09b7511097ba23a64526b00cd50ef478f468d8f515a2946e8f0878fa8b260811

Sharing

Copy URL

Twitter E-mail

General

Target

09b7511097ba23a64526b00cd50ef478f468d8f515a2946e8f0878fa8b260811
Size

565KB
MD5

a0e1b8505074e7e78fa9cbbb72ebf330
SHA1

e2c7955194b711704621cb115671d98c69bbaaff
SHA256

09b7511097ba23a64526b00cd50ef478f468d8f515a2946e8f0878fa8b260811
SHA512

f75cff64c6ddf713cddb6a14ba2d5a610b158dc022c0369ed9bb1377376718873b90208c3f926b3bc15573c41a03f5e31d720fdcac15f0fc938010141eb0eef8
SSDEEP

12288:ydPq/BBaASp08yFqcoNxBOHkR9kc8QcUnCE4pEf6bg06:8Pq/3aZ08UEbrt8GCESZ006

Score

N/A

Malware Config

Signatures

Files

09b7511097ba23a64526b00cd50ef478f468d8f515a2946e8f0878fa8b260811
.exe windows x86

85e008dc47458b01ad0bf1555ec5b8f8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
LoadStringA
DestroyWindow
GetKeyboardType
ActivateKeyboardLayout
AdjustWindowRectEx
CharToOemA
CharUpperBuffA
CharLowerA
CharLowerBuffA
CharNextA
CallNextHookEx
EnableWindow
ChangeClipboardChain
CheckMenuItem
ChildWindowFromPoint
ClientToScreen
CloseClipboard
CreateCaret
CreateDialogIndirectParamA
CreateIcon
CreateIconFromResourceEx
CreateMenu
CreatePopupMenu
DefFrameProcA
DefMDIChildProcA
GetMenuState
GetMenuItemID
GetMenuItemCount
CallWindowProcA
GetSubMenu
BringWindowToTop
ExitWindowsEx
CreateWindowExW
LoadBitmapW
SetWindowTextW
LoadCursorW
LoadIconW
RegisterClassExW
BeginPaint
DestroyIcon
DestroyCursor
DestroyCaret
DeleteMenu
DefWindowProcA

comdlg32

GetFileTitleW
ChooseFontA
FindTextA
ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

shell32

SHBrowseForFolderA
ShellExecuteW
SHFileOperationA
SHGetFileInfoA
ShellExecuteA
ShellExecuteExA
SHChangeNotify
SHGetDataFromIDListA
SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetFolderPathW

oledlg

OleUIBusyW

ole32

CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoInitialize
CoUninitialize
CoRevokeClassObject
StringFromCLSID
RegisterDragDrop
RevokeDragDrop
DoDragDrop
OleGetClipboard
ReleaseStgMedium
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleFlushClipboard
CoRegisterMessageFilter
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegFlushKey
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA

gdi32

StretchBlt
StretchDIBits
UnrealizeObject
BitBlt
StartPage
StartDocA
SetWindowOrgEx
SetWinMetaFileBits
SetStretchBltMode
SetROP2
SetPixel
SetEnhMetaFileBits
SetDIBColorTable
SetBrushOrgEx
SetAbortProc
SelectPalette
SelectClipRgn
RoundRect
Rectangle
RealizePalette
Polyline
Polygon
PolyPolyline
PlayEnhMetaFile
PatBlt
MoveToEx
MaskBlt
LineTo
IntersectClipRect
GetWindowOrgEx
GetWinMetaFileBits
GetTextMetricsA
GetTextExtentPointA
GetTextExtentPoint32A
GetSystemPaletteEntries
GetPixel
GetPaletteEntries
GetObjectType
GetObjectA
GetNearestPaletteIndex
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileBits
GetDIBits
GetDIBColorTable
GetDCOrgEx
GetCurrentPositionEx
GetBrushOrgEx
GetBitmapBits
GdiFlush
ExtTextOutA
ExtCreatePen
ExcludeClipRect
EndPage
EndDoc
DeleteEnhMetaFile
CreateSolidBrush
CreateRoundRectRgn
SelectObject
SetTextColor
DeleteObject
GetStockObject
SetBkMode
GetObjectW
GetDeviceCaps
SaveDC
RestoreDC
SetBkColor
SetMapMode
GetClipBox
GetViewportExtEx
GetWindowExtEx
PtVisible
CreateRectRgn
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreateBitmap
ScaleViewportExtEx
DPtoLP
GetRgnBox
GetTextColor
GetBkColor
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectW
RectVisible
CombineRgn
CopyEnhMetaFileA
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateDIBitmap
CreateFontIndirectA
CreateHalftonePalette
CreateICA
CreatePalette
CreatePen
CreatePenIndirect

comctl32

ImageList_BeginDrag
ImageList_LoadImageA
ImageList_Remove
ImageList_DrawEx
ImageList_Replace
ImageList_Draw
ImageList_SetOverlayImage
ImageList_EndDrag
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_Destroy
ImageList_Create
ord17
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_Read
ImageList_Write
ImageList_GetIconSize
ImageList_SetIconSize
_TrackMouseEvent
ImageList_GetBkColor
ImageList_GetImageCount

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

shlwapi

PathAddBackslashW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW

winmm

timeGetTime
mciSendCommandA
mciGetErrorStringA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter
EnumPrintersA

kernel32

HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsAlloc
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFree
GlobalLock
GlobalHandle
GlobalSize
GlobalUnlock
InitializeCriticalSection
LoadLibraryA
LoadResource
LockResource
MapViewOfFile
MoveFileA
MoveFileExA
MulDiv
OpenSemaphoreA
ReadFile
ReleaseSemaphore
RemoveDirectoryA
ResetEvent
ResumeThread
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesA
SetFilePointer
SetThreadLocale
SetThreadPriority
SizeofResource
SystemTimeToFileTime
TerminateThread
UnmapViewOfFile
WaitForMultipleObjects
WaitForSingleObject
WinExec
lstrcmpA
lstrcpyA
lstrlenW
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
GetTimeZoneInformation
GetModuleHandleW
HeapFree
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
HeapAlloc
HeapReAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapSize
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringW
SetEnvironmentVariableA
FreeEnvironmentStringsA
GlobalAddAtomA
GetWindowsDirectoryA
GetVersionExA
GetVersion
GetUserDefaultLCID
GetTimeFormatA
GetTempPathA
GetSystemInfo
GetSystemDefaultLCID
GetShortPathNameA
GetProfileStringA
GetLocalTime
GetLastError
GetFullPathNameA
GetFileSize
GetFileAttributesA
GetExitCodeThread
GetDiskFreeSpaceA
GetDateFormatA
VirtualAlloc
UnhandledExceptionFilter
DeleteTimerQueueEx
GetTempFileNameA
ContinueDebugEvent
SetConsoleTitleA
GetCommModemStatus
LeaveCriticalSection
GetStdHandle
RaiseException
RtlUnwind
WriteFile
CompareStringA
CreateThread
ExitThread
ExitProcess
FindClose
FindFirstFileA
FreeLibrary
GetCommandLineA
GetCurrentDirectoryA
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetThreadLocale
LoadLibraryExA
lstrcpynA
lstrlenA
MultiByteToWideChar
SetCurrentDirectoryA
WideCharToMultiByte
VirtualQuery
GetCurrentThreadId
QueryPerformanceCounter
GetTickCount
VirtualFree
Sleep
GetACP
LocalAlloc
TlsGetValue
TlsSetValue
CloseHandle
CreateDirectoryA
CreateEventA
CreateFileA
CreateFileMappingA
CreatePipe
CreateProcessA
CreateSemaphoreA
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
EnumCalendarInfoA
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FindCloseChangeNotification
FindFirstChangeNotificationA
FindNextChangeNotification
FindNextFileA
FindResourceA
FlushViewOfFile
FormatMessageA
FreeResource
GetCPInfo
GetCurrentProcessId

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85e008dc47458b01ad0bf1555ec5b8f8

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

oledlg

ole32

advapi32

gdi32

comctl32

version

shlwapi

winmm

winspool.drv

kernel32

Sections

.text Size: 55KB - Virtual size: 55KB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 1.0MB

.rsrc Size: 484KB - Virtual size: 483KB

.text
Size: 55KB - Virtual size: 55KB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 1.0MB

.rsrc
Size: 484KB - Virtual size: 483KB