547c39bbddb5cf1374c5032de03d2154642f4f53a4f8f80bca59f1b8afc22284

Sharing

Copy URL Twitter E-mail

General

Target

547c39bbddb5cf1374c5032de03d2154642f4f53a4f8f80bca59f1b8afc22284
Size

269KB
MD5

9042c29e40ba5518d43cb65c244ecc10
SHA1

e409d716851570a70769e740930239dc1c2351f5
SHA256

547c39bbddb5cf1374c5032de03d2154642f4f53a4f8f80bca59f1b8afc22284
SHA512

91dc5edfff07b67d4c18d63ff1f56445eabe0b9ff9b3a381c89257a26a518491cdaa11f2ec501dc8b20e6d03d329688dd3b983c0754a2cb3fd7801b5abfa60bb
SSDEEP

3072:VKan/jgl87DfPxFbEf8mmQ63nmHJjYY18ePzFR:VKK/El8P4frT3D1ZL7

Score

N/A

Malware Config

Signatures

Files

547c39bbddb5cf1374c5032de03d2154642f4f53a4f8f80bca59f1b8afc22284
.exe windows x86

85955a8847a78550a082337706f96eb6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetLayeredWindowAttributes
GetLastActivePopup
GetGUIThreadInfo
GetClientRect
GetAncestor
GetClassNameW
CheckMenuRadioItem
IsCharAlphaNumericA
GetMessageTime
GetWindow
SetTimer
GetMessageExtraInfo
SystemParametersInfoW
GetDlgCtrlID
MessageBoxIndirectA
MessageBoxExA
GetDlgItem
IsWindow
DestroyWindow
GetParent
ChangeDisplaySettingsW
GetKeyState
UnregisterClassW
DestroyMenu
LoadCursorW
GetSysColorBrush
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindowThreadProcessId
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
ShowWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
CheckRadioButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
WinHelpW
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
DispatchMessageW
UnhookWindowsHookEx
GetMessagePos
PeekMessageW
MapWindowPoints
AnyPopup
SetMenu
IsWindowVisible
UpdateWindow
EnableWindow
CheckMenuItem
OpenInputDesktop
CreateDesktopW
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
DefWindowProcW
CallWindowProcW
CopyRect
PtInRect
GetMenu
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
SendDlgItemMessageA
SetThreadDesktop
SwitchDesktop
CloseDesktop
SendMessageW
PostMessageW
GetSystemMetrics
IsIconic
GetFocus
GetTopWindow
GetWindowLongW
SetWindowLongW
SetWindowPos
SetForegroundWindow
EndDialog
GetNextDlgTabItem
IsWindowEnabled
SetFocus
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW

comdlg32

GetFileTitleW

shell32

SHGetFolderPathW
ShellExecuteW

oledlg

OleUIBusyW

ole32

CoRegisterMessageFilter
OleFlushClipboard
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
CoTaskMemAlloc
OleIsCurrentClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoTaskMemFree
StgCreateDocfileOnILockBytes

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorSacl
DuplicateToken
RegQueryInfoKeyW
RegSaveKeyW
RegCloseKey
SetSecurityDescriptorDacl
RegQueryValueA
RegReplaceKeyW
GetTokenInformation
LookupPrivilegeValueW
RegOpenKeyExW
RegQueryValueW
RegEnumKeyW
RegOpenKeyW
OpenProcessToken
RegQueryValueExW
AdjustTokenPrivileges
RegCreateKeyExW
CheckTokenMembership
FreeSid
RegSetValueExW
RegDeleteKeyW
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
IsValidSid

gdi32

ColorCorrectPalette
CreateBitmapIndirect
CloseMetaFile
CreateBrushIndirect
ChoosePixelFormat
CreateDIBitmap
ColorMatchToTarget
CreateCompatibleDC
CancelDC

opengl32

glLightfv
glLightModelfv
glLightModelf
glHint
glGetString
glGenTextures
glEnd
glEnable
glDisable
glDepthFunc
glCopyTexImage2D
glColor4f
glColor3f
glClearDepth
glClearColor
glClear
glCallList
glBlendFunc
glBegin

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

SetEvent
GetSystemDefaultLCID
GetEnvironmentVariableW
CreateDirectoryW
RemoveDirectoryW
GetSystemDirectoryW
GetTempPathW
GetSystemDefaultLangID
SetCurrentDirectoryW
CreateThread
WaitForSingleObject
HeapAlloc
HeapFree
RtlUnwind
RaiseException
HeapReAlloc
Sleep
ExitProcess
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
CreateEventW
WriteConsoleW
CreateFileA
SetErrorMode
FlushFileBuffers
SetFilePointer
lstrlenA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
GlobalFlags
GetModuleHandleA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
GetExitCodeThread
CompareStringW
LoadLibraryA
lstrcmpW
GetModuleHandleW
GetProcAddress
GetVersionExA
WideCharToMultiByte
SetLastError
FormatMessageW
lstrlenW
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
MultiByteToWideChar
GetCurrentDirectoryW
MoveFileW
GetLastError
LocalFree
OpenProcess
CompareStringA
GetVersion
FileTimeToSystemTime
FileTimeToLocalFileTime
GetThreadLocale
FormatMessageA
ResetEvent
GetLogicalDriveStringsW
DeleteFileA
MoveFileA
CreateProcessA
GetFileAttributesA
CreatePipe
GetExitCodeProcess
GetDriveTypeA
GetCurrentDirectoryA
SetEnvironmentVariableW
SetEnvironmentVariableA
HeapDestroy
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemInfo
VirtualProtect
GetProcessHeap
GetFileTime
DuplicateHandle
UnlockFile
LockFile
GetTimeFormatA
GetDateFormatA
InterlockedIncrement
InterlockedDecrement
GetTimeZoneInformation
GetConsoleOutputCP
WritePrivateProfileStringW
GetPrivateProfileStringW
FindClose
FindNextFileW
DeleteFileW
FindFirstFileW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
LocalAlloc
GetCommandLineW
GetTickCount
GetModuleFileNameW
FreeLibrary
LoadLibraryExW
GetPrivateProfileIntW
CloseHandle
WriteFile
ReadFile
CreateProcessW
GetDriveTypeW
GetWindowsDirectoryW
GetVersionExW
VirtualAlloc
EnumTimeFormatsW
WriteFileGather
GlobalAlloc
LocalHandle
CancelDeviceWakeupRequest
SearchPathW
QueueUserAPC
GetVolumeInformationW
GetCPInfo
SizeofResource
LockResource
LoadResource
FindResourceW
SetFileAttributesW
CreateFileW
GetFileSize
GetCurrentProcess

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85955a8847a78550a082337706f96eb6

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

oledlg

ole32

advapi32

gdi32

opengl32

version

kernel32

Sections

.text Size: 96KB - Virtual size: 96KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 122KB - Virtual size: 146KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 96KB - Virtual size: 96KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 122KB - Virtual size: 146KB

.rsrc
Size: 28KB - Virtual size: 27KB