64a202b9116c10a4f3a50e989cec935ddd0c033253c9ca18fdbd21c311a52ffc

Sharing

Copy URL Twitter E-mail

General

Target

64a202b9116c10a4f3a50e989cec935ddd0c033253c9ca18fdbd21c311a52ffc
Size

296KB
MD5

931090a491942e133740b92ca6912453
SHA1

5a535cb423784e62396b8ccb74d685388e52dc95
SHA256

64a202b9116c10a4f3a50e989cec935ddd0c033253c9ca18fdbd21c311a52ffc
SHA512

ec1fdb3d0872ee39d83acebb37f34e430a39e982b7485793a598608691714c317db0766f3f8bae7bf405b278aeb4a4f3a9e6349ca1ec4400e1969abdc00ec7b9
SSDEEP

6144:WeU02l6LLlNdMw6fxJIvgAmoUrOcpkNur0daUGEWOMkMZpc:WeU02wLLlNdopJIvklO6k4wdaURh1o

Score

N/A

Malware Config

Signatures

Files

64a202b9116c10a4f3a50e989cec935ddd0c033253c9ca18fdbd21c311a52ffc
.dll windows x86

d1a605b7a960768606ae30a2701c7d81

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

pngu3266

??0XPNScrollButton@@IAE@XZ
?Create@XPNScrollButton@@UAEHKPAVCPNWindow@@JJJJKK@Z
?OnEvent@XPNScrollButton@@UAEHAAVCPNEvent@@@Z
??1XPNScrollButton@@MAE@XZ
?PaintToScreen@XPNWindow@@IAEHPAVCPNDC@@0PAVCPNxRect@@PAVCPNColor@@@Z
?DrawArrow@CPNDrawHelper@@SAXPAVCPNDC@@ABVCPNxRect@@J@Z
?SetBrush@XPNDC@@QAEPAVCPNBrush@@PAV2@@Z
?GetGrayTextBrush@CPNDrawHelper@@SAAAVCPNBrush@@XZ
?GetBtnTextBrush@CPNDrawHelper@@SAAAVCPNBrush@@XZ
?GetGrayTextPen@CPNDrawHelper@@SAAAVCPNPen@@XZ
?GetBtnTextPen@CPNDrawHelper@@SAAAVCPNPen@@XZ
??0CPNImageControl@@QAE@XZ
??1CPNImageControl@@UAE@XZ
?BlitToScreen@CPNMemoryDC@@UAEXXZ
??1CPNMemoryDC@@UAE@XZ
??0CPNPaintDC@@QAE@PAVCPNWindow@@@Z
??1CPNPaintDC@@UAE@XZ
?Create@CPNControl@@IAEHKPAVCPNWindow@@JJJJKPBDK@Z
?SetPosition@CPNScrollHelper@@QAEXJ@Z
?Create@CPNImageControl@@QAEHKPAVCPNWindow@@JJJJKKPAVCPNImage@@@Z
?GetBlackColor@CPNDrawHelper@@SAAAVCPNColor@@XZ
?SetPending@XPNTimer@@QAEXH@Z
??1CPNCursor@@UAE@XZ
??1CPNControl@@UAE@XZ
??0CPNCursor@@QAE@XZ
??0CPNBitmapImage@@QAE@XZ
?AssociatePopupMenu@XPNButton@@QAEHK@Z
?SetId@CPNControl@@UAEXK@Z
??1CPNImageButton@@UAE@XZ
??0CPNImageButton@@QAE@XZ
?OnEvent@CPNImageControl@@MAEHAAVCPNEvent@@@Z
?Create@XPNCustomText@@QAEHKPAVCPNWindow@@JJJJKPBDK@Z
??0XPNCustomText@@QAE@XZ
?OnEvent@CPNCustomText@@UAEHAAVCPNEvent@@@Z
?SetText@XPNCustomText@@UAEXPBD@Z
??0CPNMenu@@QAE@XZ
?GetFreeDiskSpace@CPNSystemInfo@@SAKABVCPNString@@@Z
?GetWindowTextColor@CPNDrawHelper@@SAAAVCPNColor@@XZ
??4CPNColor@@QAEAAV0@ABV0@@Z
?Get3dFaceColor@CPNDrawHelper@@SAAAVCPNColor@@XZ
?AddObserver@CPNRouter@@QAEXPAV1@KK@Z
??0CPNDC@@QAE@AAPAX@Z
?Get3dFaceBrush@CPNDrawHelper@@SAAAVCPNBrush@@XZ
?FillRectangle@CPNDC@@UAEXABVCPNxRect@@AAVCPNBrush@@@Z
??1CPNDC@@UAE@XZ
?GetPNWindow@CPNWindow@@SAPAV1@PAX@Z
??0CPNWindowDC@@QAE@PAVCPNWindow@@@Z
?GetControlsFont@CPNDrawHelper@@SAAAVCPNFont@@XZ
?SetFont@XPNDC@@QAEPAVCPNFont@@PAV2@@Z
?GetTextExtent@CPNDC@@UAEXPBDAAVCPNxSize@@@Z
?GetScreenMappingFactors@CPNSystemInfo@@SAXAAJ0@Z
??1CPNTimer@@MAE@XZ
??0CPNTimer@@QAE@KHPAPAV0@@Z
?QueryInterface@XPNTimer@@UAGJABU_GUID@@PAPAX@Z
?AddRef@XPNTimer@@UAGKXZ
?Release@XPNTimer@@UAGKXZ
?Func@XPNTimer@@UAGJXZ
?IsValid@CPNObject@@UBEHXZ
?UpdateBackgroundColor@CPNImageControl@@QAEXXZ
?SetImage@CPNImageControl@@QAEXPAVCPNImage@@@Z
?SetCursor@CPNSystemInfo@@SAPAVCPNCursor@@AAV2@@Z
??0CPNEvent@@QAE@KKPAVCPNRouter@@KKKK@Z
??1CPNEvent@@UAE@XZ
?RemoveSensitiveRect@CPNWindow@@QAEXJ@Z
?AddSensitiveRect@CPNWindow@@QAEJABVCPNxRect@@@Z
?MapCoordinatesTo@CPNWindow@@UBEXPAV1@AAVCPNxRect@@@Z
?MapCoordinatesTo@CPNWindow@@UBEXPAV1@AAVCPNxPoint@@@Z
?SetIcon@CPNWindow@@UAEXAAVCPNIcon@@H@Z
?IsPtInWindow@XPNWindow@@UBEHABVCPNxPoint@@@Z
?AddToolTip@CPNWindow@@UAEHPBD@Z
?AddToolTip@CPNWindow@@UAEHAAVCPNxRect@@PBD@Z
??1XPNCustomText@@UAE@XZ
??0CPNControl@@QAE@XZ
??0CPNRouter@@QAE@XZ
??1CPNWindowDC@@UAE@XZ
?GetWhitePen@CPNDrawHelper@@SAAAVCPNPen@@XZ
?GetBlackPen@CPNDrawHelper@@SAAAVCPNPen@@XZ
?Create@CPNImageControl@@UAEHKPAVCPNWindow@@JJJJKKK@Z
?OnPrimaryBtnDown@CPNImageControl@@MAEXABVCPNxPoint@@@Z
?OnPrimaryBtnUp@CPNImageControl@@MAEXABVCPNxPoint@@@Z
?DrawArrow@XPNScrollButton@@MAEXAAVCPNDC@@ABVCPNxRect@@KK@Z
?HandleEvent@CPNWindow@@UAEXAAVCPNEvent@@@Z
?GetBtnShadowPen@CPNDrawHelper@@SAAAVCPNPen@@XZ
?GetBlackBrush@CPNDrawHelper@@SAAAVCPNBrush@@XZ
?SetPushedState@XPNButton@@UAEXH@Z
?OnPaint@XPNButton@@UAEXPAVCPNDC@@HH@Z
?DrawButtonFace@CPNButton@@UAEXPAVCPNDC@@AAVCPNxRect@@HH@Z
?MakeButtonDefault@XPNButton@@UAEXH@Z
?SetButtonFaceColor@CPNButton@@UAEXABVCPNColor@@@Z
?GetButtonFaceColor@XPNButton@@UAEXAAVCPNColor@@@Z
?AdjustButtonFaceRect@XPNButton@@MAEXAAVCPNxRect@@ABV2@HHJ@Z
?NotifyObservers@CPNRouter@@UAEXAAVCPNEvent@@@Z
?Destroy@CPNWindow@@UAEXXZ
?IsValid@CPNWindow@@UBEHXZ
?GetParent@CPNWindow@@UBEPAV1@XZ
?SetParent@CPNWindow@@UAEXPAV1@@Z
?SetZOrderPosition@CPNWindow@@UAEXK@Z
?SetTitle@CPNWindow@@UAEXPBD@Z
?GetTitle@CPNWindow@@UBEXPADJ@Z
?GetTitleLength@CPNWindow@@UBEJXZ
?SetFont@CPNWindow@@UAEXPAVCPNFont@@H@Z
?GetFont@CPNWindow@@UBEPAVCPNFont@@XZ
?SetSize@CPNWindow@@UAEXABVCPNxSize@@@Z
?GetSize@CPNWindow@@UBEXAAVCPNxSize@@@Z
?GetClientRect@CPNWindow@@UBEXAAVCPNxRect@@@Z
?GetScreenRect@CPNWindow@@UBEXAAVCPNxRect@@@Z
?Move@CPNWindow@@UAEXABVCPNxPoint@@@Z
?Center@CPNWindow@@UAEXXZ
?ScrollWindow@CPNWindow@@UAEXJJPAVCPNxRect@@K@Z
?GetPosition@CPNWindow@@UBEXAAVCPNxPoint@@@Z
?MoveAndSize@CPNWindow@@UAEXABU_PNxRect@@@Z
?MoveAndSize@CPNWindow@@UAEXABU_PNxPoint@@ABU_PNxSize@@@Z
?ClientToScreen@CPNWindow@@UBEXAAVCPNxRect@@@Z
?ClientToScreen@CPNWindow@@UBEXAAVCPNxPoint@@@Z
?ScreenToClient@CPNWindow@@UBEXAAVCPNxRect@@@Z
?ScreenToClient@CPNWindow@@UBEXAAVCPNxPoint@@@Z
?PauseUpdates@CPNWindow@@UAEXXZ
?HasPausedUpdates@CPNWindow@@UBEHXZ
?ResumeUpdates@CPNWindow@@UAEXXZ
?RepaintRect@CPNWindow@@UAEXPBVCPNxRect@@H@Z
?RedrawWindow@CPNWindow@@UAEXXZ
?ValidateRect@CPNWindow@@UAEXPBVCPNxRect@@@Z
?GetFrameSize@CPNSystemInfo@@SAXAAVCPNxSize@@H@Z
??1CPNIcon@@UAE@XZ
??0CPNIcon@@QAE@XZ
??1CPNScreenDC@@UAE@XZ
?GetCharWidthA@CPNDC@@UAEJXZ
?GetCharHeight@CPNDC@@UAEJXZ
??0CPNScreenDC@@QAE@XZ
?ConstrainItems@CPNConstraintLayoutMgr@@QAEXXZ
?GetWorkAreaForPoint@CPNSystemInfo@@SAJABVCPNxPoint@@AAVCPNxRect@@@Z
??0CPNConstraintLayoutMgr@@QAE@PAUIUnknown@@@Z
??1CPNConstraintLayoutMgr@@QAE@XZ
?RemoveAll@CPNConstraintLayoutMgr@@QAEXXZ
?AddItem@CPNConstraintLayoutMgr@@QAEHPAUIUnknown@@KPBU_PNxRect@@@Z
?GetMinWidthBeforeMenuWrap@CPNFrame@@UAEKXZ
?ShowMenu@CPNFrame@@UAEXH@Z
?IsMenuShown@CPNFrame@@UBEHXZ
?SetMenu@CPNFrame@@UAEPAVCPNMenu@@PAV2@@Z
?GetMenu@CPNFrame@@UBEPAVCPNMenu@@XZ
?Create@CPNFrame@@UAEHPAVCPNWindow@@PAVCPNMenu@@JJJJKPBD@Z
??0CPNFrame@@QAE@XZ
??1CPNFrame@@UAE@XZ
??1CPNBrush@@UAE@XZ
??1CPNColor@@UAE@XZ
??0CPNBrush@@QAE@AAVCPNColor@@J@Z
??0CPNColor@@QAE@H@Z
??0CPNPaintDC@@QAE@ABU_PNxWindow@@@Z
?Attach@CPNBitmapImage@@UAEXPAUHBITMAP__@@@Z
?GetRowBytes@CPNBitmapImage@@UAEKXZ
?GetDataPtr@CPNBitmapImage@@UAEXPAPAX@Z
?LoadStandardBmp@CPNBitmapImage@@UAEHK@Z
?GetColorTableIndexAt@CPNBitmapImage@@UAEJJJ@Z
?GetColorAtColorTableIndex@CPNBitmapImage@@UAEHJAAVCPNColor@@@Z
?SetColorAtColorTableIndex@CPNBitmapImage@@UAEHJABVCPNColor@@@Z
?DeviceDependentImageCopy@CPNImage@@MAEHK@Z
?Free@CPNBitmapImage@@UAEXXZ
?Adopt@CPNBitmapImage@@UAEHK@Z
?Clone@CPNBitmapImage@@UAEPAVCPNImage@@XZ
?ColorizeWithMask@XPNBitmapImage@@UAEHABVCPNColor@@PAV2@K@Z
?Colorize@CPNBitmapImage@@UAEHABVCPNColor@@@Z
?ConvertToGrayscale@CPNBitmapImage@@UAEHXZ
?ReplaceColorAtPoint@CPNBitmapImage@@UAEHJJJJ@Z
?GetColorAt@CPNBitmapImage@@UAEHJJAAVCPNColor@@@Z
?ReplaceColorAt@CPNBitmapImage@@UAEHJJABVCPNColor@@@Z
?Detach@XPNImage@@UAEXXZ
?CreateBlankImage@CPNBitmapImage@@UAEHABVCPNDC@@ABVCPNxSize@@@Z
?MakeDeviceIndependent@CPNBitmapImage@@UAEHXZ
??1CPNBitmapImage@@UAE@XZ
?LoadFromResource@CPNBitmapImage@@UAEHK@Z
?MakeDeviceDependent@CPNBitmapImage@@UAEHPAVCPNDC@@@Z
?SetCapture@CPNWindow@@UAEXXZ
?ReleaseCapture@CPNWindow@@UAEXXZ
??1CPNRouter@@UAE@XZ
?SetPen@XPNDC@@QAEPAVCPNPen@@PAV2@@Z
?RemoveAllToolTips@CPNWindow@@UAEXXZ
?EnableToolTips@CPNWindow@@UAEXH@Z
?ShouldDrawFocus@CPNWindow@@MAEHXZ
?ParentPaintBackground@XPNWindow@@MAEHPAVCPNDC@@PAVCPNxRect@@@Z
?OnWndMsg@CPNWindow@@UAEHKIJPAJ@Z
?GetText@CPNControl@@UBEXPADJ@Z
?SetText@CPNControl@@UAEXPBD@Z
?GetTextLength@CPNControl@@UBEJXZ
?GetId@CPNControl@@UBEKXZ
?HasCapture@CPNWindow@@UBEHXZ
?SetFocus@CPNWindow@@UAEHXZ
?HasFocus@CPNWindow@@UBEHXZ
?Show@CPNWindow@@UAEHH@Z
?IsShown@CPNWindow@@UBEHXZ
?SetShowState@CPNWindow@@UAEXJ@Z
?GetShowState@CPNWindow@@UBEJXZ
?SetForegroundWindow@CPNWindow@@UAEXHK@Z
?Enable@CPNWindow@@UAEXH@Z
?IsEnabled@CPNWindow@@UBEHXZ
?GetMenu@CPNWindow@@UAEHAAVCPNMenu@@@Z
?AttachWindowItem@CPNWindow@@UAEHKPAV1@@Z
?DetachWindowItem@CPNWindow@@UAEXXZ
?Attach@CPNWindow@@UAEXABU_PNxWindow@@@Z
?Attach@CPNWindow@@UAEXPAX@Z
?Detach@CPNWindow@@UAEXXZ
?SubclassWnd@CPNWindow@@UAEHPAU_PNxWindow@@@Z
?GetBtnHighlightPen@CPNDrawHelper@@SAAAVCPNPen@@XZ
?SetTextBgColor@XPNDC@@QAEPAVCPNColor@@PAV2@@Z
?GetWhiteColor@CPNDrawHelper@@SAAAVCPNColor@@XZ
?SetTextFgColor@XPNDC@@QAEPAVCPNColor@@PAV2@@Z
?MapToScreen@CPNSystemInfo@@SAXPAJ0@Z
??0CPNMemoryDC@@QAE@PAVCPNDC@@AAVCPNxRect@@@Z
?Create@CPNButton@@UAEHKPAVCPNWindow@@JJJJKKPBD@Z
?Create@CPNWindow@@UAEHPAV1@JJJJKPBD@Z
?GetPNxWindowID@CPNWindow@@UBEPAXXZ
??BCPNWindow@@UBE?BU_PNxWindow@@XZ

kernel32

GetModuleFileNameA
InterlockedIncrement
lstrlenA
InterlockedDecrement
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
SetErrorMode
GetTickCount
GetTimeFormatA
EnumDateFormatsA
GetDateFormatA
FindClose
GetDiskFreeSpaceA
GetWindowsDirectoryA
FindFirstFileA
GetDriveTypeA
WinExec
GetProfileStringA
CloseHandle
GetLastError
GetFileSize
CreateFileA
GetTempPathA
GetSystemInfo
GetVersion
lstrcpyA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetTempFileNameA
FindNextFileA

user32

DdeClientTransaction
DdeFreeDataHandle
DdeUninitialize
DdeInitializeA
DdeFreeStringHandle
DdeCreateStringHandleA
DdeConnect
DdeGetLastError
DdeDisconnect
SendMessageTimeoutA
EnumWindows
PeekMessageA
CharLowerA
CharUpperA
CharPrevA
CharNextA
GetSystemMetrics
wsprintfA
DdeGetData
GetActiveWindow
GetClassNameA
IsDialogMessageA
TranslateMessage
DispatchMessageA
PostQuitMessage
SystemParametersInfoA

advapi32

RegCreateKeyA
RegEnumKeyA
RegDeleteKeyA
RegQueryValueExA
RegSetValueA
RegQueryValueA
RegOpenKeyExA
RegEnumKeyExA
RegOpenKeyA
RegCloseKey

pncrt

isalpha
_findclose
_findnext
_findfirst
isspace
_mbctype
strrchr
_assert
printf
strstr
strncmp
_stricmp
sprintf
strchr
strtok
_chmod
_errno
getenv
localtime
mktime
atol
atoi
rename
time
strncpy
_ftol
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
strcspn
vsprintf
_ismbcspace
memmove
_fstat
_CIpow
rand
srand
isalnum
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv
_putenv
_mkdir
_rmdir
_unlink
_getcwd
_chdir
_strnicmp
_strlwr
_close
_creat
_open
_sopen
_lseek
_tell
_read
_write
isdigit

Exports

Exports

?DdeCallback@@YGPAUHDDEDATA__@@IIPAUHCONV__@@PAUHSZ__@@1PAU1@KK@Z
RPCreateClass
SetDLLAccessPath

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_DATA
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1a605b7a960768606ae30a2701c7d81

Headers

File Characteristics

Imports

pngu3266

kernel32

user32

advapi32

pncrt

Exports

Exports

Sections

.text Size: 172KB - Virtual size: 171KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 4KB - Virtual size: 5KB

_DATA Size: 60KB - Virtual size: 60KB

.rsrc Size: 18KB - Virtual size: 18KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 172KB - Virtual size: 171KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 4KB - Virtual size: 5KB

_DATA
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 18KB - Virtual size: 18KB

.reloc
Size: 12KB - Virtual size: 12KB