3d5c86a5e99224567214b829734123c2b91b20d607ab80fd0726e1600f7a9206

Sharing

Copy URL Twitter E-mail

General

Target

3d5c86a5e99224567214b829734123c2b91b20d607ab80fd0726e1600f7a9206
Size

1.7MB
MD5

0f2ffaac4e0b8b980c587c07d9b3a0d0
SHA1

2c17e33ea46bbcc37b79645f12cf941d1fcebbbb
SHA256

3d5c86a5e99224567214b829734123c2b91b20d607ab80fd0726e1600f7a9206
SHA512

6fbedcadd6610c1d3f798fbcbc49aa2972f0d42deb1daa61f93d026bb2030aff7e2e8f8ec9df815f1da8e8dea1f90dda6f164027a9dbae0f0c8e1a6d81ca5752
SSDEEP

49152:jFasz0M1BsCVCQk/7hiGJM3TDLjUdzLK50VcqhBrI0wxag20jPB7:RZ0isCVCQ4hDMDDLjUdzu2pBrIlxag20

Score

N/A

Malware Config

Signatures

Files

3d5c86a5e99224567214b829734123c2b91b20d607ab80fd0726e1600f7a9206
.exe windows x86

acd763f7315b80d969c786da900ad317

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SizeofResource
SetUnhandledExceptionFilter
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
HeapQueryInformation
CreateThread
ExitThread
HeapReAlloc
HeapFree
HeapAlloc
DecodePointer
EncodePointer
RtlUnwind
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
SearchPathW
Sleep
GetProfileIntW
InitializeCriticalSectionAndSpinCount
GetTempPathW
GetTempFileNameW
GetFileTime
GetFileSizeEx
GetFileAttributesW
FileTimeToLocalFileTime
GetFileAttributesExW
SetErrorMode
GetNumberFormatW
GetWindowsDirectoryW
GetFullPathNameW
GetVolumeInformationW
WriteConsoleW
SetEnvironmentVariableA
ExitProcess
FindFirstFileW
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
SetFilePointer
ReadFile
lstrcmpiW
lstrcpyW
DeleteFileW
GetCurrentDirectoryW
FileTimeToSystemTime
lstrlenA
GlobalGetAtomNameW
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetThreadLocale
GetCurrentProcessId
WaitForSingleObject
ResumeThread
SetThreadPriority
lstrcmpA
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
InterlockedExchange
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
InterlockedIncrement
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
GetModuleHandleW
CompareStringW
ActivateActCtx
DeactivateActCtx
lstrcmpW
SetLastError
GlobalFree
CopyFileW
GlobalSize
FormatMessageW
LocalFree
lstrlenW
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
WriteFile
FreeResource
FlushFileBuffers
CreateFileW
LoadLibraryW
GetProcAddress
FreeLibrary
GetModuleFileNameW
GetTickCount
WideCharToMultiByte
MultiByteToWideChar
GetPrivateProfileStringW
WritePrivateProfileStringW
GetCurrentProcess
CloseHandle
GetLastError
GetPrivateProfileIntW
FindResourceW
LoadResource
LockResource

user32

MonitorFromPoint
UpdateLayeredWindow
UnionRect
MapVirtualKeyExW
IsCharLowerW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
GetKeyNameTextW
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFrameControl
DrawEdge
DrawStateW
GetSystemMenu
LoadMenuW
SetClassLongW
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
PostThreadMessageW
DrawIconEx
LoadImageW
CopyImage
GetIconInfo
NotifyWinEvent
EnableScrollBar
HideCaret
DrawFocusRect
InvertRect
MapVirtualKeyW
CreatePopupMenu
GetMenuDefaultItem
RedrawWindow
CharUpperW
DestroyIcon
IsIconic
IsClipboardFormatAvailable
WaitMessage
WindowFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
KillTimer
DeleteMenu
UnregisterClassW
RegisterClipboardFormatW
RealChildWindowFromPoint
DestroyMenu
GetMenuItemInfoW
InflateRect
LoadCursorW
GetSysColorBrush
MessageBeep
GetNextDlgGroupItem
CharNextW
GetWindowThreadProcessId
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
ReleaseCapture
IsMenu
SetCapture
InvalidateRgn
InvalidateRect
IntersectRect
OffsetRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
CreateMenu
SetMenuDefaultItem
GetWindowRgn
DestroyCursor
DrawIcon
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
UpdateWindow
PostMessageW
CreateWindowExW
GetClassInfoExW
SubtractRect
GetDoubleClickTime
CharUpperBuffW
CopyIcon
GetUpdateRect
GetDesktopWindow
FrameRect
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
GetWindow
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
LoadBitmapW
IsWindow
GetDC
AdjustWindowRect
SystemParametersInfoW
SetWindowPos
PtInRect
GetClientRect
GetWindowLongW
SetWindowLongW
SendMessageW
GetSystemMetrics
SetTimer
CloseWindow
GetAsyncKeyState
GetKeyState
MessageBoxW
EnableWindow
GetParent
GetWindowRect

gdi32

GetRgnBox
GetBkColor
GetTextColor
CreateFontIndirectW
GetTextExtentPoint32W
GetMapMode
PatBlt
DPtoLP
GetTextMetricsW
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreateRoundRectRgn
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreateRectRgnIndirect
StretchBlt
SetPixel
Rectangle
OffsetRgn
EnumFontFamiliesExW
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
SetPixelV
GetTextFaceW
GetPixel
BitBlt
CreateHatchBrush
GetWindowExtEx
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreatePatternBrush
PtVisible
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
SetDIBColorTable
CreateSolidBrush
GetViewportExtEx
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateRectRgn
SetRectRgn
CombineRgn
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateDIBSection
DeleteObject
DeleteDC
RectVisible

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegEnumValueW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW

shell32

SHBrowseForFolderW
SHGetFileInfoW
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHAppBarMessage
ShellExecuteW
DragQueryFileW
DragFinish

comctl32

ImageList_GetIconSize

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFileExistsW
PathRemoveFileSpecW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleDuplicateData
CoTaskMemAlloc
CoCreateGuid
CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
ReleaseStgMedium
CreateStreamOnHGlobal
CoInitialize
CoUninitialize
DoDragDrop

oleaut32

VariantInit
VarBstrFromDate
VariantCopy
OleCreateFontIndirect
SysAllocString
SafeArrayDestroy
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString
VariantChangeType
VariantClear
SysAllocStringLen

oledlg

OleUIBusyW

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipLoadImageFromStream
GdipDrawImageRectI
GdipSetSmoothingMode
GdipReleaseDC
GdipCreateFromHDC
GdipDeleteGraphics
GdipCloneImage
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipLoadImageFromFile
GdiplusStartup
GdiplusShutdown
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

acd763f7315b80d969c786da900ad317

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 280KB - Virtual size: 279KB

.data Size: 25KB - Virtual size: 55KB

.rsrc Size: 45KB - Virtual size: 45KB

.reloc Size: 204KB - Virtual size: 203KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 280KB - Virtual size: 279KB

.data
Size: 25KB - Virtual size: 55KB

.rsrc
Size: 45KB - Virtual size: 45KB

.reloc
Size: 204KB - Virtual size: 203KB