9eaa7f8f1217de78188478a0c21f0c03f30b4e18336e0fa641868c9b28caa437

Sharing

Copy URL Twitter E-mail

General

Target

9eaa7f8f1217de78188478a0c21f0c03f30b4e18336e0fa641868c9b28caa437
Size

196KB
MD5

695fb49b6320f99c84a59ce249c1b3e0
SHA1

f9019e0a25845d3421ad394d74b5779780eea890
SHA256

9eaa7f8f1217de78188478a0c21f0c03f30b4e18336e0fa641868c9b28caa437
SHA512

c52eb56b2d65dd62d44e3a48a1171a285f12daf4b982c20fc3ae32be76a62efbec7d4e640f899becbf855e73f63b7802df3c8aa7b7f77e04dae11b0a823d4281
SSDEEP

3072:/ks4uXxyiB5DmeoLs8AAMMtXM2mQWRptq6qqY6CV+RqFH:/kslxyitssAMMt82f+ptqnR6C4W

Score

N/A

Malware Config

Signatures

Files

9eaa7f8f1217de78188478a0c21f0c03f30b4e18336e0fa641868c9b28caa437
.exe windows x86

25788280e022ca156628c649f212b76f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
GetWindowRect
PostMessageA
GetWindowDC
wsprintfA
DestroyCursor
SetCursor
CallWindowProcW
WinHelpW
SetActiveWindow
ReleaseDC
SetCapture
SetParent
FindWindowExW
GetClassInfoW
UnregisterClassW
RegisterClassW
GetCursorPos
GetFocus
SetWindowPlacement
SystemParametersInfoW
FindWindowW
BringWindowToTop
SetForegroundWindow
IntersectRect
DialogBoxParamW
CreateDialogIndirectParamW
CreateDialogParamW
LoadCursorW
LoadStringW
LoadMenuIndirectW
LoadMenuW
SetProcessDefaultLayout
SetWindowRgn
ReleaseCapture
GetSystemMenu
LoadImageW
LoadIconW
LoadBitmapW
GetMenuStringW
ModifyMenuW
GetMenuItemInfoW
GetMenuState
DeleteMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
CreateAcceleratorTableW
LoadAcceleratorsW
CharNextW
CharNextA
GetWindowTextLengthW
GetDlgItemTextW
IsDlgButtonChecked
GetAsyncKeyState
DestroyWindow
DialogBoxIndirectParamW
ShowWindow
GetTopWindow
EnableMenuItem
SetDlgItemTextW
CheckDlgButton
CreateWindowExW
GetLastActivePopup
SetWindowsHookExW
MessageBoxW
GetClassNameW
CallNextHookEx
wsprintfW
SetWindowLongW
GetWindowLongW
InflateRect
PtInRect
GetWindowTextW
DrawTextW
DefWindowProcW
GetDlgItem
SetFocus
MapWindowPoints
MoveWindow
SetWindowTextW
SendMessageW
EndDialog
GetMessageW
TranslateMessage
DispatchMessageW
WaitForInputIdle
PostThreadMessageW
GetWindowLongA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindow
GetSysColor
EndPaint
GetDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
LoadCursorA
GetSysColorBrush
GetClassNameA
DestroyMenu
UnhookWindowsHookEx
GetSystemMetrics
ExitWindowsEx
LoadIconA
GetDesktopWindow
BeginPaint
IsIconic
DrawIcon
LoadBitmapA
MessageBoxA
GetParent
SendMessageA
OffsetRect
CopyRect
LoadImageA
EnableWindow
InvalidateRect

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderLocation
ShellExecuteA
SHGetSpecialFolderPathW
SHGetFolderPathW
SHGetFileInfoW
ShellExecuteW
SHGetMalloc

ole32

OleUninitialize
CoCreateInstance
StringFromGUID2
CoInitialize
CoUninitialize
OleInitialize

advapi32

RegSetValueExW
RegQueryValueW
RegSetValueW
RegCloseKey
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
OpenProcessToken
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
LookupPrivilegeValueA
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteValueW
RegCreateKeyW
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyW

gdi32

CreateCompatibleDC
GetBkColor
BitBlt
StretchBlt
SelectObject
CombineRgn
CreateRectRgn
CreateFontIndirectA
GetStockObject
GetDeviceCaps
SaveDC
RestoreDC
SetBkColor
SetBkMode
DeleteObject
GetDIBits
SetTextColor
CreateCompatibleBitmap
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
CreateBitmap
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
CreateDIBSection
GetObjectW
CreateFontIndirectW
GetTextExtentPoint32W
CreateDCW
GetTextMetricsW
PatBlt
SelectPalette
RealizePalette
StretchDIBits
Rectangle
Polygon
MoveToEx
LineTo
ExtTextOutW
CreateDIBitmap
GetPixel
GetTextFaceW
GetDCOrgEx
GetTextExtentPointA
CreateFontW
CreatePen
CreateSolidBrush
CreatePatternBrush
CreateBitmapIndirect
GetNearestColor
GetTextCharset
SetMapMode
GetObjectA
GetClipBox

comctl32

_TrackMouseEvent

shlwapi

PathFindExtensionA
PathFindFileNameA

kernel32

PulseEvent
GlobalAddAtomA
WriteConsoleOutputW
OpenProcess
VirtualAllocEx
TerminateJobObject
GlobalAlloc
LeaveCriticalSection
GetThreadPriority
GetCurrentDirectoryW
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
EnterCriticalSection
GetModuleHandleA
WideCharToMultiByte
GetTimeZoneInformation
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
VirtualAlloc
HeapReAlloc
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
HeapSize
CloseHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateFileA
GetCurrentProcessId

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.monkey
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25788280e022ca156628c649f212b76f

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

comctl32

shlwapi

kernel32

Sections

.text Size: 115KB - Virtual size: 115KB

.data Size: 6KB - Virtual size: 34KB

.monkey Size: 52KB - Virtual size: 52KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 115KB - Virtual size: 115KB

.data
Size: 6KB - Virtual size: 34KB

.monkey
Size: 52KB - Virtual size: 52KB

.rsrc
Size: 21KB - Virtual size: 20KB