7hq/LI2SDu/YKzslhlVoHWz0hpvxmVryAJ:PGyqHnk9SawByH0OxCym

Score

N/A

Malware Config

Signatures

Files

431461aca37711eb94f552248cf36e31b6a1a66095bbd9a53185dfadca1378b0
.exe windows x86

ee9a18f94b3649e0e243b609406014b2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowLongA
GetClassNameA
GetFocus
GetIconInfo
DrawTextA
EqualRect
WinHelpA
ShowWindow
MoveWindow
GetClientRect
DdeNameService
SetTimer
DdeUnaccessData
DdeAccessData
DdeQueryStringA
DdeCreateDataHandle
DdeClientTransaction
DdeConnect
DdeCreateStringHandleA
DdeInitializeA
CallWindowProcA
GetMessageA
ClipCursor
SetKeyboardState
GetKeyboardState
ToAscii
ScrollDC
GetSystemMetrics
MessageBoxA
FlashWindow
RedrawWindow
BringWindowToTop
WindowFromPoint
ChildWindowFromPoint
ClientToScreen
KillTimer
IsWindowEnabled
DdeFreeDataHandle
IntersectRect
SetForegroundWindow
FindWindowExA
CopyRect
InvalidateRect
SendDlgItemMessageA
GetDC
GetDlgItem
GetWindowRect
MapWindowPoints
PostMessageA
ReleaseDC
CreateDialogParamA
GetMenuStringA
SetActiveWindow
IsWindowUnicode
SetScrollRange
ShowScrollBar
CharLowerBuffA
CharLowerA
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
VkKeyScanA
GetKeyboardLayout
CopyAcceleratorTableA
MapVirtualKeyA
CallNextHookEx
GetCapture
CharUpperBuffA
DrawIcon
LoadIconA
GetWindowDC
DefMDIChildProcA
GetScrollInfo
IsMenu
GetMenuState
RemoveMenu
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemID
TrackPopupMenu
RegisterWindowMessageA
SetWindowsHookExA
GetWindowThreadProcessId
LoadAcceleratorsA
DispatchMessageA
TranslateMessage
TranslateMDISysAccel
IsDialogMessageA
LoadMenuA
PostQuitMessage
DefFrameProcA
RegisterClassExA
UnhookWindowsHookEx
ValidateRect
InvertRect
DefWindowProcA
DrawFrameControl
RegisterClassA
CopyImage
CreateIconIndirect
GetWindowRgn
SetWindowRgn
IsRectEmpty
OffsetRect
SetScrollInfo
SystemParametersInfoA
GetForegroundWindow
DdeUninitialize
DialogBoxParamA
SetCapture
GetWindow
GetMessagePos
GetAsyncKeyState
GetWindowLongA
IsClipboardFormatAvailable
EmptyClipboard
SetClipboardData
OpenClipboard
EnumClipboardFormats
GetClipboardFormatNameA
CreateWindowExA
GetClipboardData
DestroyWindow
CloseClipboard
MessageBeep
GetTopWindow
IsZoomed
GetActiveWindow
IsWindow
IsCharAlphaA
IsCharAlphaNumericA
GetDesktopWindow
IsIconic
GetDialogBaseUnits
SetDlgItemInt
GetDlgItemInt
GetSystemMenu
CheckMenuItem
CreatePopupMenu
DestroyMenu
GetMenu
GetSubMenu
GetMenuItemCount
DeleteMenu
EnableMenuItem
AppendMenuA
DrawMenuBar
GetWindowTextA
FrameRect
GetParent
GetSysColor
DrawFocusRect
GetKeyState
LoadCursorA
SetCursor
PeekMessageA
MsgWaitForMultipleObjects
BeginPaint
EndPaint
DrawIconEx
DestroyIcon
LoadImageA
IsWindowVisible
FillRect
DrawEdge
IsDlgButtonChecked
EndDialog
SetFocus
ReleaseCapture
GetWindowPlacement
SetWindowPlacement
GetWindowTextLengthA
CheckDlgButton
SetRect
SendMessageA
GetDlgCtrlID
GetCursorPos
ScreenToClient
SetWindowPos
UpdateWindow
PtInRect
SetWindowTextA
EnableWindow
DdeDisconnect
DdeFreeStringHandle
LoadStringA
IsChild
InsertMenuA
ModifyMenuA
GetNextDlgTabItem
ChildWindowFromPointEx
GetScrollPos
GetScrollRange
SetScrollPos
CreateMenu
SetMenu
FindWindowA

comdlg32

ChooseFontA
ChooseColorA
CommDlgExtendedError

shell32

ExtractIconA
ExtractIconExA
SHAppBarMessage
ShellExecuteA
ShellExecuteExA
FindExecutableA
DragQueryFileA
SHFileOperationA
Shell_NotifyIconA

ole32

OleUninitialize
CLSIDFromProgID
OleInitialize
CoLockObjectExternal
CoGetClassObject
OleSetContainedObject
ProgIDFromCLSID
CoCreateInstance
RevokeDragDrop
CoGetInterfaceAndReleaseStream
CoTaskMemFree
RegisterDragDrop
ReleaseStgMedium

advapi32

RegOpenKeyExA
RegSetValueA
RegCreateKeyA
RegQueryValueA
RegOpenKeyA
RegDeleteKeyA
RegCloseKey
RegEnumKeyA
RegSetValueExA
RegCreateKeyExA

gdi32

SetTextColor
SelectObject
DeleteObject
CreateSolidBrush
ExtTextOutA
GetTextMetricsA
CreateHatchBrush
CreateFontA
RectInRegion
CreateRectRgnIndirect
GetTextExtentPointA
GetTextExtentPointW
ExtTextOutW
GetTextCharset
EnumFontFamiliesExA
GetCurrentObject
SetBkColor
GetBkColor
GetClipRgn
CreateRoundRectRgn
SetBkMode
SetROP2
GetStockObject
Ellipse
RoundRect
Rectangle
CreatePatternBrush
DeleteDC
CreatePolygonRgn
PtInRegion
CreateFontIndirectA
GetDeviceCaps
GetNearestColor
CreateRectRgn
SetPixelV
ExtFloodFill
GetTextColor
GetPixel
SelectClipRgn
CreatePen
MoveToEx
LineTo
CombineRgn
CreateDIBSection
CreateDIBitmap
GetDIBits
CreateCompatibleBitmap
StretchBlt
SetStretchBltMode
SetBrushOrgEx
CreateCompatibleDC
GetObjectA
BitBlt
Polygon
CreateBitmap
GetObjectType
ExcludeClipRect
IntersectClipRect
FrameRgn
Polyline

comctl32

ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_Create
ImageList_Destroy
ImageList_Draw

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

mpr

WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum

winmm

timeEndPeriod
timeSetEvent
timeKillEvent
timeBeginPeriod
timeGetDevCaps
mixerClose
mciGetDeviceIDA
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerOpen
mciGetErrorStringA
mciSendStringA
sndPlaySoundA
mixerSetControlDetails

kernel32

ReleaseMutex
GetTimeZoneInformation
LocalReAlloc
CopyFileA
MoveFileA
SetLastError
GetTempPathA
EnterCriticalSection
SetStdHandle
GetSystemTimeAsFileTime
CreateThread
TlsGetValue
TlsSetValue
ExitThread
RtlUnwind
HeapFree
HeapAlloc
TerminateProcess
GetModuleHandleA
GetSystemDefaultLangID
CreateEventA
WaitForSingleObject
LoadLibraryA
GetProcAddress
FreeLibrary
GetCurrentThread
SetThreadPriority
SetEvent
Sleep
WideCharToMultiByte
CloseHandle
MultiByteToWideChar
GetTickCount
FindResourceA
LoadResource
LockResource
LeaveCriticalSection
HeapReAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
SetConsoleCtrlHandler
GetACP
GetOEMCP
GetCPInfo
RaiseException
GetTimeFormatA
GetDateFormatA
GetFileTime
GetCommandLineA
TlsFree
TlsAlloc
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
InitializeCriticalSection
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetStringTypeA
GetStringTypeW
HeapSize
SetUnhandledExceptionFilter
SetEnvironmentVariableA
SetEnvironmentVariableW
VirtualProtect
GetSystemInfo
VirtualQuery
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
CompareStringA
CompareStringW
IsBadReadPtr
IsBadCodePtr
GetFileInformationByHandle
GetVolumeInformationA
PeekNamedPipe
GetProcessId
GetLastError
FormatMessageA
lstrlenA
LocalAlloc
LocalFree
ExitProcess
CompareFileTime
GetShortPathNameA
GetEnvironmentVariableA
FindFirstChangeNotificationA
WaitForMultipleObjects
FindNextChangeNotification
FindCloseChangeNotification
SetErrorMode
CreateMutexA
OpenFileMappingA
MapViewOfFile
UnmapViewOfFile
GetCurrentThreadId
GetLocalTime
RemoveDirectoryA
GetPrivateProfileStringA
WritePrivateProfileStringA
SetFileAttributesA
GetLogicalDriveStringsA
GetDriveTypeA
GetLocaleInfoA
DeleteFileA
CreateDirectoryA
FlushFileBuffers
ReadFile
SetFilePointer
MulDiv
GlobalSize
WriteFile
FindFirstFileA
FindNextFileA
FindClose
WinExec
GetFileAttributesA
GetFileType
QueryDosDeviceA
GetCurrentProcess
GetDiskFreeSpaceA
LoadLibraryExA
EnumResourceTypesA
EnumResourceNamesA
CreateFileA
QueryPerformanceFrequency
QueryPerformanceCounter
GetVersionExA
lstrcpyW
lstrlenW
lstrcatW
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
GetModuleFileNameA
SetEndOfFile
GetWindowsDirectoryA
GetSystemDefaultLCID
SetComputerNameExA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent
EncodePointer
DecodePointer
IsDebuggerPresent
InterlockedIncrement
InterlockedDecrement
IsValidCodePage
GetModuleHandleW
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
WriteConsoleW
LoadLibraryW
CreateFileW
GetStartupInfoA

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BSS
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee9a18f94b3649e0e243b609406014b2

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

comctl32

version

mpr

winmm

kernel32

Sections

.text Size: 53KB - Virtual size: 52KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 8KB - Virtual size: 19KB

.BSS Size: 2KB - Virtual size: 2KB

.rsrc Size: 148KB - Virtual size: 148KB

.text
Size: 53KB - Virtual size: 52KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 8KB - Virtual size: 19KB

.BSS
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 148KB - Virtual size: 148KB