d2608a040d2b2f292902918ec83a701257a38d2d0102219a60cc15a02af0492d

Sharing

Copy URL Twitter E-mail

General

Target

d2608a040d2b2f292902918ec83a701257a38d2d0102219a60cc15a02af0492d
Size

8.8MB
MD5

807105b84908f627f1aa3d1186d2e6ea
SHA1

6da54f404a5031ba77200e1a3712eaf66b63449e
SHA256

d2608a040d2b2f292902918ec83a701257a38d2d0102219a60cc15a02af0492d
SHA512

2244cca5a9ae101a216ddfd3e9313fd5975d5f404208821de904806c4e6f35e6983d2f54434a6b1243345aef951109cbafad6841fe350e386ee5458505c2057d
SSDEEP

196608:ygyY+4jfp0kXq9LMnGDHM9TFNNyy7b8ajsN1:S4M9LMnkOTFv8ajsN1

Score

N/A

Malware Config

Signatures

Files

d2608a040d2b2f292902918ec83a701257a38d2d0102219a60cc15a02af0492d
.exe windows x86

976833de9b5b2af5654d111d7ec6a0da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

GetModuleBaseNameA

wininet

HttpOpenRequestA
FtpFindFirstFileA
GopherCreateLocatorA
FtpCommandA
FtpOpenFileA
GopherGetAttributeA
HttpSendRequestExA
HttpEndRequestA
HttpSendRequestA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
GopherFindFirstFileA
InternetCloseHandle
InternetFindNextFileA
HttpQueryInfoA
HttpAddRequestHeadersA
InternetErrorDlg
FtpGetFileA
FtpPutFileA
FtpGetCurrentDirectoryA
FtpSetCurrentDirectoryA
FtpRemoveDirectoryA
FtpCreateDirectoryA
FtpRenameFileA
FtpDeleteFileA
InternetQueryDataAvailable
InternetGetCookieA
InternetSetCookieA
InternetSetOptionExA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
DeleteUrlCacheEntry
GopherOpenFileA
InternetOpenUrlA
InternetConnectA

kernel32

GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetDriveTypeA
GetStringTypeA
GetStringTypeW
CompareStringW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetCurrentDirectoryA
GetProcessHeap
SetEnvironmentVariableA
GetConsoleCP
QueryPerformanceCounter
FindResourceA
LoadResource
WideCharToMultiByte
Sleep
SizeofResource
LockResource
CreateProcessA
CloseHandle
MoveFileExA
GetEnvironmentStrings
RemoveDirectoryA
CopyFileA
GetLocalTime
GetCurrentProcess
LeaveCriticalSection
GetLastError
EnterCriticalSection
CreateMutexA
WinExec
InterlockedExchange
FindFirstFileA
GetPrivateProfileStringA
GetEnvironmentStringsW
Process32First
WaitForSingleObject
InitializeCriticalSection
OpenProcess
TerminateProcess
ReadFile
Process32Next
WaitForMultipleObjects
CreatePipe
CreateToolhelp32Snapshot
GlobalLock
GlobalAlloc
GlobalUnlock
CreateDirectoryA
Module32First
FreeEnvironmentStringsA
FatalAppExitA
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
IsValidCodePage
GetACP
HeapSize
GetFileType
SetStdHandle
RaiseException
RtlUnwind
ExitProcess
HeapReAlloc
GetSystemTimeAsFileTime
SetConsoleCtrlHandler
GetStartupInfoA
GetCommandLineA
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapAlloc
HeapFree
IsDebuggerPresent
SetUnhandledExceptionFilter
SetFileAttributesA
GlobalFree
GlobalReAlloc
GetModuleFileNameA
FreeEnvironmentStringsW
UnhandledExceptionFilter
CreateThread
DeleteFileA
FreeResource
SetLastError
ExitThread
LocalLock
LocalUnlock
FindResourceExA
VirtualProtect
GetProfileIntA
SearchPathA
GetSystemDirectoryW
LoadLibraryW
GetTempPathA
GetTickCount
lstrcpyA
GetCurrentDirectoryA
GetDiskFreeSpaceA
GetTempFileNameA
GetOEMCP
GetCPInfo
GlobalFlags
InterlockedIncrement
GetModuleHandleW
SetErrorMode
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
GetAtomNameA
GetFileSizeEx
GetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileAttributesExA
SuspendThread
ResumeThread
SetThreadPriority
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryExA
lstrcmpA
LocalAlloc
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GetVersionExA
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
GetModuleHandleA
GetCurrentProcessId
GlobalSize
FormatMessageA
LocalFree
lstrlenW
MulDiv
GetProcAddress
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
LoadLibraryA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
MultiByteToWideChar
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
lstrlenA
ResetEvent
ReleaseSemaphore
CreateSemaphoreA
CreateEventA
SetEvent
DeleteCriticalSection
GetFileTime
MoveFileA
WriteFile
SetEndOfFile
SetFilePointer
GetFileSize
CreateFileA

user32

UpdateLayeredWindow
EnableScrollBar
SetCursorPos
DrawIconEx
DrawFocusRect
DrawFrameControl
DrawEdge
UnionRect
GetKeyNameTextA
EmptyClipboard
CloseClipboard
SetClipboardData
CopyImage
OpenClipboard
DrawStateA
RegisterClipboardFormatA
EnumChildWindows
LockWindowUpdate
IsMenu
GetSystemMenu
SetClassLongA
SetParent
NotifyWinEvent
CreateAcceleratorTableA
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyA
ToAsciiEx
PostThreadMessageA
GetNextDlgGroupItem
DestroyIcon
WaitMessage
WindowFromPoint
DeleteMenu
CharNextA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
GetMenuBarInfo
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
TranslateAcceleratorA
InvalidateRgn
CopyAcceleratorTableA
DestroyMenu
GetMenuItemInfoA
UnregisterClassA
GetDialogBaseUnits
GetSysColorBrush
InflateRect
MessageBeep
RedrawWindow
IsZoomed
GetMessageA
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
GetCursorPos
ReleaseCapture
SetCapture
DrawIcon
IsRectEmpty
ShowOwnedPopups
SetCursor
PostQuitMessage
ScrollWindowEx
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
SetMenuDefaultItem
CheckDlgButton
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
IsWindowVisible
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
SetWindowPlacement
PtInRect
GetDlgCtrlID
DefWindowProcA
GetMenu
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
UnhookWindowsHookEx
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
GetMenuDefaultItem
IsCharLowerA
MapVirtualKeyExA
IsClipboardFormatAvailable
SendNotifyMessageA
InSendMessage
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
FrameRect
GetUpdateRect
CharUpperBuffA
DrawTextA
TabbedTextOutA
FillRect
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
CopyIcon
SubtractRect
GetDCEx
GetIconInfo
GetDoubleClickTime
GetTabbedTextExtentA
WindowFromDC
DestroyCursor
CheckRadioButton
CreateMenu
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
CharUpperA
GetSystemMetrics
GetParent
GetWindowRgn
LoadImageA
SetWindowLongA
CallWindowProcA
GetClientRect
SetWindowRgn
SetTimer
GetWindowRect
KillTimer
SetForegroundWindow
LoadBitmapA
LoadIconA
SendMessageA
SetRect
InvalidateRect
PostMessageA
UpdateWindow
EnableWindow
MessageBoxA
LoadCursorA

gdi32

SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
SetArcDirection
SetColorAdjustment
GetClipRgn
SelectClipPath
GetViewportExtEx
GetWindowExtEx
StartDocA
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
PolylineTo
PolyBezierTo
ExtSelectClipRgn
CreateDIBPatternBrushPt
CreatePatternBrush
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
GetDCOrgEx
CreateEllipticRgn
DPtoLP
GetDIBColorTable
LPtoDP
Ellipse
CreateFontIndirectA
ModifyWorldTransform
SetRectRgn
GetMapMode
PatBlt
GetTextMetricsA
GetRgnBox
CreateCompatibleBitmap
GetBkColor
GetTextColor
OffsetRgn
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreateRoundRectRgn
GetDIBits
RealizePalette
SetPixel
GetCharWidthA
CreateFontA
StretchDIBits
CreatePolygonRgn
Polyline
Polygon
Rectangle
RoundRect
CreatePalette
GetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetTextExtentPointA
CreateMetaFileA
CloseMetaFile
DeleteMetaFile
SetPixelV
SetGraphicsMode
SetWorldTransform
SetTextColor
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
CreateDCA
CopyMetaFileA
GetDeviceCaps
GetTextExtentPoint32A
GetBitmapDimensionEx
GetPixel
SelectClipRgn
CreateRectRgn
BitBlt
CreateDIBSection
SetDIBColorTable
CombineRgn
ExtCreateRegion
GetObjectA
DeleteDC
StretchBlt
SelectObject
DeleteObject
CreateRectRgnIndirect
GetStockObject
CreateCompatibleDC

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
GetJobA
OpenPrinterA

advapi32

SetFileSecurityA
RegCloseKey
RegOpenKeyA
RegSetValueA
IsTextUnicode
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegEnumKeyExA
GetFileSecurityA
RegQueryValueExA
RegCreateKeyA
RegDeleteValueA

shell32

SHAppBarMessage
SHBrowseForFolderA
SHFileOperationA
SHGetPathFromIDListA
SHGetFileInfoA
DragFinish
DragQueryFileA
ExtractIconA
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteA
SHGetMalloc

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Create
ImageList_GetImageCount
ImageList_Destroy
ImageList_AddMasked
ImageList_Remove
ImageList_DrawEx

shlwapi

PathIsDirectoryA
PathRemoveFileSpecA
PathFileExistsA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
PathFindFileNameA
PathFindExtensionA
PathRemoveExtensionA
PathRemoveFileSpecW

oledlg

ord8

ole32

WriteClassStg
WriteFmtUserTypeStg
StgIsStorageFile
CoTaskMemFree
OleRegGetUserType
OleSetClipboard
OleIsCurrentClipboard
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
CreateBindCtx
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
StringFromGUID2
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
StgOpenStorage
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleRun
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoUninitialize
CoInitializeEx
OleLockRunning
OleSetMenuDescriptor
StgCreateDocfile
OleFlushClipboard
DoDragDrop
CreateFileMoniker
CreateStreamOnHGlobal
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
CoGetMalloc
OleIsRunning
OleQueryLinkFromData
OleQueryCreateFromData
OleRegGetMiscStatus
OleRegEnumVerbs
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CreateGenericComposite
CreateItemMoniker
OleGetIconOfClass
OleCreateLinkToFile
OleCreateFromFile
OleSetContainedObject
GetHGlobalFromILockBytes
OleLoad
OleCreate
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleSaveToStream
WriteClassStm
OleSave
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject
CoRegisterClassObject
SetConvertStg
OleGetClipboard

oleaut32

OleCreateFontIndirect
SafeArrayCreateVector
LoadRegTypeLi
LoadTypeLi
RegisterTypeLi
VarBstrFromDate
VarCyFromStr
VarDecFromStr
VarBstrFromDec
VarBstrFromCy
VarDateFromStr
SysReAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayCopy
SafeArrayAllocDescriptor
SafeArrayAllocData
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysStringByteLen
SysAllocStringByteLen
SysFreeString
SafeArrayGetLBound
SysStringLen

gdiplus

GdiplusStartup
GdipGetImageWidth
GdipCloneImage
GdipBitmapLockBits
GdipGetImagePaletteSize
GdipDisposeImage
GdipDrawImageI
GdipCreateBitmapFromFile
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImageHeight
GdipCreateBitmapFromStreamICM
GdipFree
GdiplusShutdown
GdipCreateBitmapFromFileICM
GdipBitmapUnlockBits
GdipAlloc

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 411KB - Virtual size: 411KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.1MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

:�u��u�
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

976833de9b5b2af5654d111d7ec6a0da

Headers

DLL Characteristics

File Characteristics

Imports

psapi

wininet

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

imm32

winmm

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 411KB - Virtual size: 411KB

.data Size: 54KB - Virtual size: 95KB

.rsrc Size: 6.1MB - Virtual size: 6.1MB

.reloc Size: 173KB - Virtual size: 173KB

:�u��u� Size: 16KB - Virtual size: 16KB

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 411KB - Virtual size: 411KB

.data
Size: 54KB - Virtual size: 95KB

.rsrc
Size: 6.1MB - Virtual size: 6.1MB

.reloc
Size: 173KB - Virtual size: 173KB

:�u��u�
Size: 16KB - Virtual size: 16KB