df99e9cd9618f29f1496e2f43ad41bcda52ef4213136545b768e52c763a08c04

Sharing

Copy URL

Twitter E-mail

General

Target

df99e9cd9618f29f1496e2f43ad41bcda52ef4213136545b768e52c763a08c04
Size

3.0MB
MD5

9a8190b459e27a7eb2a7fd7402878feb
SHA1

8c3cf0275ecfb02c021447b7d43fda449ee4c71e
SHA256

df99e9cd9618f29f1496e2f43ad41bcda52ef4213136545b768e52c763a08c04
SHA512

f90cdff9e95fae2a02a109982d7e5dfc2196b98525f2d1b8be3b67a9db0b70fd41b350bb15f984230f44d17929757aa8e5714fe1cd03842e6ae06102df38664f
SSDEEP

49152:iRuF8PXqHwhpj9GekpAx5DhCt7LEBj67uGMdRRW0DtR03LMSPRSd7nLcpvWZVJFf:zyXqHwhpj9LkpkhCt7YBj67FMjRW0Dt7

Score

N/A

Malware Config

Signatures

Files

df99e9cd9618f29f1496e2f43ad41bcda52ef4213136545b768e52c763a08c04
.exe windows x86

fccbaf368c742d4c49acb1d7a2117b0b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SwitchToThread
SignalObjectAndWait
CreateTimerQueue
WriteConsoleW
CreateFileW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
ReadConsoleW
GetFileAttributesExW
CreateProcessW
GetExitCodeProcess
EnumSystemLocalesW
IsValidLocale
GetTimeFormatW
GetDateFormatW
SetThreadAffinityMask
GetConsoleOutputCP
SetFilePointerEx
GetStdHandle
HeapQueryInformation
GetFileType
SetStdHandle
GetCommandLineW
GetCommandLineA
VirtualQuery
GetSystemInfo
FreeLibraryAndExitThread
ExitThread
CreateThread
GetModuleHandleExW
ExitProcess
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
GetStringTypeW
LCMapStringW
QueueUserWorkItem
QueryPerformanceFrequency
TryEnterCriticalSection
OutputDebugStringW
RegisterWaitForSingleObject
UnregisterWait
GetVersionExW
GetThreadTimes
ReleaseSemaphore
InterlockedPopEntrySList
QueryDepthSList
UnregisterWaitEx
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
GetUserDefaultLCID
FindResourceExW
GetProfileIntA
GetTickCount
SearchPathA
GetWindowsDirectoryA
GetTempFileNameA
GetTempPathA
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryA
GlobalFlags
GetACP
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
FileTimeToSystemTime
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
CreateFileA
SetThreadPriority
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetVersionExA
GetCurrentThread
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
GetCurrentThreadId
GetModuleFileNameA
GetCurrentProcessId
LoadLibraryW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
OutputDebugStringA
InitializeCriticalSectionAndSpinCount
CopyFileA
FormatMessageA
LocalFree
GlobalSize
MultiByteToWideChar
DeleteCriticalSection
DecodePointer
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
ResetEvent
SetEvent
WaitForSingleObject
FreeResource
FindResourceA
GlobalAlloc
ResumeThread
GlobalFree
MulDiv
GlobalUnlock
GlobalLock
CloseHandle
CreateEventA
Sleep
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
SetErrorMode
HeapFree
GetProcessHeap
HeapAlloc
FreeLibrary
GetProcAddress
LoadLibraryA
SetLastError
IsBadReadPtr
VirtualProtect
VirtualFree
GetConsoleMode

user32

IsZoomed
TrackMouseEvent
IntersectRect
RealChildWindowFromPoint
CharUpperA
ShowOwnedPopups
TranslateMessage
GetMessageA
EnumDisplayMonitors
LoadCursorW
SetRectEmpty
SetLayeredWindowAttributes
DrawIconEx
IsRectEmpty
OffsetRect
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawFrameControl
DrawEdge
KillTimer
WaitMessage
PostQuitMessage
SystemParametersInfoA
InflateRect
GetMenuItemInfoA
DestroyMenu
MapVirtualKeyA
GetKeyNameTextA
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
GetWindow
GetTopWindow
GetClassLongA
SetWindowLongA
EqualRect
MapWindowPoints
GetAsyncKeyState
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
LoadImageW
SetCursorPos
BringWindowToTop
LockWindowUpdate
GetDoubleClickTime
EnableWindow
SendMessageA
GetClientRect
SetFocus
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
CopyImage
MapDialogRect
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
SetCapture
ReleaseCapture
LoadMenuW
DeleteMenu
MessageBeep
WindowFromPoint
AdjustWindowRectEx
NotifyWinEvent
GetSystemMenu
EnableMenuItem
MessageBoxA
LoadIconW
AppendMenuA
GetWindowRect
IsIconic
GetSystemMetrics
DrawIcon
GetCursorPos
PtInRect
SetCursor
LoadCursorA
FlashWindow
GetFocus
GetKeyState
SetRect
GetDC
ReleaseDC
InvalidateRect
FillRect
GetSysColor
CopyRect
PostMessageA
SetTimer
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
RemoveMenu
DrawStateA
UpdateWindow
GetClassNameA
LoadBitmapW
IsWindow
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongA
GetDesktopWindow
GetParent
GetWindowThreadProcessId
GetLastActivePopup
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
RegisterWindowMessageA
DispatchMessageA
PeekMessageA
GetMessagePos
GetMessageTime
DefWindowProcA
GetIconInfo
CopyIcon
ModifyMenuA
DestroyAcceleratorTable
SetClassLongA
GetUpdateRect
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
CopyAcceleratorTableA
RegisterClipboardFormatA
CharUpperBuffA
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
FrameRect
PostThreadMessageA
SubtractRect
IsClipboardFormatAvailable
GetNextDlgGroupItem
IsCharLowerA
MapVirtualKeyExA
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
GetWindowRgn
DestroyCursor
InvertRect
HideCaret
CreateMenu
GetComboBoxInfo
LoadImageA

gdi32

CreatePen
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateHatchBrush
GetTextExtentPoint32A
CombineRgn
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsA
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetRectRgn
DPtoLP
CreateRoundRectRgn
CreateDIBSection
RealizePalette
SetPixel
SetDIBColorTable
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
EnumFontFamiliesExA
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceA
CreateBitmap
GetObjectA
GetStockObject
CreateDCA
CopyMetaFileA
StretchBlt
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateSolidBrush
DeleteObject
DeleteDC
SelectObject
CreateFontIndirectA
RectVisible
GetDeviceCaps

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

DragFinish
DragQueryFileA
ShellExecuteA
SHAppBarMessage
SHGetFileInfoA
SHGetDesktopFolder
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderPathA

shlwapi

PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

DrawThemeParentBackground
GetThemeSysColor
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
DrawThemeText
GetWindowTheme
GetThemePartSize

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoDisconnectObject
CoInitializeEx
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
OleLoadPicture
SysStringLen
SysAllocStringByteLen
VariantCopy
VarBstrFromDate
LoadTypeLi
SysFreeString
SysAllocString

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown

ws2_32

inet_ntoa
WSASetLastError
WSACleanup
sendto
WSASocketA
setsockopt
closesocket
send
connect
inet_pton
htons
WSAStartup
gethostname
gethostbyname
socket

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 379KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 317KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fccbaf368c742d4c49acb1d7a2117b0b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 379KB - Virtual size: 379KB

.data Size: 312KB - Virtual size: 339KB

.gfids Size: 109KB - Virtual size: 109KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 317KB - Virtual size: 320KB

.reloc Size: 137KB - Virtual size: 137KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 379KB - Virtual size: 379KB

.data
Size: 312KB - Virtual size: 339KB

.gfids
Size: 109KB - Virtual size: 109KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 317KB - Virtual size: 320KB

.reloc
Size: 137KB - Virtual size: 137KB