259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780

Sharing

Copy URL

Twitter E-mail

General

Target

259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780
Size

271KB
MD5

301ce90c2d6ddbae41624ff04fc015e7
SHA1

076fbcbbb2d82a052abfff2c1a3587e1534c5734
SHA256

259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780
SHA512

ec19b87be4b4e36efb58a179bd2b56096baabf698f435a5365eabdcc4754b9af2999fc68ef1cf0f94d30b7eeec4363f6bccf4085fb86adf76b78ca1499165a03
SSDEEP

3072:ONQKJ8iNgYHaBCxaBlHAqHTv79rbcZp9QHi3eSLeDsHH1zprvktL5:OyKJwYkCk7rYZp9QhG8s1zetL5

Score

N/A

Malware Config

Signatures

Files

259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780
.exe windows x86

9a0ee8954fe26be03815d17b6bd43484

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
IsDialogMessageW
SetWindowTextW
GetTopWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
CallNextHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
CopyRect
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ValidateRect
SetActiveWindow
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
SetWindowPos
DestroyWindow
IsWindow
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
UnhookWindowsHookEx
GetMenuItemCount
GetMenuItemID
wsprintfW
GetClassInfoW
EnableWindow
GetSubMenu
SendDlgItemMessageA
MsgWaitForMultipleObjects
TranslateMessage
PeekMessageW
DispatchMessageW
CharLowerW
CharUpperW
SetFocus
SetForegroundWindow
BringWindowToTop
SystemParametersInfoW
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
SendMessageTimeoutW
UpdateWindow
RedrawWindow
ReleaseDC
GetDC
DestroyCursor
GetParent
SetCursor
DrawStateW
DrawFocusRect
FrameRect
FillRect
InvalidateRect
GetSysColor
GetWindowInfo
GetWindowRect
MapDialogRect
LoadImageW
WinHelpW
MonitorFromWindow
GetMonitorInfoW
IsWindowEnabled
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
BeginPaint
EndPaint
LoadBitmapW
LoadIconW
ShowWindow
ClientToScreen
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetMessageW
GetActiveWindow
RegisterWindowMessageW
GetCursorPos
PostQuitMessage
SendMessageW
PostMessageW
IsIconic
GetSystemMetrics
DrawIcon
SetTimer
KillTimer
DestroyMenu
UnregisterClassW
RealChildWindowFromPoint
LoadCursorW
GetSysColorBrush
GetDesktopWindow
GetClientRect

shell32

ShellExecuteA
SHGetPathFromIDListW
ShellExecuteW
SHBrowseForFolderW
SHGetFolderPathW
SHGetMalloc

ole32

CoUninitialize
CoCreateInstance
CoInitialize
CoCreateGuid
CoTaskMemFree

gdi32

ExtTextOutW
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetMapMode
SetBkMode
SaveDC
RestoreDC
RectVisible
PtVisible
GetClipBox
Escape
DeleteDC
CreateSolidBrush
CreateBitmap
SelectObject
GetStockObject
SetTextColor
SetBkColor
GetDeviceCaps
DeleteObject
GetTextExtentPoint32W
CreateFontIndirectW
StretchBlt
SetViewportExtEx
CreateCompatibleDC
GetObjectW
TextOutW

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathFindFileNameW
PathFindExtensionW
PathFindFileNameA
PathIsUNCW
PathStripToRootW

kernel32

TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
CompareStringW
GetLocaleInfoW
GlobalFlags
GetVolumeInformationW
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExW
GetCommandLineW
IsDebuggerPresent
SetStdHandle
GetFileType
RaiseException
QueryDepthSList
CreateTimerQueue
CreateTimerQueueTimer
HeapReAlloc
CreateThread
ExitThread
lstrcmpW
ExitProcess
GetModuleHandleExW
HeapSize
HeapQueryInformation
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsValidCodePage
GetOEMCP
GetCPInfo
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetStringTypeW
SwitchToThread
GetThreadTimes
FreeLibraryAndExitThread
InitializeSListHead
UnregisterWaitEx
ChangeTimerQueueTimer
GetNumaHighestNodeNumber
RegisterWaitForSingleObject
DeleteTimerQueueTimer
TlsGetValue
SetThreadAffinityMask
VirtualProtect
GetTimeZoneInformation
LCMapStringW
EnumSystemLocalesW
WriteConsoleW
UnregisterWait
GetThreadPriority
SignalObjectAndWait
SetEnvironmentVariableA
OpenEventA
HeapDestroy
lstrcmpA
GlobalDeleteAtom
GetCurrentThread
SetLastError
FormatMessageW
MulDiv
GlobalFree
GlobalAlloc
GetACP
GetTickCount
GetSystemTimeAsFileTime
DuplicateHandle
CreateEventA
GetLocalTime
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
GetPrivateProfileStringW
GetPrivateProfileIntW
WritePrivateProfileStringW
LocalFree
LocalAlloc
GetExitCodeThread
SetThreadPriority
GetCurrentThreadId
GetUserDefaultLCID
IsValidLocale
GetSystemDefaultUILanguage
PulseEvent
ReleaseMutex
CreateMutexW
GetExitCodeProcess
ResumeThread
CreateProcessW
FlushFileBuffers
WaitForMultipleObjects
CreateSemaphoreW
ReleaseSemaphore
GetSystemInfo
VirtualFree
TlsAlloc
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
GetModuleHandleA
FreeResource
GetVersion
DecodePointer
EncodePointer
OutputDebugStringA
CompareStringA
GetCommandLineA
GetStartupInfoA
HeapCreate
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
FreeEnvironmentStringsA
GetEnvironmentStrings
SetHandleCount
LCMapStringA
GetStringTypeA
GetLocaleInfoA
GetConsoleOutputCP
WriteConsoleA
CreateFileA
GetProcessAffinityMask
EnterCriticalSection
GetVersionExW
FileTimeToSystemTime
SetEndOfFile
ReadFile
SetFilePointer
GetFileSize
GetStdHandle
VirtualAlloc
GetModuleFileNameW
RtlUnwind
GetProcAddress
GetModuleHandleW
lstrlenA
OutputDebugStringW
ExpandEnvironmentStringsW
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceW
DeleteCriticalSection
LeaveCriticalSection
SetCurrentDirectoryW
WaitForSingleObject
GetCurrentProcessId
GlobalUnlock
RemoveDirectoryW
GetUserDefaultUILanguage
CloseHandle
InitializeCriticalSection
GlobalLock
GetTempPathW
WriteFile
SleepEx
GetFileAttributesW
CreateDirectoryW
CreateFileW
DeleteFileW
lstrcpyW
MultiByteToWideChar
LoadLibraryW
FreeLibrary
GetCurrentProcess
TerminateProcess
FindFirstFileW
FindNextFileW
FindClose
CopyFileW
GetDiskFreeSpaceExW
SetFileAttributesW
MoveFileExW
GetFullPathNameW
CreateEventW
SetEvent
Sleep
ResetEvent
GetSystemDirectoryW
HeapAlloc
GetProcessHeap
HeapFree
GetLogicalDriveStringsW
lstrlenW
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
IsProcessorFeaturePresent
SetFileTime
MoveFileW
GetTempFileNameW
LoadLibraryExW

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 52.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a0ee8954fe26be03815d17b6bd43484

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

gdi32

comctl32

shlwapi

kernel32

Sections

.text Size: 143KB - Virtual size: 142KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 7KB - Virtual size: 52.8MB

.rsrc Size: 104KB - Virtual size: 103KB

.text
Size: 143KB - Virtual size: 142KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 7KB - Virtual size: 52.8MB

.rsrc
Size: 104KB - Virtual size: 103KB