e0940afe6580ab61be42ff9df3542bb5f64b0711550a6a116842fb088f9a3e8f

Sharing

Copy URL Twitter E-mail

General

Target

e0940afe6580ab61be42ff9df3542bb5f64b0711550a6a116842fb088f9a3e8f
Size

804KB
MD5

5f7d7a41103fe3befd98fe33f50ced47
SHA1

2383352177290baa137f0139f7819f9bf8e4f26a
SHA256

e0940afe6580ab61be42ff9df3542bb5f64b0711550a6a116842fb088f9a3e8f
SHA512

6b24a98393d6afa2896deac66e8b365776c9e30ce31195ca166069161116e3e8a89c82d3b6020f0bba768cb502b167f27b8daaf50df2619e83be9c21c853d047
SSDEEP

24576:Mc0gyW3C/m2mwWQyJrj1EN3ddddCdddku:q8C+2mvnrj1EN3ddddCdddku

Score

N/A

Malware Config

Signatures

Files

e0940afe6580ab61be42ff9df3542bb5f64b0711550a6a116842fb088f9a3e8f
.exe windows x86

802fb49f81dfb6df85300de3950cf449

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

IsDebuggerPresent
ExitThread
CreateThread
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapReAlloc
ExitProcess
SetStdHandle
GetFileType
HeapSize
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetUnhandledExceptionFilter
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
lstrlenW
SizeofResource
LockResource
LoadResource
FindResourceW
lstrcmpiW
MultiByteToWideChar
ResetEvent
DeviceIoControl
SetCurrentDirectoryW
GetComputerNameW
SetSystemPowerState
GetSystemDirectoryW
lstrcpynW
GetSystemDefaultLangID
GetLocalTime
FindNextFileW
CreatePipe
CreateProcessW
lstrcatW
GetVersion
WriteConsoleA
UnhandledExceptionFilter
Sleep
WaitForSingleObject
SetEvent
lstrcpyW
CopyFileW
WideCharToMultiByte
CreateEventW
CloseHandle
GlobalLock
GlobalUnlock
GlobalFree
ResumeThread
GlobalAlloc
FreeResource
GetModuleFileNameW
CreateDirectoryW
GetTickCount
GetModuleHandleW
MulDiv
SetLastError
GetLastError
LocalFree
FormatMessageW
LoadLibraryW
GetProcAddress
DeleteFileW
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileW
GetVolumeInformationW
GetFullPathNameW
CreateFileW
GetVersionExA
lstrcmpW
FreeLibrary
LoadLibraryA
CompareStringW
GetVersionExW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GetCurrentThreadId
SetThreadPriority
SuspendThread
GetModuleHandleA
InterlockedDecrement
CompareStringA
GetLocaleInfoW
lstrcmpA
EnumResourceLanguagesW
ConvertDefaultLocale
GetCurrentThread
WritePrivateProfileStringW
GetCurrentProcessId
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
InterlockedIncrement
lstrlenA
FileTimeToSystemTime
GlobalFlags
SetErrorMode
FileTimeToLocalFileTime
SetFileAttributesW
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetStartupInfoW
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapFree
TerminateProcess

user32

GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
TrackPopupMenu
SetMenu
UpdateWindow
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
GetDlgCtrlID
DefWindowProcW
GetCapture
PtInRect
GetMenu
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CharUpperW
GetWindowTextLengthW
GetWindow
SetFocus
CopyRect
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
GrayStringW
ClientToScreen
GetWindowDC
DestroyWindow
BeginPaint
IsChild
WinHelpW
SendDlgItemMessageA
SendDlgItemMessageW
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuStringW
GetMenuItemID
GetMenuItemCount
GetSubMenu
RegisterWindowMessageW
ValidateRect
TranslateMessage
GetMessageW
GetDlgItemInt
DrawTextExW
GetDlgItemTextW
SetDlgItemInt
SetDlgItemTextW
IsDialogMessageW
SetWindowTextW
MoveWindow
ShowWindow
TabbedTextOutW
DrawTextW
CallWindowProcW
GetWindowTextW
IsWindowVisible
IsIconic
EnumWindows
GetWindowRect
SendMessageW
SetWindowPos
GetClientRect
GetDC
EnableWindow
SetTimer
MessageBoxA
ExitWindowsEx
DrawFrameControl
DrawFocusRect
CallWindowProcA
FindWindowExW
SetRect
InvalidateRect
FillRect
ReleaseDC
GetSysColor
FindWindowW
GetSystemMetrics
SystemParametersInfoW
IsRectEmpty
GetKeyboardState
GetKeyState
GetAsyncKeyState
PostMessageW
MapDialogRect
EndPaint
CheckMenuItem
EnableMenuItem
ModifyMenuW
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
PostQuitMessage
PostThreadMessageW
KillTimer
RegisterClipboardFormatW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
WaitMessage
UnregisterClassW
LoadCursorW
GetSysColorBrush
DestroyMenu
ToAscii
GetKeyNameTextW
CallNextHookEx
LoadIconW
SetCapture
SetCursor
ReleaseCapture
keybd_event
GetCursorPos
CreatePopupMenu
AppendMenuW
SetForegroundWindow
UnhookWindowsHookEx
LoadKeyboardLayoutW
SetWindowsHookExW
DrawIcon
GetWindowThreadProcessId
SetWindowContextHelpId
IsWindow

gdi32

GetRgnBox
GetTextColor
GetBkColor
GetMapMode
GetTextMetricsW
CreatePen
GetStockObject
CreateBitmap
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
MoveToEx
LineTo
SetMapMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateRectRgnIndirect
CreateFontW
GetDeviceCaps
CreateDCW
CreateSolidBrush
BitBlt
CreateCompatibleBitmap
GetDIBColorTable
StretchBlt
SetStretchBltMode
CreateDIBSection
GetObjectW
CreateCompatibleDC
SetDIBColorTable
SelectObject
DeleteDC
DeleteObject

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

LookupAccountNameW
GetNamedSecurityInfoW
BuildExplicitAccessWithNameW
GetAce
EqualSid
DeleteAce
SetNamedSecurityInfoW
SetEntriesInAclW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryValueExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegOpenKeyW
RegCloseKey

shell32

SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW
DragQueryFileW
DragFinish
Shell_NotifyIconW
SHGetSpecialFolderPathW

shlwapi

PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
StrStrIW
StrStrW
StrCmpIW
UrlUnescapeW
PathFileExistsW

oledlg

OleUIBusyW

ole32

CLSIDFromProgID
CoCreateInstance
CreateStreamOnHGlobal
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitializeEx
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
OleCreateFontIndirect
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen
OleLoadPicture
SysAllocString

gdiplus

GdipGraphicsClear
GdipDisposeImage
GdipGetImageGraphicsContext
GdipCreateImageAttributes
GdipDrawImageI
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipDrawImageRectRectI
GdipCreateFromHDC
GdipDrawImageRectI
GdipLoadImageFromStream
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipAlloc
GdipDeleteGraphics
GdipFree
GdiplusShutdown

oleacc

LresultFromObject
CreateStdAccessibleObject

iphlpapi

GetAdaptersInfo

ws2_32

WSAStartup
WSACleanup
gethostbyname
closesocket
htonl
htons
inet_addr
accept
socket
select
bind
WSAGetLastError
WSASetLastError
connect
sendto
recvfrom
WSAAsyncSelect
send
recv

wininet

InternetQueryDataAvailable
InternetQueryOptionW
InternetCanonicalizeUrlW
HttpQueryInfoW
InternetCloseHandle
InternetGetLastResponseInfoW
InternetOpenW
InternetSetStatusCallbackW
InternetSetFilePointer
InternetWriteFile
InternetReadFile
InternetOpenUrlW
InternetCrackUrlW

Sections

.text
Size: 414KB - Virtual size: 414KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

802fb49f81dfb6df85300de3950cf449

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

gdiplus

oleacc

iphlpapi

ws2_32

wininet

Sections

.text Size: 414KB - Virtual size: 414KB

.rdata Size: 167KB - Virtual size: 167KB

.data Size: 15KB - Virtual size: 41KB

.rsrc Size: 153KB - Virtual size: 152KB

.reloc Size: 53KB - Virtual size: 52KB

.text
Size: 414KB - Virtual size: 414KB

.rdata
Size: 167KB - Virtual size: 167KB

.data
Size: 15KB - Virtual size: 41KB

.rsrc
Size: 153KB - Virtual size: 152KB

.reloc
Size: 53KB - Virtual size: 52KB