96eb7d8ec08a56b1511db598e3df25fb28ff3479ff0e6640cd35b22ca292837e

Sharing

Copy URL Twitter E-mail

General

Target

96eb7d8ec08a56b1511db598e3df25fb28ff3479ff0e6640cd35b22ca292837e
Size

299KB
MD5

07e0954fc4ba8f91c5be72f47ef1a1b6
SHA1

35716d0ab244332369f1e20f29c1953a29a00203
SHA256

96eb7d8ec08a56b1511db598e3df25fb28ff3479ff0e6640cd35b22ca292837e
SHA512

38838a80331cbd7363e458b60c0d4800b52c4846e17cfdcfe7dfb771f24e83c0ff1cca84910555306d3e22cad54891e4abbf34db36e7e12e6af5b4f180a02024
SSDEEP

6144:yL50D/i5L0Aappw9aspBRhg3h9QBeE8lyE4F2Ee4XKbpNeYBlF:s0Li5L5appwBXhKh+t2hs3RgpNhL

Score

N/A

Malware Config

Signatures

Files

96eb7d8ec08a56b1511db598e3df25fb28ff3479ff0e6640cd35b22ca292837e
.exe windows x86

1afa9045bc6f1392dd3fa2622502e5ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentPointW
CreateCompatibleDC
GetDeviceCaps
CreatePen
GetStockObject
SetMapMode
CreateFontIndirectW
Polygon
GetObjectW
CreateRectRgn
BitBlt
CreateCompatibleBitmap
GetBkColor
GetObjectA
SetDCPenColor
GetClipBox
SetStretchBltMode
CreateSolidBrush
Rectangle
GetTextExtentPoint32W
GetTextMetricsW
GetRgnBox
SelectObject
ExtCreatePen
Polyline
DeleteObject
PatBlt
LineTo
SetTextColor
CreateDIBSection
SetBrushOrgEx
CreateDCW
SetBkMode
SetDIBColorTable
SetBkColor
CombineRgn
GetDIBColorTable
DeleteDC
MoveToEx
ExtTextOutW
StretchBlt
CreatePolygonRgn

comctl32

ImageList_Create
ImageList_GetIcon
ImageList_LoadImageW
ImageList_Add
ImageList_AddMasked
ImageList_Destroy
ImageList_DrawEx

ole32

CoGetCallContext
CoCreateInstance
CoImpersonateClient
CoRegisterClassObject
CoLockObjectExternal
CoWaitForMultipleHandles
CoRegisterMessageFilter
RegisterDragDrop
CoGetMalloc
CreateBindCtx
CoQueryProxyBlanket
OleDuplicateData
OleGetClipboard
CoUnmarshalInterface
CoTaskMemAlloc
CoTaskMemFree
RevokeDragDrop
CLSIDFromString
StringFromCLSID
ReleaseStgMedium
CoRevertToSelf
CoCreateFreeThreadedMarshaler
CoMarshalInterface
CoRevokeClassObject
CreateItemMoniker
CoReleaseMarshalData
CoInitialize
CoCreateGuid
OleFlushClipboard
CoLoadLibrary
CoGetInterfaceAndReleaseStream
StringFromGUID2
DoDragDrop
CoSetProxyBlanket
CreateStreamOnHGlobal
CoMarshalInterThreadInterfaceInStream
GetRunningObjectTable
CoInitializeEx
CoUninitialize
OleSetClipboard
CoTaskMemRealloc

usp10

ScriptStringAnalyse
ScriptStringFree
ScriptStringOut

advapi32

AddAce
GetLengthSid
LookupPrivilegeNameW
RegEnumKeyExW
GetSidSubAuthorityCount
AddAccessAllowedAce
RegOpenKeyExW
CryptCreateHash
IsValidSid
SetSecurityDescriptorGroup
PrivilegeCheck
GetUserNameW
CryptAcquireContextA
FreeSid
LookupAccountSidW
CryptReleaseContext
SetThreadToken
IsValidSecurityDescriptor
RegConnectRegistryW
SetSecurityDescriptorOwner
OpenThreadToken
RegDeleteValueW
CryptHashData
RegEnumValueW
AccessCheck
SetSecurityInfo
InitializeSecurityDescriptor
InitializeAcl
EqualSid
SetSecurityDescriptorDacl
CopySid
RegQueryInfoKeyW
RegDeleteKeyW
RegCloseKey
GetSecurityInfo
RegSetValueExW
GetSidSubAuthority
AllocateAndInitializeSid
DuplicateTokenEx
RegQueryValueExW
GetTokenInformation
CryptGetHashParam
RegCreateKeyExW
GetSidIdentifierAuthority
AdjustTokenPrivileges
DuplicateToken
CryptDestroyHash
CheckTokenMembership
OpenProcessToken
LookupAccountNameW
LookupPrivilegeValueW

shlwapi

SHAutoComplete
PathFindExtensionW
PathIsUNCW
StrCmpIW
PathCanonicalizeW
PathFindFileNameW

oleaut32

RegisterTypeLi
VarBstrCat
SysAllocStringLen
VariantClear
LoadRegTypeLi
SysAllocString
VariantInit
SafeArrayPutElement
VarUI4FromStr
SafeArrayCreate
SafeArrayUnlock
SysFreeString
VariantCopy
UnRegisterTypeLi
SysStringLen
SafeArrayGetVartype
SafeArrayGetElement
SafeArrayLock
SysReAllocStringLen
SafeArrayGetUBound
SafeArrayAccessData
VarBstrCmp
SafeArrayDestroy
SysStringByteLen
VariantChangeType
SafeArrayGetLBound
SysAllocStringByteLen
GetErrorInfo
SafeArrayGetDim
SafeArrayUnaccessData
LoadTypeLi

kernel32

GetTempPathW
MulDiv
CreateToolhelp32Snapshot
CloseHandle
GlobalLock
InterlockedPushEntrySList
HeapFree
CreatePipe
lstrcmpA
TlsFree
GetComputerNameA
FreeResource
SetNamedPipeHandleState
GetModuleHandleW
ProcessIdToSessionId
lstrcmpiW
ReleaseMutex
DeleteCriticalSection
FindResourceExW
GetModuleHandleA
GetCurrentDirectoryW
PeekNamedPipe
FindClose
GetProfileIntW
GetFileSizeEx
FlushInstructionCache
IsDebuggerPresent
GlobalUnlock
FindFirstFileW
GetDateFormatW
InterlockedPopEntrySList
VirtualAlloc
GetStringTypeExW
ResumeThread
WaitForMultipleObjects
HeapReAlloc
HeapAlloc
GetShortPathNameW
CreateFileW
ReadProcessMemory
SetUnhandledExceptionFilter
GetThreadLocale
Process32FirstW
EnterCriticalSection
LocalAlloc
FindAtomW
LocalFree
MapViewOfFile
SetFilePointer
CancelIo
Process32NextW
FindResourceW
FreeEnvironmentStringsW
IsProcessorFeaturePresent
SetLastError
DuplicateHandle
LocalReAlloc
CreateProcessW
GetLongPathNameW
OutputDebugStringW
LoadLibraryExW
SetEnvironmentVariableW
lstrcmpiA
ResetEvent
GlobalFree
CreateFileMappingW
CreateThread
LocalSize
GetSystemInfo
GetProcessTimes
FreeLibraryAndExitThread
GetProcessHeap
ExpandEnvironmentStringsW
TransactNamedPipe
GetComputerNameExW
FormatMessageW
GetCurrentThreadId
FileTimeToSystemTime
CreateMutexW
WriteFile
WideCharToMultiByte
SetFilePointerEx
SetHandleInformation
RaiseException
CreateDirectoryW
GlobalAlloc
GetPrivateProfileIntW
OpenProcess
GetTimeFormatW
LockResource
TlsGetValue
GetPrivateProfileSectionW
UnhandledExceptionFilter
SizeofResource
HeapSize
LoadResource
GetComputerNameW
lstrlenA
lstrlenW
GetTempFileNameW
ExitThread
SetFileAttributesW
CreateEventW
ReadFile
LeaveCriticalSection
HeapDestroy
LCMapStringW
FormatMessageA
GetOverlappedResult
GetSystemTimeAsFileTime
DeleteFileW
TlsSetValue
InitializeCriticalSectionAndSpinCount
FreeLibrary
WaitForSingleObject
SetCurrentDirectoryW
VirtualFree
TlsAlloc
SwitchToThread
WaitNamedPipeW
TerminateThread
QueueUserWorkItem
VirtualAllocEx

msimg32

TransparentBlt
AlphaBlend

user32

PtInRect
SetClipboardData
GetWindowThreadProcessId
IsDlgButtonChecked
BringWindowToTop
GetWindowRect
EnumWindows
BeginDeferWindowPos
GetKeyState
BeginPaint
DrawTextExW
GetDesktopWindow
GetMenuItemCount
IsWindow
GetActiveWindow
TrackMouseEvent
CreateDialogIndirectParamW
GetWindowTextLengthW
IsWindowUnicode
SetWindowPos
LoadStringW
SetTimer
RemoveMenu
MonitorFromPoint
DeferWindowPos
SetRect
GetPropW
CallWindowProcW
KillTimer
GetDC
GetWindow
OffsetRect
GetSystemMenu
GetMessageW
MapWindowPoints
GetMenuStringW
CharUpperBuffW
GetWindowTextW
RegisterClassW
GetAsyncKeyState
CreateWindowExW
GetForegroundWindow
GetClassNameW
EndDeferWindowPos
MoveWindow
SetForegroundWindow
InflateRect
CharLowerBuffW
SetWindowTextW
FillRect
DestroyWindow
DestroyMenu
IsDialogMessageW
EmptyClipboard
EndPaint
GetSystemMetrics
IsWindowVisible
CloseClipboard
CheckMenuItem
DrawIconEx
SetCursor
DispatchMessageA
IsRectEmpty
ToUnicode
DrawFrameControl
CopyRect
UpdateLayeredWindow
SetPropW
IsIconic
CreatePopupMenu
SetDlgItemInt
GetClientRect
MapDialogRect
UnionRect
MapVirtualKeyW
GetWindowLongW
SetLayeredWindowAttributes
GetScrollInfo
DispatchMessageW
SetDlgItemTextW
LoadStringA
PeekMessageW
DestroyCaret
SystemParametersInfoA
SetParent
CreateDialogParamW
ScrollWindow
GetMonitorInfoW
IsWindowEnabled
GetParent
UnregisterClassA
GetWindowPlacement
SendDlgItemMessageW
CreateCaret
DestroyIcon
RedrawWindow
DialogBoxIndirectParamW
CheckRadioButton
SetCursorPos
GetMessagePos
IsClipboardFormatAvailable
GetFocus
GetKeyboardState
GetLastActivePopup
RegisterClassExW
GetDlgItemInt
FrameRect
SetScrollInfo
SetWindowLongW
GetCursorPos
EndDialog
EnableWindow
GetClassInfoExW
SetCapture
DialogBoxParamW
GetSysColorBrush
GetMenu
AdjustWindowRectEx
GetDlgItem
GetMessageTime
SystemParametersInfoW
GetMessageA
GetSysColor
TrackPopupMenuEx
GetClipboardData
UnregisterClassW
MessageBeep
GetDlgCtrlID
GetDialogBaseUnits
ReleaseDC
ScreenToClient
CharNextW
GetCaretPos
SetWindowContextHelpId
RegisterWindowMessageW
SendMessageW
AppendMenuW
TranslateMessage
LoadIconW
RegisterClipboardFormatW
DefWindowProcW
LoadBitmapW
LoadCursorW
GetWindowDC
PostThreadMessageW
UpdateWindow
CheckDlgButton
SendInput
MessageBoxW
SetRectEmpty
MonitorFromRect
PostMessageW
GetDlgItemTextW
RemovePropW
OpenClipboard
InvalidateRect
LoadImageW
ClientToScreen
SetCaretPos
ShowWindow
SetFocus
ReleaseCapture
GetKeyboardLayout
CharPrevW
GetMenuItemInfoW
AppendMenuA
LoadMenuIndirectW
GetDlgItemTextA
SetWindowTextA
MessageBoxA
WinHelpW
GetMenuState
CharUpperA
mouse_event
CharLowerA
CreateAcceleratorTableA
SendDlgItemMessageA
GetIconInfo
SetWindowRgn
GetCapture
MessageBoxIndirectA
WaitMessage
FindWindowA
GetMenuItemID
DialogBoxParamA
CreateWindowExA

qasf

DllCanUnloadNow
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 245KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1afa9045bc6f1392dd3fa2622502e5ba

Headers

File Characteristics

Imports

gdi32

comctl32

ole32

usp10

advapi32

shlwapi

oleaut32

kernel32

msimg32

user32

qasf

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 245KB - Virtual size: 3.6MB

.rdata Size: 12KB - Virtual size: 22KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 245KB - Virtual size: 3.6MB

.rdata
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 15KB - Virtual size: 14KB