1940778bcf85342747258c80c183a2d917239f9a7c4f75f5a63a7042d1affe89

Sharing

Copy URL Twitter E-mail

General

Target

1940778bcf85342747258c80c183a2d917239f9a7c4f75f5a63a7042d1affe89
Size

1.7MB
MD5

af86ae43e190e539f0aaaf0f8b325a43
SHA1

f0935a2e247a308b1750301edb7695a448d70167
SHA256

1940778bcf85342747258c80c183a2d917239f9a7c4f75f5a63a7042d1affe89
SHA512

9eb4c060c9e0c6eb291c99f7813ad7699f416cfe8564e7524c5a587778e30ad6430c8cd08f9be8eb2a76062c77960a994d633844d82c826b9e30ba70e3e0a920
SSDEEP

49152:bm/6g6s/xMb7xJ4DGXT+4FSOZztFn8NV5f0agNTCg5HQrGbeNT6OrmpI:bm/60xGxODGXT+4FRltF8z5f0aUrwqKL

Score

N/A

Malware Config

Signatures

Files

1940778bcf85342747258c80c183a2d917239f9a7c4f75f5a63a7042d1affe89
.dll windows x86

5d001f618d5588d34fbc7fae987056e9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
SizeofResource
InitializeCriticalSection
LoadResource
FindResourceW
MultiByteToWideChar
GetLastError
Sleep
lstrlenA
FindFirstFileA
GetFileAttributesA
DeleteFileA
FindClose
GetVersionExA
GetCurrentProcess
HeapAlloc
HeapFree
CreateFileA
GetFileSize
SetFilePointer
WriteFile
CloseHandle
GetTempPathA
GetModuleHandleA
GetCommandLineA
GetVolumeInformationA
MulDiv
lstrlenW
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
CopyFileA
GlobalFree
SetLastError
FileTimeToSystemTime
FileTimeToLocalFileTime
DeactivateActCtx
LoadLibraryW
ActivateActCtx
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FreeLibrary
LocalAlloc
lstrcmpiA
GetProcAddress
LoadLibraryA
ReadFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetFullPathNameA
GetModuleFileNameA
GetModuleHandleW
lstrcmpA
InterlockedExchange
CompareStringA
GetLocaleInfoA
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
GetCurrentThreadId
GetCurrentThread
GlobalDeleteAtom
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
ReleaseActCtx
GetCurrentProcessId
TlsGetValue
GlobalReAlloc
GlobalHandle
WideCharToMultiByte
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
WaitForSingleObject
GetFileAttributesExA
GetFileSizeEx
GetFileTime
GlobalGetAtomNameA
SetThreadPriority
ResumeThread
GetCurrentDirectoryA
GlobalFlags
lstrcpyA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalAddAtomA
lstrcmpW
GlobalFindAtomA
FreeResource
FindResourceA
GetTempFileNameA
GetACP
GetCPInfo
GetOEMCP
GetTickCount
GetProfileIntA
SearchPathA
GetWindowsDirectoryA
GetNumberFormatA
VirtualProtect
FindResourceExW
EncodePointer
DecodePointer
RtlUnwind
RaiseException
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitProcess
SetStdHandle
GetFileType
ExitThread
CreateThread
HeapQueryInformation
HeapSize
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringW
GetStringTypeW
GetStdHandle
SetHandleCount
GetStartupInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
CompareStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA

user32

ToAsciiEx
CopyAcceleratorTableA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateA
MessageBeep
ReleaseCapture
SetCapture
GetSystemMenu
LoadMenuW
SetClassLongA
GetAsyncKeyState
NotifyWinEvent
WindowFromPoint
CreatePopupMenu
DestroyAcceleratorTable
SetParent
RedrawWindow
SetWindowRgn
IsZoomed
IsIconic
OffsetRect
IsRectEmpty
IntersectRect
DestroyMenu
GetMenuItemInfoA
InflateRect
RegisterWindowMessageA
LoadIconW
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcA
GetMenu
SetWindowPos
ShowWindow
MoveWindow
SetWindowLongA
IsWindow
IsDialogMessageA
SendDlgItemMessageA
InsertMenuItemA
GetDlgItem
CheckDlgButton
GetScrollPos
SetScrollPos
SetFocus
MapVirtualKeyA
GetClassInfoA
DefWindowProcA
MapWindowPoints
GetClientRect
LoadCursorW
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoA
GetMonitorInfoA
SetRectEmpty
CopyRect
KillTimer
SetTimer
InvalidateRect
UpdateWindow
RealChildWindowFromPoint
GetWindow
GetDlgCtrlID
GetWindowRect
LoadAcceleratorsA
LoadImageA
GetClassNameA
PtInRect
GetSystemMetrics
CharUpperA
PostQuitMessage
PostMessageA
GetSysColorBrush
SetWindowTextA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
DeleteMenu
ShowOwnedPopups
SetCursor
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
GetWindowTextLengthA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsMenu
MessageBoxA
RemoveMenu
GetSubMenu
GetWindowTextA
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
LoadCursorA
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetRect
SetCursorPos
BringWindowToTop
LockWindowUpdate
DestroyIcon
TranslateAcceleratorA
GetSysColor
ReleaseDC
GetDC
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
GetWindowRgn
DestroyCursor
DrawIcon
MapDialogRect
GetNextDlgGroupItem
HideCaret
InvertRect
SubtractRect
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
GetIconInfo
GetDoubleClickTime
CharUpperBuffA
CopyIcon
RegisterClipboardFormatA
LoadImageW
EmptyClipboard
CloseClipboard
SetClipboardData
CopyImage
OpenClipboard
GetMenuDefaultItem
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
GetUpdateRect
FrameRect
IsClipboardFormatAvailable
SetMenuDefaultItem
WaitMessage
PostThreadMessageA
CreateMenu
GetDesktopWindow

gdi32

SetPixelV
GetTextFaceA
EnumFontFamiliesExA
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Rectangle
SetPixel
StretchBlt
RealizePalette
SetDIBColorTable
GetRgnBox
OffsetRgn
Polygon
Ellipse
Polyline
CreateEllipticRgn
GetTextColor
GetBkColor
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
DPtoLP
PatBlt
CombineRgn
SetRectRgn
GetTextExtentPoint32A
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateFontIndirectA
CreateDIBitmap
CreateHatchBrush
CreateSolidBrush
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
GetObjectA
CreateRectRgn
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
CreateDCA
CopyMetaFileA
GetDeviceCaps

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
RegCloseKey
RegEnumKeyExA
RegDeleteValueA
RegEnumValueA
RegSetValueExA
RegQueryValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegEnumKeyA

shell32

SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHAppBarMessage
DragQueryFileA
DragFinish
SHGetFileInfoA
SHBrowseForFolderA
SHGetPathFromIDListA

comctl32

ImageList_GetIconSize

shlwapi

PathFindFileNameA
PathFindExtensionA
PathIsUNCA
PathStripToRootA
UrlUnescapeA
PathRemoveFileSpecW

ole32

CoInitializeEx
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
OleLockRunning
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoCreateGuid
CoUninitialize
CoInitialize
CoTaskMemFree
CoCreateInstance
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator

oleaut32

VariantClear
VariantChangeType
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
VariantInit
SysAllocString
SysStringLen
SysAllocStringLen
SysFreeString

netapi32

Netbios

wininet

InternetCanonicalizeUrlA
InternetCrackUrlA
InternetReadFile
HttpQueryInfoA
HttpSendRequestA
HttpEndRequestA
InternetWriteFile
HttpSendRequestExA
HttpAddRequestHeadersA
HttpOpenRequestA
InternetCloseHandle
InternetConnectA
InternetOpenA
InternetGetCookieExA
InternetSetOptionA

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

winmm

PlaySoundA

Exports

Exports

??4CPEAS@@QAEAAV0@ABV0@@Z
GETMAC
LOGIN
ONLINE
POST
SETBid
SETUP
SETUPEx
_Test@8
_add@8
_substr@4

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 299KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d001f618d5588d34fbc7fae987056e9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

netapi32

wininet

gdiplus

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 299KB - Virtual size: 298KB

.data Size: 29KB - Virtual size: 83KB

.rsrc Size: 1024B - Virtual size: 848B

.reloc Size: 209KB - Virtual size: 209KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 299KB - Virtual size: 298KB

.data
Size: 29KB - Virtual size: 83KB

.rsrc
Size: 1024B - Virtual size: 848B

.reloc
Size: 209KB - Virtual size: 209KB