d1299b6f276187638301727a0e6f5412a83a11067a24c62f8c00d244d0a5687c

Sharing

Copy URL Twitter E-mail

General

Target

d1299b6f276187638301727a0e6f5412a83a11067a24c62f8c00d244d0a5687c
Size

1.1MB
MD5

7c564dab9d8e6a6a3c6fa37c0a176f64
SHA1

38c28db5390587685a5f9f085f21aa09f52f72f1
SHA256

d1299b6f276187638301727a0e6f5412a83a11067a24c62f8c00d244d0a5687c
SHA512

5ea854cae60e148fe92f69f8c2f2af0f1d32bad4864e5f1dea81ba2884da71aed50004b1b8eb66aea182c0b7b82fca03674904721de5b500c135571bf55564f0
SSDEEP

24576:xsugXkGPEgIrmFykusnCjCTKsBlwscVqy+lN6vd2:xsu0PEgIrQhusCjCTZBlwscVqy+lNEM

Score

N/A

Malware Config

Signatures

Files

d1299b6f276187638301727a0e6f5412a83a11067a24c62f8c00d244d0a5687c
.exe windows x86

a6a7f601091f82d87913892f5e263fca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

ws2_32

WSAGetLastError
connect
gethostbyname
inet_addr
getpeername
WSASend
WSARecv
WSACloseEvent
WSACreateEvent
WSAStartup
socket
WSACleanup
WSAResetEvent
WSASetLastError
setsockopt
listen
WSAEventSelect
WSAAccept
WSAEnumNetworkEvents
gethostname
bind
htonl
WSASocketA
ntohs
htons
closesocket
shutdown
WSAWaitForMultipleEvents

kernel32

GlobalAlloc
GlobalSize
CopyFileA
SetLastError
GetProcAddress
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
GetModuleFileNameA
MoveFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetShortPathNameA
SuspendThread
EnumResourceLanguagesA
ConvertDefaultLocale
lstrcmpA
LocalFree
GlobalFlags
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
SetErrorMode
FileTimeToLocalFileTime
LocalFileTimeToFileTime
GetFileTime
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
LocalUnlock
LocalLock
GetTempFileNameA
GetDiskFreeSpaceA
ExitProcess
RtlUnwind
FindNextFileA
VirtualProtect
VirtualQuery
ExitThread
CreateThread
GetStartupInfoA
GetCommandLineA
HeapSize
QueryPerformanceCounter
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
FatalAppExitA
GetTimeZoneInformation
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
SetStdHandle
IsBadWritePtr
SetConsoleCtrlHandler
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
SetEnvironmentVariableA
lstrcpynA
GlobalLock
GlobalUnlock
GlobalFree
HeapCreate
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
CreateIoCompletionPort
PostQueuedCompletionStatus
GetOverlappedResult
GetQueuedCompletionStatus
GetSystemInfo
CreateEventA
SetThreadPriority
WaitForMultipleObjects
SetEvent
VirtualFree
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
VirtualAlloc
LeaveCriticalSection
EnterCriticalSection
FreeResource
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
lstrcatA
WinExec
lstrcpyA
IsDBCSLeadByte
CreateToolhelp32Snapshot
Process32First
Process32Next
CloseHandle
OpenProcess
GetExitCodeProcess
TerminateProcess
GetStringTypeExW
GetStringTypeExA
GetEnvironmentVariableW
GetEnvironmentVariableA
CompareStringW
CompareStringA
lstrlenA
lstrcmpiW
lstrlenW
lstrcmpiA
GetVersion
DeleteCriticalSection
InitializeCriticalSection
RaiseException
SystemTimeToFileTime
CreateDirectoryA
GetFileAttributesExA
FileTimeToSystemTime
GetCurrentDirectoryA
CreateFileA
MultiByteToWideChar
GetCurrentProcessId
Sleep
CreateProcessA
OpenMutexA
CreateMutexA
ReleaseMutex
GetTickCount
DeleteFileA
MulDiv
SetFileTime
TerminateThread
ResumeThread
WaitForSingleObject
GetLastError
GetModuleHandleA
FormatMessageA
GetFileAttributesA
SetFileAttributesA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetLocalTime
OutputDebugStringA
GetCurrentThread

user32

GetKeyNameTextA
MapVirtualKeyA
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetWindowDC
BeginPaint
EndPaint
ValidateRect
GetCursorPos
TranslateMessage
GetMessageA
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
GetDialogBaseUnits
GetSysColorBrush
GetMenuItemInfoA
SetCapture
ReleaseCapture
GetWindowThreadProcessId
WaitMessage
DeleteMenu
IsRectEmpty
SetRect
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
IsClipboardFormatAvailable
GetTabbedTextExtentA
TranslateAcceleratorA
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
RegisterClipboardFormatA
UnionRect
PostThreadMessageA
GetDCEx
LockWindowUpdate
GetSystemMenu
SetParent
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageA
MapWindowPoints
ScrollWindow
MessageBoxA
TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
GetMenu
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
SetWindowPlacement
DefWindowProcA
CallWindowProcA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
RemoveMenu
GetWindowTextLengthA
GetWindowTextA
GetFocus
SetWindowPos
ScrollWindowEx
SetFocus
ShowWindow
MoveWindow
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
GetWindow
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
EndDialog
RedrawWindow
UpdateWindow
SetWindowLongA
LoadCursorA
CopyIcon
MessageBeep
IsWindow
GetMessagePos
KillTimer
SetTimer
ScreenToClient
PtInRect
LoadMenuA
LoadImageA
GetSubMenu
TrackPopupMenuEx
SetCursor
DestroyCursor
DestroyMenu
GetWindowLongA
WindowFromPoint
GetParent
GetNextDlgTabItem
GetActiveWindow
InvalidateRect
ClientToScreen
DrawFocusRect
FrameRect
FillRect
OffsetRect
InflateRect
CopyRect
GetSysColor
GetIconInfo
GetDC
CreateIconIndirect
ReleaseDC
DrawStateA
DestroyIcon
CharNextA
UnregisterClassA
CharUpperW
CharUpperA
CharLowerW
CharLowerA
CharNextExA
GetSystemMetrics
LoadIconA
GetWindowRect
IsIconic
DrawIcon
FindWindowA
PostQuitMessage
wsprintfA
PostMessageA
SetWindowRgn
SendMessageA
GetClientRect
EnableWindow
GetDlgItem
IsWindowVisible

gdi32

SetROP2
SetStretchBltMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
PolylineTo
PolyBezierTo
ExtSelectClipRgn
CreateDIBPatternBrushPt
CreatePatternBrush
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
CreatePen
ExtCreatePen
CreateHatchBrush
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
GetTextMetricsA
GetBkColor
SetPolyFillMode
GetTextColor
GetRgnBox
GetCharWidthA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
StretchDIBits
CreateFontA
ExtTextOutA
TextOutA
RectVisible
PtVisible
StartDocA
GetWindowExtEx
GetViewportExtEx
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetBkMode
RestoreDC
SaveDC
PatBlt
CreateRectRgnIndirect
GetClipBox
GetDCOrgEx
CreateDCA
CopyMetaFileA
GetDeviceCaps
CreateSolidBrush
GetTextExtentPoint32A
CreateCompatibleBitmap
GetPixel
SetPixel
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
CreateBitmap
SetBkColor
SetTextColor
DeleteObject
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetObjectA
CreateFontIndirectA
GetStockObject
Escape
CreateRoundRectRgn
ExcludeClipRect
SetViewportOrgEx

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA
ReplaceTextA
FindTextA
CommDlgExtendedError
PrintDlgA
PageSetupDlgA

winspool.drv

DocumentPropertiesA
OpenPrinterA
GetJobA
ClosePrinter

advapi32

GetFileSecurityA
RegQueryValueA
RegOpenKeyExA
RegSetValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegCloseKey
SetFileSecurityA

shell32

ShellExecuteExA
DragQueryFileA
DragFinish
SHGetFileInfoA
ShellExecuteA
ExtractIconA

comctl32

_TrackMouseEvent
ord17
ord13
ImageList_Read
ImageList_Write
ord14
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Draw
ImageList_GetImageInfo

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoTaskMemFree
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
CoRevokeClassObject
CoRegisterClassObject
ReadFmtUserTypeStg
CoFreeUnusedLibraries
OleUninitialize
OleRun
CreateILockBytesOnHGlobal
OleRegGetUserType
StgOpenStorageOnILockBytes
CoGetClassObject
CoDisconnectObject
StringFromGUID2
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
OleInitialize
StgCreateDocfileOnILockBytes
OleDuplicateData
ReleaseStgMedium
CoTaskMemAlloc
CreateBindCtx
CoTreatAsClass
StringFromCLSID
ReadClassStg

oleaut32

SafeArrayPutElement
SafeArrayAllocDescriptor
SafeArrayAllocData
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysStringByteLen
SysAllocStringByteLen
SysStringLen
VariantClear
OleLoadPicture
VariantChangeType
VariantInit
SysFreeString
LoadTypeLi
OleCreateFontIndirect
VarBstrFromDate
SafeArrayCopy
SafeArrayGetElement
SafeArrayPtrOfIndex
SysAllocStringLen
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
SysReAllocStringLen
VarDateFromStr
VarBstrFromDec
VarDecFromStr
VarCyFromStr
VarBstrFromCy

d3d9

Direct3DCreate9

wininet

InternetCloseHandle
InternetConnectA
InternetSetOptionA
InternetOpenA
InternetReadFile
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA

Sections

.text
Size: 684KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a6a7f601091f82d87913892f5e263fca

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

d3d9

wininet

Sections

.text Size: 684KB - Virtual size: 680KB

.rdata Size: 152KB - Virtual size: 151KB

.data Size: 20KB - Virtual size: 34KB

.rsrc Size: 280KB - Virtual size: 280KB

.text
Size: 684KB - Virtual size: 680KB

.rdata
Size: 152KB - Virtual size: 151KB

.data
Size: 20KB - Virtual size: 34KB

.rsrc
Size: 280KB - Virtual size: 280KB