9f68953e533454412cf3b3528446d9d8abeb1988b54a938ae5d6c838f6d345dc

Sharing

Copy URL Twitter E-mail

General

Target

9f68953e533454412cf3b3528446d9d8abeb1988b54a938ae5d6c838f6d345dc
Size

851KB
MD5

91602a13cfda6eb97930d30dd3c915d0
SHA1

c30eb5736c75765094ff6c5a6b187a400339dc43
SHA256

9f68953e533454412cf3b3528446d9d8abeb1988b54a938ae5d6c838f6d345dc
SHA512

9a221b3f1e6f85f667af6ea6d368fb6a353eacee7f6de46a0abd22a5b7284a5039d919c5227b06485fd0f5b4dd5571dbe988e6f2ec0beb0d80ed0dc0945b5c2f
SSDEEP

12288:YbkOBikUE/AdZN26PFodqR1m2TNIDR3p/aOu:Y3Bi4/AZzodUlTNId3BaO

Score

N/A

Malware Config

Signatures

Files

9f68953e533454412cf3b3528446d9d8abeb1988b54a938ae5d6c838f6d345dc
.exe windows x86

9a9270245df6da107e7f24d417e8b260

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
RaiseException
HeapReAlloc
Sleep
ExitProcess
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetACP
IsDebuggerPresent
IsValidCodePage
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
LCMapStringA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetCurrentDirectoryA
GetDriveTypeA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapFree
HeapAlloc
GetStartupInfoW
GetTickCount
GetFileSizeEx
SetErrorMode
GetFileTime
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GlobalFlags
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
FindClose
WritePrivateProfileStringW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
GlobalGetAtomNameW
lstrcmpA
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetCurrentThreadId
FreeLibrary
InterlockedDecrement
WideCharToMultiByte
GlobalFree
FormatMessageW
LocalFree
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleA
GlobalUnlock
GlobalLock
GlobalAlloc
MulDiv
GetFileAttributesW
GetPrivateProfileStringW
GetSystemDirectoryW
GetUserDefaultLangID
GetCurrentDirectoryW
CloseHandle
CreateSemaphoreW
lstrlenW
FreeResource
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcAddress
GetModuleHandleW
LoadLibraryW
GetLastError
SetLastError
GetCPInfo
MultiByteToWideChar
lstrlenA
GetVersionExW
GetOEMCP
GetVersion

user32

IsRectEmpty
SetCapture
CharNextW
CopyAcceleratorTableW
InvalidateRgn
MessageBeep
RegisterClipboardFormatW
PostThreadMessageW
BringWindowToTop
TranslateAcceleratorW
MoveWindow
SetWindowTextW
IsDialogMessageW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetClassLongW
GetClassNameW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
SetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
UnregisterClassW
DeferWindowPos
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowPos
SystemParametersInfoA
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
IsWindowVisible
GetKeyState
PeekMessageW
ValidateRect
UnhookWindowsHookEx
IntersectRect
GetWindowThreadProcessId
IsWindowEnabled
EndPaint
BeginPaint
GetWindowDC
SetWindowLongW
SetRectEmpty
RemovePropW
SetPropW
MessageBoxW
UpdateWindow
PtInRect
ScreenToClient
DrawIcon
GetSystemMenu
LoadIconW
GetLastActivePopup
SetForegroundWindow
ShowWindow
IsIconic
GetPropW
IsWindow
GetWindow
GetCursorPos
SetWindowRgn
FrameRect
LoadMenuW
LoadImageW
DrawStateW
OffsetRect
GetClientRect
DrawFocusRect
InflateRect
TrackPopupMenuEx
GetWindowRect
GetActiveWindow
WindowFromPoint
ClientToScreen
LoadCursorW
CharUpperW
ShowOwnedPopups
CreateDialogIndirectParamW
EndDialog
SetWindowContextHelpId
MapDialogRect
SetCursor
ReleaseCapture
GetCapture
GetNextDlgTabItem
PostQuitMessage
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
EqualRect
InsertMenuItemW
InvalidateRect
PostMessageW
GetNextDlgGroupItem
GetParent
SendMessageW
GetWindowLongW
DestroyMenu
DestroyCursor
GrayStringW
DrawTextExW
TabbedTextOutW
EnableWindow
GetSubMenu
LoadBitmapW
GetSysColorBrush
CreatePopupMenu
GetMenuItemID
GetMenuState
ModifyMenuW
GetMenuItemCount
AppendMenuW
ReleaseDC
GetDC
GetDesktopWindow
GetSystemMetrics
DestroyIcon
SystemParametersInfoW
DrawTextW
GetMenuItemInfoW
SetRect
DrawEdge
FillRect
GetSysColor
CopyRect
GetWindowPlacement

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
OffsetViewportOrgEx
SetViewportOrgEx
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
GetWindowExtEx
GetViewportExtEx
MoveToEx
LineTo
GetClipBox
CreateCompatibleDC
SetBkMode
RestoreDC
SaveDC
StretchBlt
CombineRgn
CreateRectRgn
SelectClipRgn
CreateFontW
SetTextColor
SetBkColor
CreateBitmap
GetStockObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPixel
GetObjectW
DeleteDC
DeleteObject
SelectObject
GetTextExtentPoint32W
CreateFontIndirectW
CreatePen
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
SetMapMode

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegEnumKeyW
RegQueryValueExW
RegCloseKey
RegQueryValueW
RegOpenKeyW
RegOpenKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW

shell32

ShellExecuteW
DragFinish
DragQueryFileW
ShellExecuteExW

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

oledlg

OleUIBusyW

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysFreeString
SysStringLen
OleLoadPicture
SysAllocStringLen

winmm

PlaySoundW

Sections

.text
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 431KB - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nalapwr
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a9270245df6da107e7f24d417e8b260

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

Sections

.text Size: 272KB - Virtual size: 271KB

.rdata Size: 68KB - Virtual size: 68KB

.data Size: 11KB - Virtual size: 26KB

.rsrc Size: 431KB - Virtual size: 430KB

.reloc Size: 67KB - Virtual size: 68KB

nalapwr Size: - Virtual size: 4KB

.text
Size: 272KB - Virtual size: 271KB

.rdata
Size: 68KB - Virtual size: 68KB

.data
Size: 11KB - Virtual size: 26KB

.rsrc
Size: 431KB - Virtual size: 430KB

.reloc
Size: 67KB - Virtual size: 68KB

nalapwr
Size: - Virtual size: 4KB