80f85bc72c354c04c8862c13999fc19860c78ba62f62d1cbf94225350c10444b

Sharing

Copy URL Twitter E-mail

General

Target

80f85bc72c354c04c8862c13999fc19860c78ba62f62d1cbf94225350c10444b
Size

836KB
MD5

c40c1f823a756b3b28789bd3cbafddf3
SHA1

f10e42c24a62e18173dc6255b296e72e265fe343
SHA256

80f85bc72c354c04c8862c13999fc19860c78ba62f62d1cbf94225350c10444b
SHA512

eb79b5dd6347bd88f8f903987536db6ca22ab584fbca7a6f339db69c15c8637c484b584bfd1bf58c309e56982ec1ffbb65dca476dc9137b5d8b0c5ab87996822
SSDEEP

24576:ILB7wj+0owHpBIQhvQNRtZPo9DDxNMcV:kFa+0oAne5aD7V

Score

N/A

Malware Config

Signatures

Files

80f85bc72c354c04c8862c13999fc19860c78ba62f62d1cbf94225350c10444b
.exe windows x86

1c0ed89b466e8db3e6cabbe5f3c8da4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

LoadTypeLi

advapi32

RegCloseKey
RegQueryValueW
RegisterServiceCtrlHandlerA
RegEnumKeyExA
RegQueryValueExA
OpenProcessToken
RegOpenKeyA
ReportEventA
FreeSid
CloseServiceHandle
SetSecurityDescriptorOwner
CryptReleaseContext
StartServiceCtrlDispatcherA
GetSidSubAuthority
RegSetValueExA
EqualSid
RegCreateKeyA
RegCreateKeyExA
IsValidSecurityDescriptor
StartServiceA
GetLengthSid
RegCreateKeyExW
InitializeAcl
ReportEventW
GetTokenInformation
RegQueryInfoKeyW
RegSetValueExW
RegEnumValueW
GetUserNameA
SetServiceStatus
CreateServiceA
RegQueryValueA
SetSecurityDescriptorDacl
RegOpenKeyExW
RegQueryValueExW
OpenServiceA
DeleteService
CopySid
RegEnumKeyExW
RegDeleteKeyW
CryptDestroyHash
OpenThreadToken
ControlService
RegEnumKeyA
RegDeleteValueA
OpenSCManagerA
InitializeSecurityDescriptor
DuplicateToken
RegisterEventSourceA
GetSidIdentifierAuthority
SetSecurityDescriptorGroup
RegSetValueA
RegEnumValueA
RegDeleteValueW
RegSetValueW
RegOpenKeyExA
AdjustTokenPrivileges
DeleteAce
AccessCheck
LookupPrivilegeValueA
AllocateAndInitializeSid
RegDeleteKeyA

rpcrt4

RpcStringFreeA
UuidCreate
UuidCreateSequential
UuidToStringA

comctl32

CreatePropertySheetPageA
ImageList_SetBkColor
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_DrawEx
DestroyPropertySheetPage
ImageList_DragMove
ImageList_GetImageCount
ImageList_EndDrag
ImageList_Create
ImageList_GetBkColor
ImageList_DragEnter
ImageList_Draw
ImageList_Remove
ImageList_Read
ImageList_GetImageInfo
PropertySheetA
InitCommonControlsEx
ImageList_Destroy
ImageList_Replace
ImageList_DragShowNolock
ImageList_LoadImageW
_TrackMouseEvent
ImageList_SetImageCount
ord17
ImageList_SetOverlayImage
ImageList_DragLeave
PropertySheetW
ImageList_Write
ImageList_GetIcon
ImageList_LoadImageA
ImageList_Add

kernel32

CreateEventW
DebugBreak
TerminateThread
GetTimeFormatA
SetFileAttributesW
CreateDirectoryA
DeleteFileA
IsValidLocale
WritePrivateProfileStringA
GlobalAlloc
SetThreadPriority
IsBadCodePtr
SetLastError
GlobalFree
TlsSetValue
MulDiv
SetHandleCount
WideCharToMultiByte
GetTimeZoneInformation
GetCurrentThread
SetCurrentDirectoryW
FindResourceA
FindFirstFileA
GetTickCount
GlobalUnlock
HeapFree
GetUserDefaultLCID
GlobalSize
GetStartupInfoW
OpenProcess
WriteFile
FileTimeToLocalFileTime
LoadLibraryExA
VirtualProtect
GetModuleFileNameW
InterlockedCompareExchange
lstrcmpA
RtlUnwind
ExitProcess
GlobalHandle
GetModuleFileNameA
Sleep
WriteConsoleA
TlsAlloc
lstrcpynA
MultiByteToWideChar
LocalLock
GetCommandLineA
SetConsoleCtrlHandler
GetStringTypeW
TlsFree
ConvertDefaultLocale
LoadLibraryW
VirtualFree
GetComputerNameW
QueryPerformanceCounter
GetConsoleOutputCP
GetSystemInfo
WinExec
lstrcatA
WriteConsoleW
SetEvent
GetStartupInfoA
GetCurrentProcess
TerminateProcess
OutputDebugStringA
GetFullPathNameA
SetUnhandledExceptionFilter
MapViewOfFile
HeapDestroy
GetCurrentDirectoryA
MoveFileW
GetCPInfo
WriteProcessMemory
LocalAlloc
EnumResourceLanguagesW
DeleteCriticalSection
LCMapStringA
lstrcpyA
lstrcmpW
HeapReAlloc
SuspendThread
GetVersionExA
GlobalDeleteAtom
SizeofResource
UnmapViewOfFile
SetErrorMode
TlsGetValue
GetACP
CopyFileW
GetSystemDirectoryA
lstrcmpiW
InterlockedIncrement
HeapCreate
GetModuleHandleA
SetStdHandle
GetCommandLineW
CompareStringA
CreatePipe
GetEnvironmentStringsW
LockFile
FindFirstFileW
ReadFile
CreateDirectoryW
EnumResourceLanguagesA
RemoveDirectoryA
lstrlenW
GetVersion
GetFileSize
MoveFileExA
GetConsoleCP
InitializeCriticalSection
HeapSize
GetLocalTime
GetShortPathNameA
ReadProcessMemory
GetStringTypeA
IsValidCodePage
ReleaseSemaphore
GetCurrentThreadId
lstrlenA
GetExitCodeThread
FreeLibrary
LoadResource
GlobalLock
GetEnvironmentStrings
GetTimeFormatW
GlobalGetAtomNameA
GetDriveTypeA
SetEndOfFile
GlobalFindAtomA
CreateMutexA
UnlockFile
FormatMessageA
CreateEventA
OpenMutexA
InterlockedDecrement
CreateProcessA
GetComputerNameA
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
EnterCriticalSection
SetFilePointer
HeapAlloc
FormatMessageW
GetProfileStringA
GetCurrentDirectoryW
QueryPerformanceFrequency
GetWindowsDirectoryA
LoadLibraryExW
GetStdHandle
GetFileTime
FreeEnvironmentStringsW
lstrcmpiA
Beep
GetFileType
VirtualQuery
GetProcAddress
WritePrivateProfileStringW
GlobalAddAtomA
FatalAppExitA
IsBadWritePtr
FlushFileBuffers
VirtualAlloc
GetProcessHeap
RaiseException
GetTempPathW
GetLocaleInfoW
LocalFileTimeToFileTime
IsDBCSLeadByte
MoveFileA
InterlockedExchange
DeleteFileW
LCMapStringW
CreateThread
GetOEMCP
LoadLibraryA
CreateProcessW
GetDateFormatA
GetConsoleMode
CloseHandle
SetEnvironmentVariableA
SetFileAttributesA
GetPrivateProfileIntA
FreeResource
GetLastError
CreateFileA
FindClose
CreateFileW
EnumSystemLocalesA
IsBadReadPtr
CompareStringW
GlobalAddAtomW
IsDebuggerPresent
ResetEvent
WaitForMultipleObjects
UnhandledExceptionFilter
GetTempFileNameA
GetFileAttributesA
GetCurrentProcessId
LocalFree
LeaveCriticalSection
GetLocaleInfoA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
VerQueryValueA

ole32

OleSave
StgCreateDocfile
ReleaseStgMedium
CoGetClassObject
OleDestroyMenuDescriptor
OleIsCurrentClipboard
CreateBindCtx
OleLoadFromStream
OleTranslateAccelerator
CoGetMalloc
WriteFmtUserTypeStg
OleRun
WriteClassStg
StgOpenStorageOnILockBytes
CreateItemMoniker
OleFlushClipboard
SetConvertStg
IsAccelerator
CoRevokeClassObject
CLSIDFromProgID
CoMarshalInterThreadInterfaceInStream
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
StringFromGUID2
CreateOleAdviseHolder
StgOpenStorage
StgCreateDocfileOnILockBytes
CoDisconnectObject
RegisterDragDrop
OleSetClipboard
CoFreeUnusedLibraries
OleSaveToStream
OleCreateFromData
WriteClassStm
CoLockObjectExternal
CoInitialize
OleCreate
CoTaskMemAlloc
OleGetClipboard
CoTaskMemFree
OleCreateMenuDescriptor
CoUnmarshalInterface
CoTaskMemRealloc
OleCreateLinkFromData
OleDuplicateData
GetClassFile
DoDragDrop
GetHGlobalFromILockBytes
CreateFileMoniker
OleCreateLinkToFile
OleIsRunning
StgIsStorageFile
CoRegisterClassObject
CreateStreamOnHGlobal
CoCreateGuid
ReadClassStg
StringFromCLSID
StgIsStorageILockBytes
OleSetMenuDescriptor
OleLoad
OleLockRunning
OleUninitialize
OleInitialize
OleCreateFromFile
CLSIDFromString
OleGetIconOfClass
OleCreateStaticFromData
OleRegGetUserType
CoCreateInstance
ReadFmtUserTypeStg
CoUninitialize
OleSetContainedObject

user32

GetMessagePos
SetRectEmpty
RemovePropA
PtInRect
EnableMenuItem
WinHelpW
GetPropW
SetClipboardViewer
GetClassNameW
MessageBeep
SetCursor
InvalidateRect
GetKeyState
ClientToScreen
SetMenu
SetMenuItemBitmaps
SetWindowContextHelpId
LoadBitmapA
EmptyClipboard
GetScrollRange
SetParent
GetSysColor
TrackPopupMenu
DestroyCursor
GetCursorPos
AdjustWindowRectEx
ScrollWindowEx
LockWindowUpdate
IsRectEmpty
MoveWindow
CreateCaret
MessageBoxA
WindowFromPoint
GetDlgItem
SetScrollPos
SetScrollRange
CloseWindow
UpdateWindow
CreateDialogIndirectParamA
PostQuitMessage
GetDC
GetWindowTextLengthA
ReleaseCapture
SetCaretPos
SetMenuInfo
GetMenuDefaultItem
RemoveMenu
GetMenu
GetWindowLongA
ShowWindow
MessageBoxW
EndDialog
GetMessageA
LoadMenuA
GetTopWindow
SetWindowTextW
DrawTextA
LoadIconA
EnumWindows
SetCapture
GetWindowTextW
ExitWindowsEx
GetScrollInfo
SetWindowsHookExW
RegisterClassExW
SetWindowPos
DrawMenuBar
GetSystemMenu
GetSubMenu
GetClientRect
SetClipboardData
CreateWindowExW
InsertMenuW
SendDlgItemMessageA
CreatePopupMenu
RegisterWindowMessageA
GetClassNameA
GetSystemMetrics
GetClassInfoW
GetMenuCheckMarkDimensions
GetClassLongA
CopyAcceleratorTableW
EndDeferWindowPos
RegisterClipboardFormatA
AttachThreadInput
GetDlgCtrlID
ScrollWindow
PostThreadMessageA
IsClipboardFormatAvailable
GetTabbedTextExtentA
UnregisterHotKey
SendMessageW
IsDialogMessageA
GetFocus
SetWindowTextA
IsWindowUnicode
CountClipboardFormats
ChangeClipboardChain
UnpackDDElParam
SetTimer
UnionRect
GetClassLongW
GetDCEx
GetWindowTextA
GetWindow
CallNextHookEx
IsWindowVisible
FindWindowW
SetScrollInfo
EnumClipboardFormats
GetWindowPlacement
SetClassLongW
PostMessageA
IsWindow
GetAsyncKeyState
EqualRect
CallWindowProcW
CopyAcceleratorTableA
SetPropA
SetRect
SendDlgItemMessageW
InsertMenuItemA
LoadCursorA
LoadImageA
RedrawWindow
ModifyMenuA
DdeGetData
GetLastActivePopup
SendMessageA
LoadBitmapW
GetDesktopWindow
LoadCursorW
GetClipboardFormatNameA
GetWindowRect
GetPropA
DefWindowProcW
DestroyIcon
MapVirtualKeyW
GetWindowTextLengthW
GetDialogBaseUnits
BringWindowToTop
InsertMenuA
DdeGetLastError
EnableWindow
TranslateAcceleratorA
OffsetRect
CheckDlgButton
CreateMenu
CreateWindowExA
GetMenuItemID
CallWindowProcA
LoadMenuW
GetClassInfoExA
SetFocus
ReleaseDC
GetCursor
DefDlgProcA
FrameRect
GetNextDlgGroupItem
CopyIcon
SetCursorPos
SetPropW
RemovePropW
LoadStringW
DrawFocusRect
UnhookWindowsHookEx
DeferWindowPos
DrawEdge
CreateDialogParamW
LoadStringA
CheckMenuRadioItem
LoadAcceleratorsA
SetActiveWindow
RegisterClassA
wsprintfA
InvalidateRgn
CreateAcceleratorTableW
UnregisterClassA
IntersectRect
WinHelpA
CopyRect
GetParent
GetActiveWindow
DrawIcon
DrawStateA
GetCaretPos
GetClassInfoA
CheckMenuItem
IsIconic
InvertRect
SetWindowLongW
ReuseDDElParam
IsWindowEnabled
AppendMenuA
GetMenuItemCount
GetForegroundWindow
DestroyMenu
OpenClipboard
GetSysColorBrush
DdeConnect
ToAsciiEx
DrawTextExW
IsMenu
UnregisterClassW
GrayStringA
IsChild
GetMessageTime
CharNextA
IsDialogMessageW
DrawIconEx
CloseClipboard
SetForegroundWindow
ScreenToClient
TranslateMessage
GetCapture
FillRect
InsertMenuItemW
GetNextDlgTabItem
CreateIconIndirect
GetMessageW
DefWindowProcA
DispatchMessageA
RegisterClassExA
RegisterWindowMessageW
SystemParametersInfoA
InflateRect
SetMenuItemInfoW
PeekMessageW
SetWindowPlacement
MapWindowPoints
IsZoomed
DestroyWindow
BeginDeferWindowPos
DdeCreateStringHandleA
FindWindowA
AppendMenuW
SetWindowLongA
GetMenuState
KillTimer
SetWindowRgn
TabbedTextOutA
GetWindowThreadProcessId
LoadAcceleratorsW
GetWindowDC

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 463KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c0ed89b466e8db3e6cabbe5f3c8da4b

Headers

File Characteristics

Imports

oleaut32

advapi32

rpcrt4

comctl32

kernel32

version

ole32

user32

Sections

.text Size: 100KB - Virtual size: 97KB

.rdata Size: 464KB - Virtual size: 463KB

.data Size: 144KB - Virtual size: 145KB

.rsrc Size: 124KB - Virtual size: 120KB

.text
Size: 100KB - Virtual size: 97KB

.rdata
Size: 464KB - Virtual size: 463KB

.data
Size: 144KB - Virtual size: 145KB

.rsrc
Size: 124KB - Virtual size: 120KB