ad167ec592c849182304bc2c9abac6182c534d206edcaa0a46c6b2306d2df2a9

Sharing

Copy URL Twitter E-mail

General

Target

ad167ec592c849182304bc2c9abac6182c534d206edcaa0a46c6b2306d2df2a9
Size

2.7MB
MD5

f0761c2cb5df202292e22e595566291b
SHA1

e3b2a3b5c6fcb45ffbaf3f2b288d35c23efcd332
SHA256

ad167ec592c849182304bc2c9abac6182c534d206edcaa0a46c6b2306d2df2a9
SHA512

f6ded4c1cdd45caf7b9f113283218cf1bd1f89996c2b8e7f759abd445bf5b2f28bd1ad4bccd9836c053bf4bdfd2ec4aca074de425dc3a250e2aa3ded9c30539d
SSDEEP

24576:kjtYWgZWmFryIq65B3J1ex2CaUEvZ+4ZuCeO3Em0x1lzF0E6sKI/olTHLHhAJSQy:ke44yIq65BNZ+wAdYMmU5M9TT

Score

N/A

Malware Config

Signatures

Files

ad167ec592c849182304bc2c9abac6182c534d206edcaa0a46c6b2306d2df2a9
.exe windows x86

29df21ed432b83c645a09256a06f76d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend

kernel32

HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
CompareStringA
GetFileType
GetCurrentDirectoryA
IsBadReadPtr
IsBadCodePtr
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
CreateFileA
GetACP
GetOEMCP
SetEnvironmentVariableA
GetDriveTypeA
SetStdHandle
ExitThread
FindResourceA
GlobalAddAtomA
GetProfileStringA
InterlockedExchange
HeapReAlloc
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapAlloc
RaiseException
HeapFree
RtlUnwind
GetStartupInfoW
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
FindResourceExW
GetCurrentDirectoryW
GetProfileIntW
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetProcessVersion
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetVolumeInformationW
UnlockFile
LockFile
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalGetAtomNameW
GetDiskFreeSpaceW
GetFileTime
SetFileTime
GetFullPathNameW
GetTempFileNameW
GetFileAttributesW
MulDiv
FindNextFileW
SetLastError
GetModuleHandleA
LoadLibraryA
FindResourceW
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
lstrcpyW
InterlockedDecrement
InterlockedIncrement
SuspendThread
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
lstrlenA
ExitProcess
SizeofResource
LoadResource
LockResource
GlobalSize
TerminateThread
FlushFileBuffers
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
GetFileSize
SetCurrentDirectoryW
GlobalFree
CopyFileW
SetThreadPriority
CreateEventW
CreateThread
WaitForMultipleObjects
SetEvent
GetDriveTypeW
ResumeThread
WritePrivateProfileStringW
GetPrivateProfileIntW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetWindowsDirectoryW
CreateProcessW
OpenProcess
TerminateProcess
WaitForSingleObject
GetExitCodeProcess
MultiByteToWideChar
WideCharToMultiByte
GetPrivateProfileStringW
Sleep
GetTempPathW
CreateDirectoryW
FindFirstFileW
FindClose
GetShortPathNameW
GetCurrentProcess
GetLocaleInfoW
GetNumberFormatW
FormatMessageW
LocalFree
MoveFileW
DeleteFileW
GlobalAlloc
GetModuleHandleW
GetModuleFileNameW
lstrlenW
GetVersionExW
lstrcpynW
GlobalLock
GlobalUnlock
LoadLibraryW
GetProcAddress
FreeLibrary
lstrcmpW
GetTickCount
CreateMutexW
GetLastError
CreateFileW
CloseHandle
CompareStringW

user32

GetDlgItem
GetWindowTextLengthW
DestroyWindow
CreateWindowExW
UnhookWindowsHookEx
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
IntersectRect
SystemParametersInfoW
GetWindowPlacement
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetActiveWindow
CallNextHookEx
ValidateRect
SetWindowsHookExW
MessageBoxW
ShowOwnedPopups
PostQuitMessage
DrawAnimatedRects
SetMenu
DestroyMenu
DrawIconEx
FrameRect
FillRect
RemovePropW
CallWindowProcW
SetPropW
GetMenuDefaultItem
BeginDeferWindowPos
EndDeferWindowPos
AppendMenuW
CreatePopupMenu
GetCursorPos
GetSystemMenu
FindWindowW
PeekMessageW
MsgWaitForMultipleObjects
IsWindowUnicode
GetMessageW
TranslateMessage
DispatchMessageW
GetMenuStringW
InsertMenuW
ExitWindowsEx
EmptyClipboard
SetClipboardData
FindWindowExW
GetWindowLongW
SetWindowLongW
GetWindowTextW
ScreenToClient
GetDlgCtrlID
SetWindowPos
GetMenu
GetMenuItemCount
GetMenuItemID
DrawFrameControl
SetClassLongW
IsWindowEnabled
SetFocus
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
GetDC
SendMessageW
TrackPopupMenu
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
ReleaseDC
DrawFocusRect
GetSysColor
KillTimer
SetTimer
CheckMenuRadioItem
DeleteMenu
SetCursor
SetCapture
GetCapture
ReleaseCapture
GetFocus
GetParent
ClientToScreen
PtInRect
TrackPopupMenuEx
InflateRect
OffsetRect
MessageBeep
DeferWindowPos
GetNextDlgGroupItem
CopyAcceleratorTableW
SetParent
SetWindowContextHelpId
CharNextW
LockWindowUpdate
GetDCEx
PostThreadMessageW
GetClassNameW
GetSysColorBrush
IsWindow
InvalidateRect
GrayStringW
DrawTextW
TabbedTextOutW
CopyRect
LoadMenuW
GetSubMenu
SetMenuDefaultItem
GetWindowRect
DestroyIcon
LoadIconW
LoadImageW
DestroyCursor
LoadBitmapW
LoadCursorW
GetKeyState
GetClientRect
GetSystemMetrics
EnableWindow
GetDesktopWindow
GetWindow
GetPropW
SetForegroundWindow
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
UpdateWindow
GetLastActivePopup
IsWindowVisible
IsIconic
RegisterClassW
GetClassInfoW
wsprintfW
WinHelpW
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
PostMessageW
GetScrollInfo
CharUpperW
LoadStringW
SetRect
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
TranslateAcceleratorW
LoadAcceleratorsW
SetRectEmpty
EndPaint
BeginPaint
GetWindowDC
WindowFromPoint
wvsprintfW
EndDialog
CreateDialogIndirectParamW
MapDialogRect
GetAsyncKeyState
RegisterClipboardFormatW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
ScrollWindow
SetDlgItemTextW
SetDlgItemInt
GetDlgItemInt
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
SetActiveWindow
AdjustWindowRectEx
EqualRect
RegisterWindowMessageW
IsDlgButtonChecked

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
CreateRectRgn
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
SetRectRgn
DPtoLP
GetTextMetricsW
LPtoDP
EnumFontFamiliesExW
CopyMetaFileW
CombineRgn
SetTextColor
SetBkMode
CreateBitmap
SetBkColor
SaveDC
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
RestoreDC
CreateDIBSection
DeleteDC
PatBlt
SelectObject
DeleteObject
CreateSolidBrush
GetBkMode
GetMapMode
GetTextExtentPoint32W
GetTextColor
GetBkColor
GetCurrentObject
BitBlt
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetObjectW
CreateDIBitmap
ExtTextOutA
GetTextExtentPointA
CreateFontIndirectW

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegCloseKey
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegQueryValueW
RegCreateKeyW
RegSetValueW
RegEnumKeyW
RegOpenKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegDeleteValueW
SetFileSecurityW
GetFileSecurityW
RegOpenKeyExW

shell32

DragAcceptFiles
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
SHGetFileInfoW
ExtractIconW
SHFileOperationW
Shell_NotifyIconW
SHGetDesktopFolder
SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW
ShellExecuteW
DragFinish

comctl32

ImageList_BeginDrag
_TrackMouseEvent
ImageList_DragEnter
ImageList_Draw
ImageList_AddMasked
ImageList_DragLeave
ImageList_DragMove
ImageList_EndDrag
ord17
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_Destroy
ImageList_Create
ImageList_DrawIndirect
ImageList_GetImageInfo

oledlg

OleUIBusyW

ole32

CoRevokeClassObject
StgOpenStorageOnILockBytes
OleFlushClipboard
CreateILockBytesOnHGlobal
CoGetClassObject
CoRegisterMessageFilter
OleGetClipboard
ReleaseStgMedium
CoTaskMemFree
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoInitialize
CoCreateInstance
CoUninitialize
CoCreateGuid
OleIsCurrentClipboard
CLSIDFromProgID
CLSIDFromString
OleDuplicateData
StgCreateDocfileOnILockBytes
CoTaskMemAlloc

olepro32

ord253

oleaut32

VariantChangeType
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
VariantClear
SysAllocString
SysFreeString
SysStringLen
VariantTimeToSystemTime

shlwapi

PathFileExistsW
PathFindFileNameW
PathIsURLW
PathFindExtensionW
PathRemoveFileSpecW
PathGetCharTypeW
PathMakePrettyW
PathIsFileSpecW
PathIsDirectoryW

winmm

timeSetEvent
timeKillEvent

wininet

HttpQueryInfoW
InternetOpenW
InternetConnectW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpSendRequestW
InternetReadFile
InternetGetConnectedState
InternetCloseHandle
InternetQueryOptionW
InternetSetOptionW
InternetCrackUrlW

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 232KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 804KB - Virtual size: 825KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 328KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29df21ed432b83c645a09256a06f76d3

Headers

File Characteristics

Imports

msimg32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

shlwapi

winmm

wininet

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 232KB - Virtual size: 228KB

.data Size: 804KB - Virtual size: 825KB

.rsrc Size: 328KB - Virtual size: 325KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 232KB - Virtual size: 228KB

.data
Size: 804KB - Virtual size: 825KB

.rsrc
Size: 328KB - Virtual size: 325KB