46a10d3b01ef56250956cfedec9a8d85662884856576e0ecda8aa563001a47de

Sharing

Copy URL Twitter E-mail

General

Target

46a10d3b01ef56250956cfedec9a8d85662884856576e0ecda8aa563001a47de
Size

3.4MB
MD5

79fc77de86a97694e0aa7840f766301f
SHA1

85521ec90e181e2ff55625f77369c66a77c1f82b
SHA256

46a10d3b01ef56250956cfedec9a8d85662884856576e0ecda8aa563001a47de
SHA512

e32619cb2708edfc5f16634f1cef306f1f3a7893a2b9a74d841ea231c6ab16c865d303ddf179a93857e05effc656be332daeaef0af7929f27b6143caab517a3c
SSDEEP

49152:PUxgVe2w03FDSD9wjpITP/Gnff2XGCn5VgTXV4hlyrO:PqLn0Fawk4fWxn5IV4hQr

Score

N/A

Malware Config

Signatures

Files

46a10d3b01ef56250956cfedec9a8d85662884856576e0ecda8aa563001a47de
.exe windows x86

0c8b7f107f920950ea91ab78e7b4cf78

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHAutoComplete

winmm

waveInReset
PlaySoundA
waveOutClose
waveOutUnprepareHeader
waveOutReset
waveInClose
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInAddBuffer
waveInStart
waveOutWrite
waveInStop
waveInUnprepareHeader

kernel32

CompareStringA
CompareStringW
SetEnvironmentVariableA
GetDriveTypeA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
SetStdHandle
HeapSize
GetACP
TerminateProcess
GetLocalTime
GetSystemTime
GetTimeZoneInformation
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapReAlloc
ExitThread
RaiseException
RtlUnwind
GetCurrentDirectoryA
SetErrorMode
SetFileAttributesA
SystemTimeToFileTime
LocalFileTimeToFileTime
GetOEMCP
GetCPInfo
GetProcessVersion
GetProfileIntA
GetProfileStringA
GetTempPathA
GetPrivateProfileSectionNamesA
EnumResourceLanguagesA
EnumResourceTypesA
EnumResourceNamesA
GetExitCodeThread
ResetEvent
CreateEventA
TlsGetValue
CloseHandle
TerminateThread
WaitForSingleObject
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GlobalFlags
MulDiv
SetLastError
SetEvent
ResumeThread
CreateThread
Sleep
VirtualFree
VirtualAlloc
GetVolumeInformationA
GetComputerNameA
GetTickCount
DeleteFileA
WriteFile
lstrlenA
SetFilePointer
CreateFileA
EndUpdateResourceA
BeginUpdateResourceA
CopyFileA
ReadFile
GetFileSize
GetFileAttributesA
lstrcatA
GetModuleFileNameA
GetProcAddress
LoadLibraryA
SetUnhandledExceptionFilter
FreeResource
SizeofResource
LoadResource
FindResourceA
lstrcpyA
LocalAlloc
LocalFree
GetDiskFreeSpaceExA
IsBadCodePtr
GetLogicalDriveStringsA
lstrcpynA
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetTempFileNameA
SetThreadPriority
GetCurrentThread
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
FormatMessageA
MultiByteToWideChar
GetVersion
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
LockResource
lstrcmpA
LocalSize
LocalReAlloc
WideCharToMultiByte
GlobalSize
GlobalFree
FreeLibrary
IsBadReadPtr
VirtualProtect
GlobalAlloc
GlobalLock
GlobalUnlock
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
DeleteCriticalSection
CancelIo
InterlockedExchange
InterlockedIncrement
InterlockedDecrement
GetQueuedCompletionStatus
CreateIoCompletionPort
GetSystemInfo
PostQueuedCompletionStatus
HeapFree
FindClose
InitializeCriticalSection
GetProcessHeap
HeapAlloc
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateDirectoryA
GetLastError
MoveFileA
RemoveDirectoryA
FindFirstFileA
FindNextFileA

user32

GetWindowDC
LoadStringA
IsZoomed
IsRectEmpty
FillRect
FindWindowA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
DestroyMenu
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
MapDialogRect
SetWindowContextHelpId
ValidateRect
ShowOwnedPopups
PostQuitMessage
CharUpperA
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
SetMenuItemBitmaps
ShowWindow
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
SetTimer
KillTimer
DispatchMessageA
TranslateMessage
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
GetClassNameA
GetDialogBaseUnits
GetSysColorBrush
DestroyIcon
CopyAcceleratorTableA
GetNextDlgGroupItem
GetDCEx
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
LockWindowUpdate
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetMessageA
LoadIconA
SendMessageA
EnableWindow
RegisterWindowMessageA
UpdateWindow
InvalidateRect
SetRect
wsprintfA
MessageBoxA
GetCursorPos
PtInRect
GetSubMenu
LoadMenuA
PostMessageA
GetWindowRect
LoadImageA
LoadCursorA
SetCursor
ReleaseCapture
SetWindowPos
GetDlgCtrlID
CharNextA
DeleteMenu
EnableMenuItem
GetMenuItemCount
GetClientRect
ClientToScreen
ScreenToClient
IsWindowVisible
SetCapture
GetFocus
GetWindow
GetParent
WindowFromPoint
GetSystemMetrics
MessageBeep
RegisterClipboardFormatA
SetParent
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
InvertRect
PostThreadMessageA
CopyRect
InflateRect
OffsetRect
UnregisterClassA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
DefFrameProcA
ExcludeUpdateRgn
DefDlgProcA
GetTabbedTextExtentA
GetClipboardFormatNameA
GetAsyncKeyState
SendMessageTimeoutA
IsWindowUnicode
GetWindowLongW
SetWindowLongW
GetDoubleClickTime
SetCursorPos
GetMenuDefaultItem
GetMenuStringW
LookupIconIdFromDirectoryEx
SetWindowRgn
GetCursor
GetKeyboardLayoutList
GetKeyboardState
ToAsciiEx
GetKeyboardLayout
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
GetWindowRgn
IsMenu
GetMenuItemInfoA
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
InsertMenuA
GetMenuStringA
CreateMenu
GetKeyState
ShowScrollBar
GetSystemMenu
CheckMenuRadioItem
GetMenuState
CopyIcon
CreateIconIndirect
CreateIconFromResourceEx
DrawFrameControl
CreatePopupMenu
UnionRect
DrawAnimatedRects
EnumChildWindows
SetMenuDefaultItem
WaitMessage
MapVirtualKeyA
DrawFocusRect
DrawStateA
HideCaret
ShowCaret
DrawEdge
IsClipboardFormatAvailable
CloseClipboard
SetClipboardData
EmptyClipboard
RedrawWindow
OpenClipboard
GetDesktopWindow
SetWindowLongA
GetWindowLongA
DestroyCursor
SetClassLongA
ReleaseDC
GetDC
GetIconInfo
IntersectRect
DrawIconEx
DrawTextA
GetClipboardData
AppendMenuA
CheckMenuItem

gdi32

SelectObject
DeleteObject
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
GetClipRgn
CreateRectRgn
ExtSelectClipRgn
CreateDIBSection
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
CreatePatternBrush
CreateCompatibleDC
RectVisible
Escape
CreateFontIndirectA
CopyMetaFileA
GetTextColor
GetBkColor
GetMapMode
SetRectRgn
CombineRgn
StretchDIBits
BitBlt
ExtTextOutA
SetTextColor
SetBkColor
CreateSolidBrush
GetObjectA
TextOutA
SetBkMode
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
GetClipBox
CreateBitmap
LPtoDP
DPtoLP
PatBlt
CreateRectRgnIndirect
GetTextExtentPoint32A
GetTextMetricsA
DeleteDC
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
SaveDC
RestoreDC
GetStockObject
SetPolyFillMode
Polygon
GetWindowOrgEx
GetTextAlign
Rectangle
SetPixel
GetPixel
GetCurrentObject
StretchBlt
GetDIBits
PtInRegion
EnumFontFamiliesExA
GetBitmapBits
ExtCreateRegion
GetRgnBox
CreatePolygonRgn
RoundRect
Polyline
GetViewportOrgEx
ExtFloodFill
Ellipse
SetBrushOrgEx
StrokePath
FillPath
StrokeAndFillPath
EndPath
CloseFigure
BeginPath
GetTextExtentPoint32W
ExtTextOutW
GetTextExtentPointA
CreateDIBitmap
PtVisible
PolyBezierTo
SetWindowOrgEx

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA
ChooseColorA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegSetValueA
RegOpenKeyExA
GetFileSecurityA
SetFileSecurityA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyA
RegCloseKey
RegQueryValueExA

shell32

SHGetSpecialFolderLocation
SHGetMalloc
ExtractIconA
SHGetPathFromIDListA
DragQueryFileA
DragFinish
Shell_NotifyIconA
ShellExecuteA
ord71
SHGetFileInfoA
SHAppBarMessage

comctl32

_TrackMouseEvent
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ord17
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Remove
ImageList_GetImageInfo
ImageList_Add
ImageList_DrawEx
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Draw

oledlg

ord1
ord8

ole32

CoTaskMemFree
CoTaskMemAlloc
OleDuplicateData
CoDisconnectObject
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoUninitialize
CoInitialize
ReleaseStgMedium
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleRun
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard

olepro32

ord253

oleaut32

SafeArrayGetElemsize
SafeArrayGetDim
VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
SysStringByteLen
VarDateFromStr
VarBstrFromDate
SafeArrayGetLBound
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen
LoadTypeLi
SafeArrayAccessData
SafeArrayUnaccessData
OleLoadPicturePath
VariantChangeTypeEx
SafeArrayGetUBound

skinh

SkinH_AttachRes
SkinH_AdjustHSV

ws2_32

WSAIoctl
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
WSASocketA
WSAGetLastError
WSACreateEvent
WSAEventSelect
htons
bind
WSASend
WSACleanup
WSAStartup
gethostname
setsockopt
closesocket
getpeername
inet_ntoa
WSACloseEvent
send
ioctlsocket
recv
__WSAFDIsSet
select
connect
inet_addr
ntohs
getsockname
accept
socket
gethostbyname
WSARecv
listen

pdh

PdhAddCounterA
PdhOpenQueryA
PdhGetFormattedCounterValue
PdhCollectQueryData
PdhCloseQuery

avifil32

AVIFileExit
AVIStreamRelease
AVIFileRelease
AVIStreamSetFormat
AVIStreamWrite
AVIFileOpenA
AVIFileCreateStreamA
AVIFileInit

msvfw32

DrawDibOpen
DrawDibClose
DrawDibDraw

wininet

InternetGetLastResponseInfoA
InternetOpenA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenUrlA
InternetCloseHandle
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetGetConnectedState

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rotext
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 188KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 852KB - Virtual size: 852KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c8b7f107f920950ea91ab78e7b4cf78

Headers

File Characteristics

Imports

shlwapi

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

skinh

ws2_32

pdh

avifil32

msvfw32

wininet

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rodata Size: 12KB - Virtual size: 11KB

.rotext Size: 112KB - Virtual size: 108KB

.rdata Size: 320KB - Virtual size: 318KB

.data Size: 188KB - Virtual size: 640KB

.rsrc Size: 852KB - Virtual size: 852KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rodata
Size: 12KB - Virtual size: 11KB

.rotext
Size: 112KB - Virtual size: 108KB

.rdata
Size: 320KB - Virtual size: 318KB

.data
Size: 188KB - Virtual size: 640KB

.rsrc
Size: 852KB - Virtual size: 852KB