7374d5712e442b7976bcf92c9ba14d65f49cb9e21ab0e5433de4d7409d400242

Sharing

Copy URL Twitter E-mail

General

Target

7374d5712e442b7976bcf92c9ba14d65f49cb9e21ab0e5433de4d7409d400242
Size

304KB
MD5

e147c4209e539c00fa16d20add28770f
SHA1

79740099317a0c205c8abc938d1bfc7bb9b8e5a9
SHA256

7374d5712e442b7976bcf92c9ba14d65f49cb9e21ab0e5433de4d7409d400242
SHA512

4df5591b9086dafb22ad95a42775719d0ceda04fc832297a8dffc8ec46c3ac4e3c4e0d9f4d2f0a957f23785a7dd26d324ab2b82942f267534dd9929b0f253ec5
SSDEEP

6144:bwQqVEV9IPefYi0RjFUqBsA2HPKzXL0XwfgViPmJcr0:OYIPefYB5YAGuWV

Score

N/A

Malware Config

Signatures

Files

7374d5712e442b7976bcf92c9ba14d65f49cb9e21ab0e5433de4d7409d400242
.dll windows x86

39d2437ac3ac506c45daa44d4127a13b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerInstallFileW
VerInstallFileA
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA

gdi32

TextOutW
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextColor
SetMapMode
SetDIBitsToDevice
SelectObject
ScaleViewportExtEx
SaveDC
CreateBitmap
CreatePenIndirect
DeleteDC
EnumFontFamiliesExW
Escape
ExtTextOutW
GdiPlayScript
GetClipBox
GetObjectW
OffsetViewportOrgEx
PtVisible
RectVisible
RestoreDC

ws2_32

WSAAsyncSelect
WSACleanup
WSAGetLastError
WSAStartup
bind
closesocket
socket
shutdown
setsockopt
sendto
send
recv
ntohs
listen
inet_addr
htonl
getpeername

opengl32

glClearAccum
glCallLists
glBlendFunc
glAccum
glClipPlane
glColor3bv
glCullFace
glEvalCoord1dv
glEvalCoord2dv
glFogfv
glGetFloatv
glLightModelf
glNormal3fv
glPixelTransferi
glReadBuffer
glTexCoord3fv
glVertex4f
glBitmap

comdlg32

LoadAlterBitmap
Ssync_ANSI_UNICODE_Struct_For_WOW
WantArrows
dwOKSubclass
GetFileTitleW

shlwapi

ColorAdjustLuma
StrCatW
UrlIsNoHistoryW
PathFindExtensionW

winspool.drv

ReadPrinter
OpenPrinterW
FlushPrinter
DocumentPropertiesW
DEVICEMODE
ConvertUnicodeDevModeToAnsiDevmode
ClosePrinter

user32

PeekMessageW
PeekMessageA
PackDDElParam
MsgWaitForMultipleObjectsEx
ModifyMenuW
MessageBoxW
MapWindowPoints
MapDialogRect
LoadStringW
LoadIconW
LoadCursorW
LoadBitmapW
IsWindowVisible
IsWindow
IsIconic
IsDialogMessageW
IsClipboardFormatAvailable
ImpersonateDdeClientWindow
GrayStringW
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropW
GetProcessWindowStation
GetParent
GetNextDlgTabItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
PostMessageW
GetKeyboardType
GetKeyState
UnregisterClassA
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetCursorPos
GetClipboardViewer
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCaretBlinkTime
GetCapture
GetAsyncKeyState
GetActiveWindow
ExitWindowsEx
EndPaint
EndDialog
EnableMenuItem
DrawTextW
DrawTextExW
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DefWindowProcW
DdeClientTransaction
CreateWindowExW
CreateDialogIndirectParamW
CopyRect
CopyImage
ClientToScreen
CheckMenuItem
CharUpperW
CallWindowProcW
CallNextHookEx
BeginPaint
AllowSetForegroundWindow
AdjustWindowRectEx
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterShellHookWindow
RegisterClassW
RegisterWindowMessageW
ReleaseDC
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCursor
SetDebugErrorLevel
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetPropW
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
SetWindowsHookExW
ShowWindow
SystemParametersInfoA
TabbedTextOutW
TranslateMessage
UnhookWindowsHookEx
UnregisterClassW
UpdateWindow
ValidateRect
WaitMessage
WinHelpW
keybd_event
GetLastActivePopup
GetForegroundWindow

kernel32

WriteConsoleW
WriteFile
_hread
_lclose
_lopen
WriteConsoleA
WinExec
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
_lread
lstrcmpA
lstrcmpW
lstrcmpiW
lstrlenA
lstrlenW
WritePrivateProfileStringW
VirtualProtect
VirtualFree
VirtualAlloc
UnlockFile
UnhandledExceptionFilter
TryEnterCriticalSection
TransmitCommChar
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetThreadIdealProcessor
SetStdHandle
SetLastError
SetHandleCount
SetFilePointer
SetEvent
SetErrorMode
SetEnvironmentVariableA
SetEndOfFile
SetConsoleCursor
SetCommBreak
RtlUnwind
ResumeThread
ResetEvent
ReadFile
RaiseException
QueryPerformanceCounter
Process32Next
OpenEventW
MultiByteToWideChar
MulDiv
MapUserPhysicalPages
LockResource
LockFile
LocalUnlock
LocalSize
LocalReAlloc
LocalLock
LocalFree
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsDebuggerPresent
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalReAlloc
GlobalHandle
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalDeleteAtom
GlobalCompact
GlobalAlloc
GlobalAddAtomW
GetWriteWatch
GetVolumeInformationW
GetVersionExW
GetVersionExA
GetVersion
GetTimeZoneInformation
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoW
GetStartupInfoA
GetProcessIoCounters
GetProcessHeap
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetLargestConsoleWindowSize
GetHandleInformation
GetFullPathNameW
GetFileType
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetExitCodeThread
GetEnvironmentStringsW
GetEnvironmentStringsA
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetConsoleOutputCP
GetConsoleMode
EnterCriticalSection
GetConsoleCP
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
Beep
CancelIo
CloseHandle
CompareStringA
CompareStringW
ConvertDefaultLocale
CreateEventW
CreateFileA
CreateFileW
CreateThread
DeleteCriticalSection
DisconnectNamedPipe
DuplicateHandle
FreeEnvironmentStringsA
EnumResourceLanguagesW
EscapeCommFunction
ExitProcess
ExitThread
FatalExit
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindResourceExW
FindResourceW
FlushFileBuffers
FormatMessageW

oleaut32

VarDateFromI2
SafeArrayCreate
SafeArrayDestroy
SafeArrayGetElement
SafeArrayGetLBound
VariantInit
VariantClear
VariantChangeType
CreateStdDispatch
SysFreeString
SysAllocStringLen
SysAllocString
SafeArrayGetUBound

advapi32

GetSidIdentifierAuthority
GetLengthSid
GetAce
FreeSid
FreeEncryptionCertificateHashList
DeregisterEventSource
GetSidSubAuthorityCount
GetTokenInformation
InitializeAcl
InitializeSecurityDescriptor
IsValidSid
LookupAccountNameW
LsaGetSystemAccessAccount
MakeAbsoluteSD
OpenSCManagerW
OpenThreadToken
QueryServiceStatus
RegCloseKey
RegCreateKeyExW
AddAccessAllowedObjectAce
AllocateAndInitializeSid
CloseServiceHandle
CopySid
CreateServiceW
CryptDuplicateKey
RegCreateKeyW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegOpenKeyExW
StartServiceCtrlDispatcherW
SetServiceStatus
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
ReportEventW
RegisterServiceCtrlHandlerW
RegSetValueExW
RegSetKeySecurity
RegQueryValueW
RegQueryValueExW
RegOpenKeyW
GetSidSubAuthority

ole32

CoCreateInstance
CoInitializeEx
CoInitializeSecurity
CoRegisterClassObject
CoRevokeClassObject
CoSetProxyBlanket
HENHMETAFILE_UserSize
OpenOrCreateStream
SetDocumentBitStg

Sections

.text
Size: 218KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39d2437ac3ac506c45daa44d4127a13b

Headers

File Characteristics

Imports

version

gdi32

ws2_32

opengl32

comdlg32

shlwapi

winspool.drv

user32

kernel32

oleaut32

advapi32

ole32

Sections

.text Size: 218KB - Virtual size: 220KB

.rdata Size: 30KB - Virtual size: 31KB

.data Size: 22KB - Virtual size: 23KB

.idata Size: 11KB - Virtual size: 11KB

.rsrc Size: 21KB - Virtual size: 23KB

.text
Size: 218KB - Virtual size: 220KB

.rdata
Size: 30KB - Virtual size: 31KB

.data
Size: 22KB - Virtual size: 23KB

.idata
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 21KB - Virtual size: 23KB