17ae6d806192ab41f146f5e759e5b1c8b85ba6b9b596a6cc2556207bf521b2bf

Sharing

Copy URL

Twitter E-mail

General

Target

17ae6d806192ab41f146f5e759e5b1c8b85ba6b9b596a6cc2556207bf521b2bf
Size

275KB
MD5

801e82f1d83886def671b3e327aaf9d9
SHA1

fe22d9873884c1102ba5062e18c72998f98ebd45
SHA256

17ae6d806192ab41f146f5e759e5b1c8b85ba6b9b596a6cc2556207bf521b2bf
SHA512

96df6be3f0462f65226ae82ad0d24923f50e75829d74e328caa98ab9f5f99fa69079a1e994e50a36ec5dad1bf2ff3d1f490350324bf86c3db1fe0c8fc09a180c
SSDEEP

6144:6WVQPoinMh00GZgMAkeOLtZryPthEli2khGS+804d:tVEoT0vZgMA1OhZritSlD6j+8rd

Score

N/A

Malware Config

Signatures

Files

17ae6d806192ab41f146f5e759e5b1c8b85ba6b9b596a6cc2556207bf521b2bf
.exe windows x86

42f4d4cb8ff6d7b32ea10a070d871f29

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
GetWindow
IsWindowEnabled
MsgWaitForMultipleObjects
GetDlgCtrlID
SendMessageTimeoutW
PeekMessageW
GetUserObjectSecurity
SetUserObjectSecurity
IsDialogMessageW
DrawIconEx
WindowFromPoint
CreateMenu
DrawMenuBar
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
GetDlgItemTextW
CreateDialogParamW
ExitWindowsEx
DispatchMessageW
GetMessageW
DrawEdge
RegisterWindowMessageW
SetMenuItemInfoW
IsIconic
ShowWindowAsync
SystemParametersInfoW
EnumWindows
SetClassLongW
GetWindowTextW
InvalidateRgn
TrackPopupMenuEx
ModifyMenuW
AppendMenuW
GetMenuItemCount
GetMenuItemID
LoadImageW
RegisterClassW
DrawTextA
DefDlgProcW
CreateIconIndirect
FrameRect
IsWindowVisible
GetClassNameW
EnumChildWindows
PtInRect
UnionRect
CopyRect
ScreenToClient
IsZoomed
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
PostMessageW
DrawFrameControl
SetDlgItemTextW
DialogBoxParamW
SetWindowTextW
DialogBoxIndirectParamW
GetScrollInfo
SetScrollInfo
GetParent
GetClassLongW
SetWindowLongW
GetWindowLongW
IntersectRect
InflateRect
MapWindowPoints
SendMessageW
WaitForInputIdle
ShowWindow
InsertMenuW
GetPropW
SetPropW
GetWindowDC
ReleaseDC
FillRect
OffsetRect
SendMessageA
wsprintfA
PostMessageA
PostQuitMessage
GetSystemMetrics
SetCursor
MessageBoxA
RegisterClassA
LoadIconA
LoadCursorA
SetFocus
InvalidateRect
ScrollWindowEx
ValidateRect
GetUpdateRgn
GetUpdateRect
UpdateWindow
DrawTextW
EnableWindow
SetCapture
GetCapture
DeleteMenu
SetForegroundWindow
MessageBoxW
FindWindowW
FindWindowExW
EndPaint
BeginPaint
IsDialogMessageA
CheckDlgButton
SystemParametersInfoA
IsWindow
GetWindowRect
GetWindowTextA
CreateWindowExA
SetWindowPos
MoveWindow
DefWindowProcA
DefMDIChildProcW
ReleaseCapture
GetWindowThreadProcessId
LoadCursorW
LoadIconW
EnumDisplaySettingsW
GetKeyState
GetFocus
CreateWindowExW
RegisterClassExW
CallWindowProcW
DefWindowProcW
LoadStringW
DefFrameProcW
CreateDialogIndirectParamA
GetDesktopWindow
LoadImageA
GetDC
DialogBoxIndirectParamA
CharLowerA
GetKeyboardType
LoadStringA
CharNextA
GetWindowLongA
wvsprintfA
FindWindowA
RedrawWindow
CheckRadioButton
UnregisterClassA
GetSysColorBrush
DialogBoxParamA
DestroyAcceleratorTable
EmptyClipboard
SetClipboardData
CharUpperA
OpenClipboard
TranslateAcceleratorA
LoadAcceleratorsA
RemoveMenu
ChildWindowFromPoint
DestroyCursor
CreateDialogParamA
IsMenu
GetSubMenu
SetDlgItemInt
GetWindowPlacement
CharLowerBuffA
EnableMenuItem
CheckMenuRadioItem
GetSysColor
KillTimer
DestroyIcon
DestroyWindow
GetClientRect
GetSystemMenu
SetTimer
SetWindowPlacement
InsertMenuItemA
GetMenu
CheckMenuItem
SetMenuItemInfoA
SetActiveWindow
DefDlgProcA
EndDialog
SetDlgItemTextA
EnumClipboardFormats
GetClipboardData
CloseClipboard
GetClassInfoA
CallWindowProcA
SetWindowLongA
IsDlgButtonChecked
GetActiveWindow
GetDlgItemTextA
GetCursorPos
TrackPopupMenu
ClientToScreen
DestroyMenu
CreatePopupMenu
AppendMenuA
SendDlgItemMessageA
GetDlgItem
SetWindowTextA

comdlg32

ChooseColorW
ChooseFontW
FindTextW
GetOpenFileNameW
PrintDlgW
GetSaveFileNameW

shell32

SHGetMalloc
DragAcceptFiles
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
DragFinish
DragQueryFileA
SHGetFileInfoA
SHGetPathFromIDListW
SHBrowseForFolderW
Shell_NotifyIconW
ShellExecuteExW
SHGetFileInfoW
ShellExecuteW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetDataFromIDListA
SHChangeNotify
ShellExecuteExA
SHFileOperationA

ole32

CoInitialize
CoUninitialize
CoCreateInstance
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
OleInitialize
OleUninitialize
RegisterDragDrop
RevokeDragDrop
DoDragDrop
OleGetClipboard
ReleaseStgMedium
CLSIDFromString
CoFreeAllLibraries
CoGetInterfaceAndReleaseStream
CoSetProxyBlanket
CoMarshalInterThreadInterfaceInStream

advapi32

RegCreateKeyW
SetKernelObjectSecurity
IsValidSecurityDescriptor
GetKernelObjectSecurity
CreateProcessAsUserW
RegConnectRegistryW
AddAccessAllowedAce
AddAce
InitializeAcl
GetSidSubAuthorityCount
GetSidSubAuthority
GetSidIdentifierAuthority
IsValidSid
SetTokenInformation
QueryServiceConfigW
CopySid
GetLengthSid
RevertToSelf
GetTokenInformation
EqualSid
AllocateAndInitializeSid
SetServiceObjectSecurity
QueryServiceObjectSecurity
MapGenericMask
RegDeleteValueW
StartServiceW
QueryServiceStatus
FreeSid
GetAce
LookupAccountSidW
LookupAccountNameW
LookupPrivilegeValueW
ImpersonateLoggedOnUser
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyW
RegEnumValueW
RegLoadKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW
RegUnLoadKeyW
RegQueryValueW
CryptAcquireContextW
CryptReleaseContext
CryptGetHashParam
CryptCreateHash
CryptHashData
CryptDestroyHash
CloseServiceHandle
OpenSCManagerW
OpenServiceW
ControlService
RegOpenKeyA
RegSetValueExA
RegQueryInfoKeyA
RegFlushKey
RegEnumValueA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA
RegCreateKeyA
RegSetValueA
GetUserNameA
RegCloseKey
RegOpenKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyExW
LookupPrivilegeNameW

gdi32

ExtTextOutW
GetBkColor
GetCharABCWidthsFloatW
GetDIBits
GetDeviceCaps
GetObjectA
GetPixel
GetStockObject
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextMetricsA
LineTo
MoveToEx
ExtTextOutA
Rectangle
RemoveFontResourceA
SelectClipRgn
EndDoc
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePen
CreateFontIndirectA
CreateFontA
CreateDIBitmap
CreateDIBSection
CreateDCA
CreateCompatibleDC
ExtCreatePen
PtInRegion
EndPage
GetTextMetricsW
RectInRegion
GetObjectW
CreateRectRgnIndirect
GetBkMode
CreateFontIndirectW
UnrealizeObject
SetWindowOrgEx
SetWindowExtEx
SetWinMetaFileBits
SetViewportOrgEx
CreateCompatibleBitmap
SetROP2
SetMapMode
SetEnhMetaFileBits
SetDIBColorTable
SetBrushOrgEx
SetAbortProc
RoundRect
RestoreDC
RectVisible
Polyline
Polygon
PolyPolyline
PlayEnhMetaFile
PatBlt
MaskBlt
IntersectClipRect
GetWindowOrgEx
GetWinMetaFileBits
GetTextExtentPointA
GetSystemPaletteEntries
BitBlt
GetPaletteEntries
GetObjectType
GetNearestPaletteIndex
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileBits
GetDIBColorTable
GetDCOrgEx
GetCurrentPositionEx
GetClipBox
GetBrushOrgEx
GetBitmapBits
GdiFlush
ExcludeClipRect
DeleteEnhMetaFile
CreateRoundRectRgn
CreatePenIndirect
CreateICA
CreateHalftonePalette
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileA
CombineRgn
RealizePalette
SelectPalette
CreatePalette
TextOutW
TextOutA
StretchDIBits
StretchBlt
StartPage
StartDocW
StartDocA
SetTextColor
SetTextAlign
SetStretchBltMode
GetRgnBox
SetPixel
SetBkMode
SetBkColor
SelectObject
AddFontResourceA
AbortDoc
SaveDC
SetViewportExtEx
SetPixelV

opengl32

glTexCoord4dv
glColor4fv
glTexCoord3d
glGetBooleanv
glStencilFunc
glLighti
glColor4us
glMaterialiv

dbghelp

SymEnumSourceFiles
SymGetLineFromName
SymRegisterCallback64
SymFromName
SymEnumerateSymbolsW
SymEnumerateSymbols64

crypt32

CertGetNameStringW
CertDuplicateCertificateContext

comctl32

ImageList_Destroy
PropertySheetW
CreateStatusWindowW
CreatePropertySheetPageW
CreateToolbarEx
ImageList_ReplaceIcon
ImageList_Create
ImageList_DrawEx
InitCommonControlsEx
ImageList_Add

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerInstallFileA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

mpr

WNetGetConnectionW

shlwapi

UrlUnescapeW
ColorRGBToHLS
ColorHLSToRGB

kernel32

OpenEventA
GetStringTypeA
GetPrivateProfileIntA
TerminateProcess
GetWindowsDirectoryA
OpenProcess
GlobalMemoryStatus
FindVolumeClose
EnumCalendarInfoW
CompareStringW
SetErrorMode
CreateFileA
CreateProcessA
MultiByteToWideChar
GlobalFree
GlobalUnlock
WideCharToMultiByte
lstrlenW
CloseHandle
Sleep
DeleteFileA
GetAtomNameA
RtlUnwind
GetModuleFileNameA
GetUserDefaultLangID
GlobalAlloc
GlobalLock
GetVersionExA
GetPrivateProfileStringA
CompareStringA
lstrlenA
SetLastError
CreateDirectoryA
GetFileAttributesA
GetShortPathNameA
GetLastError
SetFileAttributesA
WaitForSingleObject
GetTempPathA
GetTempFileNameA
SetEvent
FormatMessageA
LocalFree
RemoveDirectoryA
FindResourceExA
FindResourceA
LoadResource
LockResource
HeapFree
HeapAlloc
GetCommandLineA
lstrcpyA
ExitProcess
HeapCreate
GetStartupInfoA
GetModuleHandleA
HeapDestroy
AddAtomA
GetSystemTimeAsFileTime
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetTimeZoneInformation
GetProcAddress
GetModuleHandleW
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
InitializeCriticalSectionAndSpinCount
VirtualAlloc
HeapReAlloc
LCMapStringA
LCMapStringW
GetStringTypeW
GetLocaleInfoA
HeapSize
SetEnvironmentVariableA
CopyFileA

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42f4d4cb8ff6d7b32ea10a070d871f29

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

opengl32

dbghelp

crypt32

comctl32

version

mpr

shlwapi

kernel32

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 7KB - Virtual size: 16KB

.rsrc Size: 182KB - Virtual size: 181KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 7KB - Virtual size: 16KB

.rsrc
Size: 182KB - Virtual size: 181KB