9be06d9f0608a7fe5bd265a26005ecd66074fcf0994310b6809b3442e7f00831

Sharing

Copy URL Twitter E-mail

General

Target

9be06d9f0608a7fe5bd265a26005ecd66074fcf0994310b6809b3442e7f00831
Size

312KB
MD5

3c10d38b5d1a9a0d6b7c2688154fdd8e
SHA1

e726a5ecffb489430a77b60e06059e164e4bbe34
SHA256

9be06d9f0608a7fe5bd265a26005ecd66074fcf0994310b6809b3442e7f00831
SHA512

636db865f77ccb063947ac12d87bf9d1b63780511ed80e8b356fa52c9f03a5b8b62b358f07cfff4f328c5b39cb1b7811fcc44d1bdb70c8282b98e65da449f40f
SSDEEP

6144:gul2q95cp3uQLF/HxxtslMXKJKWNzso2kKm1cOPmwdVodX+mocx:g8b5cp3uM/KMXbY2lm1mIVMo

Score

N/A

Malware Config

Signatures

Files

9be06d9f0608a7fe5bd265a26005ecd66074fcf0994310b6809b3442e7f00831
.exe windows x86

3f7de216f7f76888e85e45e986e95fb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
UpdateWindow
IsRectEmpty
SendMessageA
SetWindowPlacement
PostThreadMessageW
RegisterClassW
SetWindowRgn
MapDialogRect
EnableWindow
SetWindowLongA
CheckDlgButton
GetLastActivePopup
TrackPopupMenu
EndDialog
SetTimer
MessageBeep
ShowScrollBar
DrawFrameControl
DrawFocusRect
GetSystemMenu
SetClipboardData
DdeUninitialize
GetFocus
GetCursorPos
CreatePopupMenu
DdeConnect
GetWindowContextHelpId
PostQuitMessage
CopyRect
wsprintfW
PostMessageA
SendDlgItemMessageW
GetParent
ShowCursor
FindWindowA
LoadImageA
IsDialogMessageA
SystemParametersInfoA
IsWindowUnicode
IsCharLowerA
PostThreadMessageA
GetScrollInfo
GetSysColor
IsWindow
CallNextHookEx
SetPropA
PtInRect
GetWindowThreadProcessId
GetNextDlgGroupItem
GetMenuStringA
CreateAcceleratorTableA
ExcludeUpdateRgn
DrawIcon
InsertMenuA
ArrangeIconicWindows
CopyAcceleratorTableW
DrawIconEx
TranslateMessage
GetMenu
GetDC
RegisterHotKey
GetMessageTime
GetWindowTextA
DialogBoxParamA
SetScrollPos
InvalidateRect
DlgDirListA
DefWindowProcW
GetIconInfo
IsWindowVisible
AppendMenuA
GetClipboardData
ScreenToClient
SetDlgItemTextW
FrameRect
GetClientRect
RegisterClassA
GetActiveWindow
GetMessageA
WinHelpW
ModifyMenuA
CallWindowProcW
IntersectRect
DdeClientTransaction
UnregisterClassW
IsWindowEnabled
WaitForInputIdle
GetTabbedTextExtentA
DefWindowProcA
TranslateAcceleratorA
GetClassNameA
MessageBoxW
RemovePropW
GetDoubleClickTime
SetWindowTextA
GetDlgCtrlID
CreateDialogIndirectParamW
DrawTextA
GetAsyncKeyState
ChildWindowFromPoint
SetActiveWindow
TabbedTextOutA
RegisterWindowMessageW
SetWindowsHookExA
GetCapture
MessageBoxA
DestroyMenu
DrawStateW
GetWindow
SetWindowTextW
GetCursor
LoadMenuA
RegisterWindowMessageA
DestroyWindow
DispatchMessageW
CopyIcon
MoveWindow
FillRect
SendDlgItemMessageA
LoadBitmapW
GetWindowRect
UnhookWindowsHookEx
DrawEdge
EndPaint
DeleteMenu
KillTimer
EqualRect
SetWindowPos
RemovePropA
AdjustWindowRectEx
GetDesktopWindow
SetMenuDefaultItem
DdeDisconnect
GetSystemMetrics
LoadMenuIndirectA
GetNextDlgTabItem
GetMessagePos
GetClassNameW
CallWindowProcA
GetClassLongA
TranslateAcceleratorW
DestroyCursor
CharNextA
DrawStateA
CreateIconIndirect
ShowWindow
GetWindowTextLengthA
GetPropW
BeginPaint
OpenClipboard
GetWindowTextW
GetDCEx
GrayStringA
ShowCaret
GetMenuItemCount
GetMessageW
BringWindowToTop
DrawMenuBar
CloseClipboard
DialogBoxIndirectParamW
GetWindowLongA
SetRect
CharLowerW
LoadIconA
InsertMenuW
GetTopWindow
GetWindowDC
SetCursor
RegisterClassExW
wsprintfA
GetWindowPlacement
GetWindowTextLengthW
SetFocus
SetClipboardViewer
GetForegroundWindow
GetKeyState
GetMenuItemID
SetDlgItemTextA
DlgDirSelectExA
GetSubMenu
LoadBitmapA
GetDlgItem
DlgDirSelectComboBoxExA
LoadStringA
DrawTextW
SetCaretPos
SetForegroundWindow
SetParent
CheckMenuItem
IsChild
ValidateRect
WindowFromPoint
UnregisterClassA
CheckMenuRadioItem
InsertMenuItemA
WinHelpA
ReleaseCapture
MapWindowPoints
SetWindowLongW
SetMenu
InflateRect
DlgDirListComboBoxA
GetMenuStringW
InvalidateRgn
InvertRect
GetClassInfoExA
DefFrameProcA
ReleaseDC
LoadMenuW
SetScrollInfo
LoadCursorA
ClientToScreen
ReuseDDElParam
PeekMessageA
SetCapture
CharUpperA
GetWindowLongW
CreateWindowExW
SetMenuItemBitmaps
RemoveMenu
DispatchMessageA
RegisterClassExA
EmptyClipboard
GetDlgItemInt
SetWindowContextHelpId
OffsetRect
EnableMenuItem
SetDlgItemInt
DdeFreeStringHandle
CopyAcceleratorTableA
IsIconic
GetClassInfoW
GetMenuState
GetMenuCheckMarkDimensions
IsZoomed
ModifyMenuW
GetScrollRange
SendMessageTimeoutW
RegisterClipboardFormatA
IsDlgButtonChecked
RedrawWindow
GetMenuContextHelpId
GetSysColorBrush

shell32

DragQueryFileA
ShellExecuteExA
ExtractIconW
SHBrowseForFolderA
ShellExecuteW
SHGetFileInfoA
SHGetPathFromIDListA
ShellExecuteA
Shell_NotifyIconA
SHFileOperationA
SHGetMalloc
DragFinish
FindExecutableA
ord155
SHAppBarMessage
DragQueryFileW
SHChangeNotify
SHGetSpecialFolderLocation
DragAcceptFiles

urlmon

URLDownloadToFileA
IsValidURL

advapi32

ReportEventA
RegisterEventSourceA
QueryServiceStatus
AccessCheck
GetTokenInformation
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegQueryInfoKeyA
EqualSid
RegEnumValueA
OpenSCManagerA
OpenProcessToken
RegDeleteKeyA
RegSetValueExA
RegDeleteValueA
SetTokenInformation
StartServiceA
RegisterServiceCtrlHandlerA
AddAce
RegNotifyChangeKeyValue
GetUserNameA
CryptDestroyHash
CreateServiceW
InitializeSecurityDescriptor
RegSetValueA
CryptDestroyKey
ReportEventW
GetAclInformation
DeleteService
RegSetValueExW
RegOpenKeyExA
RegCreateKeyExA
OpenServiceA
CryptDeriveKey
RegDeleteKeyW
RegEnumKeyA
GetAce
GetSecurityInfo
RegEnumKeyExA
GetLengthSid
GetFileSecurityA
DeregisterEventSource
SetSecurityDescriptorDacl
AllocateAndInitializeSid
ConvertStringSidToSidA
RegQueryValueA
RegQueryValueExW
RegQueryValueExA
CreateServiceA
CryptDecrypt
GetSidSubAuthorityCount
RegDeleteValueW
RegOpenKeyA
ControlService
DeleteAce
GetSidLengthRequired
RegQueryInfoKeyW
RegCreateKeyA
FreeSid
CloseServiceHandle
RegOpenKeyExW

kernel32

GetFileAttributesW
GetFileType
TlsGetValue
CreateFileA
FindClose
InterlockedDecrement
OutputDebugStringA
GetThreadLocale
GetLastError
FreeEnvironmentStringsW
GetLocalTime
GetUserDefaultLCID
TerminateThread
LocalReAlloc
HeapDestroy
lstrcmpA
GetCurrentProcessId
IsDebuggerPresent
GetCommandLineA
IsBadCodePtr
LoadLibraryA
GetVersionExA
SearchPathA
CreateFileW
GlobalGetAtomNameA
IsBadReadPtr
SystemTimeToFileTime
ConvertDefaultLocale
SetUnhandledExceptionFilter
CreateFileMappingW
ExitThread
CompareStringA
SetEnvironmentVariableA
WriteFile
GetEnvironmentVariableW
Sleep
ExpandEnvironmentStringsA
WritePrivateProfileStringA
SetEndOfFile
GetEnvironmentStringsW
GetFileSize
TerminateProcess
TlsFree
UnhandledExceptionFilter
GetShortPathNameA
GetUserDefaultLangID
GetLogicalDriveStringsW
HeapAlloc
GetVersion
GlobalFree
GetDateFormatW
GetSystemDefaultLangID
CreateDirectoryW
lstrcmpiW
GlobalLock
GetStdHandle
SetHandleCount
CompareStringW
FormatMessageW
LocalFree
GetCurrentThreadId
GetStringTypeExA
InterlockedExchange
GetCPInfo
LoadLibraryExW
FlushFileBuffers
SetStdHandle
GetStartupInfoA
RemoveDirectoryA
WaitForMultipleObjects
RtlUnwind
ResumeThread
FileTimeToLocalFileTime
IsValidLocale
GetCurrentProcess
GetProcAddress
SetErrorMode
SetFileTime
lstrlenA
CopyFileA
VirtualQuery
LocalAlloc
GetConsoleCP
DeleteCriticalSection
GetACP
VirtualFree
SetLastError
GetProcessHeap
ResetEvent
FindNextFileW
MoveFileA
DuplicateHandle
FindFirstFileA
EnumSystemLocalesA
SetFilePointer
GetFullPathNameA
GetFullPathNameW
lstrlenW
ReleaseMutex
MapViewOfFile
SetEvent
InterlockedCompareExchange
GetFileAttributesA
GetEnvironmentStrings
GetModuleFileNameA
TlsAlloc
WideCharToMultiByte
GlobalUnlock
GetPrivateProfileSectionNamesA
SetThreadPriority
GetTempFileNameA
QueryPerformanceCounter
lstrcatA
CreateEventA
RaiseException
CreateEventW
lstrcmpW
FlushInstructionCache
DeleteFileA
FindResourceA
IsBadWritePtr
GlobalAlloc
FindNextFileA
GetSystemTimeAsFileTime
CreateMutexA
LoadLibraryW
GlobalAddAtomW
LCMapStringW
OpenProcess
GetStringTypeA
VirtualAlloc
GetEnvironmentVariableA
GetSystemDirectoryA
LeaveCriticalSection
GetComputerNameA
lstrcmpiA
GetFileTime
IsValidCodePage
TlsSetValue
MultiByteToWideChar
SuspendThread
IsProcessorFeaturePresent
GetConsoleMode
GetTimeZoneInformation
FreeLibrary
GetNumberFormatA
OpenMutexA
GetLocaleInfoA
LoadResource
WaitForSingleObject
GlobalMemoryStatus
WinExec
LoadLibraryExA
CreateMutexW
CreateDirectoryA
CloseHandle
PeekNamedPipe
HeapReAlloc
GetVersionExW
GetModuleHandleA
GlobalHandle
GetStringTypeW
GetConsoleOutputCP
GetSystemInfo
GetModuleFileNameW
LCMapStringA
WriteConsoleA
HeapSize
SetFileAttributesA
InitializeCriticalSection
GlobalDeleteAtom
GetPrivateProfileStringA
VirtualProtect
CompareFileTime
HeapFree
GetDiskFreeSpaceA
GetDriveTypeA
GetTempPathA
SizeofResource
GetCurrentThread
MulDiv
GetCurrentDirectoryA
CreateProcessA
ExitProcess
FreeEnvironmentStringsA
lstrcpyA
FindFirstFileW
GetSystemTime
EnterCriticalSection
GetWindowsDirectoryA
GetLocaleInfoW
HeapCreate
GetOEMCP
GetVolumeInformationA
GlobalFindAtomA
ReadFile
GetTickCount
GlobalFlags
LockResource
GetShortPathNameW
FatalAppExitA
InterlockedIncrement
GetModuleHandleW

comctl32

ImageList_DragMove
ImageList_Replace
ImageList_Add
ImageList_GetImageInfo
CreatePropertySheetPageW
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_AddMasked
ImageList_LoadImageW
ImageList_GetBkColor
DestroyPropertySheetPage
ImageList_DragShowNolock
ImageList_Remove
ImageList_SetImageCount
ord17
ImageList_Draw
ImageList_SetDragCursorImage
ImageList_SetBkColor
InitCommonControlsEx
ImageList_GetIconSize
ImageList_DragEnter
ImageList_LoadImageA
ImageList_GetImageCount
CreateStatusWindowW
ImageList_BeginDrag
PropertySheetA
ImageList_GetIcon
ImageList_DrawEx
ImageList_Create
CreatePropertySheetPageA
ImageList_Destroy
_TrackMouseEvent
ImageList_EndDrag

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f7de216f7f76888e85e45e986e95fb4

Headers

File Characteristics

Imports

user32

shell32

urlmon

advapi32

kernel32

comctl32

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 104KB - Virtual size: 102KB

.data Size: 88KB - Virtual size: 90KB

.rsrc Size: 48KB - Virtual size: 44KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 104KB - Virtual size: 102KB

.data
Size: 88KB - Virtual size: 90KB

.rsrc
Size: 48KB - Virtual size: 44KB