97085b1147d6530a50c6b27a7ecaf290eddcab96e8b7173a6546ad0b79fb8528

Sharing

Copy URL Twitter E-mail

General

Target

97085b1147d6530a50c6b27a7ecaf290eddcab96e8b7173a6546ad0b79fb8528
Size

324KB
MD5

a8e04a723222c4c1615d8e17586fa9c4
SHA1

f21a4d2155c4249d4636db8eb56963b0c81a5d30
SHA256

97085b1147d6530a50c6b27a7ecaf290eddcab96e8b7173a6546ad0b79fb8528
SHA512

f85a11cc3eb44c40135c25c2c2bbb65a778eb241aa009f252a5e5c08711f4bf2025876c8f30dacb3384280d0c64879424303aada923abc4645ba4f10ca65de60
SSDEEP

6144:XL6V7gNrd6s06AW8Qj7BSDXVYHyAs1exMq2Df5JXijGJtq:XmUrd6s0i8QBqXVY9s1eH2LS

Score

N/A

Malware Config

Signatures

Files

97085b1147d6530a50c6b27a7ecaf290eddcab96e8b7173a6546ad0b79fb8528
.exe windows x86

941921c0bbf5d8d86ac7c599006a8e09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlCanonicalizeW
PathAppendW
UrlIsW
PathStripToRootW
PathRenameExtensionW
PathIsURLW
StrCatW
PathStripPathW
PathCreateFromUrlW
PathFindFileNameW
PathRemoveBackslashW
PathRemoveFileSpecW
PathFindExtensionW
PathAddBackslashW
UrlCreateFromPathW
PathIsDirectoryW
PathFileExistsW
PathIsFileSpecW
StrStrW
StrFormatByteSizeW

winmm

mixerGetLineControlsA
waveOutPrepareHeader
waveOutClose
mixerGetNumDevs
waveInStart
waveOutOpen
waveOutWrite
timeGetDevCaps
waveInClose
waveInGetNumDevs
waveOutGetNumDevs
waveOutReset
waveInUnprepareHeader
waveInAddBuffer
timeEndPeriod
mixerGetLineInfoA
mixerGetDevCapsA
waveInOpen
waveOutUnprepareHeader
mmioRead
waveInPrepareHeader
waveInStop
mciSendCommandA
mixerClose
mciSendStringA
mmioDescend
waveInReset
mixerGetControlDetailsA
mixerGetDevCapsW
mciGetErrorStringA
mixerOpen
waveOutPause
waveOutRestart

user32

GetMessagePos
GetClassLongA
DispatchMessageA
SetTimer
DrawMenuBar
GetWindowRgn
SendDlgItemMessageA
DdeNameService
DefFrameProcW
LoadIconA
DrawTextExW
MessageBeep
RegisterClassExA
IntersectRect
GetCapture
LookupIconIdFromDirectoryEx
GetClientRect
InflateRect
CharUpperW
DrawFrameControl
LoadMenuW
DrawTextW
LoadStringA
DestroyCursor
SetScrollRange
GetMessageTime
LoadCursorW
EnumClipboardFormats
CreateMenu
GetDlgItem
RemoveMenu
SetScrollInfo
ExcludeUpdateRgn
LoadAcceleratorsA
ReuseDDElParam
wsprintfA
SetCapture
TranslateMessage
GetPropA
CreatePopupMenu
CallNextHookEx
PostMessageA
ReleaseDC
SetMenuDefaultItem
GetWindowLongA
IsZoomed
CallWindowProcW
SetWindowPlacement
GetNextDlgTabItem
WinHelpA
DialogBoxParamA
GetSubMenu
GetKeyState
UnhookWindowsHookEx
EndDialog
SetWindowLongA
SetPropA
FindWindowW
CallWindowProcA
GetAsyncKeyState
GetSystemMetrics
IsChild
SetForegroundWindow
EnableMenuItem
PeekMessageA
RemovePropA
ShowOwnedPopups
GetScrollRange
CopyAcceleratorTableA
RegisterClipboardFormatA
SetClassLongA
MoveWindow
SetCursor
EnumWindows
GetSysColor
DefWindowProcA
ReleaseCapture
ModifyMenuA
CharNextA
GetDlgItemTextA
GetDlgCtrlID
SetWindowLongW
AdjustWindowRectEx
CharToOemA
InvalidateRect
TrackPopupMenu
SetDlgItemTextW
GetClassInfoW
GetFocus
GetClassNameA
CopyRect
DestroyWindow
GetWindowDC
OpenClipboard
GetMenuItemCount
GetClassLongW
SetWindowsHookExA
ClientToScreen
WindowFromPoint
UnregisterHotKey
IsRectEmpty
AppendMenuA
SystemParametersInfoA
TabbedTextOutA
InsertMenuA
GetMenuItemID
FindWindowA
GetDoubleClickTime
SetMenu
DrawTextA
GetUpdateRect
DefDlgProcA
TranslateMDISysAccel
SendMessageTimeoutW
SetClipboardData
MapWindowPoints
RegisterClassW
GetClipboardData
GetWindowRect
GetForegroundWindow
MessageBoxW
IsWindow
CheckDlgButton
IsWindowUnicode
EnableWindow
LoadImageA
GetClassNameW
EndPaint
PostQuitMessage
GetClassInfoA
ScrollWindowEx
WindowFromDC
InsertMenuW
GetDC
CharUpperBuffW
CopyIcon
IsDialogMessageA
BeginPaint
DrawTextExA
LoadStringW
IsDlgButtonChecked
InvalidateRgn
GetSysColorBrush
GetWindowTextLengthA
KillTimer
DefMDIChildProcA
LoadMenuA
GetCaretPos
GetWindowThreadProcessId
GetMenuCheckMarkDimensions
IsWindowEnabled
GetWindowTextW
CheckMenuItem
LoadBitmapA
RedrawWindow
ScreenToClient
SetWindowTextW
CreateWindowExW
DispatchMessageW
GetDCEx
GetMenuState
SetWindowPos
InsertMenuItemA
DestroyIcon
RegisterWindowMessageW
LoadCursorA
SetRect
GetMenuStringA
OpenIcon
CloseClipboard
IsIconic
GetDlgItemTextW
SetMenuItemBitmaps
GetMenu
DeferWindowPos
GetMessageA
GetSystemMenu
HideCaret
DeleteMenu
CopyAcceleratorTableW
GetWindow
RegisterWindowMessageA
SetFocus
GetCursorPos
SetDlgItemTextA
TrackPopupMenuEx
SetParent
ChangeClipboardChain
ShowWindow
EqualRect
BringWindowToTop
DrawIcon
GetActiveWindow
GetIconInfo
CharUpperA
GetTopWindow
CreateDialogIndirectParamA
SetWindowsHookExW
UpdateWindow
ShowScrollBar
GrayStringA
AdjustWindowRect
SetPropW
BeginDeferWindowPos
IsMenu
LoadBitmapW
EmptyClipboard
GetScrollInfo
GetLastActivePopup
SetScrollPos
FrameRect
wsprintfW
LockWindowUpdate
GetMenuItemInfoA
RegisterClassA
OffsetRect
CreateCaret
PeekMessageW
InvertRect
SetWindowTextA
SendMessageW
GetDialogBaseUnits
DefWindowProcW
PostMessageW
MessageBoxA
GetNextDlgGroupItem
GetWindowTextA
CharLowerW
IsWindowVisible
CreateIconFromResourceEx
MapDialogRect
SetActiveWindow
CreateDialogIndirectParamW
GetWindowLongW
DestroyMenu
SetRectEmpty
DrawFocusRect
PtInRect
GetDesktopWindow
GetMenuItemInfoW
EndDeferWindowPos
GetClassInfoExA
GetParent
ValidateRect

ole32

CoLockObjectExternal
CoInitialize
OleQueryCreateFromData
DoDragDrop
CoInitializeEx
OleInitialize
OleSetClipboard
CreateOleAdviseHolder
GetHGlobalFromILockBytes
CreateFileMoniker
OleRun
CoRegisterMessageFilter
CoTreatAsClass
CreateILockBytesOnHGlobal
OleQueryLinkFromData
OleIsCurrentClipboard
OleTranslateAccelerator
StgOpenStorage
GetClassFile
CLSIDFromString
CreateItemMoniker
CoDisconnectObject
CoCreateInstance
OleFlushClipboard
IsAccelerator
CoTaskMemRealloc
OleRegGetUserType
CLSIDFromProgID
OleLoadFromStream
OleDestroyMenuDescriptor
StringFromGUID2
OleRegGetMiscStatus
ReadFmtUserTypeStg
OleLockRunning
WriteFmtUserTypeStg
OleRegEnumVerbs
OleIsRunning
OleDuplicateData
CoTaskMemAlloc
CoReleaseMarshalData
OleGetClipboard
CoCreateGuid
GetRunningObjectTable
WriteClassStg
CreateGenericComposite
CoTaskMemFree
CoUninitialize
OleUninitialize
ReleaseStgMedium
RevokeDragDrop
OleCreateFromData
CoFreeUnusedLibraries
ReadClassStg
StgIsStorageILockBytes
CoMarshalInterface
CoRevokeClassObject
CoSetProxyBlanket
StgCreateDocfileOnILockBytes
StgCreateDocfile
RegisterDragDrop
CreateBindCtx
OleCreateMenuDescriptor
CoGetClassObject
SetConvertStg
CreateStreamOnHGlobal
WriteClassStm
OleSaveToStream
OleSetContainedObject
StringFromCLSID
ProgIDFromCLSID
StgOpenStorageOnILockBytes
StgIsStorageFile

comctl32

ImageList_Read
ImageList_BeginDrag
DestroyPropertySheetPage
ImageList_Write
InitCommonControlsEx
ImageList_Draw
CreateStatusWindowW
ImageList_GetIcon
ImageList_SetDragCursorImage
ImageList_Remove
ImageList_LoadImageA
PropertySheetA
ImageList_GetBkColor
ImageList_GetDragImage
ord17
ImageList_EndDrag
ImageList_AddMasked
ImageList_DragLeave
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Add
ImageList_Create
ImageList_Merge
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_SetOverlayImage
ImageList_GetImageCount
ImageList_SetBkColor
_TrackMouseEvent
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_DragMove
CreatePropertySheetPageA

kernel32

DuplicateHandle
GetTimeZoneInformation
GetLocaleInfoA
GetLogicalDriveStringsA
GlobalFindAtomA
OpenMutexA
QueryPerformanceFrequency
GlobalFindAtomW
GetConsoleCP
GlobalMemoryStatus
GetPrivateProfileStringA
GetProfileIntA
GetLastError
FlushFileBuffers
SetFilePointer
InitializeCriticalSection
GetModuleHandleA
VirtualQuery
GetOEMCP
GlobalHandle
GetFileSize
GetCPInfo
CreateMutexA
lstrcmpiW
GetProcessVersion
CreateFileMappingA
FormatMessageA
IsBadReadPtr
SetHandleCount
DebugBreak
SetFileAttributesA
LockFile
lstrcmpA
HeapCreate
GetFileType
LocalReAlloc
GetVersion
SetUnhandledExceptionFilter
CreateProcessW
MulDiv
FatalAppExitA
FileTimeToSystemTime
GetStartupInfoA
FormatMessageW
ReleaseMutex
SetEndOfFile
IsValidLocale
TerminateProcess
GetSystemTime
InterlockedIncrement
CopyFileA
Sleep
GlobalUnlock
SetConsoleCtrlHandler
LockResource
LoadResource
GetCurrentProcess
FindNextFileW
GetUserDefaultLCID
EnumResourceLanguagesA
LocalFree
WriteProcessMemory
InterlockedDecrement
GetFullPathNameW
GetProfileStringA
GetShortPathNameA
GetSystemDefaultLangID
DeleteCriticalSection
FindFirstFileW
GetComputerNameA
GetStringTypeExA
GetCurrentDirectoryA
WinExec
TlsSetValue
WriteConsoleW
GetTickCount
SetErrorMode
CompareStringW
GetModuleFileNameA
HeapFree
TlsAlloc
GetEnvironmentVariableA
GetLocalTime
GetCommandLineA
GetFileAttributesW
GetTimeFormatA
IsDebuggerPresent
GetStringTypeW
lstrlenW
GetWindowsDirectoryA
lstrcmpW
SetThreadPriority
EnumSystemLocalesA
lstrcatA
SetEnvironmentVariableA
LCMapStringA
VirtualAlloc
LocalAlloc
lstrcpyA
HeapSize
HeapReAlloc
DeleteFileW
FreeEnvironmentStringsA
LocalFileTimeToFileTime
GetEnvironmentStringsW
GetCurrentThread
IsValidCodePage
InterlockedExchange
VirtualFree
GlobalFlags
GetDiskFreeSpaceA
GetTimeFormatW
SetLastError
GetEnvironmentStrings
GetProcAddress
GetPrivateProfileIntA
IsBadCodePtr
TlsFree
WaitForMultipleObjects
GetFileInformationByHandle
QueryPerformanceCounter
LoadLibraryW
GetSystemTimeAsFileTime
SetStdHandle
_lopen
OutputDebugStringA
UnlockFile
FindResourceExA
GetACP
FreeEnvironmentStringsW
GetFileTime
GetThreadLocale
FreeResource
FileTimeToLocalFileTime
HeapValidate
GetCurrentThreadId
lstrcpynA
CompareStringA
RtlUnwind
LoadLibraryA
CloseHandle
GetProcessHeap
CreateProcessA
lstrlenA
GetVersionExA
GetTempPathA
SetEvent
GetStringTypeA
WideCharToMultiByte
lstrcmpiA
ConvertDefaultLocale
TlsGetValue
SetCurrentDirectoryA
GlobalReAlloc
GetStdHandle
MultiByteToWideChar
SuspendThread
GlobalAlloc
UnhandledExceptionFilter
GetConsoleOutputCP
HeapAlloc
GetLocaleInfoW
FindNextFileA
GetModuleHandleW
TerminateThread
SizeofResource
DeleteFileA
GetSystemDirectoryA
GlobalFree
GetCurrentProcessId
lstrcpyW
RaiseException
LeaveCriticalSection
GetFileSizeEx
LoadLibraryExA
HeapDestroy
FreeLibrary
GlobalDeleteAtom
RemoveDirectoryA
VirtualProtect
GetThreadPriority
ExitProcess
SystemTimeToFileTime
ResumeThread
CopyFileW
GlobalLock
ResetEvent
WriteFile
FindResourceA
LCMapStringW
GetStartupInfoW
ReadFile
GetLongPathNameW
GetVolumeInformationA
ExitThread
GetDateFormatA
CreateFileA
SetEnvironmentVariableW
WritePrivateProfileStringA
GetFullPathNameA
FindClose
EnterCriticalSection
IsBadWritePtr

advapi32

RegCreateKeyExA
DeleteService
RegQueryInfoKeyA
RegQueryValueExW
RegQueryValueExA
SetFileSecurityW
QueryServiceConfigA
RevertToSelf
SetSecurityDescriptorDacl
RegCreateKeyExW
FreeSid
QueryServiceStatus
RegCreateKeyA
RegFlushKey
OpenServiceA
StartServiceA
RegDeleteValueA
RegSetValueExW
GetTokenInformation
LookupAccountSidA
MapGenericMask
OpenThreadToken
GetFileSecurityA
CloseServiceHandle
RegCreateKeyW
GetLengthSid
RegOpenKeyExA
GetAce
GetAclInformation
AccessCheck
RegOpenKeyW
RegCloseKey
RegOpenKeyExW
RegQueryValueW
InitializeAcl
RegSetValueExA
OpenProcessToken
ChangeServiceConfigA
LookupPrivilegeValueA
RegDeleteValueW
RegQueryValueA
RegOpenKeyA
DuplicateToken
GetUserNameW
AdjustTokenPrivileges
GetSecurityInfo
ControlService
GetFileSecurityW
RegDeleteKeyW
CreateServiceA
DeleteAce
InitializeSecurityDescriptor
RegEnumValueA
AllocateAndInitializeSid
RegDeleteKeyA
IsValidSecurityDescriptor
RegEnumKeyExA
GetSecurityDescriptorDacl
AddAccessAllowedAce
OpenSCManagerA
RegEnumKeyW
ImpersonateSelf

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

941921c0bbf5d8d86ac7c599006a8e09

Headers

File Characteristics

Imports

shlwapi

winmm

user32

ole32

comctl32

kernel32

advapi32

Sections

.text Size: 92KB - Virtual size: 88KB

.rdata Size: 112KB - Virtual size: 109KB

.data Size: 88KB - Virtual size: 94KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 92KB - Virtual size: 88KB

.rdata
Size: 112KB - Virtual size: 109KB

.data
Size: 88KB - Virtual size: 94KB

.rsrc
Size: 28KB - Virtual size: 27KB