499d0b9520c933e85f824d8caf102b1727700720dfabcfca4dd32622984bf128

Sharing

Copy URL Twitter E-mail

General

Target

499d0b9520c933e85f824d8caf102b1727700720dfabcfca4dd32622984bf128
Size

752KB
MD5

11e00a4b61264485ecad885c1840eec1
SHA1

19842682c31483670307da9ea5692ac30f9b487b
SHA256

499d0b9520c933e85f824d8caf102b1727700720dfabcfca4dd32622984bf128
SHA512

49b1b79a23fc132de19e6c15f42f409cdc3cedae4ec0e57acaa2ecb97c2acade10d694dbb9cc89d4bba03f0e7aa500bef8ba471c73ad75365c69cbbbd9366782
SSDEEP

12288:29G8c1rZCJvAeKuRVtFBX5gz8U1/jWqXCV4BvRidfFYmv49grl4x455JysqgzQG:QG8gCJ4eK2FBX5E51/DXCVaUggWxYLff

Score

N/A

Malware Config

Signatures

Files

499d0b9520c933e85f824d8caf102b1727700720dfabcfca4dd32622984bf128
.exe windows x86

575040014c3d1a4a11150be9c46b7e9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectClipRgn
SetViewportOrgEx
CreateRectRgnIndirect
SetWindowExtEx
CloseMetaFile
ExtTextOutA
Rectangle
GetNearestPaletteIndex
Arc
CreateFontA
OffsetViewportOrgEx
GetObjectType
AngleArc
GetViewportExtEx
EnumMetaFile
SelectClipPath
CreateCompatibleDC
SetMapperFlags
StrokeAndFillPath
SetMiterLimit
EnumObjects
SetAbortProc
CopyMetaFileW
GetEnhMetaFileA
GetRgnBox
GetCurrentObject
GetObjectW
Ellipse
CloseFigure
InvertRgn
MoveToEx
SetDIBColorTable
AbortPath
MaskBlt
WidenPath
UnrealizeObject
RestoreDC
PlgBlt
StrokePath
DeleteMetaFile
ExtEscape
CombineRgn
StartDocA
GetCharWidthA
FillPath
CreateDCW
GetCharABCWidthsFloatA
CreateDIBSection
CreateHatchBrush
GetGlyphOutlineA
SetPolyFillMode
GetRegionData
CreateDIBPatternBrushPt
SelectPalette
DeleteObject
GetWindowExtEx
GetBkColor
GetPaletteEntries
GetNearestColor
OffsetRgn
ExtCreateRegion
CreateRectRgn
CopyMetaFileA
CreateMetaFileA
PaintRgn
FloodFill
ExtTextOutW
UpdateColors
GetTextExtentPointA
LPtoDP
StretchBlt
SetTextJustification
EnumFontFamiliesA
SetTextCharacterExtra
SetBrushOrgEx
CreateBitmap
GetTextExtentPoint32A
GetCharABCWidthsFloatW
GetTextCharsetInfo
AbortDoc
PolyBezierTo
ExtFloodFill
Chord
CreateSolidBrush
GetKerningPairsA
SetTextColor
CreateFontW
Polygon
CreateFontIndirectW
GetEnhMetaFileHeader
PolyPolyline
GetDCOrgEx
StartPage
EndPath
SetPixelV
DeleteEnhMetaFile
GetClipRgn
GetPath
GetTextMetricsA
GetAspectRatioFilterEx
CreateFontIndirectA
GetStockObject
GetMapMode
ExtCreatePen
GetTextColor
ArcTo
GetPolyFillMode
GetTextAlign
CreateDiscardableBitmap
PlayEnhMetaFile
CreateEllipticRgn
GetROP2
SetPixel
EqualRgn
CreateICA
SetStretchBltMode
GetFontData
LineTo
GdiComment
SetMapMode
DeleteDC
GetGlyphOutlineW
AnimatePalette
GetDeviceCaps
TextOutW
Escape
PtInRegion
RoundRect
SetBkMode
SetTextAlign
ExcludeClipRect
GetWinMetaFileBits
PlayMetaFileRecord
GetCurrentPositionEx
StretchDIBits
BeginPath
GetObjectA
CreatePalette
GetBrushOrgEx
CreateDCA
RealizePalette
Polyline
TextOutA
GetBitmapBits
GetStretchBltMode
ScaleViewportExtEx
EndDoc
IntersectClipRect
ExtSelectClipRgn
ResizePalette
CreatePen
EnumFontFamiliesExA
PtVisible
PolyPolygon
SetWindowOrgEx
BitBlt
PatBlt
GetSystemPaletteEntries
EndPage
GetPixel
GetColorAdjustment
SetPaletteEntries
GetTextCharacterExtra
EnumFontsA
GetWindowOrgEx
SetViewportExtEx
CreateRoundRectRgn
GetClipBox
SetRectRgn
SelectObject
GetMiterLimit
DrawEscape
CreatePolyPolygonRgn
GetCharWidthFloatA
GetTextFaceA
SetColorAdjustment
OffsetWindowOrgEx
ScaleWindowExtEx
GetCharABCWidthsA
RectVisible
DPtoLP
OffsetClipRgn
FlattenPath
GetGraphicsMode
SetROP2
CreateCompatibleBitmap
Pie
GetArcDirection
SetMetaFileBitsEx
SaveDC
GetBkMode
SetWinMetaFileBits
GetDIBits
CreatePatternBrush
SetBkColor
PolyDraw
CreateDIBitmap

user32

AdjustWindowRectEx
LoadIconA
EnableMenuItem
PtInRect
SetParent
CreateIconIndirect
UnregisterClassA
MoveWindow
IsDlgButtonChecked
SetFocus
ValidateRect
ShowWindow
SendMessageA
SetWindowPos
LoadMenuA
GetClipboardViewer
DispatchMessageA
TranslateAcceleratorA
SetMenu
DestroyCursor
GetMessageA
SetWindowContextHelpId
GetParent
PostQuitMessage
CheckDlgButton
AppendMenuA
FindWindowA
GetScrollRange
GetSysColor
DrawFrameControl
GetWindowLongA
CharUpperA
TrackPopupMenu
DrawTextW
CopyIcon
SetScrollInfo
InvertRect
InflateRect
EnumDisplaySettingsA
SetMenuItemBitmaps
SetMenuItemInfoA
CreateWindowExA
UpdateWindow
GetAncestor
GetActiveWindow
IsDialogMessageA
GetClassNameW
GetClipboardData
InsertMenuW
IsDialogMessageW
IsWindowUnicode
CreateWindowExW
LoadIconW
ModifyMenuA
GetCursorPos
CallWindowProcW
LoadBitmapA
IntersectRect
SetRect
DrawStateA
ExitWindowsEx
CreatePopupMenu
GetOpenClipboardWindow
LoadCursorA
EnableScrollBar
GetMessagePos
GetScrollPos
IsIconic
LoadStringW
GetKeyState
SetScrollRange
DrawIconEx
GetDC
SystemParametersInfoA
DefDlgProcA
DeferWindowPos
GetClassLongA
MessageBoxW
SetCursorPos
DestroyWindow
ClipCursor
CheckMenuItem
RegisterClipboardFormatA
SetPropA
LoadCursorW
MapVirtualKeyExW
SetWindowsHookExA
ReplyMessage
SetCapture
OpenIcon
BeginPaint
CallNextHookEx
GetSystemMenu
TrackPopupMenuEx
GetScrollInfo
GetMenuItemCount
BeginDeferWindowPos
ReleaseDC
GetTopWindow
RegisterClassExW
GetSubMenu
LoadMenuW
GrayStringA
CreateMenu
DdeInitializeW
EmptyClipboard
wsprintfA
WindowFromPoint
DdeCreateDataHandle
DrawTextExA
MessageBoxA
GetMenuItemInfoW
GetWindowPlacement
KillTimer
InSendMessage
RemoveMenu
CloseClipboard
InsertMenuItemA
DrawIcon
GetClassInfoA
GetWindowTextW
SetClipboardData
CharNextA
RegisterClassW
GetWindowTextLengthW
IsZoomed
GetWindowRect
PostThreadMessageA
CreateDialogIndirectParamW
GetSysColorBrush
SetWindowTextA
SetScrollPos
GetWindowDC
CallWindowProcA
BringWindowToTop
IsCharLowerW
GetSystemMetrics
EnableWindow
ScrollWindowEx
DefWindowProcW
GetAsyncKeyState
GetDesktopWindow
EndDeferWindowPos
IsClipboardFormatAvailable
PostThreadMessageW
GetWindowTextA
CopyRect
ModifyMenuW
ScreenToClient
DrawTextA
RemovePropA
SystemParametersInfoW
OpenClipboard
DrawEdge
UnhookWindowsHookEx
GetNextDlgTabItem
TranslateAcceleratorW
PeekMessageA
CreateAcceleratorTableW
TranslateMessage
GetClassNameA
DestroyMenu
EndDialog
OffsetRect
SetWindowsHookExW
CreateCaret
InvalidateRect
GetIconInfo
DestroyIcon
EqualRect
ReleaseCapture
LoadImageA
SetTimer
ShowCaret
SetWindowLongW
DdeCreateStringHandleW
DefWindowProcA
EnumChildWindows
IsMenu
OemToCharBuffA
PeekMessageW
GetWindowLongW
InsertMenuA
GetMenu
MapDialogRect
GetForegroundWindow
GetDlgItemTextA
UnpackDDElParam
GetCapture
GetDoubleClickTime
GetMenuState
FrameRect
wvsprintfA
GetUpdateRect
GetWindowThreadProcessId
CopyAcceleratorTableA
GetLastActivePopup
LoadStringA
SetDlgItemTextA
ReuseDDElParam
RedrawWindow
SetActiveWindow
SetDlgItemInt
SetWindowLongA
DispatchMessageW
WinHelpA
IsWindowVisible
GetNextDlgGroupItem
ShowOwnedPopups
CreateDialogIndirectParamA
GetMenuItemID
GetDCEx
CharUpperBuffA
RegisterClassExA
GetWindowTextLengthA
ClientToScreen
GetPropA
CreateDialogParamW
GetMessageTime
MessageBeep
GetFocus
RegisterClassA
SendDlgItemMessageA
EndPaint
DefFrameProcA
GetClientRect
PostMessageA
DrawStateW
SetCursor
DrawFocusRect
SetWindowTextW
GetMenuStringA
SetPropW
SetForegroundWindow
ScrollDC
IsWindow
ExcludeUpdateRgn
RegisterWindowMessageA
GetDlgItem
MonitorFromWindow
GetWindow
FillRect
IsWindowEnabled
MapWindowPoints

shell32

ord155
DragQueryFileA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetMalloc
ShellExecuteA
SHGetFileInfoA
SHFileOperationA
SHChangeNotify
SHGetPathFromIDListA
DragAcceptFiles
ExtractIconExA
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetSpecialFolderPathA
SHGetFileInfoW
ShellExecuteExA
ExtractIconA
Shell_NotifyIconA

kernel32

DeleteFileW
FatalAppExitA
SetHandleCount
HeapDestroy
GetDateFormatW
CreateNamedPipeA
FindResourceA
WritePrivateProfileStringW
WriteConsoleW
FindResourceExA
GetExitCodeProcess
GetDiskFreeSpaceA
FlushFileBuffers
IsValidCodePage
GetCurrentDirectoryA
GetCommandLineW
QueryPerformanceCounter
GetVolumeInformationA
GetShortPathNameW
GetModuleHandleA
GlobalFlags
GetTempPathW
CreateEventA
GetUserDefaultLCID
FileTimeToSystemTime
ReadFile
SetStdHandle
GlobalFindAtomW
CompareFileTime
GlobalHandle
SetEnvironmentVariableA
LoadResource
IsBadCodePtr
VirtualFree
CloseHandle
FindNextFileW
ExitThread
VirtualProtect
GetPrivateProfileStringA
GetWindowsDirectoryA
HeapCreate
FindFirstFileA
lstrcmpA
LoadLibraryA
WideCharToMultiByte
TlsFree
CreateThread
FindResourceExW
SystemTimeToFileTime
lstrcpynA
GetLocaleInfoA
GetThreadPriority
IsDBCSLeadByte
GetFullPathNameA
GetTimeFormatA
GlobalAlloc
FreeLibrary
LeaveCriticalSection
GetCurrentThread
ResetEvent
CreateEventW
GlobalFree
GetCurrentDirectoryW
lstrlenA
SizeofResource
EnumResourceLanguagesW
EnterCriticalSection
GetWindowsDirectoryW
LCMapStringW
CopyFileA
SetEvent
WriteConsoleA
OpenProcess
GetCPInfo
SetLastError
SetConsoleCtrlHandler
Sleep
GetModuleFileNameA
InterlockedIncrement
TerminateThread
GetTempFileNameW
GetModuleHandleW
GetEnvironmentStringsW
GlobalFindAtomA
HeapFree
lstrcmpiA
LocalAlloc
IsBadReadPtr
GetProcAddress
WriteFile
GetStringTypeW
VirtualAlloc
GetSystemTimeAsFileTime
GetConsoleMode
IsValidLocale
GetLastError
GetModuleFileNameW
FreeEnvironmentStringsW
GlobalUnlock
VirtualQuery
_llseek
DeviceIoControl
IsDebuggerPresent
CreateFileMappingA
ReleaseMutex
GetCommandLineA
FreeEnvironmentStringsA
SetEndOfFile
GetProfileStringA
GetThreadLocale
MoveFileA
GetShortPathNameA
ExpandEnvironmentStringsW
RtlUnwind
LocalReAlloc
CreateFileA
GetACP
GetTickCount
GetTempFileNameA
GetVersionExA
WaitForMultipleObjects
GlobalLock
FlushInstructionCache
ResumeThread
SetFilePointer
GetExitCodeThread
LCMapStringA
FileTimeToLocalFileTime
GetSystemDefaultLangID
LocalFileTimeToFileTime
SetThreadPriority
CreateDirectoryA
CompareStringW
LoadLibraryExA
DeleteCriticalSection
lstrcatA
TlsSetValue
HeapSize
FindClose
GetFileSize
GetFileTime
GetProcessHeap
GetConsoleOutputCP
FormatMessageA
UnhandledExceptionFilter
SearchPathA
SetFileAttributesA
GetStdHandle
GetStartupInfoA
WinExec
DeleteFileA
GetProcessVersion
HeapReAlloc
GetCurrentThreadId
GlobalDeleteAtom
RaiseException
FindResourceW
GetCurrentProcessId
SetUnhandledExceptionFilter
MultiByteToWideChar
LocalFree
GetSystemDirectoryA
TlsGetValue
GetLocaleInfoW
GlobalMemoryStatus
InterlockedExchange
GetDateFormatA
lstrlenW
GetFileAttributesW
LockResource
ExitProcess
GetConsoleCP
TlsAlloc
ConvertDefaultLocale
GetOEMCP
RemoveDirectoryW
WaitForSingleObject
GetTimeZoneInformation
HeapAlloc
CreateFileW
GetCurrentProcess
SetEnvironmentVariableW
GetSystemInfo
SetErrorMode
WritePrivateProfileStringA
InterlockedDecrement
GlobalReAlloc
GetEnvironmentStrings
FreeResource
TerminateProcess
ReleaseSemaphore
CompareStringA
lstrcpyA
GetFileType
GetVersion
OpenMutexA
SetCurrentDirectoryA
CreateProcessA
EnumSystemLocalesA
GetStartupInfoW
InitializeCriticalSection
CreateMutexA
GetStringTypeA

oleaut32

LoadTypeLi

comctl32

PropertySheetA
ImageList_GetIconSize
ImageList_GetDragImage
_TrackMouseEvent
DestroyPropertySheetPage
ImageList_Write
ImageList_Draw
ImageList_EndDrag
ImageList_Create
ImageList_Read
ImageList_Destroy
ImageList_BeginDrag
ImageList_DrawEx
ImageList_Add
ImageList_DragShowNolock
ImageList_GetIcon
CreatePropertySheetPageW
ImageList_SetOverlayImage
ImageList_DragLeave
ImageList_DragMove
ImageList_Remove
InitCommonControlsEx
ImageList_LoadImageA
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_Merge
ImageList_SetImageCount
ImageList_ReplaceIcon
ord17
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_Copy
ImageList_DragEnter

advapi32

CryptDecrypt
RegCreateKeyExW
CryptAcquireContextA
RegQueryInfoKeyW
IsValidSecurityDescriptor
RegSetValueA
FreeSid
RegCreateKeyA
CloseServiceHandle
RegCreateKeyExA
ReportEventA
GetFileSecurityA
CryptEncrypt
InitializeSecurityDescriptor
RegEnumValueA
OpenSCManagerA
GetSidSubAuthorityCount
RegOpenCurrentUser
RegSetValueExA
RegEnumKeyExW
OpenServiceA
CryptHashData
RegOpenKeyExA
CryptGetHashParam
RegQueryValueExA
CryptGenRandom
RegDeleteKeyA
RegQueryValueA
DeleteService
RegDeleteValueA
ControlService
CryptDestroyKey
RegQueryInfoKeyA
InitializeAcl
CryptCreateHash
RegDeleteKeyW
RegDeleteValueW
AdjustTokenPrivileges
RegQueryValueExW
DuplicateToken
CryptDestroyHash
EqualSid
AccessCheck
SetFileSecurityA
AllocateAndInitializeSid
OpenProcessToken
StartServiceA
RegEnumKeyExA
LookupPrivilegeValueA
RegCloseKey
SetSecurityDescriptorDacl
CryptImportKey
RegOpenKeyExW
RegEnumKeyA
GetUserNameA
OpenThreadToken
CryptReleaseContext
AddAccessAllowedAce
RegSetValueExW
RegOpenKeyA

shlwapi

StrStrIW
StrToIntW
StrStrIA
PathFindExtensionW
PathFindFileNameW
PathRemoveBackslashW
PathRemoveExtensionW
PathFindFileNameA
PathStripToRootW
PathStripToRootA
PathCompactPathA
PathCompactPathW
PathFileExistsW
PathIsFileSpecW
PathRemoveFileSpecW
PathFindExtensionA
StrFormatByteSizeW
PathAddBackslashW
PathIsRelativeW
PathIsDirectoryW

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 466KB - Virtual size: 465KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

575040014c3d1a4a11150be9c46b7e9a

Headers

File Characteristics

Imports

gdi32

user32

shell32

kernel32

oleaut32

comctl32

advapi32

shlwapi

Sections

.text Size: 104KB - Virtual size: 104KB

.rdata Size: 466KB - Virtual size: 465KB

.data Size: 142KB - Virtual size: 145KB

.rsrc Size: 38KB - Virtual size: 38KB

.text
Size: 104KB - Virtual size: 104KB

.rdata
Size: 466KB - Virtual size: 465KB

.data
Size: 142KB - Virtual size: 145KB

.rsrc
Size: 38KB - Virtual size: 38KB