1286964d72350aa5664f7200627895191b58e3c2dd3f595d2ae430b78ca600c4

Sharing

Copy URL Twitter E-mail

General

Target

1286964d72350aa5664f7200627895191b58e3c2dd3f595d2ae430b78ca600c4
Size

841KB
MD5

575286fb924dc505f36dd43a99e31a80
SHA1

3b417a9aa02ca71e4efa9c27d156ef75197948f4
SHA256

1286964d72350aa5664f7200627895191b58e3c2dd3f595d2ae430b78ca600c4
SHA512

febf8a61edd4b0f255b674b21ff1fd2ba296c44f8e82fd139a5039afdf190e5f48c3ac6685879a7e32b190405ce788d35191e50f9a7be9eed6d9893595cb2fbb
SSDEEP

24576:+0ZgG5p7lHafr8KhI3YxUAlmhQbLMzfSNYz6J:FgG57Haz8K23YUt+y6

Score

N/A

Malware Config

Signatures

Files

1286964d72350aa5664f7200627895191b58e3c2dd3f595d2ae430b78ca600c4
.exe windows x86

990bd8151357c83850e0eac7ab563d52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetLastError
VirtualFree
FormatMessageW
GetCurrentDirectoryW
lstrcpyW
VirtualUnlock
InterlockedCompareExchange
GetSystemTimeAsFileTime
lstrcmpA
TlsAlloc
FlushFileBuffers
GlobalDeleteAtom
CompareStringW
GetWindowsDirectoryW
GetStringTypeW
GetCommandLineW
GetDriveTypeW
CopyFileW
GetSystemDirectoryW
LocalAlloc
GetSystemDefaultUILanguage
EnterCriticalSection
QueryPerformanceCounter
SetHandleCount
GetStdHandle
GetLocaleInfoW
EnumSystemLocalesA
GlobalHandle
GetFileTime
lstrlenA
VirtualAlloc
LoadLibraryExW
GetProfileIntW
VirtualQuery
VirtualProtect
ReadFile
UnhandledExceptionFilter
SetThreadPriority
GetConsoleCP
GetFullPathNameW
GetPrivateProfileStringW
GlobalFindAtomW
GetOEMCP
ExitThread
HeapQueryInformation
GetUserDefaultLCID
GetTickCount
FindFirstFileExW
LoadLibraryW
GetModuleFileNameW
MultiByteToWideChar
FreeResource
ReleaseMutex
CreateFileW
WritePrivateProfileStringW
RtlUnwind
HeapCreate
Sleep
RaiseException
GetModuleHandleW
GlobalReAlloc
GlobalSize
WriteFile
SetErrorMode
GetVolumeInformationW
PeekNamedPipe
GetTempFileNameW
GetProcessHeap
GetFileSize
GetVersion
FlushInstructionCache
SizeofResource
InterlockedExchange
GlobalLock
CompareStringA
WaitForSingleObject
SearchPathW
GetEnvironmentStringsW
LocalFree
CreateEventW
FindNextFileW
IsValidLocale
FileTimeToLocalFileTime
HeapSize
DeleteCriticalSection
DeleteAtom
LockFile
TlsSetValue
GetCurrentProcessId
FindResourceW
GetFileAttributesExW
GetSystemInfo
GetFileType
TlsFree
LocalReAlloc
HeapReAlloc
GetACP
GlobalAddAtomW
GetProcessWorkingSetSize
LeaveCriticalSection
GetFileSizeEx
ExitProcess
ResumeThread
WideCharToMultiByte
GetCurrentThread
HeapFree
GetThreadTimes
HeapDestroy
CreateMutexW
InterlockedDecrement
UnlockFile
GetLongPathNameW
GetPrivateProfileIntW
WriteConsoleW
VirtualLock
GetCurrentThreadId
GlobalFlags
GetConsoleMode
GetStartupInfoA
MulDiv
GetThreadLocale
LoadLibraryA
TlsGetValue
GlobalGetAtomNameW
DeleteFileW
SetUnhandledExceptionFilter
lstrcmpiW
FreeLibrary
GetVersionExW
GetTimeZoneInformation
HeapSetInformation
SuspendThread
DuplicateHandle
GlobalMemoryStatus
lstrlenW
SetFilePointer
GlobalAlloc
InterlockedIncrement
GetCurrentProcess
SetEndOfFile
GetProcessTimes
HeapAlloc
IsValidCodePage
SetEnvironmentVariableA
IsProcessorFeaturePresent
FileTimeToSystemTime
SetStdHandle
FreeEnvironmentStringsW
LoadResource
FindFirstFileW
GlobalFree
FindResourceExW
GetFileAttributesW
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
GlobalUnlock
FindClose
SetLastError
GetLocaleInfoA
GetNumberFormatW
lstrcmpW
LockResource
CloseHandle
ConvertDefaultLocale
GetTempPathW
GetStartupInfoW
InitializeCriticalSection
GetUserDefaultUILanguage
GetProcAddress
MoveFileExW
GetFileInformationByHandle
CreateThread

user32

GetMenuItemInfoW
CharUpperW
AppendMenuW
GetDoubleClickTime
IsRectEmpty
LoadMenuW
SetDlgItemTextW
SetLayeredWindowAttributes
WinHelpW
ShowOwnedPopups
UpdateLayeredWindow
EndDialog
DefFrameProcW
DialogBoxIndirectParamW
FrameRect
GetDialogBaseUnits
CheckMenuItem
MonitorFromWindow
GetWindowTextLengthW
InsertMenuItemW
TranslateMessage
EnumChildWindows
IsIconic
SetClipboardData
GetScrollRange
UnionRect
EqualRect
DrawStateW
DrawIcon
SendDlgItemMessageA
GetIconInfo
DeleteMenu
SetWindowPos
RegisterClassW
GetClipboardViewer
DrawEdge
WindowFromPoint
GetMessageTime
GetDlgCtrlID
GetWindowDC
MessageBeep
RemovePropW
SetMenuDefaultItem
ValidateRect
RegisterWindowMessageW
PeekMessageW
SetPropW
CharUpperBuffW
SetWindowLongW
GetClassLongW
GetQueueStatus
DeferWindowPos
GetWindowRgn
GetWindow
CreatePopupMenu
DestroyIcon
SetScrollPos
GetFocus
CreateMenu
ShowWindow
GetLastActivePopup
GetClassInfoExW
PtInRect
IsChild
TrackPopupMenu
SendDlgItemMessageW
ShowScrollBar
LoadImageW
GetSubMenu
GetSystemMenu
DrawFocusRect
MonitorFromPoint
DefMDIChildProcW
SetParent
ModifyMenuW
SetRect
GetCaretPos
ReleaseCapture
SetMenuItemBitmaps
IsDialogMessageW
DrawIconEx
EnableScrollBar
GetPropW
GetWindowRect
DestroyCursor
OpenClipboard
CallWindowProcW
SetWindowTextW
GetNextDlgTabItem
PostQuitMessage
CheckDlgButton
GetMessagePos
PostMessageW
GetMessageW
CharNextW
LoadBitmapW
ReuseDDElParam
SetWindowRgn
DrawFrameControl
UnpackDDElParam
GetScrollInfo
DispatchMessageW
GrayStringW
GetWindowThreadProcessId
InvalidateRect
CreateIcon
GetDC
RedrawWindow
GetMenuItemCount
InvalidateRgn
IsMenu
GetClassInfoW
KillTimer
CreateDialogIndirectParamW
UnhookWindowsHookEx
GetForegroundWindow
EnumDisplayMonitors
GetParent
DialogBoxParamW
GetMenuState
GetCapture
DrawTextExW
PostThreadMessageW
LoadCursorW
CreateWindowExW
GetCursorPos
FillRect
IsWindowVisible
CopyImage
TranslateAcceleratorW
DrawMenuBar
EnableMenuItem
EnableWindow
RemoveMenu
SetRectEmpty
EndPaint
InsertMenuW
GetMenuCheckMarkDimensions
GetWindowPlacement
GetKeyState
LoadAcceleratorsW
SystemParametersInfoW
GetNextDlgGroupItem
BeginPaint
UnregisterClassA
GetDlgItemTextW
SetCapture
ScrollWindow
GetSysColorBrush
GetOpenClipboardWindow
SubtractRect
EndDeferWindowPos
GetUpdateRect
GetDesktopWindow
MoveWindow
EmptyClipboard
EnumWindows
CallNextHookEx
DestroyWindow
GetClassNameW
SetWindowsHookExW
SetMenu
ClientToScreen
HideCaret
GetActiveWindow
IsCharLowerW
ScreenToClient
SetScrollInfo
GetProcessWindowStation
UpdateWindow
GetWindowTextW
RealChildWindowFromPoint
RegisterClipboardFormatW
CloseClipboard
SetActiveWindow
CopyRect
GetTopWindow
ClipCursor
SendMessageW
BeginDeferWindowPos
SetCursor
UnregisterClassW
DrawTextW
GetClientRect
DestroyMenu
MessageBoxW
AdjustWindowRectEx
TabbedTextOutW
ReleaseDC
GetSystemMetrics
InvertRect
SetTimer
WaitMessage
CreateIconFromResourceEx
CopyIcon
GetMenuItemID
IsWindow
TranslateMDISysAccel
MapDialogRect
IsWindowEnabled
IntersectRect
GetKeyNameTextW
GetMonitorInfoW
GetMenuStringW
SetWindowContextHelpId
IsZoomed
LoadIconW
GetDlgItem
DefWindowProcW
MapVirtualKeyW
IsClipboardFormatAvailable
InflateRect
GetWindowLongW
GetAsyncKeyState
OffsetRect
SetForegroundWindow
SetWindowPlacement
GetSysColor
MapVirtualKeyExW
MapWindowPoints
SetScrollRange
GetScrollPos
SetFocus
GetMenu

gdi32

RestoreDC
FrameRgn
SetDIBColorTable
TextOutW
GetWindowOrgEx
SetPaletteEntries
SelectObject
SetWindowOrgEx
GetDeviceCaps
PtInRegion
GetTextExtentPoint32W
CreateEllipticRgn
RectVisible
MoveToEx
CopyMetaFileW
CreateCompatibleDC
CreateHatchBrush
GetTextFaceW
SelectClipRgn
GetObjectW
GetTextColor
Escape
CreateRoundRectRgn
ExcludeClipRect
OffsetViewportOrgEx
SetROP2
CreateCompatibleBitmap
SetTextColor
OffsetRgn
SetViewportExtEx
RealizePalette
SetBkMode
GetPaletteEntries
CreateDIBSection
FillRgn
ScaleWindowExtEx
CreatePalette
SetWindowExtEx
SetPolyFillMode
DPtoLP
GetTextCharsetInfo
ExtFloodFill
CreateFontW
SaveDC
EnumFontFamiliesW
LineTo
IntersectClipRect
GetBoundsRect
SetBkColor
PatBlt
GetTextMetricsW
ScaleViewportExtEx
LPtoDP
Polygon
CreateBitmap
GetWindowExtEx
OffsetWindowOrgEx
SetTextAlign
CreateDCW
EnumFontFamiliesExW
SetPixel
CreateFontIndirectW
GetNearestPaletteIndex
StretchBlt
GetLayout
GetRgnBox
SetPixelV
CreatePen
GetClipBox
CreateRectRgnIndirect
GetBitmapBits
Polyline
SetStretchBltMode
BitBlt
GetSystemPaletteEntries
GetBkColor
GetTextExtentPointW
GetBkMode
RoundRect
CreateDIBitmap
GetStockObject
GetViewportExtEx
CreatePatternBrush
Ellipse
GetPixel
DeleteDC
SetViewportOrgEx
PtVisible
GetObjectType
SetBitmapBits
SetRectRgn
GetViewportOrgEx
CreateSolidBrush
GetMapMode
CreateRectRgn
ExtSelectClipRgn
GetCurrentObject
SetDIBitsToDevice
CreatePolygonRgn
SetMapMode
Rectangle
DeleteObject
ExtTextOutW
SelectPalette
SetLayout
SetDIBits
CombineRgn

comdlg32

GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW

advapi32

RegOpenKeyExA
RegEnumKeyW
GetTokenInformation
RegQueryValueExW
OpenProcessToken
AllocateAndInitializeSid
RegDeleteKeyW
RegQueryInfoKeyW
CryptGenRandom
RegDeleteValueW
RegQueryValueExA
RegQueryValueW
RegCreateKeyExW
FreeSid
RegOpenKeyExW
RegSetValueExW
RegEnumValueW
RegCloseKey
RegEnumKeyExW
CheckTokenMembership

shell32

SHGetPathFromIDListW
SHGetDesktopFolder
Shell_NotifyIconW
ExtractIconExW
SHGetSpecialFolderLocation
SHBrowseForFolderW
ShellExecuteW
DragQueryFileW
SHGetFileInfoW
SHAppBarMessage
DragFinish
DuplicateIcon
ShellExecuteExW

ole32

CoTaskMemFree
OleTranslateAccelerator
RevokeDragDrop
ReleaseStgMedium
CoGetClassObject
OleLockRunning
OleDuplicateData
CLSIDFromString
CoRevokeClassObject
CoTaskMemRealloc
OleIsCurrentClipboard
CoRegisterMessageFilter
CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal
CoFreeUnusedLibraries
CoLockObjectExternal
CoTaskMemAlloc
StringFromGUID2
CoInitializeEx
OleGetClipboard
OleUninitialize
CreateILockBytesOnHGlobal
IsAccelerator
OleDestroyMenuDescriptor
OleInitialize
RegisterDragDrop
OleFlushClipboard
StgOpenStorageOnILockBytes
CoRegisterClassObject
DoDragDrop
StgCreateDocfileOnILockBytes
CoCreateGuid
CoInitialize
CLSIDFromProgID
OleCreateMenuDescriptor

oleaut32

VariantChangeType
VariantCopy
OleCreateFontIndirect
VariantClear
LoadTypeLi
VariantInit
RegisterTypeLi
VarUI4FromStr
SafeArrayDestroy
SysAllocStringByteLen
SysFreeString
SysAllocString
VarBstrFromDate
VariantTimeToSystemTime
UnRegisterTypeLi
SysAllocStringLen
SysStringByteLen
SysStringLen
VarBstrCat
SystemTimeToVariantTime
VarBstrCmp

comctl32

ord17
_TrackMouseEvent
ImageList_GetIconSize
InitCommonControlsEx
ImageList_DragShowNolock
ImageList_DragMove

shlwapi

PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW

winmm

PlaySoundW

rpcrt4

UuidCreateNil

msimg32

TransparentBlt
AlphaBlend

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

oledlg

OleUIBusyW

gdiplus

GdipDeleteGraphics
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCloneImage
GdipGetImagePaletteSize
GdipDrawImageI
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipDisposeImage
GdipFree
GdipGetImagePalette
GdiplusStartup
GdipCreateBitmapFromStream
GdipCreateBitmapFromHBITMAP
GdipGetImageWidth
GdipGetImagePixelFormat
GdiplusShutdown
GdipAlloc
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

uxtheme

OpenThemeData
CloseThemeData

Sections

.text
Size: 543KB - Virtual size: 542KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 240KB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

990bd8151357c83850e0eac7ab563d52

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

msimg32

imm32

oledlg

gdiplus

oleacc

uxtheme

Sections

.text Size: 543KB - Virtual size: 542KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 240KB - Virtual size: 5.5MB

.tls Size: - Virtual size: 101B

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 543KB - Virtual size: 542KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 240KB - Virtual size: 5.5MB

.tls
Size: - Virtual size: 101B

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 16KB - Virtual size: 15KB