687f462fa067e88f23b2c4161143877f4bf3844c84b0e9b2098141df4b1ffbd5

Sharing

Copy URL Twitter E-mail

General

Target

687f462fa067e88f23b2c4161143877f4bf3844c84b0e9b2098141df4b1ffbd5
Size

128KB
MD5

edd681ba0ac02bbe90f2eb0e45100993
SHA1

54424fde0432fea56836dd525589c3ab3af2a284
SHA256

687f462fa067e88f23b2c4161143877f4bf3844c84b0e9b2098141df4b1ffbd5
SHA512

30af20bfa50f322aecba229f35692fdb14fe337c9dc600d055d7979f9556adf0e4be73216c098db64967dfc479d81d23d057c61b15543ee079052d2bc5fbc0cc
SSDEEP

3072:jeOUgxrhOKqbFsC8+ESE3as8bE73hkNCbJxjy/ALx3xJ4:i8lOzs3+HxZbEtkIxjvTJ4

Score

N/A

Malware Config

Signatures

Files

687f462fa067e88f23b2c4161143877f4bf3844c84b0e9b2098141df4b1ffbd5
.dll windows x86

aed37c88f01ee816ca219052b1be0172

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetHandleInformation
VirtualAlloc
IsValidLocale
WriteFileGather
HeapSummary
DeleteVolumeMountPointA
GetPrivateProfileStringW
SetConsoleCursor
GlobalMemoryStatus
SetEvent
GetProcAddress
SetConsoleInputExeNameW
GetCommState
ReadFileScatter
FileTimeToSystemTime
AreFileApisANSI
FlushInstructionCache
IsBadWritePtr
VirtualProtect
RegisterConsoleVDM
GetModuleHandleA
LoadLibraryA
GetSystemTime
GetConsoleWindow
VDMOperationStarted
GetLocalTime
GetCurrentDirectoryW
GlobalLock
GetLargestConsoleWindowSize
FindFirstFileExW
GetTickCount
GetBinaryTypeA
SetCommMask
InterlockedExchange
QueryPerformanceFrequency
GlobalUnWire
TlsFree
SetTimeZoneInformation
CreateFileMappingA
GetSystemDefaultLangID
FreeLibrary
UnhandledExceptionFilter
MapViewOfFile
ReplaceFile
FlushConsoleInputBuffer
lstrlenA
GetDiskFreeSpaceExW
GetSystemDefaultLCID
SetConsoleTitleW
FlushViewOfFile
CreateFileMappingW
GetConsoleInputWaitHandle
CreateEventA

user32

CreatePopupMenu
FrameRect
GrayStringW
GetMessageW
TileChildWindows
MsgWaitForMultipleObjectsEx
GetMenuDefaultItem
RegisterClassW
CreateAcceleratorTableA
TrackPopupMenuEx
GetDlgItem
GetAncestor
SetClipboardData
GetMenu
OffsetRect
SetForegroundWindow
LoadIconW
EnumClipboardFormats
GetKeyboardType
DdeClientTransaction
RegisterClassExA
SetWindowPos
CreateDialogParamA
DispatchMessageW
GetCaretBlinkTime
GetProcessDefaultLayout
CharToOemW
LoadMenuIndirectW
GetWindowTextW
SetCaretBlinkTime
GetDlgItemInt
MoveWindow
DdeImpersonateClient
EndMenu
GetDlgItemTextW
SetProcessDefaultLayout
InvertRect
GetClassInfoA
OemToCharW
FindWindowW
ScrollWindowEx
PeekMessageA
PostThreadMessageW

opengl32

glEvalCoord1d
glRotatef
glEvalCoord2f
glPushMatrix
glMatrixMode
glVertex2dv
glCopyTexSubImage2D
wglDeleteContext
glRasterPos2i
glMap2f
glStencilOp
glTexCoord3fv
glMapGrid1f
wglMakeCurrent
glPushName
glPopMatrix
glPopName
wglCreateContext
glColor3b
glTexCoord2i
glGetMapiv
glRects
glGetTexLevelParameteriv
glEvalCoord1f
glTexCoord1sv
glEvalCoord1dv
glColor3iv
glPixelTransferf
wglGetCurrentDC
glEdgeFlagPointer
glGetIntegerv
glMapGrid2f
glIsTexture
glGenLists
glIndexsv
glTexEnviv
glLightModelfv
glClearStencil
glLoadMatrixf
glColor3ub
glRasterPos3iv
wglSetLayerPaletteEntries
glFogfv
glTexGenfv
glDrawArrays
glIndexdv
glRasterPos2iv
glTexCoord1f
glColor3usv
glRasterPos4iv
glLoadName
glPointSize
glVertex3dv
glViewport
glColor3f
glTexCoord3i

shell32

SHQueryRecycleBinA
SheGetDirA
DragFinish
SHFormatDrive
StrStrIW
StrChrA
RegenerateUserEnvironment
StrChrIW
SHLoadInProc
InternalExtractIconListW
StrRStrW
StrStrA
ExtractAssociatedIconA
SHGetFileInfoA
SHGetPathFromIDListA
ShellHookProc
DragQueryFileA
SHInvokePrinterCommandA
FindExecutableA
StrCmpNW
InternalExtractIconListA
SHGetSpecialFolderPathA
SHFileOperationA
StrCmpNIA
ExtractIconExW
StrChrW
SHFileOperationW
Shell_NotifyIconA
CommandLineToArgvW
SHGetInstanceExplorer
StrCmpNIW
ExtractAssociatedIconExA
StrChrIA
CheckEscapesW
ExtractIconExA
StrStrW
SHGetDesktopFolder
ord179
ExtractIconW
SheChangeDirA
StrRChrA
SHFreeNameMappings
FindExecutableW
StrRStrIW
StrNCmpIW
Shell_NotifyIconW
StrNCmpA
SHChangeNotify
SheChangeDirExW
SHGetDiskFreeSpaceA
SHQueryRecycleBinW
StrNCmpIA
DoEnvironmentSubstW

shlwapi

PathCreateFromUrlA
PathAddExtensionA
StrIsIntlEqualA
PathSkipRootA
UrlUnescapeW
SHDeleteKeyW
SHDeleteOrphanKeyW
PathRemoveFileSpecW
PathMakeSystemFolderA
SHGetInverseCMAP
PathRemoveExtensionW
PathFindFileNameA
PathIsRelativeA
SHEnumValueA
PathCombineA
ChrCmpIW
PathFileExistsW
PathIsFileSpecA
PathIsDirectoryW
SHRegQueryUSValueW
PathIsSystemFolderW
PathRelativePathToA
PathIsFileSpecW
SHOpenRegStreamW
PathRenameExtensionA
PathCreateFromUrlW

winmm

timeGetTime
PlaySoundA
timeGetSystemTime
midiInUnprepareHeader

msvcrt

_mbsset
_mbsncpy
_fputchar
_wfindfirsti64
fputs
_mbsnbcmp
ferror
fread
_wstrdate
_wcsncoll
iswupper
difftime
_strerror
fwrite
_flushall
fclose
_Getmonths
wcstombs
wcscmp
_strncoll
fprintf
printf
ftell
fopen
_atoi64
setbuf
isleadbyte
_mbsnbicoll
_wspawnv
_wmkdir
memset
log10
_getws
_unlink
fwprintf
feof
_lseek
_pwctype
fputc
ceil
sprintf
fsetpos
_statusfp
fseek

Exports

Exports

Bcwpmmosp
Beveh
Bqwlbakro
Hajntqu
Inquduk
Iwfkxivma
Jjtkf
Kmdhvlw
Knebhph
Lmhuy
Nvifakz

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aed37c88f01ee816ca219052b1be0172

Headers

File Characteristics

Imports

kernel32

user32

opengl32

shell32

shlwapi

winmm

msvcrt

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 12KB - Virtual size: 8KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 12KB - Virtual size: 8KB