8671685f27696630a169a5685c94685ac6ce0208720ae8ce58cfc7ac3b24c27a

Sharing

Copy URL Twitter E-mail

General

Target

8671685f27696630a169a5685c94685ac6ce0208720ae8ce58cfc7ac3b24c27a
Size

267KB
MD5

a2d430b884a4667d87a5051c594f578f
SHA1

f1fca68eac4bda83a906138be18baac0dae1fac7
SHA256

8671685f27696630a169a5685c94685ac6ce0208720ae8ce58cfc7ac3b24c27a
SHA512

277990137c60ec8981515eac724beb4244ac7d16898cf30a3962a4e654ec5d93da31dd238972426e1f5ef2beafe4efc4fd1e4d5746323b6b8ece0b5ba50803bb
SSDEEP

6144:K8tugIAx1DCd+S6f3vjeUCinLiwv3j7b:KzAx1DCdZ6ffjeFULiw

Score

N/A

Malware Config

Signatures

Files

8671685f27696630a169a5685c94685ac6ce0208720ae8ce58cfc7ac3b24c27a
.exe windows x86

c22ee3ede7277d3909c1cb440ebdae64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetCompositionStringW
ImmReleaseContext
ImmNotifyIME
ImmIsIME
ImmSetCandidateWindow
ImmGetContext
ImmAssociateContextEx
ImmAssociateContext

wininet

InternetGetLastResponseInfoA
HttpQueryInfoA
InternetSetOptionA
InternetQueryOptionA
InternetCombineUrlA
HttpOpenRequestA
InternetOpenA
InternetReadFile
HttpSendRequestA
InternetErrorDlg
InternetConnectA
InternetCloseHandle

comdlg32

GetSaveFileNameW
GetOpenFileNameW
PrintDlgA

user32

SendMessageTimeoutA
GetDlgCtrlID
DeferWindowPos
BeginDeferWindowPos
MoveWindow
GetCaretBlinkTime
RegisterClassW
UnregisterClassA
GetParent
GetWindowLongW
CreateCaret
EqualRect
ScrollWindowEx
GetClassInfoExW
SetTimer
UpdateWindow
ReleaseDC
SetClipboardData
SystemParametersInfoA
SetScrollInfo
CallNextHookEx
InvertRect
GetWindowRect
GetAsyncKeyState
DrawFrameControl
CountClipboardFormats
FillRect
WindowFromPoint
GetDialogBaseUnits
SetFocus
SetCursor
FlashWindow
GetMenuState
GetCursorPos
RegisterClassExW
OffsetRect
GetKeyState
IsWindow
CreateDialogIndirectParamW
EndPaint
DestroyIcon
IsWindowUnicode
LoadCursorA
SendMessageA
RegisterClassA
GetCapture
RegisterClipboardFormatW
CallWindowProcW
GetSysColor
DrawIconEx
SetWindowTextW
SetWindowPos
GetClipboardData
GetClipboardSequenceNumber
TranslateMessage
IsWindowVisible
MapWindowPoints
EndDialog
EnableMenuItem
GetDesktopWindow
GetScrollInfo
CopyRect
DrawTextA
GetDoubleClickTime
SetActiveWindow
LoadCursorW
DefWindowProcW
AdjustWindowRectEx
GetSysColorBrush
GetMessageA
SetWindowLongW
ShowWindow
UnregisterClassW
MonitorFromWindow
DispatchMessageA
EnableWindow
PostMessageW
ScrollDC
GetSystemMetrics
SetCaretPos
PeekMessageA
GetWindowTextW
EmptyClipboard
RegisterWindowMessageW
CreateWindowExA
GetDC
KillTimer
IsChild
GetWindowThreadProcessId
GetActiveWindow
PostQuitMessage
DrawEdge
PostMessageA
NotifyWinEvent
GetWindowLongA
GetGuiResources
LoadCursorFromFileA
InflateRect
CreateCursor
InvalidateRect
EnumClipboardFormats
ReleaseCapture
CreateWindowExW
EndDeferWindowPos
SendMessageW
DrawTextW
SetCapture
PtInRect
GetWindowPlacement
BeginPaint
GetKeyboardLayout
GetFocus
UnhookWindowsHookEx
DialogBoxIndirectParamW
GetIconInfo
OpenClipboard
AnimateWindow
GetWindowDC
RegisterWindowMessageA
DestroyCaret
IsIconic
RegisterClassExA
CreateIconFromResourceEx
SetWindowsHookExW
GetMonitorInfoW
DefWindowProcA
MessageBeep
DestroyWindow
IsWindowEnabled
GetSystemMenu
LoadIconW
GetUpdateRect
GetClientRect
GetClassLongA
LoadStringW
SetWindowLongA
GetWindow
SetForegroundWindow
CloseClipboard
IsClipboardFormatAvailable

ole32

CoCreateGuid
CoCreateInstance
ReleaseStgMedium
RevokeDragDrop
RegisterDragDrop
DoDragDrop
OleInitialize

oleaut32

SysAllocStringLen

urlmon

FindMimeFromData

comctl32

ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_DrawEx

winmm

timeSetEvent
timeGetTime
timeKillEvent
timeGetDevCaps
PlaySoundA

oleacc

LresultFromObject
AccessibleObjectFromWindow

gdi32

CreateRectRgnIndirect
SetViewportOrgEx
GetLayout
GetTextExtentPoint32A
SelectObject
PatBlt
GetCurrentObject
StartPage
CreateCompatibleDC
GetViewportExtEx
EndPage
GetDeviceCaps
StartDocA
EnumFontFamiliesExA
GetWindowExtEx
CreateDIBSection
SetWindowOrgEx
GdiFlush
GetPixel
ExcludeClipRect
DeleteObject
TextOutW
CreateSolidBrush
GetWindowOrgEx
CreateDIBPatternBrushPt
GetStockObject
TextOutA
GetFontLanguageInfo
BitBlt
RestoreDC
SetPixel
GetTextExtentPoint32W
SetViewportExtEx
SetTextColor
EndDoc
StretchBlt
IntersectClipRect
RectVisible
CreatePatternBrush
SetMapMode
SetTextAlign
DeleteDC
GetDIBits
StretchDIBits
GetTextExtentExPointW
CreatePen
CreateCompatibleBitmap
GetTextAlign
SetWindowExtEx
SetBkMode
GetMapMode
SaveDC
GetTextMetricsA
CreateFontA
GetGlyphOutlineW
Rectangle
SetLayout
GetKerningPairsA
AddFontMemResourceEx
GetObjectA
CombineRgn
SetStretchBltMode
DPtoLP
SetBkColor
SetBrushOrgEx
GetClipBox
RoundRect
CreateHatchBrush
LPtoDP
EnumFontFamiliesExW
CreateBitmap
GetCharacterPlacementW

kernel32

GetModuleHandleW
SystemTimeToFileTime
GetLocalTime
AllocConsole
TlsGetValue
WaitForMultipleObjects
GetNumberFormatW
ProcessIdToSessionId
CompareStringW
SetHandleInformation
SetEndOfFile
GetTimeFormatW
CreatePipe
GetCurrentThreadId
FlushViewOfFile
SetThreadLocale
GetSystemTime
GetUserDefaultLCID
LeaveCriticalSection
IsProcessorFeaturePresent
UnmapViewOfFile
CreateFileW
LoadLibraryExW
FindFirstFileW
lstrlenA
CreateThread
GetTempPathA
FindResourceExW
WaitForSingleObject
GlobalFree
ExitThread
HeapDestroy
lstrlenW
VirtualFree
SetFilePointer
GlobalAlloc
HeapReAlloc
GetDateFormatW
FindResourceW
FlushFileBuffers
HeapFree
WideCharToMultiByte
GetFileSize
DeleteCriticalSection
GetTimeZoneInformation
GetTempFileNameA
FindNextFileW
TlsFree
GetComputerNameA
DisableThreadLibraryCalls
SizeofResource
FindResourceA
CreateMutexA
SetUnhandledExceptionFilter
MulDiv
GlobalUnlock
LockResource
GetCurrencyFormatW
TlsAlloc
EnterCriticalSection
GlobalLock
FormatMessageA
GlobalSize
FreeLibrary
ReadFile
TlsSetValue
GetProcessHeap
IsDebuggerPresent
SetLastError
GetSystemTimeAsFileTime
CloseHandle
OutputDebugStringW
WriteFile
GetThreadLocale
FileTimeToSystemTime
RaiseException
CreateEventA
MapViewOfFile
GetStdHandle
CreateFileMappingA
FlushInstructionCache
FindClose
UnhandledExceptionFilter
VirtualAlloc
LocalAlloc
HeapSize
SetStdHandle
LoadResource
CreateFileA
HeapAlloc
VirtualAllocEx

certcli

CAOIDCreateNew
CAGetCAFlags
CASetCertTypeFlagsEx
CASetCASecurity
CASetCertTypeExpiration
CAOIDAdd
CAOIDGetProperty
CADeleteLocalAutoEnrollmentObject

kbdtuq

KbdLayerDescriptor

Sections

.text
Size: 225KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Tciv
Size: 512B - Virtual size: 425B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RvmMymb
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.XtumTbb
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.GJGv
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VUzEutb
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.NPXEPyL
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DKXqFYL
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c22ee3ede7277d3909c1cb440ebdae64

Headers

DLL Characteristics

File Characteristics

Imports

imm32

wininet

comdlg32

user32

ole32

oleaut32

urlmon

comctl32

winmm

oleacc

gdi32

kernel32

certcli

kbdtuq

Sections

.text Size: 225KB - Virtual size: 224KB

.Tciv Size: 512B - Virtual size: 425B

.RvmMymb Size: 512B - Virtual size: 140B

.rdata Size: 9KB - Virtual size: 42KB

.XtumTbb Size: 2KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 88KB

.rsrc Size: 10KB - Virtual size: 10KB

.GJGv Size: 2KB - Virtual size: 2KB

.VUzEutb Size: 3KB - Virtual size: 3KB

.NPXEPyL Size: 512B - Virtual size: 179B

.DKXqFYL Size: 1KB - Virtual size: 1KB

.text
Size: 225KB - Virtual size: 224KB

.Tciv
Size: 512B - Virtual size: 425B

.RvmMymb
Size: 512B - Virtual size: 140B

.rdata
Size: 9KB - Virtual size: 42KB

.XtumTbb
Size: 2KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 88KB

.rsrc
Size: 10KB - Virtual size: 10KB

.GJGv
Size: 2KB - Virtual size: 2KB

.VUzEutb
Size: 3KB - Virtual size: 3KB

.NPXEPyL
Size: 512B - Virtual size: 179B

.DKXqFYL
Size: 1KB - Virtual size: 1KB