b9a5e8b976d35fa96673d85cdd8d7fff7d5b5764a7efe70fefc057e0d92e7d74

Sharing

Copy URL

Twitter E-mail

General

Target

b9a5e8b976d35fa96673d85cdd8d7fff7d5b5764a7efe70fefc057e0d92e7d74
Size

819KB
MD5

77c9ef742dff9194f1071cd4ac92cd32
SHA1

7634aac34ab4a93b2f6eb80b4bc32d51b2657ab5
SHA256

b9a5e8b976d35fa96673d85cdd8d7fff7d5b5764a7efe70fefc057e0d92e7d74
SHA512

effb221b9751567e075da313c79aab10b8036c1e8834bb1b9527bb74b6e13f5699fe8451c99011654c5325d33603c872bec6abce3a2418f10324c3a8df5d5496
SSDEEP

12288:peHPAESFS1hyeSsSpFxirr7IZhsA2JfUh8FFxQ9HSPYuZuZFYbgF68G/F:WPLaeSsYe705ifhvxjA3mx3/F

Score

N/A

Malware Config

Signatures

Files

b9a5e8b976d35fa96673d85cdd8d7fff7d5b5764a7efe70fefc057e0d92e7d74
.exe windows x86

f393bb4798e92837cf1da816bcc7802f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomA
FindResourceA
GetEnvironmentStrings
FindNextFileA
HeapSize
SetFilePointer
FormatMessageA
GlobalGetAtomNameA
HeapCreate
CompareStringW
LCMapStringA
GetModuleFileNameW
VirtualFree
TerminateProcess
GetComputerNameA
FreeEnvironmentStringsA
InitializeCriticalSection
DuplicateHandle
GetProcessHeap
InterlockedDecrement
GlobalReAlloc
RaiseException
TlsFree
GetFileAttributesA
SetErrorMode
ConvertDefaultLocale
LockFile
FreeLibrary
LocalReAlloc
SetHandleCount
EnumResourceLanguagesA
FreeEnvironmentStringsW
VirtualProtect
lstrcmpW
MoveFileA
WriteFile
GetModuleFileNameA
UnlockFile
GetCurrentThreadId
GlobalHandle
SystemTimeToFileTime
GetPrivateProfileIntA
GlobalMemoryStatus
GetCurrentThread
lstrcmpA
HeapAlloc
FlushFileBuffers
GetConsoleOutputCP
GetSystemDirectoryA
ExitThread
TerminateThread
lstrlenA
SetEndOfFile
GetSystemInfo
GetProcAddress
RtlUnwind
GlobalDeleteAtom
WriteConsoleW
GetFileInformationByHandle
GetACP
GetDiskFreeSpaceA
IsValidLocale
GetUserDefaultLangID
GlobalLock
GetModuleHandleA
LocalFree
SizeofResource
GetStringTypeW
GlobalUnlock
WinExec
ResumeThread
PeekNamedPipe
VirtualQuery
CreateFileA
GetLogicalDrives
CloseHandle
GetSystemTimeAsFileTime
SetCurrentDirectoryA
SetStdHandle
FindClose
SetLastError
GetFileTime
GlobalFindAtomA
lstrcmpiA
GetStartupInfoA
HeapDestroy
GetFileType
GetSystemDefaultLangID
WaitForSingleObject
InterlockedIncrement
GetPrivateProfileStringA
GetLocaleInfoW
GlobalAlloc
ReleaseSemaphore
LCMapStringW
UnhandledExceptionFilter
GetTimeZoneInformation
GetOEMCP
ExitProcess
SetUnhandledExceptionFilter
GetLocaleInfoA
FreeResource
GetFullPathNameA
WideCharToMultiByte
LoadLibraryA
GetTempFileNameA
LockResource
GetTickCount
GetCommandLineA
SetEvent
VirtualAlloc
TlsAlloc
GetStringTypeExA
LeaveCriticalSection
GetVersion
ResetEvent
SetFileTime
MultiByteToWideChar
MulDiv
TlsGetValue
GlobalFree
LocalFileTimeToFileTime
GetCurrentDirectoryA
QueryPerformanceCounter
IsDBCSLeadByte
TlsSetValue
GetVolumeInformationA
SetThreadPriority
CreateSemaphoreA
GlobalFlags
FindFirstFileA
DeleteFileA
LoadResource
GetUserDefaultLCID
InterlockedExchange
GetFileSize
HeapReAlloc
GetCurrentProcessId
GetVersionExA
GetCPInfo
GetDriveTypeA
LocalAlloc
EnterCriticalSection
GetConsoleMode
IsValidCodePage
FileTimeToSystemTime
GetThreadLocale
WriteConsoleA
GetLastError
DeleteCriticalSection
GetConsoleCP
CreateThread
Sleep
SetEnvironmentVariableA
GetStringTypeA
FileTimeToLocalFileTime
WritePrivateProfileStringA
GetEnvironmentStringsW
IsDebuggerPresent
CreateEventA
GetStdHandle
VerLanguageNameA
EnumSystemLocalesA
CompareStringA
HeapFree
ReadFile
GetCurrentProcess

user32

EqualRect
CopyRect
PostQuitMessage
GetKeyState
GetSystemMenu
UnpackDDElParam
GetMenuCheckMarkDimensions
InflateRect
TranslateMessage
wsprintfA
SendDlgItemMessageA
SetFocus
GetMenuItemInfoA
CheckMenuItem
IsWindowEnabled
SetDlgItemTextA
TrackPopupMenu
CreateWindowExA
GetMessageA
LoadMenuA
PtInRect
SetWindowPos
GetSystemMetrics
HideCaret
IsRectEmpty
GetCursorPos
WinHelpA
GetClassLongA
IsZoomed
LoadIconA
UpdateWindow
CharUpperA
DeleteMenu
SetRect
DefWindowProcA
GetNextDlgGroupItem
SetScrollInfo
GetLastActivePopup
CreateMenu
LoadAcceleratorsA
LoadCursorA
GetPropA
InsertMenuItemA
SetRectEmpty
CreatePopupMenu
CreateCaret
IsDialogMessageA
GetClientRect
RemovePropA
IsWindow
GetWindowRect
CopyAcceleratorTableA
RegisterClipboardFormatA
ReleaseDC
ShowScrollBar
GetMenuItemCount
ScrollWindow
DestroyCaret
GetForegroundWindow
MessageBeep
ScreenToClient
BringWindowToTop
OffsetRect
PeekMessageA
GetNextDlgTabItem
GetFocus
SetWindowTextA
SetScrollPos
BeginDeferWindowPos
ValidateRect
DeferWindowPos
GrayStringA
IntersectRect
GetWindowThreadProcessId
EnableWindow
IsWindowVisible
ShowCaret
EndPaint
DispatchMessageA
TabbedTextOutA
GetClassInfoExA
SetForegroundWindow
GetSysColorBrush
FillRect
WindowFromPoint
EndDeferWindowPos
GetClassInfoA
SetParent
SetCursor
SetWindowContextHelpId
GetDlgCtrlID
MessageBoxA
GetParent
GetMessageTime
IsIconic
GetSysColor
RegisterClassA
SetScrollRange
AppendMenuA
GetActiveWindow
CallWindowProcA
GetTabbedTextExtentA
DrawFocusRect
GetDesktopWindow
GetMessagePos
SetTimer
UnregisterClassA
FrameRect
SetMenu
MapDialogRect
InsertMenuA
ShowOwnedPopups
SetWindowRgn
KillTimer
GetScrollInfo
DestroyMenu
GetScrollRange
ClientToScreen
GetDC
ReuseDDElParam
GetMenu
PostThreadMessageA
LockWindowUpdate
LoadBitmapA
SystemParametersInfoA
SetCapture
RedrawWindow
CharNextA
TranslateAcceleratorA
DrawIcon
DrawTextExA
GetWindowPlacement
SetActiveWindow
MapWindowPoints
FindWindowA
EnableMenuItem
GetCapture
BeginPaint
SetPropA
GetWindowTextA
SendMessageA
GetWindowTextLengthA
EndDialog
RegisterWindowMessageA
CallNextHookEx
DestroyWindow
ModifyMenuA
AdjustWindowRectEx
GetMenuItemID
GetTopWindow
MoveWindow
SetWindowsHookExA
SetWindowLongA
PostMessageA
DestroyCursor
DrawMenuBar
CreateDialogIndirectParamA
DrawTextA
GetSubMenu
ShowWindow
GetWindowLongA
GetWindowDC
SetMenuItemBitmaps
ReleaseCapture
GetMenuState
RemoveMenu
GetMenuStringA
SetCaretPos
InvalidateRect
GetDlgItem
UnhookWindowsHookEx
GetDCEx
InvalidateRgn
GetClassNameA
GetWindow
IsChild
GetScrollPos

gdi32

EndDoc
RectVisible
ScaleViewportExtEx
GetObjectA
GetTextExtentPoint32A
StartDocA
GetSystemPaletteEntries
EndPage
RealizePalette
SetStretchBltMode
GetTextFaceA
SetWindowExtEx
CreatePalette
Rectangle
GetWindowOrgEx
SetTextColor
CreateRectRgnIndirect
SetTextAlign
GetCharWidthA
TextOutA
CreateBitmap
SetMapMode
GetClipBox
GetROP2
AbortDoc
SetWindowOrgEx
DeleteDC
SetBkColor
IntersectClipRect
PtVisible
GetBkColor
BitBlt
CreatePen
SelectPalette
GetDeviceCaps
GetDIBits
LPtoDP
GetBkMode
Escape
DeleteObject
CreateCompatibleBitmap
GetCurrentPositionEx
SetViewportOrgEx
Polygon
CreateRectRgn
SetPolyFillMode
PatBlt
SetBkMode
GetTextAlign
FloodFill
Pie
RoundRect
DPtoLP
Ellipse
ExtTextOutA
SelectObject
GetPixel
SetAbortProc
RestoreDC
SelectClipRgn
SetPixelFormat
LineTo
SetViewportExtEx
GetViewportExtEx
CreateDCA
ExcludeClipRect
CreatePatternBrush
GetWindowExtEx
CreateFontA
EnumFontFamiliesA
CreateSolidBrush
CreateEllipticRgn
StretchDIBits
GetStockObject
OffsetViewportOrgEx
GetMapMode
GetStretchBltMode
SetROP2
CreateCompatibleDC
ExtSelectClipRgn
ScaleWindowExtEx
MoveToEx
SaveDC
CombineRgn
Polyline
StartPage
CreateFontIndirectA
SetRectRgn
ChoosePixelFormat
SwapBuffers
GetTextMetricsA
GetPolyFillMode
GetTextColor
GetRgnBox
GetNearestColor
GetViewportOrgEx

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyExA
GetUserNameA
RegOpenKeyA
RegCloseKey
GetFileSecurityA
SetFileSecurityA
RegEnumKeyA
RegDeleteValueA
RegQueryValueA
RegCreateKeyA

shell32

ShellExecuteA
DragAcceptFiles
DragFinish
SHBrowseForFolderA
DragQueryFileA
SHGetPathFromIDListA

ole32

OleCreateMenuDescriptor
CreateStreamOnHGlobal
OleInitialize
CoTaskMemAlloc
OleFlushClipboard
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
IsAccelerator
CoTaskMemFree
CreateILockBytesOnHGlobal
OleTranslateAccelerator
CoRegisterMessageFilter
CLSIDFromProgID
OleDestroyMenuDescriptor
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CoRevokeClassObject

oleaut32

VariantInit
VariantChangeType
VariantTimeToSystemTime
SysFreeString
SysAllocStringByteLen
SysAllocStringLen
SafeArrayDestroy
SystemTimeToVariantTime
VariantCopy
OleCreateFontIndirect
VariantClear
OleLoadPicture
SysStringLen
SysAllocString

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathStripToRootA
PathFindExtensionA
UrlUnescapeA
PathFindFileNameA
PathIsUNCA

version

VerQueryValueA

wininet

InternetCanonicalizeUrlA
InternetSetFilePointer
InternetWriteFile
InternetCloseHandle
InternetGetLastResponseInfoA
InternetOpenA
InternetSetStatusCallback
InternetQueryDataAvailable
InternetCrackUrlA
InternetQueryOptionA
InternetOpenUrlA
InternetReadFile

secur32

QuerySecurityPackageInfoA

oledlg

ord8

opengl32

glPopAttrib
glFinish
glGenLists
wglMakeCurrent
glListBase
glDeleteLists
glTranslatef
wglDeleteContext
wglCreateContext
glClear
glColor3ub
glClearDepth
glMatrixMode
glPushAttrib
glEnd
glBegin
glScalef
wglGetCurrentDC
glHint
glLoadIdentity
glOrtho
glLineWidth
glPushMatrix
glDepthFunc
glColor3f
glClearColor
wglGetCurrentContext
glVertex2f
glCallLists
wglUseFontOutlinesA
glVertex3f
glPopMatrix
glEnable
glViewport
glRotatef

wldap32

ord177

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xyue
Size: 712KB - Virtual size: 712KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 5.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f393bb4798e92837cf1da816bcc7802f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

version

wininet

secur32

oledlg

opengl32

wldap32

Sections

.text Size: 12KB - Virtual size: 12KB

.xyue Size: 712KB - Virtual size: 712KB

.rdata Size: 45KB - Virtual size: 44KB

.data Size: 19KB - Virtual size: 5.6MB

.CRT Size: 512B - Virtual size: 8B

.tls Size: 512B - Virtual size: 57B

.rsrc Size: 13KB - Virtual size: 13KB

.reloc Size: 14KB - Virtual size: 14KB

.text
Size: 12KB - Virtual size: 12KB

.xyue
Size: 712KB - Virtual size: 712KB

.rdata
Size: 45KB - Virtual size: 44KB

.data
Size: 19KB - Virtual size: 5.6MB

.CRT
Size: 512B - Virtual size: 8B

.tls
Size: 512B - Virtual size: 57B

.rsrc
Size: 13KB - Virtual size: 13KB

.reloc
Size: 14KB - Virtual size: 14KB