a81e0c0638bbd50665a3d90d95105f87c532b1fb0d7794c14e1adf8f6cc48e8b

Sharing

Copy URL Twitter E-mail

General

Target

a81e0c0638bbd50665a3d90d95105f87c532b1fb0d7794c14e1adf8f6cc48e8b
Size

841KB
MD5

3986a3c05933ae9807385c51cccd7490
SHA1

79bbb925bb8b17fab69f702eac11799ab5cf5464
SHA256

a81e0c0638bbd50665a3d90d95105f87c532b1fb0d7794c14e1adf8f6cc48e8b
SHA512

a80aa1d5144525c8a2055aa7e015392d2da8425d210e5358e49717c2baa9c9bd0f946b501fa9f32889f6e46b047fbbf85ac71c35988a4ac592d28819ccb6dc7c
SSDEEP

24576:N5feggZdBQGGdIyGY36ONGpq+u13fP0hL/N2QlyR:N5ngZdKeYqON6qDBwL/IH

Score

N/A

Malware Config

Signatures

Files

a81e0c0638bbd50665a3d90d95105f87c532b1fb0d7794c14e1adf8f6cc48e8b
.exe windows x86

855c2ebac5c7dc608e53ea84e3edb25a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

TlsSetValue
GetCurrentThread
GetStartupInfoA
LCMapStringW
InterlockedExchange
GetCurrentThreadId
GetModuleHandleW
GetLocaleInfoW
FindResourceW
GetFileType
LoadLibraryW
SizeofResource
GetProcessHeap
HeapQueryInformation
GetUserDefaultUILanguage
GetConsoleMode
SetUnhandledExceptionFilter
GetProcAddress
IsDebuggerPresent
GlobalFlags
GetThreadTimes
GetThreadLocale
DuplicateHandle
TerminateProcess
CreateMutexW
GetLocaleInfoA
InterlockedCompareExchange
LoadLibraryExW
CreateFileW
GetProcessTimes
EnterCriticalSection
RtlUnwind
WriteFile
lstrcatA
lstrcpyA
LoadResource
SetEvent
HeapDestroy
GetFileSizeEx
ExitThread
SetEnvironmentVariableA
GetNumberFormatW
GetDriveTypeW
GetOEMCP
SetLastError
lstrcmpW
LocalAlloc
ResumeThread
CompareStringW
GlobalAddAtomW
lstrcpyW
EnumSystemLocalesA
GetUserDefaultLCID
GlobalFindAtomW
CloseHandle
GlobalLock
GetSystemDefaultUILanguage
VirtualProtect
GetTempFileNameW
GetPrivateProfileStringW
Sleep
FindFirstFileW
GetCurrentProcessId
GetFileInformationByHandle
FileTimeToSystemTime
lstrlenW
GetFileSize
LeaveCriticalSection
FlushFileBuffers
GetVersion
PeekNamedPipe
DeleteAtom
LocalReAlloc
VirtualQuery
GetVolumeInformationW
GetFullPathNameW
GetFileAttributesW
GetEnvironmentStringsW
GetProcessWorkingSetSize
TlsAlloc
MulDiv
GetStartupInfoW
HeapSize
WaitForSingleObject
FreeEnvironmentStringsW
SetHandleCount
FreeLibrary
UnhandledExceptionFilter
SetStdHandle
SetErrorMode
ReleaseMutex
GetConsoleCP
GetTickCount
TlsGetValue
GetFileAttributesExW
VirtualFree
GetCurrentDirectoryW
InterlockedDecrement
GetFileTime
CompareStringA
FindFirstFileExW
IsValidCodePage
FindNextFileW
CreateThread
DeleteCriticalSection
GlobalUnlock
lstrcmpiW
GlobalGetAtomNameW
InterlockedIncrement
GlobalHandle
GetLastError
GetStdHandle
HeapFree
GlobalFree
GetPrivateProfileIntW
LockResource
HeapCreate
GetSystemInfo
LockFile
FreeResource
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
VirtualLock
GetACP
HeapSetInformation
QueryPerformanceCounter
SuspendThread
GlobalAlloc
GetModuleFileNameW
LoadLibraryA
IsValidLocale
FormatMessageW
GetLongPathNameW
DeleteFileW
GetCommandLineW
GetCPInfo
ExitProcess
GetCurrentProcess
VirtualAlloc
TlsFree
SetFilePointer
FlushInstructionCache
SetThreadPriority
HeapAlloc
MultiByteToWideChar
VirtualUnlock
InitializeCriticalSectionAndSpinCount
GlobalSize
WideCharToMultiByte
GetTempPathW
WritePrivateProfileStringW
GetTimeZoneInformation
ConvertDefaultLocale
GlobalDeleteAtom
MoveFileExW
GetStringTypeW
lstrcmpA
UnlockFile
GetWindowsDirectoryW
GetVersionExW
GetProfileIntW
CreateEventW
ReadFile
GetSystemDirectoryW
WriteConsoleW
HeapReAlloc
CopyFileW
FindResourceExW
RaiseException
IsProcessorFeaturePresent
GlobalMemoryStatus
GlobalReAlloc
SearchPathW
FindClose
InitializeCriticalSection
SetEndOfFile
LocalFree
lstrlenA

user32

GetDlgItemTextW
CheckMenuItem
DrawEdge
CreateDialogIndirectParamW
GetSystemMetrics
BeginDeferWindowPos
SetTimer
ShowOwnedPopups
EmptyClipboard
SetDlgItemTextW
GetLastActivePopup
DrawFocusRect
GetWindowRect
DestroyAcceleratorTable
SetPropW
SubtractRect
EnableMenuItem
WaitMessage
GetDesktopWindow
SendMessageW
GetMessageTime
SetWindowRgn
GetCaretPos
CharUpperBuffW
GetTopWindow
CreateIcon
DialogBoxIndirectParamW
GetKeyboardLayout
TabbedTextOutW
PtInRect
GetIconInfo
SetClassLongW
DefWindowProcW
GetMonitorInfoW
LoadCursorW
IsRectEmpty
SetClipboardData
GetWindowPlacement
SetMenuDefaultItem
DefFrameProcW
GetMenuDefaultItem
ToUnicodeEx
DrawTextW
WindowFromPoint
LoadBitmapW
InsertMenuItemW
IsMenu
GetWindowLongW
GetClassInfoW
GetWindow
GetCursorPos
GetPropW
GetParent
InvalidateRgn
DispatchMessageW
SendDlgItemMessageW
TranslateMDISysAccel
RegisterWindowMessageW
MapVirtualKeyExW
IsIconic
CopyImage
BeginPaint
RedrawWindow
DestroyMenu
CreateWindowExW
TrackPopupMenu
DrawFrameControl
GetAsyncKeyState
GetKeyNameTextW
UnpackDDElParam
SetForegroundWindow
GetDC
SystemParametersInfoW
HideCaret
GetWindowThreadProcessId
SetFocus
CharUpperW
GetMenuItemCount
GetWindowDC
GetScrollInfo
UnhookWindowsHookEx
PostMessageW
GetMessageW
CallWindowProcW
InflateRect
GetClassInfoExW
SetActiveWindow
GetSubMenu
SetWindowLongW
ReleaseCapture
GetFocus
UnregisterClassW
ShowWindow
RegisterClipboardFormatW
DrawIconEx
GetProcessWindowStation
NotifyWinEvent
IsCharLowerW
GetMenu
SetRectEmpty
SetMenu
ValidateRect
EndPaint
LoadMenuW
GetClipboardViewer
MoveWindow
LockWindowUpdate
CallNextHookEx
SetWindowsHookExW
DeleteMenu
UpdateLayeredWindow
DeferWindowPos
SetParent
GetDialogBaseUnits
GetSystemMenu
GetDlgItem
MapDialogRect
GetUpdateRect
ReuseDDElParam
MapWindowPoints
EqualRect
RealChildWindowFromPoint
GetQueueStatus
DrawStateW
FrameRect
ShowScrollBar
GetMenuItemInfoW
CloseClipboard
RegisterClassW
EnumWindows
GetSysColorBrush
CreateIconFromResourceEx
GetMessagePos
LoadImageW
SetWindowTextW
DestroyWindow
EnableScrollBar
GetScrollRange
SetCapture
CopyRect
OffsetRect
KillTimer
GetMenuItemID
ClipCursor
SetWindowContextHelpId
GetOpenClipboardWindow
GetActiveWindow
GetForegroundWindow
FillRect
GetDoubleClickTime
CopyIcon
OpenClipboard
PostThreadMessageW
SendDlgItemMessageA
EnumDisplayMonitors
InvalidateRect
SetScrollRange
ModifyMenuW
IsChild
PostQuitMessage
SetCursor
LoadIconW
EndDeferWindowPos
UpdateWindow
GetClassNameW
ScreenToClient
IsDialogMessageW
CreateAcceleratorTableW
IsWindowEnabled
GetClassLongW
DialogBoxParamW
CreateMenu
GetNextDlgTabItem
InsertMenuW
AdjustWindowRectEx
DestroyIcon
UnionRect
DrawTextExW
RemovePropW
DestroyCursor
GetWindowTextW
DefMDIChildProcW
CheckDlgButton
MapVirtualKeyW
CharNextW
ScrollWindow
IsZoomed
CreatePopupMenu
SetScrollPos
MessageBoxW
DrawIcon
PeekMessageW
SetWindowPlacement
SetScrollInfo
GetMenuStringW
IntersectRect
RemoveMenu
GetMenuState
LoadAcceleratorsW
IsClipboardFormatAvailable
SetMenuItemBitmaps
UnregisterClassA
SetWindowPos
EnumChildWindows
WinHelpW
MonitorFromPoint
GetClientRect
InvertRect
IsWindow
GetDlgCtrlID
GetCapture
TranslateAcceleratorW
SetLayeredWindowAttributes
DrawMenuBar
GetKeyState
MonitorFromWindow
MessageBeep
GrayStringW
SetRect
EndDialog
ReleaseDC
GetNextDlgGroupItem
GetWindowTextLengthW
EnableWindow
GetMenuCheckMarkDimensions
AppendMenuW
GetWindowRgn
TranslateMessage
SetCursorPos
GetKeyboardState
GetScrollPos
ClientToScreen
GetSysColor
IsWindowVisible

gdi32

DPtoLP
CreateCompatibleBitmap
SetTextColor
SetLayout
GetBoundsRect
EnumFontFamiliesW
CreateFontIndirectW
SetBkColor
SetDIBColorTable
SetPolyFillMode
GetLayout
Rectangle
ExtFloodFill
GetViewportExtEx
SetBitmapBits
LPtoDP
GetObjectType
SetPaletteEntries
ExcludeClipRect
CreatePen
RealizePalette
CreateSolidBrush
GetTextExtentPointW
ExtSelectClipRgn
MoveToEx
CreateRectRgn
CreatePolygonRgn
PtVisible
GetWindowOrgEx
SetPixel
SetTextAlign
SetROP2
ExtTextOutW
GetBkColor
ScaleViewportExtEx
GetPaletteEntries
DeleteObject
ScaleWindowExtEx
FrameRgn
OffsetRgn
GetClipBox
Escape
GetRgnBox
GetTextMetricsW
SetWindowOrgEx
GetBitmapBits
RestoreDC
CreateFontW
GetBkMode
GetTextFaceW
CreateRectRgnIndirect
SaveDC
SetViewportOrgEx
SetDIBitsToDevice
GetPixel
CreateHatchBrush
StretchBlt
SetWindowExtEx
SetViewportExtEx
CreateDIBitmap
TextOutW
RectVisible
SelectPalette
EnumFontFamiliesExW
GetCurrentObject
GetWindowExtEx
GetViewportOrgEx
GetTextCharsetInfo
CreateDCW
DeleteDC
GetNearestPaletteIndex
SelectClipRgn
SetDIBits
GetDeviceCaps
GetObjectW
OffsetViewportOrgEx
SetBkMode
CombineRgn
LineTo
CreateRoundRectRgn
FillRgn
IntersectClipRect
Polygon
Polyline
SetStretchBltMode
CreateDIBSection
Ellipse
PatBlt
GetSystemPaletteEntries
CreatePalette
CopyMetaFileW
SetRectRgn
CreateBitmap
GetTextColor
SelectObject
GetMapMode
RoundRect
GetTextExtentPoint32W
SetMapMode
OffsetWindowOrgEx
CreateCompatibleDC
GetStockObject
CreatePatternBrush
SetPixelV
PtInRegion
CreateEllipticRgn
BitBlt

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

advapi32

AllocateAndInitializeSid
OpenProcessToken
RegOpenKeyExW
RegDeleteKeyW
GetTokenInformation
RegQueryValueExW
RegEnumKeyExW
RegQueryValueW
RegSetValueExW
RegQueryInfoKeyW
RegCreateKeyExW
FreeSid
RegEnumKeyW
RegCloseKey
RegDeleteValueW
CryptGenRandom
CheckTokenMembership
RegEnumValueW
RegQueryValueExA
RegOpenKeyExA

shell32

ExtractIconExW
ShellExecuteW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetFileInfoW
SHGetSpecialFolderLocation
ShellExecuteExW
SHGetPathFromIDListW
SHBrowseForFolderW
Shell_NotifyIconW
DuplicateIcon
SHGetDesktopFolder

ole32

CoTaskMemAlloc
OleInitialize
CoTaskMemFree
CLSIDFromString
OleDuplicateData
OleDestroyMenuDescriptor
CoUninitialize
OleCreateMenuDescriptor
IsAccelerator
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoTaskMemRealloc
DoDragDrop
CoGetClassObject
CoInitialize
CoLockObjectExternal
CoCreateInstance
OleIsCurrentClipboard
CreateStreamOnHGlobal
RevokeDragDrop
OleLockRunning
OleGetClipboard
CoCreateGuid
CoInitializeEx
OleTranslateAccelerator
CoRegisterClassObject
StringFromGUID2
CLSIDFromProgID
RegisterDragDrop
CoRevokeClassObject
CoFreeUnusedLibraries
OleFlushClipboard
CreateILockBytesOnHGlobal
OleUninitialize
ReleaseStgMedium
StgCreateDocfileOnILockBytes

oleaut32

VarBstrCat
VarBstrFromDate
SafeArrayDestroy
UnRegisterTypeLi
OleCreateFontIndirect
VariantCopy
VarBstrCmp
VariantChangeType
SysFreeString
SystemTimeToVariantTime
RegisterTypeLi
LoadTypeLi
SysAllocString
SysStringByteLen
VarUI4FromStr
SysAllocStringLen
VariantInit
VariantTimeToSystemTime
SysAllocStringByteLen
VariantClear
SysStringLen

comctl32

ImageList_DragMove
InitCommonControlsEx
ImageList_GetIconSize
_TrackMouseEvent
ImageList_DragShowNolock

shlwapi

PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathRemoveFileSpecW
PathStripToRootW

winmm

PlaySoundW

msimg32

AlphaBlend
TransparentBlt

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipDrawImageRectI
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipFree
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipSetInterpolationMode
GdipCreateFromHDC
GdipGetImageWidth
GdipAlloc
GdipGetImageGraphicsContext
GdipCreateBitmapFromStream
GdipDeleteGraphics
GdiplusStartup
GdipBitmapUnlockBits
GdipGetImageHeight
GdipCloneImage
GdipBitmapLockBits
GdiplusShutdown

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

uxtheme

OpenThemeData
CloseThemeData

Sections

.text
Size: 535KB - Virtual size: 535KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 247KB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

855c2ebac5c7dc608e53ea84e3edb25a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

msimg32

imm32

oledlg

gdiplus

oleacc

uxtheme

Sections

.text Size: 535KB - Virtual size: 535KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 247KB - Virtual size: 5.5MB

.tls Size: - Virtual size: 101B

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 535KB - Virtual size: 535KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 247KB - Virtual size: 5.5MB

.tls
Size: - Virtual size: 101B

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 16KB - Virtual size: 15KB