60520ceeec23d76c0e30e4e407d12845d8adca8b4555b0a4345ec5de183c55d2

Sharing

Copy URL Twitter E-mail

General

Target

60520ceeec23d76c0e30e4e407d12845d8adca8b4555b0a4345ec5de183c55d2
Size

427KB
MD5

b9bc9288aaf52251e980d4af5d38bcc0
SHA1

06868f0fd1d6f44fc3a23ec4207b2a38dc71db2d
SHA256

60520ceeec23d76c0e30e4e407d12845d8adca8b4555b0a4345ec5de183c55d2
SHA512

bd00c23d678173b5a3f0a4cb76fef88ff6964d3047597546cd234d1da34408493c9c6c9477974d3e590b1fa5d29cad2a1df31416fe075a87afd8636aa06e0c79
SSDEEP

6144:tChOoMxmcx/Jy1cB7F3rsm/9AZpxVhGRpT+ICHWLiNmLKxHgnoEmexcl9IbF2Rqg:tHPmIPRs3ZpxKRlZ1UxAn+eOlex2AAfx

Score

N/A

Malware Config

Signatures

Files

60520ceeec23d76c0e30e4e407d12845d8adca8b4555b0a4345ec5de183c55d2
.dll windows x86

cc6ad588196f51f00178d6bffe13ccf3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowsHookExA
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutA
TrackPopupMenu
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
SetWindowTextW
SetWindowTextA
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetWindowLongA
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropA
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetDlgItemTextA
SetDlgItemInt
SetCursor
SetCapture
SetActiveWindow
SendMessageW
SendMessageA
SendDlgItemMessageA
ScrollWindowEx
ScrollWindow
ScreenToClient
RemovePropA
RemoveMenu
UnregisterClassA
UpdateWindow
ValidateRect
WinHelpA
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterWindowMessageA
RegisterClassW
RegisterClassExW
RegisterClassA
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
PostMessageA
PeekMessageW
PeekMessageA
OffsetRect
MoveWindow
ModifyMenuA
AdjustWindowRectEx
MessageBoxA
MapWindowPoints
LoadImageW
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
LoadBitmapA
KillTimer
IsWindowVisible
IsWindowEnabled
IsWindow
IsIconic
IsDlgButtonChecked
IsDialogMessageA
IsChild
InvalidateRect
IntersectRect
InsertMenuA
InflateRect
GrayStringA
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthA
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropA
GetParent
GetNextDlgTabItem
GetMessageW
GetMessageTime
GetMessagePos
GetMessageA
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyState
GetForegroundWindow
GetFocus
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDialogBaseUnits
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoExW
GetClassInfoExA
GetClassInfoA
GetCapture
GetActiveWindow
FindWindowW
FillRect
ExitWindowsEx
EqualRect
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
DrawTextW
DrawTextExA
DrawTextA
DrawFocusRect
DrawEdge
DispatchMessageW
DispatchMessageA
DialogBoxParamW
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
DefDlgProcW
CreateWindowExW
CreateWindowExA
CreateDialogParamW
CreateDialogIndirectParamA
CopyRect
ClientToScreen
CheckRadioButton
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperA
CharNextW
CharLowerW
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BeginPaint
BeginDeferWindowPos
AppendMenuA
MessageBoxW

gdi32

SetViewportExtEx
SetTextJustification
SetTextColor
SetTextCharacterExtra
SetTextAlign
SetStretchBltMode
SetRectRgn
SetROP2
SetPolyFillMode
SetMapperFlags
SetMapMode
SetGraphicsMode
SetDIBColorTable
SetColorAdjustment
SetBkMode
SetBkColor
SetArcDirection
SelectPalette
SelectObject
SelectClipRgn
SelectClipPath
ScaleWindowExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
PtVisible
PolylineTo
Polygon
PolyDraw
PolyBezierTo
PlayMetaFileRecord
PlayMetaFile
PatBlt
OffsetWindowOrgEx
OffsetViewportOrgEx
OffsetClipRgn
MoveToEx
ModifyWorldTransform
LineTo
IntersectClipRect
GetWindowExtEx
SetViewportOrgEx
GetTextMetricsA
GetTextExtentPoint32A
GetStockObject
GetPixel
GetObjectW
GetObjectType
GetObjectA
GetMapMode
GetDeviceCaps
GetDCOrgEx
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExtTextOutA
ExtSelectClipRgn
ExtCreatePen
ExcludeClipRect
Escape
EnumMetaFile
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePen
CreatePatternBrush
CreateHatchBrush
CreateFontIndirectW
CreateFontIndirectA
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileA
CombineRgn
BitBlt
ArcTo
TextOutA
SetWindowExtEx
SetWindowOrgEx
SetWorldTransform
StartDocA
StretchBlt
GetViewportExtEx

wininet

InternetGetCookieA
HttpOpenRequestA
HttpQueryInfoA
HttpSendRequestA
FtpCommandA
FtpCreateDirectoryA
FtpDeleteFileA
FtpFindFirstFileA
FtpGetCurrentDirectoryA
FtpGetFileA
FtpOpenFileA
FtpPutFileA
FtpRemoveDirectoryA
FtpRenameFileA
FtpSetCurrentDirectoryA
GopherCreateLocatorA
GopherFindFirstFileA
GopherGetAttributeA
GopherOpenFileA
HttpAddRequestHeadersA
HttpSendRequestExA
InternetCanonicalizeUrlA
InternetWriteFile
InternetSetStatusCallbackA
InternetSetOptionExA
InternetSetFilePointer
InternetSetCookieA
InternetReadFile
InternetQueryOptionA
InternetQueryDataAvailable
InternetOpenUrlA
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
InternetFindNextFileA
InternetErrorDlg
InternetCrackUrlA
InternetConnectA
HttpEndRequestA

shlwapi

PathCanonicalizeW
PathCombineW
PathFindExtensionA
PathFindFileNameA
PathIsUNCA
PathRemoveExtensionA
PathRemoveFileSpecW
PathStripToRootA
UrlUnescapeA

advapi32

AllocateAndInitializeSid
CheckTokenMembership
FreeSid
LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegCreateKeyA
RegCreateKeyExA
RegCreateKeyExW
RegCreateKeyW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueA
RegDeleteValueW
RegEnumKeyA
RegEnumKeyExW
RegOpenKeyA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueA
RegQueryValueExA
RegQueryValueExW
RegSetValueA
RegSetValueExA
RegSetValueExW
AdjustTokenPrivileges

oleaut32

SafeArrayAllocDescriptor
VarCyFromStr
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
SystemTimeToVariantTime
SysStringLen
SysStringByteLen
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SysAllocStringByteLen
SafeArrayUnlock
SafeArrayUnaccessData
SafeArrayRedim
VariantTimeToSystemTime
VariantInit
VariantCopy
VariantClear
VariantChangeType
VarUI4FromStr
VarR8FromStr
VarI4FromStr
VarDecFromStr
VarDecCmp
SafeArrayAccessData
SafeArrayAllocData
VarDateFromStr
SafeArrayCopy
SafeArrayCreate
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayGetDim
SafeArrayGetElement
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayPutElement

winmm

PlaySoundW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoTreatAsClass
CreateBindCtx
CreateStreamOnHGlobal
CoDisconnectObject
OleRegGetUserType
ReadClassStg
ReadFmtUserTypeStg
ReleaseStgMedium
SetConvertStg
StringFromCLSID
CoCreateInstance
OleDuplicateData
CLSIDFromString
StringFromGUID2
WriteClassStg
WriteFmtUserTypeStg

comctl32

ord17
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Draw
ImageList_Destroy
_TrackMouseEvent

shell32

SHGetFileInfoA
SHGetSpecialFolderPathW
ShellExecuteW
ExtractIconA

kernel32

CreateFileMappingW
CreateFileA
CreateEventA
CreateDirectoryW
CreateDirectoryA
CopyFileA
ConvertDefaultLocale
CompareStringW
CompareStringA
CloseHandle
CreateMutexA
CreateProcessW
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DuplicateHandle
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalReAlloc
LockFile
EnterCriticalSection
MapViewOfFileEx
MoveFileA
MoveFileExA
MulDiv
MultiByteToWideChar
OpenMutexA
OpenProcess
QueryPerformanceCounter
RaiseException
ReadFile
ResumeThread
GlobalFree
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
GlobalGetAtomNameA
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
EnumResourceLanguagesA
EnumSystemLocalesA
ExitProcess
ExitThread
FatalAppExitA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceA
FindResourceExW
FindResourceW
FindVolumeClose
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetAtomNameA
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNumberFormatW
GetOEMCP
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeExW
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadLocale
GetTickCount
GetTimeFormatA
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GetVersionExW
GetVolumeInformationA
GetVolumeInformationW
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
LockResource
GlobalFlags
lstrlenW
lstrlenA
lstrcmpiW
lstrcmpiA
lstrcmpW
lstrcmpA
WritePrivateProfileStringA
LoadLibraryW
WriteConsoleW
WriteConsoleA
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnmapViewOfFile
UnlockFile
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SystemTimeToFileTime
SuspendThread
SizeofResource
SetUnhandledExceptionFilter
SetThreadPriority
SetStdHandle
SetLastError
SetHandleCount
SetFileTime
SetFilePointer
SetFileAttributesA
SetEvent
SetErrorMode
SetEnvironmentVariableA
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
RtlUnwind
WriteFile

comdlg32

ChooseFontW
GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

Exports

Exports

AcquireThread
FromMemory
GetFrame
NewWrapper
set_text

Sections

.text
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cc6ad588196f51f00178d6bffe13ccf3

Headers

File Characteristics

Imports

user32

gdi32

wininet

shlwapi

advapi32

oleaut32

winmm

ole32

comctl32

shell32

kernel32

comdlg32

winspool.drv

Exports

Exports

Sections

.text Size: 70KB - Virtual size: 69KB

.rdata Size: 259KB - Virtual size: 258KB

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 23KB - Virtual size: 23KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 70KB - Virtual size: 69KB

.rdata
Size: 259KB - Virtual size: 258KB

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 23KB - Virtual size: 23KB

.reloc
Size: 3KB - Virtual size: 3KB