2dfee6b08443db3150d164e54e4c36070321ae01702a3e6844148cf92961ff98

Sharing

Copy URL Twitter E-mail

General

Target

2dfee6b08443db3150d164e54e4c36070321ae01702a3e6844148cf92961ff98
Size

1.1MB
MD5

0788822afbe4f345e19530c328910fd0
SHA1

00fc4ca25ec34c52edc86b497a8ddabd34b2fd6e
SHA256

2dfee6b08443db3150d164e54e4c36070321ae01702a3e6844148cf92961ff98
SHA512

e57a233d32338cbad069bd63f67b37c280ff44dd9c331abe5913815e0b06e82919ca84d8076133eb1786bd66ef682c5596b4e4a41fd430c1aa46520bde4e48da
SSDEEP

24576:RnAO7lQrsTRRT0xBSxD7RFEbVdLfjX5D:RnAO7lQrcx0xBSxfzyVRLJ

Score

N/A

Malware Config

Signatures

Files

2dfee6b08443db3150d164e54e4c36070321ae01702a3e6844148cf92961ff98
.dll windows x86

c6440e73d7021cbdf689cc7877f467d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr80

?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
__dllonexit
_encode_pointer
_unlock
?terminate@@YAXXZ
_itoa_s
wcsncpy_s
_ultoa_s
_ltoa_s
_ismbcdigit
ceil
_snwprintf_s
_mbsnbcmp
_mbsnbicmp
_fullpath
atol
__argv
__argc
sscanf_s
_beginthreadex
_endthreadex
_mbsdec
_strdup
_expand
atoi
strtod
strtoul
strtol
_makepath_s
_mbspbrk
_splitpath_s
_vsnprintf_s
_snscanf_s
labs
abs
_ismbblead
_msize
strcat_s
_snprintf_s
_errno
strncpy_s
_purecall
_localtime64_s
_mktime64
realloc
fclose
fflush
ftell
fseek
fgets
fputs
fwrite
clearerr_s
ferror
feof
fread
__doserrno
_fdopen
_open_osfhandle
_fileno
_get_osfhandle
strcpy_s
abort
memcmp
sprintf_s
_mbsnbcpy_s
_mbscspn
_mbscmp
_vscprintf
wcscpy_s
wcscmp
wcscspn
wcsspn
iswspace
_mbsinc
_mbsupr_s
_wcsrev
memcpy_s
_mbsspn
_mbscoll
wcspbrk
memset
_recalloc
_wcsicoll
wcsstr
wcsrchr
_mbsrchr
_mbschr
vsprintf_s
_wcsupr_s
wcslen
_wcslwr_s
_ismbcspace
vswprintf_s
_mbsstr
_mbsicoll
_resetstkoflw
_mbsrev
strlen
malloc
calloc
free
wcscoll
memmove
_vscwprintf
_mbsicmp
_wcsicmp
memmove_s
_mbslwr_s
wcschr
memcpy
_CxxThrowException
__clean_type_info_names_internal
__CxxFrameHandler3

kernel32

GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
Sleep
GetEnvironmentVariableW
FindResourceA
lstrlenA
LoadResource
FormatMessageA
FindResourceExA
WideCharToMultiByte
SizeofResource
GetStringTypeExW
GetEnvironmentVariableA
CompareStringW
MultiByteToWideChar
lstrlenW
GetStringTypeExA
InterlockedExchange
GetLastError
lstrcmpiA
LockResource
lstrcmpiW
CompareStringA
GetVersion
LocalFree
SetLastError
GetAtomNameA
GlobalGetAtomNameA
lstrcmpA
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
CloseHandle
LockFile
UnlockFile
SetEndOfFile
GetFileSize
MoveFileA
DeleteFileA
LoadLibraryA
GetProcAddress
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetThreadLocale
GetModuleFileNameA
GetShortPathNameA
GlobalLock
GlobalSize
GlobalAlloc
GlobalUnlock
GlobalReAlloc
GlobalFree
GetFileTime
GetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileAttributesA
SetFileTime
GetCPInfo
GetOEMCP
FreeLibrary
GetModuleHandleA
GetModuleFileNameW
InterlockedDecrement
LocalAlloc
TlsAlloc
InitializeCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsGetValue
LocalReAlloc
TlsSetValue
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
ReleaseMutex
CreateEventA
WaitForMultipleObjects
lstrcmpW
GetVersionExA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GetCurrentThreadId
GetCurrentProcessId
MulDiv
GetProfileIntA
VirtualProtect
RaiseException
GlobalFlags
GetDiskFreeSpaceA
GetTempFileNameA
LocalLock
LocalUnlock
GetTempPathA
SearchPathA
SetEvent
SetThreadPriority
ResumeThread
SuspendThread
GetLocaleInfoA
ConvertDefaultLocale
EnumResourceLanguagesA
GetCurrentThread
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
InterlockedIncrement
FindNextFileA
GetTickCount
CopyFileA
GetUserDefaultLCID
IsDBCSLeadByte
lstrcpyW
lstrcpyA
GetSystemTime
LoadLibraryExA
GetACP

gdi32

SetWindowExtEx
OffsetRgn
SetBrushOrgEx
GetRgnBox
CreateMetaFileA
CopyMetaFileA
LPtoDP
Ellipse
CreateEllipticRgn
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
DPtoLP
SetRectRgn
CombineRgn
GetMapMode
GetPixel
CreateDIBPatternBrushPt
CreateHatchBrush
CreateSolidBrush
ExtCreatePen
EnumMetaFile
PlayMetaFile
PlayMetaFileRecord
GetObjectType
ExtSelectClipRgn
GetClipRgn
CreateRectRgn
SelectClipPath
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
ExcludeClipRect
SelectClipRgn
OffsetWindowOrgEx
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
StartDocA
EnumFontFamiliesExA
CreateDCA
BitBlt
CreateRectRgnIndirect
PatBlt
UnrealizeObject
Rectangle
CreatePen
CreatePatternBrush
CreateBitmap
TextOutA
DeleteMetaFile
CloseMetaFile
RectVisible
PtVisible
IntersectClipRect
SetWindowOrgEx
GetWindowOrgEx
GetViewportOrgEx
GetDeviceCaps
Escape
ExtTextOutA
MoveToEx
GetCurrentPositionEx
GetTextAlign
ScaleWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetNearestColor
GetViewportExtEx
GetWindowExtEx
CreateFontIndirectA
GetTextFaceA
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetBkMode
GetROP2
RestoreDC
SaveDC
GetStockObject
GetTextMetricsA
GetTextExtentPoint32A
DeleteObject
GetCharWidthA
CreateFontA
DeleteDC
StretchDIBits
SelectObject
GetBkColor
CreateCompatibleBitmap
CreateCompatibleDC
SetTextColor
SetBkColor
GetObjectA
GetClipBox

user32

GetWindowPlacement
GetWindowRect
SystemParametersInfoA
OffsetRect
IntersectRect
RegisterWindowMessageA
GetWindowLongA
SetWindowLongA
SetWindowPos
IsWindow
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetMessageTime
GetMessagePos
DefWindowProcA
GetPropA
CallWindowProcA
RemovePropA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
SetWindowsHookExA
CreateWindowExA
DestroyWindow
GetKeyState
GetDlgCtrlID
SendMessageA
GetWindowTextLengthA
GetWindowTextA
GetDlgItem
SetWindowPlacement
TrackPopupMenu
TrackPopupMenuEx
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetClassInfoA
RegisterClassA
WinHelpA
GetCapture
GetParent
GetWindow
IsChild
MessageBoxA
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
IsWindowVisible
ScrollWindow
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScreenToClient
EqualRect
DeferWindowPos
AdjustWindowRectEx
GetFocus
SetActiveWindow
SetFocus
PtInRect
PeekMessageA
DispatchMessageA
GetSysColor
GetClientRect
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
PostMessageA
LoadIconA
EnableWindow
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
SetCursor
GetDesktopWindow
IsWindowEnabled
ShowWindow
GetWindowThreadProcessId
GetActiveWindow
LoadMenuA
DestroyMenu
SetMenu
UnpackDDElParam
ReuseDDElParam
InvalidateRect
CreatePopupMenu
InsertMenuItemA
IsIconic
LoadCursorA
GetCursorPos
WaitMessage
WindowFromPoint
SetCapture
ClientToScreen
GetMessageA
TranslateMessage
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
RedrawWindow
InflateRect
KillTimer
SetTimer
SetRect
GetDC
ReleaseDC
IsZoomed
SetParent
IsRectEmpty
GetSystemMenu
DeleteMenu
AppendMenuA
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
DrawTextA
DrawTextExA
GrayStringA
UnionRect
MapVirtualKeyA
GetKeyNameTextA
LoadBitmapA
DrawFocusRect
FillRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
GetMenuStringA
GetMenuItemInfoA
GetSysColorBrush
SetWindowTextA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
ModifyMenuA
GetMenuCheckMarkDimensions
DestroyIcon
SetCursorPos
DestroyCursor
FindWindowA
SetWindowRgn
DrawIcon
IsClipboardFormatAvailable
MessageBeep
RemoveMenu
ValidateRect
PostQuitMessage
UnregisterClassA
ShowOwnedPopups
InsertMenuA
RegisterClipboardFormatA
SendNotifyMessageA
CopyAcceleratorTableA
InSendMessage
PostThreadMessageA
CreateMenu
WindowFromDC
CountClipboardFormats
SetWindowContextHelpId
CharNextA
InvalidateRgn
GetNextDlgGroupItem
ClipCursor
DrawEdge
EnumChildWindows
MsgWaitForMultipleObjects
UnhookWindowsHookEx
GetSystemMetrics
CharToOemBuffA
CharUpperA
CharLowerW
BringWindowToTop
CharUpperW
OemToCharBuffA
CharLowerA

shlwapi

UrlUnescapeA
PathFindFileNameA
PathRemoveExtensionA
PathFindExtensionA
PathStripToRootA
PathIsUNCA

Sections

.text
Size: 916KB - Virtual size: 912KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c6440e73d7021cbdf689cc7877f467d7

Headers

File Characteristics

Imports

msvcr80

kernel32

gdi32

user32

shlwapi

Sections

.text Size: 916KB - Virtual size: 912KB

.data Size: 20KB - Virtual size: 26KB

.rsrc Size: 48KB - Virtual size: 45KB

.reloc Size: 80KB - Virtual size: 77KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 916KB - Virtual size: 912KB

.data
Size: 20KB - Virtual size: 26KB

.rsrc
Size: 48KB - Virtual size: 45KB

.reloc
Size: 80KB - Virtual size: 77KB

.rmnet
Size: 60KB - Virtual size: 60KB