bd6722f319963e59e6b9a8f39e5666ad35a7ffe0149967de90f44ca34ddbecf4

Sharing

Copy URL Twitter E-mail

General

Target

bd6722f319963e59e6b9a8f39e5666ad35a7ffe0149967de90f44ca34ddbecf4
Size

1.4MB
MD5

830f19c730395742f68bb43e680eae30
SHA1

73de47c1228c41625b4ad7c979963ce1e6bdd914
SHA256

bd6722f319963e59e6b9a8f39e5666ad35a7ffe0149967de90f44ca34ddbecf4
SHA512

99fc91a48e1f589b2d6429498ddce8fe29850d72bd411412d109fda98eefa8bab9bd16ba7ee6023eaaeb947e7b00548cd867b57c862b0a0520d0d79e52708465
SSDEEP

24576:Tfdu1zQfvkMq78nsF5GyQrEOzfKqWwQhY4KeSC5fJlu8nQMVlr:agq5GFK5Y4KW5hE8V

Score

N/A

Malware Config

Signatures

Files

bd6722f319963e59e6b9a8f39e5666ad35a7ffe0149967de90f44ca34ddbecf4
.dll windows x86

f4af5f76d8da70a1ebf9e99d3ff1f142

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetCompositionFontA
ImmGetContext

oledlg

ord3

shlwapi

PathRemoveBackslashA
PathRemoveBackslashW
PathAppendA
PathAddBackslashW

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

comctl32

ImageList_BeginDrag
ImageList_Draw
ImageList_Remove
InitCommonControlsEx
ImageList_DrawEx
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_Create
ImageList_Destroy
ImageList_Add
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_GetIcon
ImageList_GetImageInfo
ImageList_Replace

kernel32

lstrcpyA
LoadResource
FindResourceExA
GetUserDefaultUILanguage
GetModuleHandleA
SizeofResource
LockResource
GlobalMemoryStatus
GetDateFormatA
GetLocalTime
GetProfileStringA
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
MulDiv
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
SetConsoleCtrlHandler
CompareStringW
CompareStringA
InterlockedExchange
VirtualQuery
GetSystemInfo
VirtualProtect
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
SetUnhandledExceptionFilter
HeapSize
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThread
SetLastError
TlsAlloc
FatalAppExitA
GetCommandLineA
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
ExitProcess
HeapFree
HeapReAlloc
HeapAlloc
RaiseException
RtlUnwind
GetACP
InterlockedDecrement
GlobalAlloc
InterlockedIncrement
GlobalFree
IsDBCSLeadByteEx
GetSystemTime
SetThreadPriority
GetThreadPriority
Sleep
SuspendThread
TerminateThread
ResumeThread
CreateThread
ReleaseSemaphore
CreateSemaphoreA
ReleaseMutex
CreateMutexA
PulseEvent
WaitForSingleObject
CreateEventA
LeaveCriticalSection
EnterCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
FileTimeToSystemTime
SystemTimeToFileTime
MoveFileW
SetCurrentDirectoryA
GetFileAttributesA
SetCurrentDirectoryW
FindFirstFileW
MultiByteToWideChar
RemoveDirectoryW
DeleteFileW
SetFileTime
GetFileTime
GetFileAttributesW
SetFileAttributesW
CreateDirectoryW
GetCurrentDirectoryA
GetCurrentDirectoryW
FindClose
FindNextFileW
GetSystemTimeAsFileTime
CreateFileW
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
CloseHandle
SetEnvironmentVariableA
SetEndOfFile
GetFileSize
WriteFile
ReadFile
SetFilePointer
FormatMessageW
GetLastError
SleepEx
GetLocaleInfoA
GlobalDeleteAtom
FindResourceA
CreateDirectoryA
GetTickCount
FormatMessageA
LocalFree
LoadLibraryA
GetProcAddress
FreeLibrary
GetVersionExA
lstrcmpiA
GetCurrentProcessId
GetModuleFileNameA
GlobalSize
GlobalLock
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
GetStringTypeW
GetTimeFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
QueryPerformanceCounter
GetTimeZoneInformation
SetStdHandle
GetLocaleInfoW
FlushFileBuffers
GetEnvironmentStrings

user32

GetParent
ScrollWindowEx
DrawIconEx
ShowScrollBar
GetScrollInfo
GetDoubleClickTime
SetScrollPos
GetScrollPos
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
InvalidateRgn
GetClipCursor
ClipCursor
RegisterClassA
DrawMenuBar
SetMenu
DestroyMenu
CreatePopupMenu
SetMenuItemInfoA
TrackPopupMenu
RemoveMenu
InsertMenuItemA
SetLayeredWindowAttributes
GetClassInfoA
InvertRect
SetCursor
DestroyCursor
LoadImageA
GetWindowLongW
LoadCursorA
SetClipboardData
IsClipboardFormatAvailable
GetClipboardData
GetClipboardFormatNameA
OpenClipboard
EndPaint
CloseClipboard
RegisterClipboardFormatA
GetDesktopWindow
GetWindowTextA
GetKeyboardLayout
GetWindowTextLengthA
SetScrollInfo
AdjustWindowRectEx
IsWindowVisible
CreateWindowExA
SetWindowLongA
GetSysColorBrush
FillRect
GetFocus
SetParent
DestroyWindow
GetSystemMetrics
GetIconInfo
GetCapture
ReleaseCapture
ClientToScreen
SetCapture
GetWindowRect
GetClassNameA
FrameRect
RedrawWindow
DrawStateA
GetDCEx
GetAsyncKeyState
SetWindowTextA
SetWindowPos
DrawTextA
GetSysColor
DrawEdge
DrawFrameControl
InflateRect
DrawFocusRect
DestroyIcon
ScreenToClient
PtInRect
KillTimer
GetClientRect
BeginPaint
GetWindowDC
PostMessageW
GetWindow
GetMenu
LoadStringA
IntersectRect
GetActiveWindow
EmptyClipboard
IsZoomed
ReleaseDC
InvalidateRect
GetDC
SendMessageA
PostMessageA
ReuseDDElParam
UnpackDDElParam
GetMonitorInfoA
GetWindowPlacement
SetForegroundWindow
MessageBeep
ValidateRect
SendMessageW
GetLastInputInfo
UpdateWindow
SetTimer
CreateAcceleratorTableA
MapVirtualKeyA
MessageBoxW
MessageBoxA
TranslateMDISysAccel
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LockWindowUpdate
SetFocus
UnregisterClassA
DestroyAcceleratorTable
WinHelpA
GetKeyState
GetCursorPos
WindowFromPoint
BringWindowToTop
SetActiveWindow
ShowWindow
GetDlgItem
IsIconic
CallWindowProcA
GetWindowLongA
DefMDIChildProcA
DefFrameProcA
DefWindowProcA
IsChild
IsWindowEnabled
EnableWindow
GetForegroundWindow
GetWindowThreadProcessId
SystemParametersInfoA
MonitorFromPoint
CreateMenu

gdi32

SetTextColor
SelectObject
SetBkColor
GetObjectA
LineTo
MoveToEx
CreatePen
CreateSolidBrush
TranslateCharsetInfo
OffsetRgn
GetRgnBox
FrameRgn
SetROP2
CombineRgn
CreateRectRgn
GetStockObject
SetDIBitsToDevice
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
StretchBlt
BitBlt
GetTextFaceA
CreateFontIndirectA
PatBlt
GdiFlush
SetStretchBltMode
GetCurrentPositionEx
FillRgn
InvertRgn
Arc
Ellipse
CreatePatternBrush
CreateBitmap
GetRegionData
RoundRect
GetDeviceCaps
GetCurrentObject
Polygon
EnumFontFamiliesExA
GetTextMetricsA
DPtoLP
SetWindowOrgEx
CreateBitmapIndirect
GetPaletteEntries
SetPaletteEntries
CreateDIBSection
GetDIBColorTable
SetDIBColorTable
BeginPath
AbortPath
PathToRegion
EndPath
SetRectRgn
PtInRegion
GetClipBox
GetClipRgn
SelectClipRgn
ExtCreateRegion
FillPath
CreateRectRgnIndirect
ExcludeClipRect
SetBrushOrgEx
CreateDIBPatternBrushPt
RectVisible
StartDocA
EndDoc
EndPage
StartPage
CreateDCA
SetViewportOrgEx
SetBkMode
DeleteObject
RemoveFontResourceA
AddFontResourceA
CreateHalftonePalette
SelectPalette
CreatePalette
RealizePalette

comdlg32

CommDlgExtendedError
GetSaveFileNameW
ChooseColorA
PrintDlgA
PageSetupDlgA
ChooseFontA
GetOpenFileNameW

advapi32

GetUserNameA
RegDeleteKeyA
RegOpenKeyA
RegSetValueA
RegCreateKeyA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegEnumKeyA

shell32

DragQueryFileA
SHGetPathFromIDListW
SHGetDesktopFolder
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetFolderPathA
SHChangeNotify
SHGetFileInfoA

ole32

OleSetContainedObject
RegisterDragDrop
OleInitialize
OleUninitialize
DoDragDrop
ReleaseStgMedium
CoCreateInstance

oleaut32

VariantClear
VariantChangeType
SysFreeString
VariantInit
DispGetParam
SysAllocString

Sections

.text
Size: 940KB - Virtual size: 939KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 128KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f4af5f76d8da70a1ebf9e99d3ff1f142

Headers

File Characteristics

Imports

imm32

oledlg

shlwapi

version

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 940KB - Virtual size: 939KB

.rdata Size: 223KB - Virtual size: 223KB

.data Size: 15KB - Virtual size: 43KB

.rsrc Size: 47KB - Virtual size: 47KB

.reloc Size: 89KB - Virtual size: 88KB

.text Size: 128KB - Virtual size: 132KB

.text
Size: 940KB - Virtual size: 939KB

.rdata
Size: 223KB - Virtual size: 223KB

.data
Size: 15KB - Virtual size: 43KB

.rsrc
Size: 47KB - Virtual size: 47KB

.reloc
Size: 89KB - Virtual size: 88KB

.text
Size: 128KB - Virtual size: 132KB