aef69169a9f2c5c25c0bd5de3bfe29b84beb6f2965a1724507310aa5870d19cb

Sharing

Copy URL Twitter E-mail

General

Target

aef69169a9f2c5c25c0bd5de3bfe29b84beb6f2965a1724507310aa5870d19cb
Size

320KB
MD5

0c0764a24f5855f8ffcc0a0d64caf910
SHA1

8918b30bccdf939da103e3de47b704151ffa26dd
SHA256

aef69169a9f2c5c25c0bd5de3bfe29b84beb6f2965a1724507310aa5870d19cb
SHA512

35e91c817b56e9eec5642888bd345d9d9d2cc21e8cb7149624192553644988e8ad86a93f6ef3e17551da0fa2d6a40136b48c9d53e5096a13bcb851114401222e
SSDEEP

6144:hOLlCNJApdBmInTwxyJ9zJntA/60Ba3zZAU3TDcm08:heCLwHmAjL7A/60Ba3JTDcm

Score

N/A

Malware Config

Signatures

Files

aef69169a9f2c5c25c0bd5de3bfe29b84beb6f2965a1724507310aa5870d19cb
.exe windows x86

8c091a46f627e97972502a40f8c176f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
OpenMutexA
GetFileSize
LockFile
GetFullPathNameA
GetACP
GetCurrentProcess
GetEnvironmentStringsW
GetCurrentThread
SetFileTime
DeleteFileA
IsBadCodePtr
GetExitCodeProcess
GlobalHandle
GlobalGetAtomNameW
LocalReAlloc
FileTimeToSystemTime
InterlockedIncrement
GetFileType
HeapSize
FindFirstFileA
GlobalFree
GetConsoleMode
GlobalGetAtomNameA
MulDiv
DosDateTimeToFileTime
CreateMutexA
GlobalFindAtomW
GetStringTypeA
GlobalFlags
EnterCriticalSection
GlobalSize
LCMapStringA
SetFileAttributesA
RaiseException
CreateFileW
RemoveDirectoryA
TerminateProcess
GetVersion
ReadFile
WritePrivateProfileStringA
FatalAppExitA
TlsGetValue
GetModuleHandleW
GetOEMCP
FindClose
OpenEventA
GetProcessHeap
GetLocaleInfoA
FileTimeToLocalFileTime
IsValidCodePage
SetCommMask
LoadResource
MoveFileA
GetShortPathNameA
lstrcpyA
ExitProcess
SizeofResource
VirtualAlloc
GetModuleFileNameA
GetLastError
_llseek
GetCPInfo
FindResourceW
GetWindowsDirectoryW
LocalFree
PurgeComm
CreateFileMappingW
VirtualQuery
WaitForSingleObject
lstrcmpW
FlushFileBuffers
lstrcmpA
GetModuleHandleA
MapViewOfFile
SleepEx
CreateDirectoryA
GetStartupInfoW
RtlUnwind
GetVersionExA
GetVersionExW
GetTimeZoneInformation
SuspendThread
MultiByteToWideChar
IsDebuggerPresent
FreeEnvironmentStringsW
GetEnvironmentVariableA
CreateEventW
GetTempPathW
GetUserDefaultLCID
lstrlenW
SetEnvironmentVariableA
SetThreadPriority
FindNextFileW
GetVolumeInformationA
GetLocalTime
GetProcessVersion
GetDiskFreeSpaceA
HeapDestroy
_lclose
FreeResource
Sleep
LockFileEx
GetCommandLineW
GlobalLock
GetFileAttributesA
ExpandEnvironmentStringsA
GlobalReAlloc
lstrcmpiA
SetErrorMode
GetCurrentThreadId
WriteFile
RemoveDirectoryW
DuplicateHandle
IsValidLocale
GetSystemInfo
GetLocaleInfoW
CreateEventA
CreateThread
TlsAlloc
InitializeCriticalSection
GetEnvironmentStrings
GetLogicalDrives
SetPriorityClass
LoadLibraryA
GlobalFindAtomA
ResetEvent
HeapFree
CompareStringA
WinExec
FindResourceA
SetEvent
FreeLibrary
lstrcmpiW
VirtualProtect
GetDriveTypeA
LeaveCriticalSection
GetWindowsDirectoryA
GetStdHandle
GlobalUnlock
lstrcpynA
GetSystemTimeAsFileTime
SetStdHandle
CreateProcessA
QueryPerformanceCounter
WideCharToMultiByte
GetCurrentDirectoryA
CreateProcessW
SetUnhandledExceptionFilter
GetDateFormatA
ResumeThread
GetTempPathA
LCMapStringW
UnhandledExceptionFilter
InterlockedExchange
SetHandleCount
GetTimeFormatA
IsBadWritePtr
GetSystemDirectoryW
CloseHandle
CreateFileA
GlobalDeleteAtom
HeapCreate
EnumSystemLocalesA
_lwrite
GetCommandLineA
VirtualFree
TerminateThread
CompareStringW
HeapAlloc
GetProfileStringA
GetTickCount
GetCurrentProcessId
GetSystemDefaultLangID
LockResource
FreeEnvironmentStringsA
TlsFree
GetFileTime
WaitForMultipleObjects
SetLastError
lstrcpynW
GlobalAlloc
lstrlenA
ExitThread
GetSystemDirectoryA
SetEndOfFile
HeapReAlloc
GetSystemTime
GetStartupInfoA
EnumResourceLanguagesW
GetStringTypeExW
FindFirstFileW
TlsSetValue
GetThreadLocale
UnlockFile
IsBadReadPtr
CreateMutexW
LocalAlloc
DeleteCriticalSection
GetProcAddress
InterlockedDecrement
SetCommTimeouts
GetStringTypeW

shlwapi

PathIsRootW
UrlCanonicalizeW
PathFindExtensionW
PathRemoveExtensionW
PathIsDirectoryW
PathIsFileSpecW
PathStripPathW
PathRemoveFileSpecW
PathCanonicalizeW
UrlIsW
PathCreateFromUrlW
PathStripToRootW
UrlCreateFromPathW
StrFormatByteSizeW
PathIsURLW
PathCompactPathW
PathIsUNCW
PathFindFileNameW
PathRelativePathToW
PathAppendW

winspool.drv

EndDocPrinter
DeviceCapabilitiesW
WritePrinter
OpenPrinterA
EnumJobsA
AddPrinterA
AddPrinterDriverA
GetPrinterDriverDirectoryA
ClosePrinter
ord204
StartDocPrinterA
DocumentPropertiesA
OpenPrinterW
EnumPrintersA
DeviceCapabilitiesA

comdlg32

GetSaveFileNameA
GetFileTitleW
CommDlgExtendedError
GetOpenFileNameW
PageSetupDlgA
ChooseColorW
GetSaveFileNameW
PrintDlgA
PageSetupDlgW

comctl32

ImageList_Add
ImageList_GetIcon
ImageList_DragLeave
CreatePropertySheetPageW
PropertySheetA
ImageList_Destroy
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_Merge
InitCommonControlsEx
ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_Replace
ImageList_Write
CreatePropertySheetPageA
ord17
ImageList_DrawEx
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_DragEnter
ImageList_Read
CreateStatusWindowW
ImageList_Draw
ImageList_GetDragImage
_TrackMouseEvent
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_Create
ImageList_SetDragCursorImage
ImageList_EndDrag
ImageList_Remove
ImageList_SetBkColor

user32

GetSubMenu
SetClipboardData
SetWindowLongA
UnhookWindowsHookEx
wvsprintfA
IsWindowEnabled
CallNextHookEx
InflateRect
SetFocus
InsertMenuItemW
DefWindowProcA
ClientToScreen
AppendMenuA
RegisterWindowMessageW
CallWindowProcW
LoadMenuA
SystemParametersInfoA
SetWindowLongW
RegisterClassA
SetScrollPos
LoadAcceleratorsW
RemovePropA
MenuItemFromPoint
SetMenuDefaultItem
LoadCursorA
GetKeyboardLayoutList
CallWindowProcA
CreateDialogIndirectParamA
AdjustWindowRectEx
WinHelpA
DestroyWindow
PostThreadMessageA
SetWindowPlacement
GetMessagePos
GetClassNameA
CharNextA
GetClientRect
SetDlgItemInt
GetWindowTextLengthA
GetSystemMenu
ScrollWindow
wsprintfA
GetScrollRange
IsIconic
GetActiveWindow
ShowCursor
InSendMessage
ModifyMenuA
OffsetRect
GetWindowThreadProcessId
GetWindowRect
CharUpperW
PeekMessageA
InvertRect
WindowFromPoint
EndDeferWindowPos
FindWindowW
GetDlgCtrlID
ReleaseCapture
IsWindowVisible
HideCaret
RegisterClassExW
WaitForInputIdle
GetClipboardFormatNameA
CheckDlgButton
IntersectRect
GetSystemMetrics
DispatchMessageW
DestroyCaret
MapWindowPoints
DeleteMenu
GetScrollInfo
CreatePopupMenu
DeferWindowPos
DestroyIcon
InvalidateRect
ShowCaret
GetCapture
BeginPaint
SystemParametersInfoW
DrawFrameControl
BringWindowToTop
DrawTextA
GetMessageW
SetScrollRange
DdeInitializeW
GetFocus
DialogBoxParamA
FillRect
InsertMenuA
CharNextW
EnableWindow
CloseClipboard
UnregisterClassA
IsDlgButtonChecked
DispatchMessageA
SetParent
GetMessageTime
IsWindowUnicode
ShowScrollBar
LoadImageA
GetMenuCheckMarkDimensions
OpenClipboard
SendMessageA
GetParent
GetMenuStringA
GetNextDlgGroupItem
UnpackDDElParam
PostQuitMessage
SetWindowTextA
EnableMenuItem
SendDlgItemMessageA
GetNextDlgTabItem
LockWindowUpdate
CreateWindowExA
GetPropA
GetSysColor
SetWindowPos
LoadImageW
GetSysColorBrush
RemoveMenu
DefWindowProcW
DrawMenuBar
SetMenuItemBitmaps
OemToCharA
FrameRect
SetCursor
SetPropW
LoadAcceleratorsA
CreateMenu
TrackMouseEvent
GetClipboardData
UpdateWindow
GetWindowRgn
EndDialog
DestroyMenu
HiliteMenuItem
WaitMessage
TabbedTextOutA
GetIconInfo
GetMenuItemCount
SendMessageW
LoadIconA
IsZoomed
GetWindowTextW
OemToCharBuffA
GetClassInfoA
IsDialogMessageA
GetDC
GetWindowPlacement
SubtractRect
ReuseDDElParam
MessageBoxA
DrawFocusRect
DrawEdge
PostMessageA
SetRectEmpty
LoadStringA
AppendMenuW
IsDialogMessageW
TranslateAcceleratorA
ReleaseDC
SetRect
GetDCEx
GetKeyboardLayout
DdeCreateStringHandleW
GetDlgItem
GetAsyncKeyState
GetKeyState
GetWindowLongA
SetForegroundWindow
CopyRect
CreateWindowExW
SetActiveWindow
SetCursorPos
GetDesktopWindow
IsWindow
IsMenu
SetMenu
GetCursorPos
PostThreadMessageW
IsChild
GetMenu
SetCapture
UnionRect
GetTopWindow
EnumChildWindows
SetDlgItemTextA
RegisterWindowMessageA
LoadBitmapA
TrackPopupMenu
CharUpperA
GrayStringA
IsRectEmpty
TranslateMDISysAccel
CheckMenuItem
SetWindowContextHelpId
GetClassLongA
GetWindowTextA
SetTimer
IsClipboardFormatAvailable
GetMenuDefaultItem
SetWindowsHookExW
GetLastActivePopup
GetPropW
EqualRect
DefDlgProcA
DestroyCursor
GetWindowTextLengthW
DrawIconEx
FlashWindow
DrawStateW
RegisterClipboardFormatA
ScreenToClient
SetWindowTextW
CopyAcceleratorTableA
GetMenuState
MapDialogRect
ExcludeUpdateRgn
RegisterClassExA
MsgWaitForMultipleObjects
KillTimer
MessageBeep
GetWindowDC
GetMessageA
MoveWindow
TranslateMessage
EndPaint
UnregisterClassW
PtInRect
ShowWindow
ValidateRect
SetScrollInfo
GetClassNameW
PostMessageW
CreateIconIndirect
SetWindowsHookExA
SetCaretPos
CopyAcceleratorTableW
CreateDialogIndirectParamW
GetWindow
GetForegroundWindow
GetMenuItemID
BeginDeferWindowPos

ole32

StringFromGUID2
CoGetMalloc
OleInitialize
CoFreeUnusedLibraries
CoTaskMemAlloc
ReleaseStgMedium
OleTranslateAccelerator
OleSave
WriteFmtUserTypeStg
GetHGlobalFromStream
OleRegGetUserType
OleCreateFromFile
CoRevokeClassObject
OleIsCurrentClipboard
CoCreateGuid
CreateILockBytesOnHGlobal
OleCreate
CoResumeClassObjects
OleRegGetMiscStatus
CoTaskMemFree
CoCreateInstance
CoMarshalInterThreadInterfaceInStream
OleFlushClipboard
StgCreateDocfile
OleCreateLinkToFile
WriteClassStg
OleSaveToStream
CoGetClassObject
OleCreateLinkFromData
StgOpenStorageOnILockBytes
WriteClassStm
CoGetInterfaceAndReleaseStream
CoDisconnectObject
StringFromCLSID
OleSetClipboard
StgCreateDocfileOnILockBytes
CreateItemMoniker
CoMarshalInterface
CoLoadLibrary
OleRegEnumVerbs
OleCreateMenuDescriptor
CoRegisterMessageFilter
CreateDataAdviseHolder
CoInitializeEx
OleIsRunning
OleRun
IsAccelerator
OleGetIconOfClass
OleLoadFromStream
OleLoad
RegisterDragDrop
CoImpersonateClient
CLSIDFromString
CoTaskMemRealloc
OleUninitialize
CreateBindCtx
OleGetClipboard
CoSuspendClassObjects
CoUninitialize
OleDestroyMenuDescriptor
CoLockObjectExternal
ReadFmtUserTypeStg
SetConvertStg
OleSetMenuDescriptor
CreateStreamOnHGlobal
ReadClassStg
CoRegisterClassObject
CreateFileMoniker
CLSIDFromProgID
CoInitialize
OleLockRunning
CoReleaseMarshalData

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c091a46f627e97972502a40f8c176f0

Headers

File Characteristics

Imports

kernel32

shlwapi

winspool.drv

comdlg32

comctl32

user32

ole32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 84KB - Virtual size: 81KB

.data Size: 88KB - Virtual size: 114KB

.rsrc Size: 68KB - Virtual size: 65KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 84KB - Virtual size: 81KB

.data
Size: 88KB - Virtual size: 114KB

.rsrc
Size: 68KB - Virtual size: 65KB