413de39bf7e0a2d75b3f60b7dfe9f368931a5ba1373bb280b8f9bd7c1b73ec90

Sharing

Copy URL

Twitter E-mail

General

Target

413de39bf7e0a2d75b3f60b7dfe9f368931a5ba1373bb280b8f9bd7c1b73ec90
Size

3.9MB
MD5

76787e1c0eeaa79b39bb6af60a61513c
SHA1

23cf9cb544b934bb28cba9814d662e43a9f0d310
SHA256

413de39bf7e0a2d75b3f60b7dfe9f368931a5ba1373bb280b8f9bd7c1b73ec90
SHA512

457b5e5f1b29ffe787894378d8150dbab75fad4a389962c6711dd15ac90f9ed952c266e3b9cdaa6ec17d61ac7982db48639a233b9231c511dacc5b318dcc0db6
SSDEEP

98304:ACB0rLGHt8Dc9fatBVpIxammhuz2R2pCRielz5FLOAkGkzdnEVomFHKnPa:Ht+4fTmhuz2Llz5FLOyomFHKnPa

Score

N/A

Malware Config

Signatures

Files

413de39bf7e0a2d75b3f60b7dfe9f368931a5ba1373bb280b8f9bd7c1b73ec90
.exe windows x86

5a64974d2d7ffaa34ca70829361b25db

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleW
CreateDirectoryW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
DeleteFileW
LCMapStringW
CompareStringW
GetStdHandle
GetTimeZoneInformation
GetFileType
SetStdHandle
HeapQueryInformation
QueryPerformanceFrequency
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
VirtualAlloc
GetCommandLineW
GetCommandLineA
RtlUnwind
OutputDebugStringW
GetStringTypeW
FindFirstFileExW
FindNextFileW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
IsValidCodePage
FindResourceExW
GetTempFileNameA
GetWindowsDirectoryA
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
FileTimeToLocalFileTime
SetErrorMode
SearchPathA
GetProfileIntA
GetTickCount
GetCPInfo
GetOEMCP
GetTempPathA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryA
GetFileSize
CreateFileA
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetThreadLocale
FileTimeToSystemTime
InitializeCriticalSectionAndSpinCount
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetSystemDirectoryW
EncodePointer
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
GlobalAddAtomA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
CompareStringA
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetVersionExA
GetCurrentThread
LoadLibraryW
LoadLibraryA
GetModuleHandleA
GetModuleFileNameW
OutputDebugStringA
ResumeThread
SetThreadPriority
GetCurrentThreadId
WaitForSingleObject
SetEvent
CopyFileA
MulDiv
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
LoadLibraryExA
GetProcAddress
GetModuleHandleW
FreeLibrary
VirtualQuery
VirtualProtect
GetSystemInfo
WinExec
GetCurrentProcessId
CreateThread
Sleep
FindResourceA
FormatMessageA
GetACP
FindResourceW
LoadResource
CloseHandle
Process32Next
LockResource
GetFileAttributesA
K32GetModuleFileNameExA
CreateToolhelp32Snapshot
OpenProcess
Process32First
SizeofResource
GetModuleFileNameA
WideCharToMultiByte
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
MultiByteToWideChar
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
ExitProcess
HeapFree
WriteConsoleW

user32

EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongA
SetWindowLongA
EqualRect
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
RegisterClassA
CallWindowProcA
GetMessageTime
GetMessagePos
GetClassNameA
IntersectRect
EnumDisplayMonitors
GetMonitorInfoA
SystemParametersInfoA
LoadCursorW
LoadCursorA
SetLayeredWindowAttributes
GetClassInfoA
DefWindowProcA
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
LoadImageW
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetIconInfo
CopyImage
LoadImageA
DestroyIcon
LoadIconA
SetRectEmpty
WindowFromPoint
InvalidateRect
UpdateWindow
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetNextDlgGroupItem
CopyRect
ReleaseDC
GetDC
MapVirtualKeyA
GetKeyNameTextA
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
UnhookWindowsHookEx
PtInRect
ScreenToClient
ClientToScreen
GetDesktopWindow
SetActiveWindow
GetNextDlgTabItem
MessageBeep
NotifyWinEvent
SetCursorPos
UpdateLayeredWindow
UnregisterClassA
MessageBoxA
EnableWindow
IsIconic
GetDlgItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetLastActivePopup
GetWindowThreadProcessId
GetWindowLongA
IsWindowEnabled
SetCursor
ShowOwnedPopups
PostQuitMessage
PostMessageA
DrawIconEx
GetParent
IsRectEmpty
SetRect
UnionRect
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
DestroyMenu
EnableScrollBar
GetDoubleClickTime
CopyIcon
GetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
ModifyMenuA
SetParent
OffsetRect
InflateRect
MonitorFromPoint
TrackMouseEvent
IsZoomed
CharUpperA
GetAsyncKeyState
LoadMenuW
GetSystemMenu
EndPaint
DeleteMenu
GetClientRect
SendMessageA
LoadIconW
DrawIcon
GetSystemMetrics
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExA
CallNextHookEx
RegisterWindowMessageA
DrawEdge
DrawFrameControl
GetFocus
DrawStateA
SetWindowRgn
RedrawWindow
GetWindowRect
MapWindowPoints
GetSysColor
GetSysColorBrush
DrawFocusRect
FillRect
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
SubtractRect
RegisterClipboardFormatA
CharUpperBuffA
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
FrameRect
IsClipboardFormatAvailable
PostThreadMessageA
IsCharLowerA
MapVirtualKeyExA
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
GetComboBoxInfo
CreateMenu
HideCaret
InvertRect
DestroyCursor
GetWindowRgn
WaitMessage
RealChildWindowFromPoint
GetUpdateRect
SetClassLongA
DestroyAcceleratorTable

gdi32

GetTextMetricsA
CreateCompatibleDC
DeleteObject
GetObjectType
SelectObject
GetObjectA
BitBlt
CreateBitmap
CreatePen
CreatePatternBrush
Escape
ExcludeClipRect
GetClipBox
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutA
SetViewportExtEx
Polyline
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CreateDIBitmap
CreateFontIndirectA
EnumFontFamiliesA
GetTextCharsetInfo
GetMapMode
SetRectRgn
DPtoLP
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceA
Polygon
CreatePolygonRgn
ExtTextOutA
PatBlt
GetTextExtentPoint32A
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
GetDeviceCaps
CreateDCA
SetViewportOrgEx
DeleteDC
CopyMetaFileA

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumKeyA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

shell32

ShellExecuteA
SHGetFileInfoA
SHAppBarMessage
DragQueryFileA
SHBrowseForFolderA
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragFinish

comctl32

InitCommonControlsEx

shlwapi

PathRemoveFileSpecW
PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

GetThemePartSize
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemeSysColor
GetCurrentThemeName
DrawThemeParentBackground
IsAppThemed
DrawThemeText
GetWindowTheme
IsThemeBackgroundPartiallyTransparent

ole32

CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleLockRunning
CoInitializeEx
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
RegisterDragDrop
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CreateStreamOnHGlobal
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
CoRevokeClassObject
CoRegisterMessageFilter
RevokeDragDrop

oleaut32

LoadTypeLi
VarBstrFromDate
VariantCopy
OleCreateFontIndirect
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantChangeType
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
SafeArrayDestroy

oledlg

ord8

gdiplus

GdipCreateFromHDC
GdipDrawImageRectI
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipGetImagePaletteSize

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 345KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a64974d2d7ffaa34ca70829361b25db

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 345KB - Virtual size: 345KB

.data Size: 23KB - Virtual size: 40KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 141KB - Virtual size: 140KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 345KB - Virtual size: 345KB

.data
Size: 23KB - Virtual size: 40KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 141KB - Virtual size: 140KB