73139b912f5f2371283f4adfea7971fe811de6735411f99d2d2db390c20d93b1

Sharing

Copy URL Twitter E-mail

General

Target

73139b912f5f2371283f4adfea7971fe811de6735411f99d2d2db390c20d93b1
Size

4.1MB
MD5

2af9098fe63ec880ddbc1087fe585625
SHA1

b386de3295968fd463e419bb58d2f36b91f6224c
SHA256

73139b912f5f2371283f4adfea7971fe811de6735411f99d2d2db390c20d93b1
SHA512

2f70d4c706f1627ebd9c4e313fed60bbdb28700780ee30e554a2badbebcbe86f35105ac99b75a09c0e8c7cd1cacd32db01dc242b6d86e0eda4a5610c91e717c7
SSDEEP

98304:14ppLsCNIBlp8BNdRzAX7zOuS9tiTc3BXcFLOAkGkzdnEVomFHKnP:14/ssRRiTc3JcFLOyomFHKnP

Score

N/A

Malware Config

Signatures

Files

73139b912f5f2371283f4adfea7971fe811de6735411f99d2d2db390c20d93b1
.exe windows x86

deb7ee97b4ff5d65b90ce3d4de66ae9c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetFileType
SetStdHandle
HeapQueryInformation
GetCommandLineW
GetCommandLineA
QueryPerformanceFrequency
GetModuleHandleExW
FreeLibraryAndExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
OutputDebugStringW
GetStdHandle
CompareStringW
GetTimeZoneInformation
GetStringTypeW
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
WriteConsoleW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
LCMapStringW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetErrorMode
FindResourceExW
GetACP
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExA
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
SearchPathA
GetStringTypeExA
MoveFileA
GetShortPathNameA
LoadLibraryExA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetEndOfFile
ReadFile
LockFile
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
GetTempPathA
SetFilePointer
GetCPInfo
GetOEMCP
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetThreadLocale
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetVersionExA
GetCurrentThread
lstrcmpiA
GetWindowsDirectoryA
Sleep
GetProfileIntA
GetTickCount
ReplaceFileA
GetTempFileNameA
SetFileTime
GetFullPathNameA
GetFileTime
GetDiskFreeSpaceA
lstrcmpA
GetCurrentDirectoryA
ResumeThread
SetThreadPriority
WaitForSingleObject
SetEvent
GlobalReAlloc
GetFileSize
GetFileAttributesA
CreateFileA
InitializeCriticalSectionAndSpinCount
GetModuleFileNameA
GetCurrentProcessId
CopyFileA
FormatMessageA
LocalFree
GlobalFree
GlobalSize
GlobalAlloc
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
MulDiv
GlobalLock
GlobalUnlock
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
MultiByteToWideChar
SystemTimeToFileTime
FileTimeToSystemTime
LoadLibraryW
LoadLibraryA
GetProcAddress
GetModuleHandleW
GetModuleHandleA
SizeofResource
GetModuleFileNameW
SetLastError
OutputDebugStringA
EnumDateFormatsA
CloseHandle
HeapCreate
WideCharToMultiByte
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
FindResourceW
LoadResource
RaiseException
HeapReAlloc
LockResource
GetLastError
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
ExitThread

user32

SetClipboardData
CloseClipboard
OpenClipboard
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
ReuseDDElParam
UnpackDDElParam
DestroyIcon
GetDesktopWindow
SetCursor
InsertMenuItemA
DestroyMenu
CreatePopupMenu
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
ReleaseCapture
GetActiveWindow
BringWindowToTop
SetParent
IsZoomed
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetWindowThreadProcessId
IntersectRect
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuState
GetMenuStringA
MapVirtualKeyA
GetKeyNameTextA
EnumDisplayMonitors
SystemParametersInfoA
LoadCursorW
LoadCursorA
SetLayeredWindowAttributes
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
IsDialogMessageA
SetWindowTextA
IsWindowEnabled
SendDlgItemMessageA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
EmptyClipboard
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
GetWindowLongA
PtInRect
EqualRect
CopyRect
SetClassLongA
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetMenuDefaultItem
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
GetMenuItemCount
UpdateLayeredWindow
EnableScrollBar
MonitorFromPoint
DestroyAcceleratorTable
IsClipboardFormatAvailable
EnableWindow
UnregisterClassA
GetClientRect
GetMenuItemID
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsMenu
LoadImageW
CopyImage
GetAsyncKeyState
SetCapture
SetTimer
KillTimer
GetUpdateRect
LockWindowUpdate
GetCursorPos
WindowFromPoint
SetRect
UnionRect
TrackMouseEvent
CharUpperA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSystemMenu
DeleteMenu
MessageBeep
NotifyWinEvent
GetMessageA
TranslateMessage
RegisterClipboardFormatA
WinHelpA
LoadBitmapW
FillRect
InflateRect
InvalidateRect
UpdateWindow
GetParent
SetRectEmpty
SetCursorPos
SendMessageA
GetSysColor
IsChild
GetSubMenu
ScreenToClient
GetFocus
GetWindowRect
LoadMenuW
RedrawWindow
GetSystemMetrics
LoadImageA
ClientToScreen
IsIconic
RegisterWindowMessageA
DrawEdge
DrawFrameControl
IsWindowVisible
DrawStateA
SetWindowRgn
MapWindowPoints
GetSysColorBrush
DrawFocusRect
OffsetRect
IsRectEmpty
DrawIconEx
IsWindow
DispatchMessageA
PeekMessageA
GetMessagePos
GetMessageTime
PostMessageA
DefWindowProcA
CallWindowProcA
SendNotifyMessageA
CopyAcceleratorTableA
InSendMessage
WindowFromDC
GetMenuItemInfoA
GetPropA
SetMenuDefaultItem
CreateMenu
ClipCursor
PostThreadMessageA
CharUpperBuffA
GetWindowRgn
MapVirtualKeyExA
IsCharLowerA
GetTabbedTextExtentW
DrawIcon
InvalidateRgn
CharNextA
GetComboBoxInfo
GetNextDlgGroupItem
GetDCEx
EnumChildWindows
SubtractRect
DestroyCursor
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardState
GetKeyboardLayout
RealChildWindowFromPoint
CopyIcon
GetDoubleClickTime
InvertRect
HideCaret
FrameRect
LoadAcceleratorsW
MapDialogRect
SetWindowContextHelpId
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
WaitMessage
ShowOwnedPopups
PostQuitMessage
ModifyMenuA
GetIconInfo
MessageBoxA

gdi32

SetBkColor
SetTextColor
BitBlt
CreateBitmap
CreatePen
CreatePatternBrush
Escape
ExcludeClipRect
GetClipBox
GetCurrentPositionEx
GetDeviceCaps
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
StartDocA
MoveToEx
TextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
Polyline
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetTextMetricsA
CopyMetaFileA
CreateDCA
GetMapMode
SetRectRgn
DPtoLP
CreateDIBSection
GetDIBits
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
CreateRoundRectRgn
GetWindowOrgEx
SetBrushOrgEx
RoundRect
Rectangle
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
GetRgnBox
OffsetRgn
GetCharWidthA
UnrealizeObject
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
GetTextAlign
EnumFontFamiliesExA
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetSystemPaletteEntries
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
SetPixelV
Polygon
CreatePolygonRgn
ExtTextOutA
PatBlt
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
GetStockObject
CreateFontIndirectA
DeleteObject
GetTextExtentPoint32A
GetObjectA
OffsetWindowOrgEx
CreateCompatibleDC
DeleteDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA

advapi32

RegEnumKeyA
RegSetValueA
RegOpenKeyExA
RegOpenKeyExW
RegEnumValueA
RegEnumKeyExA
RegSetValueExA
RegDeleteValueA
RegQueryValueA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegQueryValueExA

shell32

DragFinish
ExtractIconA
SHAppBarMessage
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHAddToRecentDocs
SHBrowseForFolderA
SHGetMalloc
DragQueryFileA

comctl32

ImageList_Draw
InitCommonControlsEx
ImageList_AddMasked

shlwapi

PathFindExtensionA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathIsUNCA
PathFindFileNameA

uxtheme

GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
DrawThemeText
IsAppThemed
GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground

ole32

CoInitialize
CoRegisterMessageFilter
CoGetClassObject
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateOleAdviseHolder
OleRun
OleIsRunning
OleSetMenuDescriptor
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
CoDisconnectObject
OleRegGetMiscStatus
OleRegEnumVerbs
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleTranslateAccelerator
IsAccelerator
StringFromGUID2
CoRegisterClassObject
CoRevokeClassObject
CoUninitialize
CoCreateGuid
OleGetIconOfClass
OleLockRunning
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
CoCreateInstance
CoInitializeEx
OleCreate
CreateItemMoniker
CreateGenericComposite
CreateILockBytesOnHGlobal
GetHGlobalFromILockBytes
WriteClassStm
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateStreamOnHGlobal
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CLSIDFromString
CLSIDFromProgID
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
GetRunningObjectTable
CoGetMalloc
GetClassFile
CreateDataAdviseHolder

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysAllocString
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
VariantCopy
SafeArrayDestroy
SysFreeString
VarBstrFromDate
OleCreateFontIndirect
VariantChangeType
VariantInit
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantClear

oledlg

ord3
ord5
ord7
ord8
ord1

gdiplus

GdipGetImagePalette
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize

ws2_32

WSASetLastError
WSACleanup
WSAStartup

rpcrt4

UuidFromStringA

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 681KB - Virtual size: 681KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

deb7ee97b4ff5d65b90ce3d4de66ae9c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

rpcrt4

oleacc

imm32

winmm

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 681KB - Virtual size: 681KB

.data Size: 27KB - Virtual size: 44KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 183KB - Virtual size: 182KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 681KB - Virtual size: 681KB

.data
Size: 27KB - Virtual size: 44KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 183KB - Virtual size: 182KB