3674523ab214650b1dd5ff0eaef8727f7a1af27f030c1b75d3221858dc21bce2

Sharing

Copy URL Twitter E-mail

General

Target

3674523ab214650b1dd5ff0eaef8727f7a1af27f030c1b75d3221858dc21bce2
Size

3.3MB
MD5

36a4d8baef964f17fc4d1e478c4290eb
SHA1

1710960b5fdab97c867287048330af0596fff9bf
SHA256

3674523ab214650b1dd5ff0eaef8727f7a1af27f030c1b75d3221858dc21bce2
SHA512

e038ddd5dc77d2c6ae9120dc5bed6bd8f3298824c6cf08ecc98c2efaab810c3daab1a573dbedbfb78ea327c5271bc81381c882a7050240acc179a104d55a164a
SSDEEP

49152:9O952IBTD/1jwTnEqIQNwFFWZMEctJDNXg/qMi8:9+2IBSpgFFWZwiq

Score

N/A

Malware Config

Signatures

Files

3674523ab214650b1dd5ff0eaef8727f7a1af27f030c1b75d3221858dc21bce2
.exe windows x86

cdfbc73c669c121da060caa8810795b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
FindResourceW
CopyFileA
CreateDirectoryA
GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
LoadResource
LockResource
GetLastError
SizeofResource
OpenEventA
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
FreeLibrary
Sleep
SetEnvironmentVariableA
CreateFileW
GetProcessHeap
GetTimeZoneInformation
GetCurrentDirectoryW
GetConsoleMode
GetConsoleCP
LCMapStringW
CompareStringW
GetDriveTypeW
GetStringTypeW
IsProcessorFeaturePresent
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
SetHandleCount
HeapCreate
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
HeapAlloc
IsValidCodePage
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
ExitThread
CreateThread
ExitProcess
RaiseException
RtlUnwind
GetStartupInfoW
HeapSetInformation
GetCommandLineA
IsBadReadPtr
HeapValidate
VirtualQuery
GetSystemInfo
DecodePointer
EncodePointer
InitializeCriticalSectionAndSpinCount
FindResourceExW
SearchPathA
GetTickCount
GetNumberFormatA
GetWindowsDirectoryA
GetTempPathA
GetTempFileNameA
GetProfileIntA
VirtualProtect
GetFileAttributesExA
GetFileTime
GetFileSizeEx
GetFileAttributesA
GetOEMCP
GetCPInfo
GetCurrentDirectoryA
GetACP
GlobalFlags
lstrcpyA
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
ReleaseActCtx
CreateActCtxW
GetModuleFileNameW
SetErrorMode
InterlockedIncrement
InterlockedDecrement
FileTimeToSystemTime
GetAtomNameA
SetEvent
WaitForSingleObject
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleW
lstrcmpA
GetCurrentThread
GetLocaleInfoA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetCurrentProcessId
FindNextFileA
GetModuleFileNameA
lstrcmpiA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetHandleInformation
CompareStringA
LoadLibraryW
GetVersionExA
lstrcmpW
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetCurrentThreadId
GetModuleHandleA
ActivateActCtx
DeactivateActCtx
FindResourceA
FreeResource
ResumeThread
SetThreadPriority
SetLastError
MulDiv
GlobalFree
lstrlenW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
WideCharToMultiByte

user32

MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
SendDlgItemMessageA
MonitorFromWindow
GetMonitorInfoA
GetSysColor
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpA
TrackPopupMenu
SetWindowPlacement
GetWindowPlacement
GetKeyState
GetDlgCtrlID
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
SetMenu
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongA
SetWindowPos
SetFocus
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
LoadMenuW
LoadMenuA
SetMenuItemBitmaps
ModifyMenuA
InsertMenuItemA
GetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
GetSysColorBrush
EndDialog
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
PostThreadMessageA
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetWindowLongA
RegisterWindowMessageA
EnableWindow
NotifyWinEvent
SetWindowContextHelpId
EnumDisplayMonitors
SetForegroundWindow
HideCaret
OpenClipboard
WindowFromPoint
SetParent
GetParent
IsChild
GetLastActivePopup
GetWindow
GetTopWindow
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
GetDesktopWindow
GetFocus
SetCapture
GetCapture
SetActiveWindow
GetActiveWindow
KillTimer
SetTimer
EnableScrollBar
RedrawWindow
LockWindowUpdate
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRgn
InvalidateRect
GetUpdateRect
UpdateWindow
SetLayeredWindowAttributes
DestroyMenu
RealChildWindowFromPoint
ReleaseDC
GetWindowDC
GetWindowTextLengthA
GetWindowTextA
GetDC
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MapWindowPoints
GetClientRect
GetWindowRect
BringWindowToTop
GetWindowRgn
SetWindowRgn
IsZoomed
IsIconic
GetSystemMenu
PostQuitMessage
CharUpperA
CheckDlgButton
IsDialogMessageA
MoveWindow
ShowWindow
GetMenuCheckMarkDimensions
GetKeyNameTextA
DrawMenuBar
PostMessageA
IsWindow
SendMessageA
GetClassNameA
LoadBitmapW
RemoveMenu
IsMenu
GetMenuItemCount
GetSubMenu
MapVirtualKeyA
CharNextA
GetWindowThreadProcessId
TranslateMessage
GetMessageA
SetCursor
MapDialogRect
SystemParametersInfoA
SubtractRect
UnionRect
IntersectRect
InflateRect
SetRect
FindWindowA
GetCursorPos
LoadImageA
SetWindowTextA
GetSystemMetrics
GetMenuItemID
InsertMenuA
AppendMenuA
GetMenuStringA
GetMenuState
GetAsyncKeyState
ReleaseCapture
MessageBeep
MonitorFromPoint
UpdateLayeredWindow
GetClipboardFormatNameA
UnpackDDElParam
SetRectEmpty
CopyAcceleratorTableA
LoadAcceleratorsA
TranslateAcceleratorA
ReuseDDElParam
DestroyIcon
WaitMessage
LoadAcceleratorsW
UnregisterClassA
DrawIconEx
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
SetCursorPos
SetClassLongA
GetIconInfo
CopyImage
LoadImageW
SetClipboardData
CloseClipboard
EmptyClipboard
RegisterClipboardFormatA
DestroyCursor
MapVirtualKeyExA
IsCharLowerA
GetDoubleClickTime
IsClipboardFormatAvailable
DefMDIChildProcA
TranslateMDISysAccel
DefFrameProcA
CharUpperBuffA
IsRectEmpty
CopyIcon
OffsetRect
GetForegroundWindow
PtInRect

gdi32

GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateFontIndirectA
CreateBitmap
CreateCompatibleBitmap
CreatePalette
GetPaletteEntries
SetPaletteEntries
GetNearestPaletteIndex
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreatePolygonRgn
CreateRoundRectRgn
SetRectRgn
CombineRgn
OffsetRgn
GetRgnBox
PtInRegion
RealizePalette
GetBkColor
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
PtVisible
RectVisible
Polyline
Ellipse
Polygon
Rectangle
PatBlt
BitBlt
GetPixel
SetPixel
ExtFloodFill
TextOutA
ExtTextOutA
GetTextExtentPoint32A
GetTextFaceA
GetTextMetricsA
GetStockObject
Escape
GetBoundsRect
SetPixelV
SetTextColor
SetBkColor
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetLayout
SetLayout
GetDeviceCaps
CreateDCA
CopyMetaFileA
GetDIBColorTable
StretchBlt
CreateDIBSection
GetObjectA
CreateCompatibleDC
SetDIBColorTable
SelectObject
DeleteDC
ExtSelectClipRgn
EnumFontFamiliesA
DeleteObject
EnumFontFamiliesExA
GetSystemPaletteEntries
CreateDIBitmap
GetTextCharsetInfo

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

OpenThreadToken
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegEnumValueA
RegEnumKeyExA
SetThreadToken
RevertToSelf

shell32

SHGetFileInfoA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHAppBarMessage
ShellExecuteA
DragQueryFileA
DragFinish
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindExtensionW
PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathFindExtensionA
PathStripToRootA

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleLockRunning
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
RegisterDragDrop
CoRegisterMessageFilter
OleGetClipboard
RevokeDragDrop
OleDuplicateData
CoTaskMemFree
CreateStreamOnHGlobal
StringFromGUID2
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CoUninitialize
CoInitializeEx
CoCreateInstance
ReleaseStgMedium
CoLockObjectExternal
CoTaskMemAlloc
StringFromCLSID

oleaut32

OleCreateFontIndirect
SysAllocStringLen
SafeArrayDestroy
SysStringLen
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantChangeType
SysFreeString
SysAllocStringByteLen
VariantCopy
SysAllocString
VariantInit
VariantClear

oledlg

ord8

gdiplus

GdipCreateBitmapFromStream
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateBitmapFromHBITMAP
GdipSaveImageToFile
GdiplusStartup
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdiplusShutdown
GdipCreateBitmapFromStreamICM

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 474KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 304KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 231KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdfbc73c669c121da060caa8810795b9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 474KB - Virtual size: 473KB

.data Size: 304KB - Virtual size: 336KB

.rsrc Size: 83KB - Virtual size: 82KB

.reloc Size: 231KB - Virtual size: 230KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 474KB - Virtual size: 473KB

.data
Size: 304KB - Virtual size: 336KB

.rsrc
Size: 83KB - Virtual size: 82KB

.reloc
Size: 231KB - Virtual size: 230KB