d4237c0a3a1ee959c0bde5969b0495f3a6ec37432237d0baabd00be2017c4653

Sharing

Copy URL

Twitter E-mail

General

Target

d4237c0a3a1ee959c0bde5969b0495f3a6ec37432237d0baabd00be2017c4653
Size

302KB
MD5

a360e997b85acffcae097f86c061e16d
SHA1

359bb35f036a6f951b3592c427b78498af51af29
SHA256

d4237c0a3a1ee959c0bde5969b0495f3a6ec37432237d0baabd00be2017c4653
SHA512

65b0b1c9f9b9e1792ce9a441a12c134795d188d995c5d3e08c33e5023c8e322d2114d85c668dee7792ef1b4710d81e14f5490656f26a05d4e4581f7c4d71732b
SSDEEP

6144:03A84ap4CBdQxpwD0StiOf+IHRizPEHf+VXMt/cTx96Ck2HFVRoeAEOlB:2A84Xi/xtJHsuWjkP

Score

N/A

Malware Config

Signatures

Files

d4237c0a3a1ee959c0bde5969b0495f3a6ec37432237d0baabd00be2017c4653
.exe windows x86

5ed09558ce304fa4c9aaea4f2a649588

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
HeapReAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadReadPtr
IsDBCSLeadByte
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
LockResource
MapUserPhysicalPages
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenFile
OpenMutexA
OpenThread
QueryPerformanceCounter
RaiseException
ReadConsoleOutputA
ReadFile
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
GlobalLock
ResumeThread
RtlMoveMemory
SearchPathA
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleInformation
SetLastError
SetSystemTime
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStructW
_hwrite
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW
GlobalFree
GlobalAlloc
GetVersionExA
GetVersion
GetUserDefaultUILanguage
GetUserDefaultLCID
GetTimeFormatW
GetTickCount
GetTempPathW
GetTempPathA
GetTempFileNameW
GetTempFileNameA
GetSystemWindowsDirectoryA
GetSystemTimeAsFileTime
GetSystemTime
GetSystemPowerStatus
GetSystemInfo
GetSystemDirectoryW
GetSystemDirectoryA
GetSystemDefaultUILanguage
GetStringTypeExA
GetStdHandle
GetShortPathNameW
GetProfileIntA
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileType
GetFileTime
GetFileSize
GetFileAttributesW
GetExitCodeThread
GetExitCodeProcess
GetEnvironmentVariableW
GetDriveTypeW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetACP
FreeResource
FreeLibraryAndExitThread
FreeLibrary
FormatMessageW
FormatMessageA
FlushInstructionCache
FlushFileBuffers
FindResourceA
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
ExitProcess
EnumTimeFormatsA
EnumSystemCodePagesW
EnumCalendarInfoW
EnterCriticalSection
EndUpdateResourceW
DuplicateHandle
DeviceIoControl
DeleteTimerQueueTimer
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateTimerQueueTimer
CreateThread
CreateProcessW
CreateMutexW
CreateMutexA
CreateFileW
CreateEventW
CreateEventA
CreateDirectoryW
CopyFileW
ConnectNamedPipe
CompareStringW
CompareStringA
CompareFileTime
ReplaceFileA
CloseHandle

rpcrt4

IUnknown_AddRef_Proxy
RpcImpersonateClient
NdrOleFree
NdrOleAllocate
NdrDllGetClassObject
NdrDllCanUnloadNow
NdrClientCall2
NdrCStdStubBuffer_Release
IUnknown_Release_Proxy
IUnknown_QueryInterface_Proxy
CStdStubBuffer_AddRef
DceErrorInqTextW
CStdStubBuffer_QueryInterface
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Invoke
CStdStubBuffer_Disconnect
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
CStdStubBuffer_Connect

shfolder

SHGetFolderPathA

ws2_32

socket
ntohs
closesocket
WSCInstallProvider
WSAEventSelect
WSADuplicateSocketW
WSACreateEvent
WSAAddressToStringA

advapi32

RegQueryInfoKeyA
CloseServiceHandle
CreateProcessWithLogonW
ElfCloseEventLog
ElfDeregisterEventSource
EnumServicesStatusA
FreeSid
GetTokenInformation
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
LsaQueryInfoTrustedDomain
OpenProcessToken
OpenSCManagerA
OpenThreadToken
UnregisterTraceGuids
TraceEvent
SystemFunction026
SystemFunction025
SystemFunction001
RegisterTraceGuidsA
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyW
AllocateAndInitializeSid
RegOpenKeyExW
RegOpenKeyA
RegEnumValueW
RegEnumKeyExW
RegEnumKeyExA
RegEnumKeyA
RegDeleteValueW
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegConnectRegistryW
RegCloseKey

shlwapi

StrCmpNW
StrCmpW
StrDupA
StrDupW
StrFormatByteSizeW
StrRChrIW
StrStrA
StrStrIA
StrStrIW
StrStrW
StrCmpNIW
StrToIntExA
StrToIntExW
StrToIntW
StrTrimA
UrlApplySchemeW
PathUnquoteSpacesW
UrlCreateFromPathW
UrlUnescapeA
UrlUnescapeW
StrCmpNIA
StrCmpIW
StrChrA
StrCSpnW
StrCSpnA
SHSetValueW
SHSetValueA
SHRegSetUSValueA
SHRegGetBoolUSValueA
SHQueryValueExW
SHQueryValueExA
SHQueryInfoKeyW
SHGetValueW
SHGetValueA
SHEnumKeyExW
SHDeleteValueW
SHDeleteValueA
SHDeleteKeyW
SHDeleteKeyA
ord16
SHCopyKeyA
StrToIntA
SHAutoComplete
HashData
PathAddBackslashW
PathAddExtensionW
PathAppendA
PathAppendW
PathCombineW
PathCompactPathExW
PathFileExistsA
PathFileExistsW
PathFindExtensionW
PathFindFileNameA
PathFindFileNameW
PathFindOnPathW
PathGetArgsA
PathIsContentTypeA
PathIsContentTypeW
PathIsDirectoryEmptyW
PathIsDirectoryW
PathIsFileSpecW
PathIsRelativeW
PathIsRootW
PathIsUNCServerW
PathIsURLW
PathRelativePathToW
PathRemoveArgsA
PathRemoveBackslashW
PathRemoveExtensionW
PathRemoveFileSpecA
PathRemoveFileSpecW
PathRenameExtensionW
PathSearchAndQualifyA
PathStripPathW
PathUnExpandEnvStringsW
PathUnquoteSpacesA
UrlCombineW

user32

EnumWindows
EqualRect
FillRect
FindWindowExA
FindWindowExW
GetActiveWindow
GetCapture
GetClassInfoA
GetClassInfoExA
GetClassInfoExW
GetClassInfoW
GetClassNameA
GetClassNameW
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
GetDlgItemTextW
GetFocus
GetForegroundWindow
GetGUIThreadInfo
GetKeyState
GetKeyboardLayoutList
GetLastActivePopup
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuItemInfoW
GetMenuState
GetMenuStringW
GetMessageExtraInfo
GetMessagePos
GetMessageW
GetMonitorInfoA
GetNextDlgGroupItem
GetNextDlgTabItem
GetParent
GetPropA
GetPropW
GetScrollBarInfo
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetWindow
GetWindowDC
GetWindowInfo
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
InsertMenuA
InsertMenuItemA
InsertMenuItemW
InsertMenuW
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsDialogMessageW
IsDlgButtonChecked
IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsWindowUnicode
EnumThreadWindows
IsZoomed
KillTimer
LoadAcceleratorsA
LoadAcceleratorsW
LoadCursorA
LoadIconA
LoadImageA
LoadImageW
LoadMenuA
LoadMenuW
LoadStringA
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuW
MonitorFromPoint
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageA
SendMessageCallbackW
SendMessageTimeoutA
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetDlgItemInt
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenu
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoA
SetMenuItemInfoW
SetParent
SetPropA
SetPropW
SetRect
SetRectEmpty
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
TrackMouseEvent
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorA
TranslateAcceleratorW
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WindowFromPoint
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawTextA
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DispatchMessageA
DialogBoxParamW
DialogBoxParamA
DialogBoxIndirectParamA
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
DdeAbandonTransaction
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateDialogParamW
CopyRect
CloseClipboard
ClientToScreen
ActivateKeyboardLayout
AdjustWindowRect
AdjustWindowRectEx
AppendMenuA
AppendMenuW
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
CheckRadioButton
CheckMenuRadioItem
CheckMenuItem
CheckDlgButton
CharUpperW
CallWindowProcW
CharLowerA
CharLowerW
CharNextA
CharNextExA
CharNextW
CharPrevA
CharPrevW
CharUpperA
IsWindowVisible

gdi32

Polyline
Polygon
PatBlt
MoveToEx
LineTo
LPtoDP
GetTextMetricsA
GetTextExtentPointW
GetTextExtentPointA
GetTextExtentPoint32W
GetObjectW
GetObjectA
GetDeviceCaps
GetClipBox
BitBlt
Rectangle
RestoreDC
SaveDC
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetTextColor
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutW
ExtTextOutA
EnumFontFamiliesExA
Ellipse
DeleteObject
DeleteMetaFile
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreatePen
CreateMetaFileA
CreateFontIndirectW
CreateFontIndirectA
CreateFontA
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CloseMetaFile
ChoosePixelFormat
ExtTextOutW

winspool.drv

AddPrinterW
DeviceCapabilitiesW
DeviceMode
EXTDEVICEMODE
ord201
GetJobW
GetPrinterDriverA
SetPrinterDataExA
WritePrinter

msvcrt

iswpunct
_wremove
_strnset

dbghelp

UnDecorateSymbolName
vc7fpo
srcfiles
lmi

opengl32

glColor3fv
glCopyTexImage1D
glGetPixelMapusv
glGetTexLevelParameterfv
glGetTexLevelParameteriv
glLighti
glMapGrid1d
glNormal3dv
glNormal3sv
glRasterPos4dv
glRasterPos4fv
glStencilOp
glTexCoord4dv
glTexCoord4i
glTexCoord4sv
glVertex4iv
wglGetCurrentContext
GlmfCloseMetaFile

Sections

.text
Size: 65KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ed09558ce304fa4c9aaea4f2a649588

Headers

File Characteristics

Imports

kernel32

rpcrt4

shfolder

ws2_32

advapi32

shlwapi

user32

gdi32

winspool.drv

msvcrt

dbghelp

opengl32

Sections

.text Size: 65KB - Virtual size: 68KB

.rdata Size: 29KB - Virtual size: 31KB

.data Size: 122KB - Virtual size: 231KB

.idata Size: 16KB - Virtual size: 19KB

.rsrc Size: 67KB - Virtual size: 67KB

.text
Size: 65KB - Virtual size: 68KB

.rdata
Size: 29KB - Virtual size: 31KB

.data
Size: 122KB - Virtual size: 231KB

.idata
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 67KB - Virtual size: 67KB