4379656c4b3a8cec9cb1724cb90610748a917f494bd4fca38b2ee39100b5f260

Sharing

Copy URL

Twitter E-mail

General

Target

4379656c4b3a8cec9cb1724cb90610748a917f494bd4fca38b2ee39100b5f260
Size

2.0MB
MD5

2a71d04634f0fe0b465065279805ff70
SHA1

c339d3b919edc6e6b422a4c5b5a2822b5e04925d
SHA256

4379656c4b3a8cec9cb1724cb90610748a917f494bd4fca38b2ee39100b5f260
SHA512

363f69a9134a9c67f8364ecb8b81a3789c212dc0e7a1f941502855b6663435b9da3dbc61b684967f7d235e3707b36d1d9b6474aef23bf1ce6bc287bcf59f71c1
SSDEEP

49152:JVzuSG92T8M5+1aCC1SGTxgs3ioyDZO+ZHhnyelagr:nux9g8M59CC1SGTG/oyDZO+ZE2

Score

N/A

Malware Config

Signatures

Files

4379656c4b3a8cec9cb1724cb90610748a917f494bd4fca38b2ee39100b5f260
.exe windows x86

782a2f3ceef530d634a6db4fa4ebd832

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetConsoleCP
GetConsoleMode
ReadConsoleW
GetProcessHeap
GetStringTypeW
GetTimeZoneInformation
OutputDebugStringW
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
GetStdHandle
GetSystemTimeAsFileTime
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
HeapSize
GetFileType
SetStdHandle
IsProcessorFeaturePresent
IsDebuggerPresent
HeapReAlloc
HeapAlloc
LockResource
HeapFree
ExitThread
CreateThread
RaiseException
GetModuleHandleExW
ExitProcess
FreeEnvironmentStringsW
GetCommandLineW
FindResourceExW
VirtualProtect
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
GetWindowsDirectoryW
GetCurrentDirectoryW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalGetAtomNameW
GlobalFlags
FileTimeToSystemTime
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetCurrentProcessId
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
RtlUnwind
lstrcmpA
GetCurrentThread
InterlockedExchange
ResumeThread
SetThreadPriority
GetThreadLocale
lstrcmpiW
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
GetSystemDirectoryW
GetVersion
GetCurrentThreadId
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DecodePointer
EncodePointer
OutputDebugStringA
GetFileAttributesW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalSize
SetLastError
InterlockedDecrement
InterlockedIncrement
TerminateThread
CreateFileW
FlushFileBuffers
WriteFile
GlobalUnlock
FreeResource
LoadLibraryW
FreeLibrary
GetVersionExW
GetModuleFileNameW
GetTickCount
GetLocalTime
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
WideCharToMultiByte
CopyFileW
FindNextFileW
FindFirstFileW
DeleteFileW
DefineDosDeviceW
CreateDirectoryW
GetPrivateProfileSectionNamesW
WritePrivateProfileStringW
GetPrivateProfileStringW
ExpandEnvironmentStringsW
SetEnvironmentVariableW
CreateProcessW
lstrcpyW
CloseHandle
FindClose
WaitForSingleObject
GetLastError
TerminateProcess
GetCurrentProcess
OpenProcess
GlobalLock
GlobalAlloc
MultiByteToWideChar
Sleep
GetPrivateProfileIntW
FindResourceW
GetModuleHandleW
SizeofResource
LoadResource
GetProcAddress
SetFilePointerEx

user32

GetWindowRgn
DrawIcon
SetParent
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
GetSystemMenu
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetIconInfo
DrawIconEx
LoadImageW
SetRectEmpty
DrawFocusRect
PostThreadMessageW
LoadMenuW
WindowFromPoint
WaitMessage
DestroyIcon
IsIconic
KillTimer
DeleteMenu
IsClipboardFormatAvailable
CopyImage
GetMenuItemInfoW
DestroyMenu
LoadCursorW
GetSysColorBrush
RealChildWindowFromPoint
UnregisterClassW
RegisterClipboardFormatW
InflateRect
MapVirtualKeyW
GetKeyNameTextW
MessageBeep
GetNextDlgGroupItem
CharNextW
FillRect
ClientToScreen
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
MapDialogRect
SetWindowContextHelpId
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageW
DestroyCursor
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
SendDlgItemMessageA
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
CreateMenu
SubtractRect
GetUpdateRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
FrameRect
CharUpperBuffW
ModifyMenuW
SetMenuDefaultItem
GetMenuState
GetMenuStringW
CopyIcon
GetDoubleClickTime
SetClassLongW
LockWindowUpdate
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
CharUpperW
ToUnicodeEx
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
GetDesktopWindow
EqualRect
IsRectEmpty
OffsetRect
IntersectRect
CopyRect
SetRect
InvalidateRgn
InvalidateRect
ReleaseDC
CopyAcceleratorTableW
IsWindowEnabled
ReleaseCapture
SetCapture
GetFocus
SetFocus
IsWindowVisible
LoadBitmapW
SystemParametersInfoW
AdjustWindowRect
GetDC
SetWindowPos
IsWindow
PtInRect
GetClientRect
SetWindowLongW
GetWindowLongW
EnumDisplaySettingsW
ChangeDisplaySettingsW
SendMessageW
GetWindowRect
GetParent
GetSystemMetrics
EnableWindow
SetTimer
CloseWindow
MessageBoxW
GetAsyncKeyState
GetKeyState
EndPaint

gdi32

TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetBkColor
GetTextColor
PatBlt
CreateFontIndirectW
GetMapMode
DPtoLP
GetTextExtentPoint32W
GetTextMetricsW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
MoveToEx
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
SetMapMode
SetBkMode
SetLayout
SetTextAlign
SetROP2
SetPolyFillMode
SetDIBColorTable
CreateSolidBrush
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreatePatternBrush
CreatePen
CreateHatchBrush
BitBlt
GetObjectW
SetTextColor
SetBkColor
GetDeviceCaps
CreateDCW
CopyMetaFileW
CreateBitmap
GetRgnBox
CreateRectRgnIndirect
SetRectRgn
CreateRectRgn
CombineRgn
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetLayout

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegDeleteKeyW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegEnumValueW
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
RegQueryValueExW
RegOpenKeyExW

shell32

SHFileOperationW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderW
ShellExecuteW
DragFinish
DragQueryFileW

comctl32

_TrackMouseEvent

shlwapi

PathFileExistsW
PathFindFileNameW
PathMatchSpecW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
PathFindExtensionW
StrFormatKBSizeW

uxtheme

GetWindowTheme
GetThemeSysColor
GetThemePartSize
DrawThemeText
DrawThemeParentBackground
OpenThemeData
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
IsAppThemed
GetThemeColor
DrawThemeBackground
CloseThemeData

ole32

CoGetClassObject
CoUninitialize
CoInitialize
CoTaskMemAlloc
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoTaskMemFree
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleDuplicateData
ReleaseStgMedium
CoCreateGuid
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoRevokeClassObject
RevokeDragDrop
OleLockRunning
DoDragDrop
CoInitializeEx
CoRegisterMessageFilter
OleIsCurrentClipboard
CreateStreamOnHGlobal
OleFlushClipboard

oleaut32

VariantInit
VarBstrFromDate
VariantCopy
OleCreateFontIndirect
VariantChangeType
SysAllocStringLen
VariantClear
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysFreeString
SysAllocString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipCreateBitmapFromHBITMAP
GdipLoadImageFromStream
GdipDrawImageRectI
GdipSetSmoothingMode
GdipReleaseDC
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDrawString
GdipDeleteFont
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDrawImageRect
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromFile
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipFree
GdipAlloc
GdiplusShutdown
GdiplusStartup
GdipSetInterpolationMode

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 338KB - Virtual size: 337KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

782a2f3ceef530d634a6db4fa4ebd832

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

version

oleacc

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 338KB - Virtual size: 337KB

.data Size: 26KB - Virtual size: 56KB

.rsrc Size: 54KB - Virtual size: 54KB

.reloc Size: 209KB - Virtual size: 209KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 338KB - Virtual size: 337KB

.data
Size: 26KB - Virtual size: 56KB

.rsrc
Size: 54KB - Virtual size: 54KB

.reloc
Size: 209KB - Virtual size: 209KB