91d043596b274a07167b875eed350061159ec551bcfcee492df62188cad737fe

Sharing

Copy URL

Twitter E-mail

General

Target

91d043596b274a07167b875eed350061159ec551bcfcee492df62188cad737fe
Size

3.6MB
MD5

5b7818a76cb7d76391513cbd44dce6da
SHA1

c80cdbe42e7952c4bcd92d9f7f72b632c162f123
SHA256

91d043596b274a07167b875eed350061159ec551bcfcee492df62188cad737fe
SHA512

79e637765058dc1b8c864a8d1e2185f2580b271bf4736e93ea3bc30c2a05c5b7b98401faf58878367aef0aed3d3d3cefdc7be742b1bd3193cbcb151216f7367a
SSDEEP

98304:Xj04ARi50gXiK8znhee54ocD3QAHAA3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx:zXY3+AAHAA3AAAAAAAAAAAAAAAAAAAAY

Score

N/A

Malware Config

Signatures

Files

91d043596b274a07167b875eed350061159ec551bcfcee492df62188cad737fe
.exe windows x86

c195a5387a66be53061e24c4be239ccb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

kernel32

SearchPathW
LockResource
DeleteFileA
SetEnvironmentVariableA
GetProcessHeap
WriteConsoleW
LoadResource
FindResourceW
GetModuleFileNameW
CreateDirectoryW
CopyFileW
GetPrivateProfileStringW
WritePrivateProfileStringW
MultiByteToWideChar
SetLastError
GetLastError
LoadLibraryW
GetModuleHandleW
GetProcAddress
GetTempPathW
lstrlenW
WideCharToMultiByte
lstrlenA
GetConsoleOutputCP
MulDiv
GetSystemDefaultLCID
lstrcpynW
InterlockedDecrement
InterlockedIncrement
GetSystemDefaultLangID
GetLocaleInfoW
GetACP
FreeLibrary
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GlobalFree
GetTickCount
CloseHandle
WaitForSingleObject
ResumeThread
ExitProcess
GetThreadLocale
GetVersionExA
lstrcmpW
LoadLibraryA
CompareStringW
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
CreateFileA
GetFileAttributesA
GetDateFormatA
GetTimeFormatA
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetCPInfo
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetVersionExW
GlobalDeleteAtom
GlobalFindAtomW
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
GetFileType
SetStdHandle
CreateThread
ExitThread
GetFullPathNameA
GetDriveTypeA
HeapReAlloc
HeapAlloc
HeapFree
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
FindResourceExW
VirtualProtect
Sleep
GetProfileIntW
SizeofResource
GetTempFileNameW
SetErrorMode
lstrcpyW
GetCurrentDirectoryW
GetPrivateProfileIntW
GlobalGetAtomNameW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFileTime
GetFileSizeEx
GetFileAttributesW
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
FindFirstFileW
FindNextFileW
FindClose
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
CompareStringA
InterlockedExchange
lstrcmpA
GetCurrentProcessId
GetModuleHandleA
FormatMessageW
LocalFree
FreeResource
GetCurrentThreadId
GlobalAddAtomW

user32

UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFocusRect
DrawEdge
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
GetNextDlgGroupItem
EmptyClipboard
CloseClipboard
SetClipboardData
DestroyIcon
CopyImage
OpenClipboard
DrawStateW
RegisterClipboardFormatW
EnumChildWindows
SetClassLongW
SetParent
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
CreateAcceleratorTableW
LoadAcceleratorsW
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
PostThreadMessageW
DeleteMenu
WaitMessage
UnregisterClassW
GetSysColorBrush
InvalidateRgn
CopyAcceleratorTableW
CharUpperW
DestroyMenu
GetMenuItemInfoW
ShowOwnedPopups
GetMessageW
TranslateMessage
ValidateRect
SetRectEmpty
SetWindowContextHelpId
MapDialogRect
IsZoomed
PostQuitMessage
MapVirtualKeyW
GetKeyNameTextW
WindowFromPoint
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
GetMenuStringW
InsertMenuW
LoadMenuW
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
IsWindowEnabled
ShowWindow
MoveWindow
IsDialogMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuDefaultItem
EnableMenuItem
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
GetScrollPos
IsWindowVisible
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
CallWindowProcW
GetMenu
SetWindowLongW
IntersectRect
EnableWindow
SendMessageW
CopyRect
GetWindowRect
InflateRect
SystemParametersInfoA
GetWindowPlacement
GetDlgItem
OffsetRect
CharNextW
GetIconInfo
SetForegroundWindow
ShowScrollBar
ClientToScreen
SetRect
SetScrollPos
SetCapture
ReleaseCapture
GrayStringW
DrawTextExW
GetMenuDefaultItem
IsCharLowerW
MapVirtualKeyExW
IsClipboardFormatAvailable
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
GetUpdateRect
CharUpperBuffW
SubtractRect
DrawTextW
TabbedTextOutW
GetWindowLongW
SystemParametersInfoW
GetClassInfoW
DefWindowProcW
GetDesktopWindow
PostMessageW
RegisterWindowMessageW
IsWindow
LockWindowUpdate
UpdateWindow
GetDoubleClickTime
CreateMenu
GetWindowRgn
DestroyCursor
GetMenuState
GetParent
InvalidateRect
GetClientRect
DrawFrameControl
GetCursorPos
ScreenToClient
PtInRect
FillRect
GetSystemMetrics
LoadBitmapW
SetTimer
LoadImageW
KillTimer
LoadIconW
GetSystemMenu
AppendMenuW
RemoveMenu
ModifyMenuW
GetSubMenu
GetDC
ReleaseDC
SetWindowPos
IsIconic
DrawIcon
GetDlgCtrlID
RedrawWindow
CheckMenuItem
GetKeyState
GetFocus
MessageBoxW
IsMenu
GetMenuItemCount
GetMenuItemID
GetWindow
GetWindowTextW
SetWindowTextW
GetClassNameW
MessageBeep
CopyIcon
LoadCursorW
SetCursor
IsRectEmpty
GetSysColor
FrameRect
BringWindowToTop

gdi32

DeleteDC
CreateDIBSection
GetDIBits
RealizePalette
RestoreDC
StretchDIBits
SetStretchBltMode
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
SaveDC
SetBkColor
CreateBitmap
SetBkMode
SetTextColor
CombineRgn
SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
PlayEnhMetaFile
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
GetTextColor
GetDCOrgEx
CopyMetaFileW
SetPolyFillMode
SetROP2
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
GetObjectType
CreateHatchBrush
GetCharWidthW
SetRectRgn
DPtoLP
GetRgnBox
OffsetRgn
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
SetDIBColorTable
SetPixel
CreateEllipticRgn
CreatePolygonRgn
Polyline
Ellipse
Polygon
GetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
DeleteObject
PatBlt
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetBkColor
GetTextExtentPoint32W
GetTextMetricsW
GetCurrentObject
CreateRectRgn
CreateFontIndirectW
GetDeviceCaps
GetObjectW
StretchBlt
RoundRect
BitBlt
ExtCreatePen
SelectObject
Rectangle
CreatePen
CreateSolidBrush
CreateCompatibleBitmap
GetMapMode
CreateCompatibleDC
CreateFontW
OffsetWindowOrgEx
GetStockObject

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW

shell32

DragQueryFileW
ShellExecuteW
SHGetFileInfoW
SHAppBarMessage
SHGetPathFromIDListW
SHGetSpecialFolderPathW
DragFinish
SHBrowseForFolderW

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathFileExistsW

oledlg

OleUIBusyW

ole32

CoTaskMemFree
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoUninitialize
CoCreateInstance
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleLockRunning
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleGetClipboard
CoRevokeClassObject
CoRegisterMessageFilter
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor

oleaut32

SafeArrayDestroy
SafeArrayCreate
SafeArrayPutElement
VariantClear
SysFreeString
SysStringLen
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
OleCreateFontIndirect
VariantChangeType
VariantInit
VariantCopy

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCreateHBITMAPFromBitmap
GdipGetImageThumbnail
GdipCreateBitmapFromFile
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdiplusStartup
GdipLoadImageFromFile
GdipFree
GdipAlloc
GdipCloneImage

ws2_32

ntohl
htonl
ntohs
htons

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 607KB - Virtual size: 606KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 499KB - Virtual size: 498KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c195a5387a66be53061e24c4be239ccb

Headers

DLL Characteristics

File Characteristics

Imports

iphlpapi

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

ws2_32

imm32

winmm

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 607KB - Virtual size: 606KB

.data Size: 37KB - Virtual size: 107KB

.rsrc Size: 499KB - Virtual size: 498KB

.reloc Size: 188KB - Virtual size: 188KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 607KB - Virtual size: 606KB

.data
Size: 37KB - Virtual size: 107KB

.rsrc
Size: 499KB - Virtual size: 498KB

.reloc
Size: 188KB - Virtual size: 188KB