f965b74d604c0aff9bdb0ee0dc800a40e4d883a325fc06fe881c87e43d09295f

Sharing

Copy URL Twitter E-mail

General

Target

f965b74d604c0aff9bdb0ee0dc800a40e4d883a325fc06fe881c87e43d09295f
Size

712KB
MD5

919694c0630833254b59700999778dc0
SHA1

c7024de0d677c753bdb1813cc902a0fabfb00534
SHA256

f965b74d604c0aff9bdb0ee0dc800a40e4d883a325fc06fe881c87e43d09295f
SHA512

b7c60b0fb7fd5942b0179429d39a93dc971f6590afcb3b5683edceff907e5c53d489f330ba06279ff49379de0750e40ef047d8b36202172ca9e6dbe84fda401a
SSDEEP

12288:3V4tNcK0yuvOp2k3jbRbCVOpJoe1/3MWPyL+enMJhLWYiYhxP0y5cDd6vBmmNh:3V4tiKrqQ3PtiI1/8kPe+x8y5cDIQmNh

Score

N/A

Malware Config

Signatures

Files

f965b74d604c0aff9bdb0ee0dc800a40e4d883a325fc06fe881c87e43d09295f
.exe windows x86

d87fb437da38d46cd6ca91c6e138f63a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
GetFileType
HeapSize
VirtualAlloc
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
LCMapStringA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
LockResource
LoadResource
FindResourceW
lstrcmpiW
MulDiv
GetVersion
MultiByteToWideChar
FindClose
FindFirstFileW
Sleep
DeleteFileW
GetFileAttributesW
CopyFileW
WideCharToMultiByte
lstrcmpW
FreeEnvironmentStringsW
lstrlenW
GetEnvironmentStringsW
CloseHandle
CreateFileW
lstrcatW
lstrcpyW
GetTickCount
GetLastError
FreeLibrary
GetProcAddress
LoadLibraryW
GetModuleFileNameW
GetVersionExW
GetLocaleInfoW
GetFileTime
IsBadReadPtr
GetExitCodeThread
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
GlobalSize
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SleepEx
LocalAlloc
LocalFree
GlobalHandle
WinExec
SetLastError
FormatMessageW
GetCurrentProcessId
GlobalAddAtomW
GlobalGetAtomNameW
GetModuleHandleW
GetVersionExA
LoadLibraryA
CompareStringW
GlobalDeleteAtom
GlobalFindAtomW
CreateThread
GetCurrentThreadId
FreeResource
GetProfileIntW
InterlockedDecrement
SetThreadPriority
ResumeThread
WaitForSingleObject
SetEvent
SuspendThread
CreateEventW
GetModuleHandleA
lstrcmpA
lstrlenA
InterlockedExchange
CompareStringA
EnumResourceLanguagesW
ConvertDefaultLocale
GetCurrentThread
FileTimeToSystemTime
FileTimeToLocalFileTime
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationW
GetFullPathNameW
GetFileSizeEx
InterlockedIncrement
TlsGetValue
GlobalReAlloc
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
WritePrivateProfileStringW
SetErrorMode
GetStartupInfoW
RtlUnwind
ExitProcess
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
RaiseException
HeapReAlloc
ExitThread
SizeofResource

user32

DrawTextExW
GrayStringW
GetWindowDC
BeginPaint
EndPaint
IsClipboardFormatAvailable
PostQuitMessage
ShowOwnedPopups
CharUpperW
GetSysColorBrush
UnregisterClassW
PostThreadMessageW
SetDlgItemTextW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetWindowTextW
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
CreateWindowExW
GetClassInfoExW
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcW
DrawTextW
SystemParametersInfoA
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
CheckMenuItem
GetClassNameW
UnpackDDElParam
ReuseDDElParam
DestroyMenu
WinHelpW
SetWindowPos
SetFocus
GetActiveWindow
EqualRect
SetWindowLongW
GetDlgCtrlID
PeekMessageW
GetCapture
LoadAcceleratorsW
SetActiveWindow
IsIconic
InsertMenuItemW
CreatePopupMenu
GetClassInfoW
IntersectRect
OffsetRect
SetRectEmpty
CopyRect
GetMenu
BringWindowToTop
GetWindow
ShowWindow
GetWindowThreadProcessId
GetWindowLongW
IsWindowEnabled
GetMenuState
GetMenuItemID
GetMenuItemCount
SetCapture
DrawFocusRect
InflateRect
MessageBeep
SetCursor
ReleaseCapture
ShowScrollBar
GetSysColor
TranslateAcceleratorW
GetDC
ReleaseDC
KillTimer
SetTimer
GetParent
GetDlgItem
GetDesktopWindow
MessageBoxW
LoadImageW
GetCursorPos
GetSystemMetrics
LoadMenuW
TabbedTextOutW
FillRect
GetMenuItemInfoW
GetMessageW
TranslateMessage
ValidateRect
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
WindowFromPoint
CallWindowProcW
SetRect
AppendMenuW
SystemParametersInfoW
LoadIconW
RegisterClassW
LoadCursorW
SetMenu
SendMessageW
IsDialogMessageW
EnableWindow
GetForegroundWindow
GetLastActivePopup
IsWindowVisible
InvalidateRect
UpdateWindow
ClientToScreen
GetClientRect
GetWindowRect
IsZoomed
PostMessageW
SetWindowTextW
RemoveMenu
GetSubMenu
EnableMenuItem
RegisterClipboardFormatW
IsWindow
PtInRect
MoveWindow
GetKeyState

gdi32

GetPaletteEntries
CreateHalftonePalette
GetTextMetricsW
CreateSolidBrush
CreatePen
SelectPalette
GetStockObject
CreatePatternBrush
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
GetPixel
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
ExtTextOutW
GetBkColor
CreateFontW
GetCharWidthW
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
CreateCompatibleBitmap
CopyMetaFileW
GetDeviceCaps
GetTextExtentPoint32W
CreateFontIndirectW
SetStretchBltMode
StretchDIBits
GetViewportOrgEx
GetObjectW
GetDIBColorTable
DeleteDC
DeleteObject
BitBlt
RealizePalette
SelectObject
CreateCompatibleDC
CreatePalette

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW

shell32

ShellExecuteW
DragQueryFileW
DragFinish

ole32

CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleInitialize
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleDuplicateData
CoRegisterMessageFilter
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitializeEx
OleUninitialize

winmm

waveInStop
waveOutReset
waveInStart
waveOutRestart
waveOutPause
PlaySoundW
mixerGetLineControlsW
mixerOpen
mixerClose
mixerGetNumDevs
mixerGetLineInfoW
mixerGetDevCapsW
mixerSetControlDetails
mixerGetControlDetailsW
mixerGetID
timeGetTime
timeSetEvent
timeKillEvent
waveOutGetPosition
waveInGetPosition
waveOutOpen
waveInOpen
sndPlaySoundW
waveOutClose
waveInClose
waveOutPrepareHeader
waveInPrepareHeader
waveOutUnprepareHeader
waveInUnprepareHeader
waveOutWrite

oledlg

OleUIBusyW

avifil32

AVIStreamTimeToSample
AVIFileOpenW
AVIStreamGetFrameOpen
AVIStreamGetFrame
AVIStreamGetFrameClose
AVIStreamFindSample
AVIFileInfoW
AVIStreamRelease
AVIFileRelease
AVIStreamStart
AVIStreamReadFormat
AVIStreamInfoW
AVIStreamLength
AVIStreamSampleToTime
AVIFileGetStream
AVIFileExit
AVIStreamRead
AVIFileInit

msvfw32

ICClose
ICOpen

Sections

.text
Size: 350KB - Virtual size: 349KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 269KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d87fb437da38d46cd6ca91c6e138f63a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

ole32

winmm

oledlg

avifil32

msvfw32

Sections

.text Size: 350KB - Virtual size: 349KB

.rdata Size: 76KB - Virtual size: 76KB

.data Size: 15KB - Virtual size: 31KB

.rsrc Size: 269KB - Virtual size: 272KB

.text
Size: 350KB - Virtual size: 349KB

.rdata
Size: 76KB - Virtual size: 76KB

.data
Size: 15KB - Virtual size: 31KB

.rsrc
Size: 269KB - Virtual size: 272KB