c96e559800b081e762c21026abb7691c3a3311df1a69d9a624944cf39e1b750e

Sharing

Copy URL

Twitter E-mail

General

Target

c96e559800b081e762c21026abb7691c3a3311df1a69d9a624944cf39e1b750e
Size

302KB
MD5

836556815b49dd6af1e197106519392b
SHA1

5bd161f27c28679404a6cca65bbbb99c8c4e105b
SHA256

c96e559800b081e762c21026abb7691c3a3311df1a69d9a624944cf39e1b750e
SHA512

9b7c3e46c93730d37bb9d6ab672aae9627c7570414a3ffb5d0a2cb6ed32234def0d19e1f370581a2974943b5cec340893e550bb39a9a364f4da779a265993f14
SSDEEP

6144:/vHL6XwP2odP8HsCmsnp6cpaGevC5EAa0saI9VR/zH:/vfPbZ8gvB

Score

N/A

Malware Config

Signatures

Files

c96e559800b081e762c21026abb7691c3a3311df1a69d9a624944cf39e1b750e
.exe windows x86

8709b826c9618502c3b61c756173e118

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

socket
ntohs
closesocket
WSCInstallProvider
WSAAddressToStringA
WSAEventSelect
WSADuplicateSocketW
WSACreateEvent

rpcrt4

CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_QueryInterface
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
IUnknown_Release_Proxy
NdrCStdStubBuffer_Release
NdrClientCall2
NdrDllCanUnloadNow
NdrDllGetClassObject
RpcImpersonateClient
RpcBindingVectorFree
NdrOleFree
CStdStubBuffer_Connect
CStdStubBuffer_AddRef
NdrOleAllocate

winspool.drv

ord201
DeviceCapabilitiesW
DeviceMode
EXTDEVICEMODE
GetJobW
GetPrinterDriverA
SetPrinterDataExA
WritePrinter
AddPrinterW

dbghelp

StackWalk64
UnDecorateSymbolName
lmi
vc7fpo

shfolder

SHGetFolderPathA

advapi32

TraceEvent
SystemFunction026
SystemFunction025
SystemFunction001
RegisterTraceGuidsA
RegSetValueExW
RegSetValueExA
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyW
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyA
RegEnumValueW
RegEnumKeyExW
RegEnumKeyExA
RegEnumKeyA
RegDeleteValueW
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegConnectRegistryW
RegCloseKey
OpenThreadToken
OpenSCManagerA
OpenProcessToken
LsaQueryInfoTrustedDomain
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
GetTokenInformation
FreeSid
EnumServicesStatusA
ElfDeregisterEventSource
ElfCloseEventLog
CreateProcessWithLogonW
CloseServiceHandle
AllocateAndInitializeSid
UnregisterTraceGuids

opengl32

wglGetCurrentContext
glVertex4iv
glTexCoord4sv
glTexCoord4i
glTexCoord4dv
glStencilOp
glRasterPos4fv
glRasterPos4dv
glNormal3dv
glMapGrid1d
glLoadMatrixd
glLighti
glGetTexLevelParameteriv
glGetTexLevelParameterfv
glGetPixelMapusv
glCopyTexImage1D
glColor3fv
GlmfCloseMetaFile

shlwapi

SHAutoComplete
PathUnquoteSpacesW
PathUnquoteSpacesA
PathUnExpandEnvStringsW
PathStripPathW
PathSearchAndQualifyA
PathRenameExtensionW
PathRemoveFileSpecW
PathRemoveFileSpecA
PathRemoveExtensionW
PathRemoveBackslashW
PathRemoveArgsA
PathRelativePathToW
PathIsURLW
PathIsUNCServerW
PathIsRootW
PathIsRelativeW
SHDeleteKeyW
PathIsFileSpecW
PathIsDirectoryW
PathIsDirectoryEmptyW
PathIsContentTypeW
PathIsContentTypeA
PathGetArgsA
PathFindOnPathW
PathFindFileNameW
PathFindFileNameA
SHCopyKeyA
PathFileExistsW
PathFileExistsA
PathCompactPathExW
PathCombineW
PathAppendW
PathAppendA
PathAddExtensionW
PathAddBackslashW
HashData
SHDeleteValueA
SHDeleteValueW
SHEnumKeyExW
SHGetValueA
SHGetValueW
SHQueryInfoKeyW
SHQueryValueExA
SHQueryValueExW
SHRegGetBoolUSValueA
SHRegSetUSValueA
SHSetValueA
SHSetValueW
StrCSpnA
StrCSpnW
StrChrA
StrCmpIW
StrCmpNIA
StrCmpNIW
StrCmpNW
ord16
PathFindExtensionW
StrCmpW
StrDupA
StrDupW
StrFormatByteSizeW
StrRChrIW
StrStrA
StrStrIA
StrStrIW
StrStrW
StrToIntA
StrToIntExA
StrToIntExW
StrToIntW
StrTrimA
UrlApplySchemeW
UrlCombineW
UrlCreateFromPathW
UrlUnescapeA
UrlUnescapeW
SHDeleteKeyA

kernel32

lstrlenW
lstrlenA
lstrcmpiW
lstrcmpiA
lstrcmpW
lstrcmpA
_hwrite
WritePrivateProfileStructW
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SystemTimeToFileTime
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetThreadPriority
SetSystemTime
SetLastError
SetHandleInformation
SetFileTime
SetFilePointer
SetFileAttributesW
SetEvent
SetErrorMode
SetEndOfFile
RtlMoveMemory
ResumeThread
ReplaceFileA
RemoveDirectoryW
RemoveDirectoryA
ReleaseMutex
ReadFile
ReadConsoleOutputA
RaiseException
QueryPerformanceCounter
OpenThread
OpenMutexA
OpenFile
MultiByteToWideChar
MulDiv
MoveFileW
MoveFileExW
MapUserPhysicalPages
LockResource
LocalReAlloc
LocalFree
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryExA
LoadLibraryA
LeaveCriticalSection
IsDBCSLeadByteEx
IsDBCSLeadByte
IsBadReadPtr
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
HeapReAlloc
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalFree
GlobalAlloc
GetVersionExA
GetVersion
GetUserDefaultUILanguage
GetUserDefaultLCID
GetTimeFormatW
GetTickCount
GetTempPathW
GetTempPathA
GetTempFileNameW
GetTempFileNameA
GetSystemWindowsDirectoryA
GetSystemTimeAsFileTime
GetSystemTime
GetSystemPowerStatus
GetSystemInfo
CloseHandle
CompareFileTime
CompareStringA
CompareStringW
ConnectNamedPipe
CopyFileW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileW
CreateMutexA
CreateMutexW
CreateProcessW
CreateThread
CreateTimerQueueTimer
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeleteTimerQueueTimer
DeviceIoControl
DuplicateHandle
EndUpdateResourceW
EnterCriticalSection
EnumCalendarInfoW
EnumSystemCodePagesW
EnumTimeFormatsA
ExitProcess
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileW
FindResourceA
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FormatMessageW
FreeLibrary
FreeLibraryAndExitThread
FreeResource
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProfileIntA
GetShortPathNameW
GetStdHandle
GetStringTypeExA
GetSystemDefaultUILanguage
GetSystemDirectoryA
GetSystemDirectoryW
SearchPathA

gdi32

CreateFontA
CreateDIBSection
CreateFontIndirectA
CreateCompatibleBitmap
CloseMetaFile
ChoosePixelFormat
CreateFontIndirectW
CreateMetaFileA
CreatePen
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteMetaFile
DeleteObject
Ellipse
EnumFontFamiliesExA
ExtTextOutA
ExtTextOutW
GetClipBox
GetDeviceCaps
GetObjectA
GetObjectW
GetTextExtentPoint32W
GetTextExtentPointA
GetTextExtentPointW
GetTextMetricsA
LPtoDP
LineTo
MoveToEx
PatBlt
Polygon
Polyline
Rectangle
RestoreDC
SaveDC
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetTextColor
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutW
CreateCompatibleDC
BitBlt

msvcrt

_wremove
iswpunct
_strnset

user32

TranslateAcceleratorA
TrackPopupMenuEx
TrackPopupMenu
TrackMouseEvent
SystemParametersInfoA
ShowWindow
SetWindowsHookExA
SetWindowTextW
SetWindowTextA
SetWindowRgn
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetWindowLongA
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WindowFromPoint
TranslateAcceleratorW
SetTimer
SetRectEmpty
SetRect
SetPropW
ActivateKeyboardLayout
AdjustWindowRect
AdjustWindowRectEx
AppendMenuA
AppendMenuW
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
CallWindowProcW
CharLowerA
CharLowerW
CharNextA
CharNextExA
CharNextW
CharPrevA
CharPrevW
CharUpperA
CharUpperW
CheckDlgButton
CheckMenuItem
CheckMenuRadioItem
CheckRadioButton
ClientToScreen
CloseClipboard
CopyRect
CreateDialogParamW
CreatePopupMenu
CreateWindowExA
CreateWindowExW
DdeAbandonTransaction
DefWindowProcA
DefWindowProcW
DeferWindowPos
DeleteMenu
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DialogBoxParamW
DispatchMessageA
DispatchMessageW
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIconEx
DrawTextA
DrawTextExW
DrawTextW
EmptyClipboard
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumThreadWindows
EnumWindows
EqualRect
FillRect
FindWindowExA
FindWindowExW
GetActiveWindow
GetCapture
GetClassInfoA
GetClassInfoExA
GetClassInfoExW
GetClassInfoW
GetClassNameA
GetClassNameW
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
GetDlgItemTextW
GetFocus
GetForegroundWindow
GetGUIThreadInfo
GetKeyState
GetKeyboardLayoutList
GetLastActivePopup
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuItemInfoW
GetMenuState
GetMenuStringW
GetMessageExtraInfo
GetMessagePos
GetMessageW
GetMonitorInfoA
GetNextDlgGroupItem
GetNextDlgTabItem
GetParent
GetPropA
GetPropW
GetScrollBarInfo
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetWindow
GetWindowDC
GetWindowInfo
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
InsertMenuA
InsertMenuItemA
InsertMenuItemW
InsertMenuW
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsDialogMessageW
IsDlgButtonChecked
IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadAcceleratorsW
LoadCursorA
LoadIconA
LoadImageA
LoadImageW
LoadMenuA
LoadMenuW
LoadStringA
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuW
MonitorFromPoint
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageA
SendMessageCallbackW
SendMessageTimeoutA
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetDlgItemInt
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenu
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoA
SetMenuItemInfoW
SetParent
SetPropA

Sections

.text
Size: 222KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8709b826c9618502c3b61c756173e118

Headers

File Characteristics

Imports

ws2_32

rpcrt4

winspool.drv

dbghelp

shfolder

advapi32

opengl32

shlwapi

kernel32

gdi32

msvcrt

user32

Sections

.text Size: 222KB - Virtual size: 224KB

.rdata Size: 29KB - Virtual size: 31KB

.data Size: 22KB - Virtual size: 23KB

.idata Size: 16KB - Virtual size: 19KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 222KB - Virtual size: 224KB

.rdata
Size: 29KB - Virtual size: 31KB

.data
Size: 22KB - Virtual size: 23KB

.idata
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 11KB - Virtual size: 11KB