83ef6d825e035ea5a6ac06c2b2075c57049394314072816ab03656182580abb0

Sharing

Copy URL Twitter E-mail

General

Target

83ef6d825e035ea5a6ac06c2b2075c57049394314072816ab03656182580abb0
Size

1.2MB
MD5

bc35ad47a98f5c00a1aa0623d1c458e6
SHA1

9e6035aff07c69d80410b6e896ea8674cfc25a27
SHA256

83ef6d825e035ea5a6ac06c2b2075c57049394314072816ab03656182580abb0
SHA512

ef2d2497238f2e4981221166a01a468918faca69a0490d5e63e505f3b18963d5d41c7aab610b285492dc2b85e4d4b55616489c671dbdc849173241902f67df55
SSDEEP

24576:oBPX2wnW2Pn9SlUcXuKaQVDdma+hEEdLer0iBHk3tEddW:oXquKaHa+FokdEfW

Score

N/A

Malware Config

Signatures

Files

83ef6d825e035ea5a6ac06c2b2075c57049394314072816ab03656182580abb0
.exe windows x86

d864c4f9098bf2b52e4799f8d15bf0d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetOpenA
InternetOpenUrlA
InternetCloseHandle
InternetReadFile

psapi

GetProcessImageFileNameW

gdiplus

GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdiplusStartup
GdipGetImageGraphicsContext
GdipDrawImageI
GdipCloneImage
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipBitmapLockBits
GdiplusShutdown
GdipFree

msimg32

GradientFill
AlphaBlend
TransparentBlt

comctl32

_TrackMouseEvent

shlwapi

PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

kernel32

GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
WritePrivateProfileStringW
GlobalFlags
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
TlsGetValue
GetFileSize
DuplicateHandle
GetVolumeInformationW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileTime
SetErrorMode
GetStartupInfoW
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
GetSystemTimeAsFileTime
VirtualProtect
GetSystemInfo
VirtualQuery
ExitProcess
SetStdHandle
GetFileType
HeapSize
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
GetCPInfo
GetOEMCP
LCMapStringA
LCMapStringW
GetTimeFormatA
GetDateFormatA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
CreateFileA
SetEnvironmentVariableA
GetProfileIntW
lstrlenA
InterlockedIncrement
GlobalFindAtomW
CompareStringW
GetModuleHandleA
GlobalGetAtomNameW
FreeResource
GlobalAddAtomW
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
lstrcmpW
GlobalDeleteAtom
InterlockedDecrement
FormatMessageW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
FreeLibrary
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
VirtualFree
VirtualAlloc
GetShortPathNameW
GetEnvironmentVariableW
GetSystemDefaultLangID
GetTimeZoneInformation
CreateFileW
GetFullPathNameW
WideCharToMultiByte
CreateDirectoryW
GetCurrentProcess
GetLogicalDriveStringsW
QueryDosDeviceW
GetCurrentThreadId
GlobalAlloc
GlobalFree
ExitThread
FindFirstFileW
FindNextFileW
FindClose
LocalAlloc
LocalFree
GetTickCount
GetProcessHeap
HeapAlloc
Sleep
HeapFree
CreateToolhelp32Snapshot
OpenProcess
GetCurrentProcessId
Process32NextW
FileTimeToSystemTime
SystemTimeToFileTime
SetLastError
GetProcAddress
GetModuleHandleW
LoadLibraryW
DeleteFileW
GetLocalTime
lstrcpynW
lstrlenW
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
GetModuleFileNameA
CreateMutexW
GetLastError
OpenEventA
SetEvent
CloseHandle
CreateThread
CopyFileW
CreateProcessW
GetModuleFileNameW
GetVersionExW
LoadLibraryA
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
SetEndOfFile

user32

RemovePropW
GetPropW
SetPropW
GetClassLongW
IsChild
SendDlgItemMessageA
GetMenuItemInfoW
CharNextW
EndDialog
CreateDialogIndirectParamW
RegisterClipboardFormatW
GetSysColorBrush
UnregisterClassW
CharUpperW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageW
GetWindowDC
RegisterWindowMessageW
UnpackDDElParam
ReuseDDElParam
WinHelpW
EqualRect
GetMenu
LoadAcceleratorsW
SetActiveWindow
IsIconic
InsertMenuItemW
BringWindowToTop
SetMenu
GetDesktopWindow
TranslateAcceleratorW
SetWindowContextHelpId
MapDialogRect
GetWindowTextLengthW
GetWindowTextW
SetFocus
ShowWindow
MoveWindow
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
GetWindow
IsWindowEnabled
ShowOwnedPopups
GetMessageW
ValidateRect
GetMenuCheckMarkDimensions
LoadBitmapW
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
UnregisterClassA
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
DestroyMenu
LoadMenuW
DestroyCursor
LoadImageW
BeginDeferWindowPos
CreateIconIndirect
TrackPopupMenuEx
DestroyIcon
GetNextDlgTabItem
GetActiveWindow
DrawFocusRect
DrawStateW
ShowScrollBar
SetRectEmpty
GetDoubleClickTime
WindowFromPoint
ClientToScreen
GetScrollInfo
CopyRect
ReleaseCapture
GetCursorPos
GetMessagePos
GrayStringW
DrawTextExW
TabbedTextOutW
IsClipboardFormatAvailable
GetClassInfoW
DefWindowProcW
GetFocus
SetCapture
GetCapture
ScreenToClient
GetWindowRect
InvertRect
IntersectRect
IsWindow
GetKeyState
TranslateMessage
DispatchMessageW
GetParent
DrawFrameControl
OffsetRect
IsRectEmpty
DrawTextW
DrawEdge
FrameRect
InflateRect
SetRect
GetDC
DrawIconEx
ReleaseDC
SystemParametersInfoW
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
GetWindowLongW
SetWindowLongW
SetLayeredWindowAttributes
SetWindowPos
SetWindowsHookExW
GetClassNameW
CallNextHookEx
GetClientRect
MessageBoxW
DrawIcon
FillRect
LoadIconW
GetSysColor
GetForegroundWindow
SetCursor
PtInRect
MessageBoxA
LoadCursorW
EnableWindow
SendMessageW
InvalidateRect
UpdateWindow
SetMenuItemBitmaps
ModifyMenuW
AppendMenuW
DeleteMenu
CreatePopupMenu
GetSystemMetrics
KillTimer
SetTimer
RedrawWindow
EndPaint
BeginPaint
FindWindowW
PostMessageW
PeekMessageW
PostQuitMessage
ExitWindowsEx
IsWindowVisible
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetScrollRange
SetScrollPos
GetScrollPos
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
SetScrollInfo
SystemParametersInfoA
CallWindowProcW
GetIconInfo
GetWindowPlacement
ClipCursor
GetLastActivePopup

gdi32

Escape
GetStockObject
CreateRectRgn
GetViewportOrgEx
GetWindowOrgEx
GetTextMetricsW
Rectangle
RoundRect
BeginPath
EndPath
CreateRectRgnIndirect
GetClipBox
SetDIBColorTable
CopyMetaFileW
SaveDC
RestoreDC
SetBkMode
ExtTextOutW
SetMapMode
LineTo
MoveToEx
SetTextAlign
SetStretchBltMode
SelectClipRgn
SelectClipPath
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
GetTextColor
GetRgnBox
SetDIBitsToDevice
CreateDIBSection
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
TextOutW
RectVisible
PtVisible
EndDoc
AbortDoc
EndPage
StartPage
StartDocW
BitBlt
LPtoDP
DPtoLP
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetBkColor
GetObjectW
CreatePen
GetDeviceCaps
GetTextExtentPoint32W
CreateFontIndirectW
CreateCompatibleBitmap
GetCurrentObject
PatBlt
CreateSolidBrush
CreateFontW
StretchBlt
DeleteObject
GetDIBColorTable
SelectObject
DeleteDC
GetClipRgn
CreateCompatibleDC
ExtSelectClipRgn

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

comdlg32

GetFileTitleW

advapi32

RegQueryValueW
RegEnumKeyW
RegOpenKeyW
GetTokenInformation
LookupPrivilegeValueA
LookupPrivilegeValueW
OpenProcessToken
AdjustTokenPrivileges
RegDeleteKeyW
OpenSCManagerW
StartServiceW
ChangeServiceConfigW
EnumServicesStatusExW
QueryServiceConfigW
QueryServiceConfig2W
EnumDependentServicesW
OpenServiceW
ControlService
QueryServiceStatusEx
CloseServiceHandle
RegEnumValueW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW

shell32

ShellExecuteExW
ShellExecuteA
Shell_NotifyIconW
Shell_NotifyIconA
ShellExecuteW
ExtractIconW
DragQueryFileW
DragFinish
SHGetFolderPathW
SHGetFileInfoW
SHBrowseForFolderW
SHGetPathFromIDListW

ole32

CoTaskMemAlloc
ReleaseStgMedium
CreateStreamOnHGlobal
CoInitialize
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitializeEx
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
CoRegisterMessageFilter
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard

oleaut32

SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayCreateVector
SafeArrayAccessData
VariantTimeToSystemTime
VariantInit
VariantChangeType
VariantCopy
OleCreateFontIndirect
SysAllocString
SystemTimeToVariantTime
SysStringLen
VarUdateFromDate
SafeArrayUnaccessData
SysFreeString
SafeArrayDestroy
VariantClear
SysAllocStringLen

oleacc

CreateStdAccessibleObject
LresultFromObject

oledlg

OleUIBusyW

Sections

.text
Size: 559KB - Virtual size: 558KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 347KB - Virtual size: 347KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d864c4f9098bf2b52e4799f8d15bf0d0

Headers

DLL Characteristics

File Characteristics

Imports

wininet

psapi

gdiplus

msimg32

comctl32

shlwapi

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

oleacc

oledlg

Sections

.text Size: 559KB - Virtual size: 558KB

.rdata Size: 207KB - Virtual size: 206KB

.data Size: 19KB - Virtual size: 44KB

.rsrc Size: 347KB - Virtual size: 347KB

.reloc Size: 61KB - Virtual size: 60KB

.text
Size: 559KB - Virtual size: 558KB

.rdata
Size: 207KB - Virtual size: 206KB

.data
Size: 19KB - Virtual size: 44KB

.rsrc
Size: 347KB - Virtual size: 347KB

.reloc
Size: 61KB - Virtual size: 60KB