9d7137f24a7676fe7522241ea22ea04acf836995b0413678c5ead5591e28ed20

Sharing

Copy URL Twitter E-mail

General

Target

9d7137f24a7676fe7522241ea22ea04acf836995b0413678c5ead5591e28ed20
Size

694KB
MD5

0ed477a5c992b43976691e4e25385d6e
SHA1

d1f2184bb47caee6d976995bdcc0b5de7c07d82b
SHA256

9d7137f24a7676fe7522241ea22ea04acf836995b0413678c5ead5591e28ed20
SHA512

7cd33ef3e2762e991cbc562b8817c88f28ce8e51a714a0fa179515709d12e2b19c6e331e2771e27af2d0108ae803291c199ac051bb989a81af85b12d01cfb7e6
SSDEEP

12288:62PbZ9B++DH0ybx8TKJ9J8QlyZV4YVZPPGPBbHLauviKxiplZ:62TLkkbx8TeDnlEZPPCHLrw

Score

N/A

Malware Config

Signatures

Files

9d7137f24a7676fe7522241ea22ea04acf836995b0413678c5ead5591e28ed20
.exe windows x86

7b4d6939de35460b3dafa1331f13b050

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VDMConsoleOperation
LoadLibraryExA
TlsFree
CancelTimerQueueTimer
CompareFileTime
SetProcessShutdownParameters
Heap32ListNext
SetFileAttributesW
CreateMutexA
GetSystemDefaultLangID
PurgeComm
GlobalGetAtomNameA
Beep
GetProfileSectionA
ResetEvent
GetLocalTime
SetVolumeMountPointW
FindVolumeClose
LoadLibraryA
EnterCriticalSection
HeapCompact
GetPriorityClass
OpenSemaphoreW
GetComputerNameA
SetConsoleTitleA
SetThreadExecutionState
CreateJobObjectW
LockFileEx
_hread
lstrcatA
DeleteVolumeMountPointA
ReadConsoleInputExW
SetPriorityClass
SetComputerNameA
CloseProfileUserMapping
CreateTapePartition
SetTapeParameters
IsValidLocale
SetConsoleIcon
ClearCommError
WriteConsoleInputW
DebugActiveProcess
SetLastConsoleEventActive
EraseTape
ExpandEnvironmentStringsW
GetConsoleAliasExesLengthA
WriteConsoleA
FatalAppExitA
GetModuleHandleA
GetCompressedFileSizeA
GetProfileSectionW
IsDBCSLeadByteEx
SetCommBreak
ReleaseMutex
SetConsoleScreenBufferSize
GetDiskFreeSpaceW
CreateWaitableTimerA
AssignProcessToJobObject
WaitForSingleObject
SearchPathW
EnumSystemCodePagesW
ReadConsoleOutputCharacterA
GetProcessWorkingSetSize
GetConsoleAliasExesW
FreeLibrary
ShowConsoleCursor
lstrlenA
GetCPInfoExW
SizeofResource
SetLocaleInfoW
ExpandEnvironmentStringsA
FindNextVolumeMountPointA
CreateWaitableTimerW
VDMOperationStarted
WaitForMultipleObjects
GetProcAddress
SetConsoleNumberOfCommandsA
GetFullPathNameA
FlushConsoleInputBuffer
GetStdHandle
FindResourceW
ScrollConsoleScreenBufferW
FileTimeToDosDateTime
LocalCompact
PrepareTape
SetUnhandledExceptionFilter
FindNextVolumeW
GetFileSizeEx
CreateMailslotA
QueueUserWorkItem
GetShortPathNameA
GetSystemTime
EnumTimeFormatsW
FindNextVolumeMountPointW
GetDefaultCommConfigW
GetPrivateProfileSectionNamesA
GetHandleInformation
SetNamedPipeHandleState
CreateConsoleScreenBuffer
VirtualAlloc
GetVersion

user32

GetDC
DestroyCaret
GetDlgItemInt
DlgDirSelectComboBoxExW
GetUpdateRect
OpenWindowStationW
SetWindowRgn
ShowScrollBar
GetCaretBlinkTime
GetMessagePos
CreateAcceleratorTableA
GetSysColor
GetMonitorInfoA
BlockInput
RegisterClassExA
DialogBoxIndirectParamA
GetPriorityClipboardFormat
EnumDesktopsA
GetWindowInfo
SetWindowTextA
ReuseDDElParam
ScrollWindowEx
GetTopWindow
EnumWindowStationsA
UnhookWindowsHookEx
SetForegroundWindow
LoadIconW
SetDebugErrorLevel
MessageBoxA
DlgDirListA
GetOpenClipboardWindow
IMPGetIMEA
DrawTextW
DdeQueryConvInfo
DialogBoxParamW
SetWindowsHookExA
EnumPropsA
IMPGetIMEW
GetDlgItemTextA
TranslateMDISysAccel
CreateDialogIndirectParamW
CharLowerW
ArrangeIconicWindows
GetWindowWord
IMPSetIMEW
ValidateRgn
GetMenuStringA
GetSystemMetrics
IMPQueryIMEW
UnhookWinEvent
GetMessageExtraInfo
GetDesktopWindow
SetSysColors
CreateIconFromResourceEx
DdeNameService
LoadKeyboardLayoutA
DdeSetQualityOfService
GetLastActivePopup
CharNextW
RegisterDeviceNotificationW
EditWndProc
CreateMDIWindowW
GetLastInputInfo
GetWindowLongA
UnionRect
SetWindowPos
LoadMenuIndirectW
IsCharLowerA
SetMessageQueue
WaitMessage
GetMenuItemInfoW
ChangeDisplaySettingsW
AppendMenuA
LoadCursorW
TabbedTextOutA
CopyAcceleratorTableA
TrackPopupMenuEx
SendInput
DdeUninitialize
AttachThreadInput
GetProcessWindowStation
LoadMenuW
CascadeChildWindows
PackDDElParam
DefMDIChildProcA
GetMenuItemInfoA
IsCharAlphaNumericW
CharNextExA
SubtractRect
GetSystemMenu
GetWindowRect
ShowOwnedPopups
IsDialogMessageW
SetMenu
DdeSetUserHandle
InsertMenuW
InvalidateRgn
DdeInitializeA

gdi32

GetCurrentPositionEx
GetEnhMetaFileHeader
PatBlt
GetOutlineTextMetricsW
RestoreDC
LineTo
GdiGetPageCount
GetMetaRgn
OffsetClipRgn
GetDCOrgEx
FixBrushOrgEx
SetTextJustification
SetSystemPaletteUse
SetPixelFormat
GetArcDirection
GetCharWidthA
EndFormPage
GetCharacterPlacementW
CheckColorsInGamut
GetCharWidth32W
GetWindowExtEx
GdiPlayJournal
ExcludeClipRect
RoundRect
DeleteDC
GetTextMetricsW
GetSystemPaletteUse
StrokeAndFillPath
ScaleViewportExtEx
PolyTextOutW
GetTextCharsetInfo
GetEnhMetaFileBits
ScaleWindowExtEx
EnumICMProfilesA
PolyBezier
GetMetaFileBitsEx
StartPage
CombineTransform
GdiResetDCEMF
GdiArtificialDecrementDriver
CreateDIBitmap
CreateCompatibleBitmap
GetWinMetaFileBits
CreateCompatibleDC
GetGlyphOutlineW
StrokePath
CreateDiscardableBitmap
GetEnhMetaFileDescriptionA
GdiPlayEMF
FlattenPath
CreatePenIndirect
GdiEndPageEMF
OffsetWindowOrgEx
SetBitmapBits
AnimatePalette
EnumFontsA
SetPixelV
GetTextExtentExPointI
SetColorSpace
GetBitmapDimensionEx
CreateColorSpaceA
GetDCPenColor
ChoosePixelFormat
SetDeviceGammaRamp
GetDCBrushColor
CreatePatternBrush
GetStockObject
SelectObject
Pie
CreateMetaFileW
GetObjectA
GetLogColorSpaceW
CombineRgn
SetRectRgn
CreateDIBSection
GetBrushOrgEx
CreatePolyPolygonRgn
GetCharWidthI
SetBoundsRect
GetObjectW
GetCharacterPlacementA
EnumFontFamiliesExA
ColorCorrectPalette
UpdateColors
EndPath
BitBlt
StartDocA
TextOutA
SetMapperFlags
GetFontAssocStatus
EnumMetaFile
CreateFontIndirectA
SetTextColor
GetRgnBox
AbortPath
CreateFontA
EudcUnloadLinkW
SetGraphicsMode
GetDIBits
SaveDC
GdiEndDocEMF
GdiPlayDCScript
CreateHalftonePalette
CreateICA
FillPath
CreateEllipticRgn

comctl32

ord13
_TrackMouseEvent
FlatSB_SetScrollProp
ord17
ImageList_Copy
ImageList_SetOverlayImage
ord8
FlatSB_ShowScrollBar
ImageList_DragMove
UninitializeFlatSB
FlatSB_GetScrollPos
ord16
ImageList_Duplicate
ImageList_SetDragCursorImage
ImageList_GetImageRect
ImageList_GetImageCount
FlatSB_SetScrollPos
ImageList_DragLeave
FlatSB_SetScrollRange
ImageList_LoadImageA
ImageList_SetFilter
ord5
ord14
ImageList_Destroy
ImageList_Merge
ord3
ImageList_GetDragImage
ImageList_DrawEx
ImageList_SetBkColor
CreateStatusWindowW
ImageList_DragShowNolock

version

GetFileVersionInfoW
VerFindFileA

winmm

mciGetDeviceIDFromElementIDA
waveOutGetVolume
midiOutGetID
midiOutReset
mmioSetBuffer
midiOutSetVolume
waveOutRestart
NotifyCallbackData
WOW32ResolveMultiMediaHandle
mixerGetControlDetailsW
joyConfigChanged
mid32Message
waveInStop
waveOutGetID
midiInGetErrorTextW
timeGetTime
waveOutGetPlaybackRate
mixerGetDevCapsW
mmioStringToFOURCCW
mmDrvInstall
waveOutGetErrorTextW
mmioInstallIOProcW
midiOutCacheDrumPatches
midiStreamOpen
mciFreeCommandResource
auxGetNumDevs
waveOutReset
mixerMessage
waveOutGetPitch
wid32Message
DriverCallback
midiStreamRestart
mmTaskBlock
mixerGetID
mxd32Message
mciGetDeviceIDFromElementIDW
mmTaskCreate
midiOutShortMsg
mmioRenameA
waveInUnprepareHeader
midiInGetID
WOWAppExit
timeGetSystemTime
OpenDriver
PlaySoundW
midiOutMessage
mixerGetLineControlsA
mixerOpen
joyGetPosEx
waveInGetPosition
mmioSendMessage
midiOutUnprepareHeader
mmioDescend
midiInStart
sndPlaySoundW
midiInOpen
midiStreamClose
waveInReset
mod32Message
mmioAscend
midiDisconnect
waveOutGetNumDevs
mixerGetDevCapsA
waveOutPrepareHeader
DrvGetModuleHandle
waveInStart
mci32Message
joySetThreshold
tid32Message
midiOutGetNumDevs
mixerClose
mmsystemGetVersion
waveInGetNumDevs
waveOutOpen
midiInGetDevCapsA
waveInGetDevCapsW
mmioStringToFOURCCA
midiInAddBuffer
joyReleaseCapture
waveInAddBuffer
mciSetYieldProc
joyGetNumDevs
waveInPrepareHeader
midiOutGetDevCapsW
midiOutGetVolume
mixerGetLineControlsW
PlaySoundA
midiInGetDevCapsW
midiInGetErrorTextA

winspool.drv

DevQueryPrintEx
ord207
SetJobA
AddPortW
AddFormA
ord100
AddPrintProcessorW
DeletePrintProvidorA
OpenPrinterA
EnumPrinterDriversW
CloseSpoolFileHandle
QueryColorProfile
EnumPrinterKeyA
SetFormW
ReadPrinter
GetPrinterA
DeletePrintProcessorA
GetPrinterDriverDirectoryW
DocumentPropertiesA
ord213
SetPortW
DeletePrintProcessorW
SetPrinterDataExA
ResetPrinterW
DeleteMonitorA
EnumMonitorsW
EnumPortsW
DevicePropertySheets
DocumentEvent
CreatePrinterIC
EnumFormsA
SetPortA
EnumPrintersA

msvcrt

_strtime
fwrite
_CIlog
_spawnvp
_purecall
exit
_wspawnve
_CxxThrowException
fprintf
_searchenv
fopen
_wmkdir
calloc
ferror
_CIasin
fclose
_unlink
ftell
fputs
memset
_rmdir
__p__wcmdln
fsetpos
fseek
wcsncpy
feof
fwprintf
sinh
_ismbblead
realloc
_close
__p___winitenv
_XcptFilter
fread
fputc
_CIatan
sprintf
localtime
_mbsncpy
_mbsncat
printf

Sections

.text
Size: 664KB - Virtual size: 663KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7b4d6939de35460b3dafa1331f13b050

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

version

winmm

winspool.drv

msvcrt

Sections

.text Size: 664KB - Virtual size: 663KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 5KB

.text
Size: 664KB - Virtual size: 663KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 5KB