4fd08da049f5120215f605f5ed173742b6cd63e9411871c0bc465472a80c91c7

Sharing

Copy URL Twitter E-mail

General

Target

4fd08da049f5120215f605f5ed173742b6cd63e9411871c0bc465472a80c91c7
Size

847KB
MD5

0d75e568354a119c786da64aad4a4bc6
SHA1

6351d5a77503cf743241a7413acf863b1caee898
SHA256

4fd08da049f5120215f605f5ed173742b6cd63e9411871c0bc465472a80c91c7
SHA512

1a132bba5a697bfa9489db176a8d2ffdf96cd40aea7e4c2aa921dfa5a6dbfa2228bd6dbd3f7a0d724784c00d952a50902f43ea5f2b06513a42649ba19de784d1
SSDEEP

12288:zSv4XH2i7H1yB2VEtE8NBcnn83bIPtn1ArjJ9amAcUi7erVg6RQSsPi:evizHfVjn8LIPF1idMmbFeESoi

Score

N/A

Malware Config

Signatures

Files

4fd08da049f5120215f605f5ed173742b6cd63e9411871c0bc465472a80c91c7
.exe windows x86

f55192d41d4e1e961801e4f6d8d9f4ee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
HeapFree
RtlUnwind
HeapAlloc
HeapReAlloc
VirtualProtect
VirtualAlloc
VirtualQuery
HeapSize
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
Sleep
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
GetLocaleInfoA
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
SetEnvironmentVariableA
InterlockedCompareExchange
GetStartupInfoW
GetFileSizeEx
FileTimeToLocalFileTime
SetErrorMode
GetFileTime
GetFileAttributesW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
WritePrivateProfileStringW
FileTimeToSystemTime
GetThreadLocale
GlobalGetAtomNameW
InterlockedIncrement
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
lstrlenA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetCurrentProcessId
GetModuleHandleA
InterlockedDecrement
MulDiv
lstrlenW
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
CompareStringW
LoadLibraryA
FreeLibrary
lstrcmpW
GetVersionExA
GetLastError
SetLastError
WinExec
LocalFree
MultiByteToWideChar
GetTickCount
GetModuleFileNameW
WideCharToMultiByte
CreateFileW
CreateDirectoryA
FindFirstFileA
FindNextFileA
SetFileAttributesA
DeleteFileA
FindClose
RemoveDirectoryA
GetFileAttributesA
FormatMessageW
GetCurrentProcess
CloseHandle
GetVersionExW
GetModuleHandleW
GetProcAddress
GetSystemInfo
GlobalAlloc
GlobalLock
FindResourceW
LoadResource
LockResource
SizeofResource
GlobalUnlock
QueryPerformanceCounter
GlobalFree
GetProcessHeap

user32

GetNextDlgGroupItem
MessageBeep
PostThreadMessageW
ClientToScreen
FillRect
GetMenuState
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
TrackPopupMenu
BringWindowToTop
SetMenu
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
UpdateWindow
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
PtInRect
GetMenu
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
wsprintfW
CopyRect
SetLayeredWindowAttributes
GetWindowLongW
SetWindowLongW
EqualRect
TranslateAcceleratorW
InvalidateRgn
SetRect
LoadIconW
KillTimer
IsIconic
PostMessageW
DrawIcon
GetSystemMetrics
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
IsWindow
LoadImageW
SendMessageW
EnableWindow
GetParent
InvalidateRect
GetDC
GetClientRect
GetWindowRect
RegisterClipboardFormatW
SetWindowContextHelpId
MapDialogRect
CharNextW
UnpackDDElParam
SetWindowRgn
LoadBitmapW
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
SetScrollRange
SetRectEmpty
CopyAcceleratorTableW
CharUpperW
UnregisterClassW
GetSysColorBrush
DestroyMenu
GetMenuItemInfoW
InflateRect
ReleaseCapture
LoadCursorW
SetCapture
SetTimer
IsRectEmpty
SystemParametersInfoW
GetDesktopWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
GetActiveWindow
ValidateRect
PostQuitMessage
GetWindowThreadProcessId
GetCursorPos
WindowFromPoint
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ReleaseDC
EnableMenuItem
CheckMenuItem
LoadMenuW
EndPaint
BeginPaint
GetKeyState
GetWindowDC
ModifyMenuW

gdi32

RestoreDC
SetBkMode
SetMapMode
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SaveDC
ExtSelectClipRgn
DeleteDC
CreateBitmap
GetStockObject
CreateSolidBrush
CreateEllipticRgn
LPtoDP
Ellipse
CreateFontIndirectW
GetTextExtentPoint32W
CreateRectRgnIndirect
GetMapMode
GetRgnBox
GetBkColor
GetTextColor
GetDeviceCaps
SetBkColor
SetTextColor
GetClipBox
CreatePatternBrush
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
SelectClipRgn
GetObjectW
CreateRectRgn
CombineRgn
DeleteObject
GetPixel
BitBlt
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegDeleteKeyW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
AdjustTokenPrivileges
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
OpenProcessToken
LookupPrivilegeValueW

shell32

ShellExecuteW
DragFinish
DragQueryFileW
SHGetSpecialFolderPathA

comctl32

_TrackMouseEvent

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

oledlg

OleUIBusyW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoDisconnectObject
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CLSIDFromProgID
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SysFreeString
VariantInit
VariantCopy
SysAllocString
SysAllocStringLen
VariantChangeType
SysStringLen
LoadTypeLi
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
VariantClear

gdiplus

GdipCreateFromHDC
GdipSetImageAttributesColorMatrix
GdipCreateBitmapFromFile
GdipGetImageHeight
GdipDrawImageI
GdipDisposeImage
GdipDeleteGraphics
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipAlloc
GdipFree
GdipDrawImageRectRect
GdipCloneImage
GdiplusShutdown
GdipGetImageWidth
GdiplusStartup

Sections

.text
Size: 409KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 329KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f55192d41d4e1e961801e4f6d8d9f4ee

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

Sections

.text Size: 409KB - Virtual size: 409KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 15KB - Virtual size: 31KB

Shared Size: 512B - Virtual size: 4B

.rsrc Size: 329KB - Virtual size: 329KB

.text
Size: 409KB - Virtual size: 409KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 15KB - Virtual size: 31KB

Shared
Size: 512B - Virtual size: 4B

.rsrc
Size: 329KB - Virtual size: 329KB