293f629ca610fed9151ad29606b62fd705f6932ec66c5a8cd57414701132476b

Sharing

Copy URL Twitter E-mail

General

Target

293f629ca610fed9151ad29606b62fd705f6932ec66c5a8cd57414701132476b
Size

390KB
MD5

064e59cd8c08cf1a0aec77dedc80958d
SHA1

1b32fc3dbf2f40e29815b8937e449bc96389fc2e
SHA256

293f629ca610fed9151ad29606b62fd705f6932ec66c5a8cd57414701132476b
SHA512

f5c8792a714534b12a70fc63ddba9ce944c21e56686178deadd41fc16eb7c7f040d5aecff1cdab35c0e2b74317f6d25ab83d4a324ab8c2ada1f4de449514f389
SSDEEP

6144:5+6a2PdIfQJAr7lrBeASchNzSO2eYoL/yukXZLbjIyk:3SQJAvdBeASox246ukpLbjIy

Score

N/A

Malware Config

Signatures

Files

293f629ca610fed9151ad29606b62fd705f6932ec66c5a8cd57414701132476b
.exe windows x86

ef3d32741141a9ffde06721c65ea07b6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

_purecall
strftime
_adjust_fdiv
_initterm
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
??1type_info@@UAE@XZ
_mbsnbicmp
_itoa
_mbsicmp
_mbsnbcpy
_ltoa
_ultoa
fabs
floor
modf
labs
_ftol
swprintf
wcscpy
_mbsnbcmp
_strdup
__p___argv
__p___argc
_beginthreadex
_EH_prolog
_endthreadex
_mbsdec
__p___mb_cur_max
_isctype
__p__pctype
_expand
strcpy
strtod
sprintf
strtol
strtoul
abs
memcmp
calloc
_msize
__CxxFrameHandler
__p__mbctype
localtime
gmtime
time
mktime
_ismbcspace
atoi
_ismbcdigit
_mbclen
vsprintf
_mbsstr
_mbsrchr
_mbscspn
_mbsspn
_mbsrev
_mbspbrk
_mbschr
wcslen
_mbscmp
realloc
fclose
fflush
fseek
ftell
fgets
fputs
fwrite
fread
clearerr
_open_osfhandle
_fdopen
__doserrno
_get_osfhandle
memset
_mbsinc
strlen
abort
free
malloc
memmove
memcpy
_CxxThrowException

kernel32

GlobalFlags
GetProcAddress
FreeLibrary
FindClose
MoveFileA
DeleteFileA
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
lstrcmpiA
GetShortPathNameA
GetModuleFileNameA
GlobalSize
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalFree
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileAttributesA
SetFileTime
GetFileAttributesA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
LocalFree
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
EnterCriticalSection
UnlockFile
SetEndOfFile
LockFile
GetVersion
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
ReleaseMutex
CreateEventA
WaitForMultipleObjects
GetCurrentThreadId
lstrcatA
LockResource
LoadResource
FindResourceA
GlobalAddAtomA
GlobalGetAtomNameA
MulDiv
GetProfileIntA
VirtualProtect
SizeofResource
GetProcessVersion
IsBadWritePtr
GetTempFileNameA
GetDiskFreeSpaceA
LocalUnlock
LocalLock
GetTempPathA
SearchPathA
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
GetCurrentThread
GlobalDeleteAtom
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
GetTickCount
GetUserDefaultLCID
IsDBCSLeadByte
GetModuleHandleA
DisableThreadLibraryCalls
GetSystemDirectoryA
Sleep
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
lstrcmpA
OutputDebugStringA
lstrlenA
IsBadStringPtrW
lstrcpynA
IsBadStringPtrA
SetLastError
TlsGetValue
GetLastError
LoadLibraryA
lstrcpyA
TlsSetValue
IsBadReadPtr
LocalReAlloc

gdi32

MoveToEx
CreateSolidBrush
DeleteDC
StretchDIBits
CreateCompatibleBitmap
GetStockObject
SaveDC
RestoreDC
GetNearestColor
GetBkColor
GetTextColor
GetBkMode
GetROP2
DeleteObject
GetViewportExtEx
GetWindowExtEx
GetTextFaceA
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ExtTextOutA
GetTextExtentPointA
GetCharWidthA
GetCurrentPositionEx
Escape
GetDeviceCaps
SetWindowOrgEx
GetWindowOrgEx
GetViewportOrgEx
IntersectClipRect
PtVisible
RectVisible
DeleteMetaFile
CloseMetaFile
TextOutA
CreatePen
CreatePatternBrush
CreateBitmap
PatBlt
Rectangle
UnrealizeObject
CreateRectRgnIndirect
CreateDCA
StartDocA
CreateFontIndirectA
ScaleWindowExtEx
CreateCompatibleDC
SetROP2
SetStretchBltMode
OffsetWindowOrgEx
SelectClipRgn
ExcludeClipRect
OffsetClipRgn
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
GetObjectType
PlayMetaFileRecord
EnumMetaFile
PlayMetaFile
ExtCreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
GetMapMode
CombineRgn
SetRectRgn
DPtoLP
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
LPtoDP
SetBrushOrgEx
CopyMetaFileA
CreateMetaFileA
RealizePalette
GetPaletteEntries
CreatePalette
GetPixel
EnumFontFamiliesA
GetPolyFillMode
GetClipBox
BitBlt
GetObjectA
GetTextMetricsA
SelectObject
GetTextAlign
SetBkColor
SetTextColor
SelectPalette
GetStretchBltMode
SetBkMode
SetPolyFillMode

user32

IsIconic
BringWindowToTop
CharUpperA
GetSystemMetrics
CharLowerA
CharToOemA
OemToCharA
UnhookWindowsHookEx
MsgWaitForMultipleObjects
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindowLongA
GetWindowRect
GetWindow
GetMessagePos
GetMessageTime
CallWindowProcA
RemovePropA
GetPropA
SendMessageA
SetForegroundWindow
GetForegroundWindow
GetLastActivePopup
SetPropA
SetWindowsHookExA
CallNextHookEx
CreateWindowExA
DestroyWindow
DefWindowProcA
GetKeyState
GetDlgCtrlID
GetWindowTextA
GetWindowTextLengthA
GetDlgItem
GetWindowPlacement
SetWindowPlacement
TrackPopupMenu
GetMenu
GetMenuItemID
GetSubMenu
GetMenuItemCount
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetScrollInfo
GetParent
IsChild
EnableWindow
IsWindowEnabled
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
ScrollWindow
ScreenToClient
IsWindowVisible
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
GetClientRect
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetFocus
IsWindow
SetActiveWindow
GetFocus
PeekMessageA
DispatchMessageA
GetSysColor
MapWindowPoints
SystemParametersInfoA
SendDlgItemMessageA
UpdateWindow
PostMessageA
LoadIconA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
SetCursor
GetDesktopWindow
ShowWindow
GetActiveWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
LoadStringA
wsprintfA
IntersectRect
LoadCursorA
SetCapture
WaitMessage
GetCursorPos
GetWindowThreadProcessId
WindowFromPoint
TranslateMessage
GetMessageA
ClientToScreen
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
RedrawWindow
LoadBitmapA
InflateRect
PtInRect
ReleaseDC
InvertRect
GetWindowDC
OffsetRect
FillRect
SetTimer
KillTimer
SetRect
GetDC
IsZoomed
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
DrawTextA
GrayStringA
DrawFocusRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
wvsprintfA
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
BeginPaint
EndPaint
TabbedTextOutA
GetClassNameA
SetWindowTextA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
DestroyIcon
SetCursorPos
DestroyCursor
IsClipboardFormatAvailable
MessageBeep
RemoveMenu
SetMessageQueue
ValidateRect
PostQuitMessage
UnregisterClassA
ShowOwnedPopups
MessageBoxA
InsertMenuA
GetMenuStringA
RegisterClipboardFormatA
ClipCursor
CopyAcceleratorTableA
InSendMessage
PostThreadMessageA
CreateMenu
CountClipboardFormats
CharNextA
GetNextDlgGroupItem
DrawEdge
EnumChildWindows
FrameRect

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 13B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aadata
Size: 2KB - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iq
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.o99pa
Size: 2KB - Virtual size: 138B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.o9code
Size: 2KB - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aao
Size: 2KB - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.obb2
Size: 2KB - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.obb3
Size: 2KB - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hoo2
Size: 2KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hoo00
Size: 2KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oooa
Size: 62KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hoo4
Size: 2KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hoo3
Size: 2KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.obb6
Size: 2KB - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.haa
Size: 2KB - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.obb
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.a0a0
Size: 2KB - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.obb4
Size: 2KB - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.obb5
Size: 2KB - Virtual size: 6B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.haah
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1a1a
Size: 2KB - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.4141
Size: 2KB - Virtual size: 103B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hoo
Size: 2KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sef
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CRT
Size: 2KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef3d32741141a9ffde06721c65ea07b6

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt40

kernel32

gdi32

user32

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 2KB - Virtual size: 876B

.tls Size: 2KB - Virtual size: 13B

.aadata Size: 2KB - Virtual size: 484B

.iq Size: 60KB - Virtual size: 58KB

.o99pa Size: 2KB - Virtual size: 138B

.o9code Size: 2KB - Virtual size: 202B

.aao Size: 2KB - Virtual size: 188B

.obb2 Size: 2KB - Virtual size: 512B

.obb3 Size: 2KB - Virtual size: 512B

.hoo2 Size: 2KB - Virtual size: 1000B

.hoo00 Size: 2KB - Virtual size: 1000B

.oooa Size: 62KB - Virtual size: 60KB

.hoo4 Size: 2KB - Virtual size: 1000B

.hoo3 Size: 2KB - Virtual size: 1000B

.obb6 Size: 2KB - Virtual size: 200B

.haa Size: 2KB - Virtual size: 100B

.obb Size: 60KB - Virtual size: 58KB

.a0a0 Size: 2KB - Virtual size: 512B

.obb4 Size: 2KB - Virtual size: 256B

.obb5 Size: 2KB - Virtual size: 6B

.haah Size: 60KB - Virtual size: 58KB

.1a1a Size: 2KB - Virtual size: 36B

.4141 Size: 2KB - Virtual size: 103B

.hoo Size: 2KB - Virtual size: 1000B

.sef Size: 60KB - Virtual size: 58KB

.CRT Size: 2KB - Virtual size: 8B

.rsrc Size: 18KB - Virtual size: 16KB

.reloc Size: 2KB - Virtual size: 228KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 2KB - Virtual size: 876B

.tls
Size: 2KB - Virtual size: 13B

.aadata
Size: 2KB - Virtual size: 484B

.iq
Size: 60KB - Virtual size: 58KB

.o99pa
Size: 2KB - Virtual size: 138B

.o9code
Size: 2KB - Virtual size: 202B

.aao
Size: 2KB - Virtual size: 188B

.obb2
Size: 2KB - Virtual size: 512B

.obb3
Size: 2KB - Virtual size: 512B

.hoo2
Size: 2KB - Virtual size: 1000B

.hoo00
Size: 2KB - Virtual size: 1000B

.oooa
Size: 62KB - Virtual size: 60KB

.hoo4
Size: 2KB - Virtual size: 1000B

.hoo3
Size: 2KB - Virtual size: 1000B

.obb6
Size: 2KB - Virtual size: 200B

.haa
Size: 2KB - Virtual size: 100B

.obb
Size: 60KB - Virtual size: 58KB

.a0a0
Size: 2KB - Virtual size: 512B

.obb4
Size: 2KB - Virtual size: 256B

.obb5
Size: 2KB - Virtual size: 6B

.haah
Size: 60KB - Virtual size: 58KB

.1a1a
Size: 2KB - Virtual size: 36B

.4141
Size: 2KB - Virtual size: 103B

.hoo
Size: 2KB - Virtual size: 1000B

.sef
Size: 60KB - Virtual size: 58KB

.CRT
Size: 2KB - Virtual size: 8B

.rsrc
Size: 18KB - Virtual size: 16KB

.reloc
Size: 2KB - Virtual size: 228KB