2fae97bea8cadcbdeb67e8b38490d5f22bf5875017566a8eb7ee01d4350ef01f

Sharing

Copy URL Twitter E-mail

General

Target

2fae97bea8cadcbdeb67e8b38490d5f22bf5875017566a8eb7ee01d4350ef01f
Size

437KB
MD5

7e87a15a692aeb777292ee55e3ee51f0
SHA1

8ebb0f75d39cb68d9a1e68752ec610e5c90002f4
SHA256

2fae97bea8cadcbdeb67e8b38490d5f22bf5875017566a8eb7ee01d4350ef01f
SHA512

b2beca8c4ca26ca49f9f0cc4ac04d00c4f7470e145a2df7b81709ee77dd52941ab6933897c2b19a25c7b924dfd15b6c1161d708c697d3b818c997f62c8ed89ef
SSDEEP

6144:Ssfb1fYtqYAFON7Xs2aqW3/9p4QL0oevRn7iLC1//fojujhB8EwqQQoCV3erZ+v:Xxwtq8NpaqWIQ0omR0UniqhB8EoWYU

Score

N/A

Malware Config

Signatures

Files

2fae97bea8cadcbdeb67e8b38490d5f22bf5875017566a8eb7ee01d4350ef01f
.dll windows x86

e6f233f3638dadcbbb03bbcab79b9f0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

_TrackMouseEvent
ord17
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Draw
ImageList_Destroy

wininet

FtpCommandA
FtpCreateDirectoryA
FtpDeleteFileA
FtpFindFirstFileA
FtpGetCurrentDirectoryA
FtpGetFileA
FtpOpenFileA
FtpPutFileA
FtpRemoveDirectoryA
FtpRenameFileA
FtpSetCurrentDirectoryA
GopherCreateLocatorA
GopherFindFirstFileA
GopherGetAttributeA
GopherOpenFileA
HttpAddRequestHeadersA
HttpEndRequestA
HttpOpenRequestA
HttpQueryInfoA
HttpSendRequestA
HttpSendRequestExA
InternetCanonicalizeUrlA
InternetCloseHandle
InternetConnectA
InternetCrackUrlA
InternetErrorDlg
InternetFindNextFileA
InternetGetCookieA
InternetGetLastResponseInfoA
InternetOpenA
InternetOpenUrlA
InternetQueryDataAvailable
InternetQueryOptionA
InternetReadFile
InternetSetCookieA
InternetSetFilePointer
InternetSetOptionExA
InternetSetStatusCallbackA
InternetWriteFile

gdi32

TextOutA
StretchBlt
StartDocA
SetWorldTransform
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextJustification
SetTextColor
SetTextCharacterExtra
SetTextAlign
ArcTo
BitBlt
CombineRgn
CopyMetaFileA
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBPatternBrushPt
CreateDIBSection
CreateDIBitmap
CreateFontIndirectA
CreateFontIndirectW
CreateHatchBrush
CreatePatternBrush
CreatePen
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
DPtoLP
DeleteDC
DeleteObject
EnumMetaFile
Escape
ExcludeClipRect
ExtCreatePen
ExtSelectClipRgn
ExtTextOutA
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetDCOrgEx
GetDeviceCaps
GetMapMode
GetObjectA
GetObjectType
GetObjectW
GetPixel
GetStockObject
GetTextExtentPoint32A
GetTextMetricsA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
ModifyWorldTransform
MoveToEx
OffsetClipRgn
OffsetViewportOrgEx
OffsetWindowOrgEx
PatBlt
PlayMetaFile
PlayMetaFileRecord
PolyBezierTo
PolyDraw
Polygon
PolylineTo
PtVisible
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipPath
SelectClipRgn
SelectObject
SelectPalette
SetArcDirection
SetBkColor
SetBkMode
SetColorAdjustment
SetDIBColorTable
SetGraphicsMode
SetMapMode
SetMapperFlags
SetPolyFillMode
SetROP2
SetRectRgn
SetStretchBltMode

kernel32

WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW
WideCharToMultiByte
CloseHandle
CompareStringA
CompareStringW
ConvertDefaultLocale
CopyFileA
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileMappingW
CreateMutexA
CreateProcessW
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DuplicateHandle
EnterCriticalSection
EnumResourceLanguagesA
EnumSystemLocalesA
ExitProcess
ExitThread
FatalAppExitA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceA
FindResourceExW
FindResourceW
FindVolumeClose
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetAtomNameA
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNumberFormatW
GetOEMCP
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeExW
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadLocale
GetTickCount
GetTimeFormatA
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GetVersionExW
GetVolumeInformationA
GetVolumeInformationW
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFlags
GlobalFree
GlobalGetAtomNameA
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalReAlloc
LockFile
LockResource
MapViewOfFileEx
MoveFileA
MoveFileExA
MulDiv
MultiByteToWideChar
OpenMutexA
OpenProcess
QueryPerformanceCounter
RaiseException
ReadFile
ResumeThread
RtlUnwind
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
SuspendThread
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHGetFileInfoA
ExtractIconA

oleaut32

VarBstrFromDate
VariantClear
VariantChangeType
VarUI4FromStr
VarR8FromStr
VarI4FromStr
VarDecFromStr
VarDecCmp
VarDateFromStr
VariantTimeToSystemTime
VariantInit
VarCyFromStr
VarBstrFromDec
VarBstrFromCy
SystemTimeToVariantTime
SysStringLen
SafeArrayAccessData
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayCreate
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayGetDim
SafeArrayGetElement
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayRedim
SafeArrayUnaccessData
SafeArrayUnlock
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysReAllocStringLen
SysStringByteLen
VariantCopy

advapi32

RegOpenKeyA
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegSetValueExW
RegSetValueExA
RegSetValueA
RegQueryValueExW
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyExA
AdjustTokenPrivileges
RegEnumKeyExW
RegEnumKeyA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExW
RegCreateKeyExA
RegCreateKeyA

winmm

PlaySoundW

user32

ValidateRect
WinHelpA
UnregisterClassA
UnhookWindowsHookEx
TranslateMessage
TrackPopupMenuEx
TrackPopupMenu
TabbedTextOutA
SystemParametersInfoW
SystemParametersInfoA
ShowWindow
ShowScrollBar
ShowOwnedPopups
SetWindowsHookExA
SetWindowTextW
SetWindowTextA
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetWindowLongA
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropA
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetDlgItemTextW
UpdateWindow
AdjustWindowRectEx
AppendMenuA
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
CallWindowProcW
CharLowerA
CharLowerW
CharNextW
CharUpperA
CharUpperW
CheckDlgButton
CheckMenuItem
CheckRadioButton
ClientToScreen
CopyRect
CreateDialogIndirectParamA
CreateDialogParamW
CreateWindowExA
CreateWindowExW
DefDlgProcW
DefWindowProcA
DefWindowProcW
DeferWindowPos
DeleteMenu
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxParamW
DispatchMessageA
DispatchMessageW
DrawEdge
DrawFocusRect
DrawTextA
DrawTextExA
DrawTextW
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EqualRect
ExitWindowsEx
FillRect
FindWindowW
GetActiveWindow
GetCapture
GetClassInfoA
GetClassInfoExA
GetClassInfoExW
GetClassLongA
GetClassNameA
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetKeyState
SetDlgItemTextA
GetMenu
GetMenuCheckMarkDimensions
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetMessageA
GetMessagePos
GetMessageTime
GetMessageW
GetNextDlgTabItem
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetTopWindow
GetWindow
GetWindowDC
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowTextW
GetWindowThreadProcessId
GrayStringA
InflateRect
InsertMenuA
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsDlgButtonChecked
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
KillTimer
LoadBitmapA
LoadCursorA
LoadCursorW
LoadIconA
LoadIconW
LoadImageW
MapWindowPoints
MessageBoxA
MessageBoxW
ModifyMenuA
MoveWindow
OffsetRect
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterClassA
RegisterClassExW
RegisterClassW
RegisterWindowMessageA
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
ScrollWindowEx
SendDlgItemMessageA
SendMessageA
SendMessageW
SetActiveWindow
SetCapture
SetCursor
SetDlgItemInt
GetLastActivePopup

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comdlg32

GetFileTitleA
ChooseFontW

shlwapi

PathCanonicalizeW
PathRemoveFileSpecW
PathRemoveExtensionA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA
PathCombineW
PathStripToRootA
UrlUnescapeA

ole32

CLSIDFromString
CoCreateInstance
CoDisconnectObject
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoTreatAsClass
CreateBindCtx
CreateStreamOnHGlobal
OleDuplicateData
OleRegGetUserType
ReadClassStg
ReadFmtUserTypeStg
ReleaseStgMedium
SetConvertStg
StringFromCLSID
StringFromGUID2
WriteClassStg
WriteFmtUserTypeStg

Exports

Exports

AsDecodedObject
AsString
ExceptionMatches
IsTrue
SystemExit
set_strip_alpha

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6f233f3638dadcbbb03bbcab79b9f0d

Headers

File Characteristics

Imports

comctl32

wininet

gdi32

kernel32

shell32

oleaut32

advapi32

winmm

user32

winspool.drv

comdlg32

shlwapi

ole32

Exports

Exports

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 264KB - Virtual size: 264KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 264KB - Virtual size: 264KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 4KB - Virtual size: 4KB