9ba0d1fc403686aaa64d4119d9629af83c3b8469aaf73bc98b73add8a788bea0

Sharing

Copy URL Twitter E-mail

General

Target

9ba0d1fc403686aaa64d4119d9629af83c3b8469aaf73bc98b73add8a788bea0
Size

309KB
MD5

012bfd3f4916868032a77c6dd343513f
SHA1

07d1ad72e25082d73b3ba1819b7172621c7c4e2e
SHA256

9ba0d1fc403686aaa64d4119d9629af83c3b8469aaf73bc98b73add8a788bea0
SHA512

a0c30cead0c1ed8e8703f5e47cde72fcb14614bc8aba06d38503a4f22bfc8da864cbb5626adc6ee198dce80138255825ab0cdd1c775105e2c6c6ef50d8d0eeb8
SSDEEP

6144:lmhUmwl3YtIbFONqLrT/WWmJQk9Zgfvc0NTxNu6s:EhUmwpbFONTQk9ZoVN5s

Score

N/A

Malware Config

Signatures

Files

9ba0d1fc403686aaa64d4119d9629af83c3b8469aaf73bc98b73add8a788bea0
.exe windows x86

d2bb736caf35c33b0da29ed084b6f2a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
EnumDateFormatsW
GlobalFix
lstrlenW
FormatMessageW
GetProcessTimes
GetLargestConsoleWindowSize
EnumCalendarInfoW
GetProcessWorkingSetSize
BuildCommDCBAndTimeoutsW
FindNextFileA
HeapLock
SetEnvironmentVariableW
LoadLibraryExW
SuspendThread
GetLocalTime
EnumResourceNamesA
GetLocaleInfoW
GetDiskFreeSpaceExW
SetThreadPriorityBoost
Heap32ListNext
ResetEvent
GetCompressedFileSizeW
WriteConsoleOutputA
SetConsoleTitleA
ReadConsoleW
GetStartupInfoW
SetSystemTimeAdjustment
_lclose
ReadConsoleOutputW
GetProfileStringW
GetCurrentDirectoryA
MoveFileA
GetModuleHandleW
Heap32ListFirst
WritePrivateProfileStringW
QueryPerformanceFrequency
lstrcpyA
UpdateResourceA
IsDebuggerPresent
WriteConsoleOutputCharacterW
VirtualFree
LocalFree
VerLanguageNameA
GetFileAttributesExA
GetCommConfig
GetModuleFileNameW
SetUnhandledExceptionFilter
WritePrivateProfileStructW
ReadDirectoryChangesW
SizeofResource
SetProcessPriorityBoost
GetCommModemStatus
MoveFileExA
CompareFileTime
Sleep
OpenEventA
UnlockFileEx
DeleteFileW
SetConsoleCtrlHandler
TlsGetValue
ReadFile
LockFile
SetCurrentDirectoryA
GetPrivateProfileIntA
LoadResource
UpdateResourceW
VirtualFreeEx
GetTimeFormatA
SetEnvironmentVariableA
_lread
SetCommBreak
FindResourceExA
ExpandEnvironmentStringsW
SetLastError
Toolhelp32ReadProcessMemory
EnumDateFormatsA
CreateWaitableTimerW
SetCommConfig
EnumSystemLocalesW
TlsFree
GetCommState
IsBadStringPtrW
LeaveCriticalSection
TlsAlloc
GetStartupInfoA
SetThreadIdealProcessor
SetDefaultCommConfigA
GetSystemDirectoryW
SetSystemTime
DebugBreak
GetPrivateProfileSectionNamesW
SetDefaultCommConfigW
GetProcessShutdownParameters
GlobalAddAtomW
BackupRead
TransmitCommChar
GetNumberFormatA
GetShortPathNameW
CreateConsoleScreenBuffer
WriteConsoleInputW
GetTimeFormatW
BeginUpdateResourceW
SetThreadLocale
ExitThread
DefineDosDeviceW
PrepareTape
TlsSetValue
FreeEnvironmentStringsA
GetUserDefaultLangID
ClearCommError
_llseek
WriteFileEx
_hread
GetThreadLocale
GetProfileSectionA
GlobalFlags
QueueUserAPC
FindClose
ReleaseMutex
GetOverlappedResult
GetLocaleInfoA
GetDriveTypeW
QueryDosDeviceA
FindResourceExW
lstrcmpiW
LocalSize
SetWaitableTimer
InterlockedDecrement
FreeLibrary
GlobalWire
GetModuleFileNameA
OpenMutexW
GetWriteWatch
SetTapePosition
OpenEventW
AddAtomW
LCMapStringA
CopyFileW
SetVolumeLabelA
ConvertThreadToFiber
GetTempPathA
FlushInstructionCache
GetProcessHeap
GetLongPathNameW
lstrcpyW
WaitForMultipleObjectsEx
GetProfileIntA
GetVersionExA

user32

DefMDIChildProcW
MessageBeep
InsertMenuItemA
SetDlgItemTextW
DlgDirListComboBoxA
TileWindows
WaitForInputIdle
FindWindowW
CreateWindowStationW
IsWindowEnabled
SwitchToThisWindow
GetNextDlgGroupItem
EnumPropsExW
ShowWindowAsync
GetTopWindow
EnumPropsW
InSendMessage
GetDoubleClickTime
SetWindowTextA
CreateDialogParamA
OpenDesktopA
LoadAcceleratorsA
DrawEdge
SendMessageA
EnumDisplaySettingsA
GetMenuItemInfoW
SetMessageExtraInfo
GetMenuState
DeferWindowPos
CheckRadioButton
GetInputState
SetWindowsHookExA
OpenClipboard
FindWindowA
CreateCursor
ChildWindowFromPointEx
wsprintfA
LoadBitmapA
GetWindow
GetWindowRect
VkKeyScanA
GetDlgItemTextA
CreateIcon
GetClassLongA
TabbedTextOutW
SetThreadDesktop
GetIconInfo
GetScrollRange
GetPropW
DlgDirSelectComboBoxExW
TrackPopupMenu
TranslateMDISysAccel
LockWindowUpdate
GetMenuItemID
GetForegroundWindow
CharLowerA
GetUpdateRgn
RegisterWindowMessageW
SetWindowLongA
GetCaretBlinkTime
SetUserObjectInformationW
GetMenuItemCount
SetWindowContextHelpId
ReplyMessage
GetScrollInfo
SystemParametersInfoW
RemoveMenu
ExitWindowsEx
GetTabbedTextExtentW
SetPropW
DefWindowProcW
ReleaseDC
GetDlgItemTextW
FillRect
SetScrollRange
DrawIcon
CreateIconIndirect
GetClipboardOwner
CopyIcon
SetForegroundWindow
MoveWindow
SetDoubleClickTime
VkKeyScanExW
GetFocus
WaitMessage
EnableScrollBar
SetWindowPlacement
GetWindowThreadProcessId
LoadBitmapW
SetClassLongW
ValidateRect
ActivateKeyboardLayout
IsCharUpperA
SetRectEmpty
CharUpperBuffW
CreatePopupMenu
UnloadKeyboardLayout
GetMenuItemRect
CopyAcceleratorTableA
IsDlgButtonChecked
SetFocus
VkKeyScanW
LoadMenuIndirectW
GetKeyboardLayout
SetDebugErrorLevel
EndDialog
CharToOemBuffW
GetSystemMetrics
GetProcessWindowStation
IsCharAlphaA
GetKBCodePage
VkKeyScanExA
DrawStateA
RegisterClipboardFormatA
GetKeyboardType
EnumDesktopsA
MessageBoxIndirectA
DrawMenuBar
DragDetect
LoadMenuIndirectA
EnumWindowStationsA
EnumPropsA
ShowWindow
CharUpperA
GetClassNameW
CharLowerW
DestroyCaret
ScrollWindow
DispatchMessageA
CheckMenuRadioItem
DlgDirListW
OemToCharBuffA
CharUpperBuffA
DialogBoxParamW
GetDlgItem
DefWindowProcA
CharLowerBuffW
CopyRect
GetOpenClipboardWindow
GetKeyboardState
CharPrevA
CopyAcceleratorTableW
SetWindowLongW
SendMessageW
RegisterClassExA
GrayStringW

gdi32

CreateRectRgn
AngleArc
GetTextMetricsW
GetClipRgn
SetMapperFlags
CombineTransform
DPtoLP
Ellipse
CreatePolygonRgn
GetCharABCWidthsA
Rectangle
CreateColorSpaceA
SetBitmapDimensionEx
GetSystemPaletteUse
AnimatePalette
GetTextExtentPointA
EndPage
GdiGetBatchLimit
EndPath
SetGraphicsMode
RealizePalette
GetCharWidthW
FrameRgn
SetSystemPaletteUse
GetTextCharacterExtra
EnumEnhMetaFile
ChoosePixelFormat
GetNearestColor
CreateBrushIndirect
SetDIBitsToDevice
CreateFontA
GetDeviceCaps
CreateFontIndirectW
GetBkMode
GetDIBits
DeleteMetaFile
CombineRgn
MoveToEx
MaskBlt
CloseFigure
SelectClipRgn
IntersectClipRect
SetBrushOrgEx
UpdateICMRegKeyW
GetViewportExtEx
SetICMProfileW
LineTo
GetEnhMetaFileA
InvertRgn
PolyDraw
GetGlyphOutlineW
CreateEllipticRgn
GetBitmapDimensionEx
GetKerningPairsW
SetMetaRgn
GetStockObject
ExtCreatePen
TranslateCharsetInfo
AddFontResourceW
StartDocA
BeginPath
CreateCompatibleBitmap
SetColorAdjustment
SetTextCharacterExtra
SetAbortProc
GetEnhMetaFileW
CreateBitmapIndirect
Arc
GetPixelFormat
CreateDIBSection
PlayMetaFileRecord
CreatePolyPolygonRgn
GetDIBColorTable
ExtEscape
CreateDIBPatternBrushPt
Polyline
SetMapMode
SetPixelV
CopyMetaFileW
ResizePalette
SetROP2
GetTextFaceW
SelectPalette
GetBoundsRect
GetFontData
GetCharWidthFloatW
EnumObjects

comdlg32

ChooseFontA
PageSetupDlgA
ChooseColorW
GetSaveFileNameA
ChooseFontW
ChooseColorA
GetOpenFileNameW

advapi32

ChangeServiceConfigW
LookupSecurityDescriptorPartsA
RevertToSelf
GetOldestEventLogRecord
LookupAccountSidW
OpenBackupEventLogW
RegisterEventSourceA
ObjectCloseAuditAlarmW
CryptGenRandom
RegEnumValueW
CryptSetProviderW
RegEnumKeyA
CreatePrivateObjectSecurity
LogonUserA
CryptEncrypt
RegOpenKeyExW
GetPrivateObjectSecurity
InitializeSecurityDescriptor
RegSetKeySecurity
GetSidIdentifierAuthority
RegEnumKeyW
RegDeleteKeyA
ObjectPrivilegeAuditAlarmW
GetAuditedPermissionsFromAclW
LookupAccountSidA
InitiateSystemShutdownW
RegConnectRegistryW
AddAce
CloseServiceHandle
OpenProcessToken
BuildSecurityDescriptorW
AllocateAndInitializeSid
CryptGetDefaultProviderW
CryptSetProviderExW
BuildExplicitAccessWithNameW
SetSecurityDescriptorOwner
GetEffectiveRightsFromAclA
SetSecurityInfo
RegRestoreKeyA
ImpersonateLoggedOnUser
GetFileSecurityA
GetMultipleTrusteeOperationA
AccessCheckAndAuditAlarmW
RegFlushKey
BuildImpersonateExplicitAccessWithNameA
CryptSetHashParam
GetServiceDisplayNameA
RegGetKeySecurity
ObjectDeleteAuditAlarmA
GetSidSubAuthorityCount
UnlockServiceDatabase
BuildExplicitAccessWithNameA
RegCreateKeyExW
AccessCheckAndAuditAlarmA
AddAuditAccessAce
ObjectOpenAuditAlarmA
NotifyBootConfigStatus
ClearEventLogA
RegConnectRegistryA
CryptGetProvParam
OpenServiceW
BackupEventLogA
InitializeAcl
LookupPrivilegeValueA
BuildImpersonateTrusteeW
CryptSignHashA
QueryServiceConfigW
ReportEventA
InitiateSystemShutdownA
CryptContextAddRef
BackupEventLogW
SetKernelObjectSecurity
RegSetValueExA
RegUnLoadKeyA
ReadEventLogW
GetNamedSecurityInfoW
AddAccessDeniedAce

shell32

CommandLineToArgvW
ExtractIconA
SHFreeNameMappings
DoEnvironmentSubstW
SHChangeNotify
ExtractIconExA
DragQueryFileA
Shell_NotifyIconA
SHGetDataFromIDListA
SHBrowseForFolderW
SHGetFileInfoA
SHGetSpecialFolderPathW
Shell_NotifyIconW
ShellExecuteExA
SHGetDesktopFolder
SHGetFileInfoW
SHGetPathFromIDListA

msvcrt

__p__commode
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_adjust_fdiv
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d2bb736caf35c33b0da29ed084b6f2a3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 272KB - Virtual size: 272KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 22KB - Virtual size: 22KB

.text
Size: 272KB - Virtual size: 272KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 22KB - Virtual size: 22KB