2e7dbe75dd7600e436e727520c9f59eec0980b4ee06fa596ef090cad811a18a0

Sharing

Copy URL Twitter E-mail

General

Target

2e7dbe75dd7600e436e727520c9f59eec0980b4ee06fa596ef090cad811a18a0
Size

3.6MB
MD5

4156c82ed86d0f4a55223e5803173ec8
SHA1

edbc653cb576973d8ac25677f641ce6222abd45f
SHA256

2e7dbe75dd7600e436e727520c9f59eec0980b4ee06fa596ef090cad811a18a0
SHA512

b1335ec9a2068e6095a1fc12f3f24f6ba410312524ae788306882d70d89a62f2729438ba85c4f694996bf410c1d70b547e6d29e3ffd4224105ec35af8184be93
SSDEEP

49152:ThfbNKoQqh+OvilkMQlyymMolGP4r3a0h/Cp4d0+EhV8wdEpPPTSJsUN:TlbNxFAOq6Gy8jDamEhVldi

Score

N/A

Malware Config

Signatures

Files

2e7dbe75dd7600e436e727520c9f59eec0980b4ee06fa596ef090cad811a18a0
.exe windows x86

93178c82aa278092da7185534dca1a94

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventA
CreateFileMappingA
CreateSemaphoreA
lstrcpyA
SetEnvironmentVariableA
CreateFileA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeA
LCMapStringW
LCMapStringA
GetStringTypeW
InitializeCriticalSectionAndSpinCount
HeapReAlloc
HeapSize
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetModuleFileNameA
ExitProcess
Sleep
VirtualQuery
GetSystemInfo
VirtualAlloc
RaiseException
RtlUnwind
IsBadReadPtr
HeapValidate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetStartupInfoW
GetCurrentDirectoryW
VirtualProtect
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetAtomNameW
SetErrorMode
LocalFileTimeToFileTime
GetFileSizeEx
FileTimeToLocalFileTime
lstrcmpiW
GetStringTypeExW
GetVolumeInformationW
DeleteFileW
MoveFileW
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetModuleHandleA
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
GetFileAttributesW
SetEvent
WaitForSingleObject
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetCurrentProcessId
GetTickCount
ReleaseMutex
CreateMutexW
ReleaseSemaphore
CompareStringA
InterlockedExchange
lstrcmpA
GetCurrentThread
GetLocaleInfoW
ConvertDefaultLocale
EnumResourceLanguagesW
LoadLibraryA
lstrcmpW
GetCurrentThreadId
GlobalGetAtomNameW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExA
CompareStringW
GetLastError
MulDiv
LocalFree
GetThreadLocale
SystemTimeToFileTime
FileTimeToSystemTime
GetModuleHandleW
lstrlenA
OpenFileMappingW
CopyFileW
CloseHandle
DeviceIoControl
CreateFileW
GetVersionExW
GlobalFree
SleepEx
FreeResource
GlobalUnlock
GlobalLock
GlobalAlloc
InterlockedIncrement
HeapAlloc
GetProcessHeap
HeapFree
FormatMessageW
lstrlenW
GetProcAddress
LoadLibraryW
FindClose
InterlockedDecrement
FindNextFileW
FindFirstFileW
GetModuleFileNameW
FreeLibrary
UnmapViewOfFile
WideCharToMultiByte
MapViewOfFile
CreateFileMappingW
MultiByteToWideChar
SetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
GetShortPathNameW

user32

PostQuitMessage
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
TabbedTextOutW
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
RegisterWindowMessageW
CreateWindowExW
GetClassInfoExW
RegisterClassW
SendDlgItemMessageW
SendDlgItemMessageA
GetSysColor
PeekMessageW
DispatchMessageW
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpW
TrackPopupMenu
GetDlgItem
GetKeyState
DestroyWindow
GetDlgCtrlID
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
SetMenu
GetMenu
GetMessageTime
GetMessagePos
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
LoadIconW
PostThreadMessageW
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetWindowLongW
MapDialogRect
EnableWindow
SetWindowContextHelpId
GetForegroundWindow
SetForegroundWindow
WindowFromPoint
SetParent
GetParent
IsChild
GetLastActivePopup
GetWindow
GetTopWindow
FindWindowW
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
GetDesktopWindow
GetFocus
SetCapture
GetCapture
SetActiveWindow
GetActiveWindow
KillTimer
SetTimer
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
UnregisterClassW
GetTabbedTextExtentA
IsRectEmpty
ValidateRect
InvalidateRgn
InvalidateRect
UpdateWindow
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MapWindowPoints
GetClientRect
GetWindowRect
BringWindowToTop
SetWindowRgn
IsZoomed
IsIconic
GetSystemMenu
DrawIcon
PostMessageW
RegisterClipboardFormatW
GetWindowThreadProcessId
GetSysColorBrush
FillRect
SetCursor
LoadCursorW
MessageBoxW
GetDC
SetWindowLongW
InflateRect
SetRect
LoadImageW
GetClassInfoW
GetWindowDC
ReleaseDC
GetWindowTextW
GetWindowTextLengthW
GetMenuItemID
InsertMenuW
AppendMenuW
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemCount
IsMenu
RemoveMenu
IsWindow
DestroyIcon
MessageBeep
CopyAcceleratorTableW
SendMessageW
CharNextW
GetClipboardFormatNameW
GetClipboardFormatNameA
SetCursorPos
SetRectEmpty
PtInRect
SystemParametersInfoW
DestroyCursor
UnpackDDElParam
ReuseDDElParam
DestroyMenu
ReleaseCapture
TranslateAcceleratorW
LoadAcceleratorsW
CharUpperW
GetCursorPos
GetMessageW
TranslateMessage
EndDialog
CreateDialogIndirectParamW
LoadMenuW
ModifyMenuW
InsertMenuItemW
GetMenuItemInfoW
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
GrayStringW
DrawTextExW
DrawTextW

gdi32

CreateFontIndirectW
CreateFontW
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
SetRectRgn
CombineRgn
GetRgnBox
GetNearestColor
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
PtVisible
RectVisible
GetCurrentPositionEx
Ellipse
Rectangle
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
TextOutW
GetTextExtentPoint32W
GetTextAlign
GetTextFaceW
GetTextMetricsW
GetCharWidthW
Escape
StartDocW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
CreatePatternBrush
CreateSolidBrush
DeleteObject
ExtSelectClipRgn
StretchDIBits
GetTextExtentPointW
CreatePen
GetObjectType
GetStockObject
ExtTextOutW
GetObjectW
SetBkColor
CreateBitmap
SetTextColor
AddFontResourceExW
RemoveFontResourceExW
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
ResetDCW
EnumFontFamiliesExW
CreateDCW
GetDeviceCaps
GetTextExtentPoint32A
GetClipBox

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW
GetJobW

advapi32

CryptGetHashParam
RegEnumKeyExA
RegOpenKeyW
RegQueryValueExW
RegCloseKey
RegCreateKeyW
RegSetValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptReleaseContext
RegDeleteValueW
RegDeleteKeyW
RegQueryValueW
RegEnumKeyW
SetFileSecurityW
GetFileSecurityW
OpenThreadToken
RevertToSelf
SetThreadToken
RegOpenKeyExA

shell32

ExtractIconW
DragFinish
SHGetFileInfoW
DragAcceptFiles
DragQueryFileW
ShellExecuteW

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathRemoveExtensionW
PathFindExtensionW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoGetClassObject
CoRegisterMessageFilter
CoUninitialize
CoInitializeEx
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
StringFromGUID2
StringFromCLSID
CoTaskMemFree
OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CreateStreamOnHGlobal

oleaut32

VariantTimeToSystemTime
VariantClear
VariantInit
SysAllocString
SysFreeString
VarUdateFromDate
GetErrorInfo
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocStringLen
SysStringLen
SafeArrayDestroy
VarBstrFromCy
VariantCopy
VariantChangeType

gdiplus

GdipDrawImageRectRect
GdiplusShutdown
GdipDrawImagePoints
GdipCreateHBITMAPFromBitmap
GdipDrawLineI
GdipDeletePen
GdipCreatePen1
GdipSetSmoothingMode
GdipCreateFromHDC
GdipDeleteGraphics
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipCreateBitmapFromStream
GdiplusStartup

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList

hid

HidD_GetHidGuid
HidD_SetFeature
HidD_FreePreparsedData
HidP_GetCaps
HidD_GetPreparsedData
HidD_GetFeature
HidD_GetAttributes

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 282KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 759KB - Virtual size: 758KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93178c82aa278092da7185534dca1a94

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

setupapi

hid

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 282KB - Virtual size: 282KB

.data Size: 15KB - Virtual size: 35KB

.vmp0 Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 72KB - Virtual size: 71KB

.rsrc Size: 759KB - Virtual size: 758KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 282KB - Virtual size: 282KB

.data
Size: 15KB - Virtual size: 35KB

.vmp0
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 72KB - Virtual size: 71KB

.rsrc
Size: 759KB - Virtual size: 758KB