461219d655a87b5a6f76aef292359a203228c98e6e60055d427fc52dc0251ff0

Sharing

Copy URL

Twitter E-mail

General

Target

461219d655a87b5a6f76aef292359a203228c98e6e60055d427fc52dc0251ff0
Size

455KB
MD5

f9fcfa99bbbc6e52309d76b05dca67f0
SHA1

3178618313c4ad620f19e56ebce4bf39288126d4
SHA256

461219d655a87b5a6f76aef292359a203228c98e6e60055d427fc52dc0251ff0
SHA512

628b024f341fe3248e4a0b10af1de504814b4a4d0728fa729b43ae2fda7b3ec25e33d90e2aa9ab663002b2db1570542278f4e4b89e79694f15afce0245df9984
SSDEEP

12288:gvB88vNh4QIie8YaRXmoZfJJAVPIu9+B:oB8O3mWdZfJJt

Score

N/A

Malware Config

Signatures

Files

461219d655a87b5a6f76aef292359a203228c98e6e60055d427fc52dc0251ff0
.dll windows x86

45ff5b2112353689d00f7139d86cbe24

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AdjustWindowRectEx
AppendMenuA
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
CallWindowProcW
CharLowerA
CharLowerW
CharNextW
CharUpperA
CharUpperW
CheckDlgButton
CheckMenuItem
CheckRadioButton
ClientToScreen
CopyRect
CreateDialogIndirectParamA
CreateDialogParamW
CreateWindowExA
WinHelpA
ValidateRect
UpdateWindow
UnregisterClassA
UnhookWindowsHookEx
TranslateMessage
TrackPopupMenuEx
TrackPopupMenu
TabbedTextOutA
SystemParametersInfoW
SystemParametersInfoA
ShowWindow
ShowScrollBar
ShowOwnedPopups
SetWindowsHookExA
SetWindowTextW
SetWindowTextA
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetWindowLongA
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropA
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetDlgItemTextA
SetDlgItemInt
SetCursor
SetCapture
SetActiveWindow
SendMessageW
SendMessageA
SendDlgItemMessageA
ScrollWindowEx
ScrollWindow
ScreenToClient
RemovePropA
RemoveMenu
CreateWindowExW
DefDlgProcW
DefWindowProcA
DefWindowProcW
DeferWindowPos
DeleteMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterWindowMessageA
RegisterClassW
RegisterClassExW
RegisterClassA
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
PostMessageA
PeekMessageW
PeekMessageA
OffsetRect
MoveWindow
ModifyMenuA
MessageBoxW
MessageBoxA
MapWindowPoints
LoadImageW
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
LoadBitmapA
KillTimer
IsWindowVisible
IsWindowEnabled
IsWindow
IsIconic
IsDlgButtonChecked
IsDialogMessageA
IsChild
InvalidateRect
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageA
DispatchMessageW
DialogBoxParamW
DrawEdge
DrawFocusRect
DrawTextA
DrawTextExA
DrawTextW
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EqualRect
ExitWindowsEx
FillRect
FindWindowW
GetActiveWindow
GetCapture
GetClassInfoA
GetClassInfoExA
GetClassInfoExW
GetClassLongA
GetClassNameA
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetKeyState
GetLastActivePopup
GetMenu
GetMenuCheckMarkDimensions
GetMenuItemCount
IntersectRect
InsertMenuA
InflateRect
GrayStringA
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthA
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropA
GetParent
GetNextDlgTabItem
GetMessageW
GetMessageTime
GetMessagePos
GetMessageA
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID

ole32

CLSIDFromString
CoCreateInstance
CoDisconnectObject
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoTreatAsClass
CreateBindCtx
CreateStreamOnHGlobal
OleDuplicateData
OleRegGetUserType
ReadClassStg
ReadFmtUserTypeStg
ReleaseStgMedium
SetConvertStg
StringFromCLSID
StringFromGUID2
WriteClassStg
WriteFmtUserTypeStg

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHGetFileInfoA
ExtractIconA

oleaut32

VariantTimeToSystemTime
VariantInit
VariantCopy
VariantClear
VariantChangeType
VarUI4FromStr
VarR8FromStr
VarI4FromStr
VarDecFromStr
VarDecCmp
VarDateFromStr
VarCyFromStr
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
SystemTimeToVariantTime
SysStringLen
SysStringByteLen
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SysAllocStringByteLen
SafeArrayUnlock
SafeArrayUnaccessData
SafeArrayRedim
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayLock
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetElement
SafeArrayGetDim
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayCreate
SafeArrayCopy
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayAccessData

kernel32

InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
GetFileType
lstrlenW
lstrlenA
lstrcmpiW
lstrcmpiA
lstrcmpW
lstrcmpA
WritePrivateProfileStringA
WriteFile
WriteConsoleW
WriteConsoleA
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnmapViewOfFile
UnlockFile
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SystemTimeToFileTime
SuspendThread
SizeofResource
SetUnhandledExceptionFilter
SetThreadPriority
SetStdHandle
SetLastError
SetHandleCount
SetFileTime
SetFilePointer
SetFileAttributesA
SetEvent
SetErrorMode
SetEnvironmentVariableA
SetEndOfFile
SetCurrentDirectoryW
SetCurrentDirectoryA
RtlUnwind
ResumeThread
ReadFile
RaiseException
QueryPerformanceCounter
OpenProcess
OpenMutexA
MultiByteToWideChar
MulDiv
MoveFileExA
MoveFileA
MapViewOfFileEx
LockResource
LockFile
LocalReAlloc
LocalFree
LocalFileTimeToFileTime
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryExW
LoadLibraryA
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameA
GlobalFree
GlobalFlags
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetVolumeInformationW
GetVolumeInformationA
GetVersionExW
GetVersionExA
GetVersion
GetUserDefaultLCID
GetTimeZoneInformation
GetTimeFormatA
GetTickCount
GetThreadLocale
GetTempPathW
GetSystemTimeAsFileTime
GetSystemInfo
GetStringTypeW
GetStringTypeExW
GetStringTypeExA
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetShortPathNameA
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetPrivateProfileStringA
GetPrivateProfileIntA
GetOEMCP
GetNumberFormatW
CloseHandle
CompareStringA
CompareStringW
ConvertDefaultLocale
CopyFileA
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileMappingW
CreateMutexA
CreateProcessW
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DuplicateHandle
EnterCriticalSection
EnumResourceLanguagesA
EnumSystemLocalesA
ExitProcess
ExitThread
FatalAppExitA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceA
FindResourceExW
FindResourceW
FindVolumeClose
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetAtomNameA
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSize
GetFileTime
GetModuleHandleW
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
LeaveCriticalSection

winmm

PlaySoundW

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comctl32

ord17
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Draw
_TrackMouseEvent
ImageList_Destroy

advapi32

FreeSid
RegSetValueExW
RegSetValueExA
RegSetValueA
RegQueryValueExW
RegQueryValueExA
RegQueryValueA
AdjustTokenPrivileges
AllocateAndInitializeSid
CheckTokenMembership
LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegCreateKeyA
RegCreateKeyExA
RegCreateKeyExW
RegCreateKeyW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueA
RegDeleteValueW
RegEnumKeyA
RegEnumKeyExW
RegOpenKeyA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW

comdlg32

GetFileTitleA
ChooseFontW

wininet

InternetWriteFile
InternetSetStatusCallbackA
InternetSetOptionExA
InternetSetFilePointer
InternetSetCookieA
InternetReadFile
InternetQueryOptionA
InternetQueryDataAvailable
InternetOpenUrlA
InternetOpenA
InternetGetLastResponseInfoA
InternetGetCookieA
InternetFindNextFileA
InternetErrorDlg
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
InternetCanonicalizeUrlA
HttpSendRequestExA
HttpSendRequestA
HttpQueryInfoA
HttpOpenRequestA
HttpEndRequestA
HttpAddRequestHeadersA
GopherOpenFileA
GopherGetAttributeA
GopherFindFirstFileA
GopherCreateLocatorA
FtpSetCurrentDirectoryA
FtpRenameFileA
FtpRemoveDirectoryA
FtpPutFileA
FtpOpenFileA
FtpGetFileA
FtpGetCurrentDirectoryA
FtpFindFirstFileA
FtpCreateDirectoryA
FtpCommandA
FtpDeleteFileA

gdi32

SelectPalette
SelectObject
SelectClipRgn
SelectClipPath
ScaleWindowExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
PtVisible
PolylineTo
Polygon
PolyDraw
PolyBezierTo
PlayMetaFileRecord
PlayMetaFile
PatBlt
OffsetWindowOrgEx
OffsetViewportOrgEx
OffsetClipRgn
MoveToEx
ModifyWorldTransform
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetTextMetricsA
GetTextExtentPoint32A
SetArcDirection
GetPixel
GetObjectW
GetObjectType
GetObjectA
GetMapMode
GetDeviceCaps
GetDCOrgEx
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExtTextOutA
ExtSelectClipRgn
ExtCreatePen
ExcludeClipRect
Escape
EnumMetaFile
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePen
CreatePatternBrush
CreateHatchBrush
CreateFontIndirectW
CreateFontIndirectA
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileA
CombineRgn
BitBlt
ArcTo
SetBkColor
SetBkMode
SetColorAdjustment
SetDIBColorTable
SetGraphicsMode
SetMapMode
SetMapperFlags
SetPolyFillMode
SetROP2
SetRectRgn
SetStretchBltMode
SetTextAlign
SetTextCharacterExtra
SetTextColor
SetTextJustification
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetWorldTransform
StartDocA
StretchBlt
TextOutA
GetStockObject

shlwapi

PathCanonicalizeW
PathCombineW
PathFindExtensionA
PathFindFileNameA
PathIsUNCA
PathRemoveExtensionA
PathRemoveFileSpecW
PathStripToRootA
UrlUnescapeA

Exports

Exports

AsDecodedObject
AsString
ExceptionMatches
IsTrue
SystemExit
set_strip_alpha

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45ff5b2112353689d00f7139d86cbe24

Headers

File Characteristics

Imports

user32

ole32

shell32

oleaut32

kernel32

winmm

winspool.drv

comctl32

advapi32

comdlg32

wininet

gdi32

shlwapi

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 76KB

.rdata Size: 284KB - Virtual size: 284KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 76KB - Virtual size: 76KB

.rdata
Size: 284KB - Virtual size: 284KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 4KB - Virtual size: 3KB