2afd15f033f9ea77a85cd0ba109835751f04d565be2dd53874e87369a836028a

Sharing

Copy URL Twitter E-mail

General

Target

2afd15f033f9ea77a85cd0ba109835751f04d565be2dd53874e87369a836028a
Size

1.7MB
MD5

8390d3c88c1eb6db9111d1328312061e
SHA1

99cc3424a1d630c1c007eb0b21eb6bfa3e4a7b25
SHA256

2afd15f033f9ea77a85cd0ba109835751f04d565be2dd53874e87369a836028a
SHA512

eccc54ea8d092a468b5ffbc63b36991c50ee1556c93c4df9725c4c0d9686f540cabc94e9373658dfdd1ff17abc1345cae8bc88186f0b87244c5396f097648056
SSDEEP

24576:ORm/DQ7WcfuDDf2z7jpP8XQS1R/Fn0rLbQuZOPYepSpwnMS0hxwxt36jnEM8JvW4:U7W9azY2rZOAeMcMS0tgNl4pK

Score

N/A

Malware Config

Signatures

Files

2afd15f033f9ea77a85cd0ba109835751f04d565be2dd53874e87369a836028a
.exe windows x86

3dfd025a9f01013c3115bac246e111ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
SetStdHandle
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
HeapCreate
HeapDestroy
LCMapStringW
LCMapStringA
GetACP
HeapSize
HeapReAlloc
ExitThread
TerminateProcess
GetSystemTimeAsFileTime
GetProfileIntA
GetProfileStringA
GetTempPathA
SearchPathA
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
GetSystemTime
GetTimeZoneInformation
HeapAlloc
HeapFree
GetDriveTypeA
RtlUnwind
CopyFileA
GlobalSize
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryA
SizeofResource
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
LocalAlloc
GlobalFlags
GetProcessVersion
FileTimeToLocalFileTime
FileTimeToSystemTime
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
FormatMessageA
LocalFree
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
VirtualProtect
SetThreadPriority
ResumeThread
WaitForSingleObject
GlobalAlloc
GetCurrentThread
lstrlenW
lstrcmpA
MulDiv
SetLastError
GetModuleFileNameA
GetPrivateProfileIntA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GlobalFree
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
lstrcatA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
lstrcpyA
lstrlenA
GetLastError
VirtualAlloc
VirtualFree
WriteFile
GetVersion
InitializeCriticalSection
GetLocalTime
CreateFileA
GetFileSize
SetFilePointer
ReadFile
Sleep
GetTickCount
CreateThread
CloseHandle
WritePrivateProfileStringA
GetPrivateProfileStringA

user32

CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
RemoveMenu
AppendMenuA
PostThreadMessageA
SendMessageA
EnableWindow
LoadIconA
SetTimer
GetSubMenu
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
OffsetRect
IntersectRect
GetMenuState
GetSystemMetrics
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
MoveWindow
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
GetLastActivePopup
EqualRect
CopyRect
GetDlgItem
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
WinHelpA
SetMenu
GetClassInfoA
DestroyMenu
SetFocus
ShowWindow
LoadMenuA
KillTimer
RedrawWindow
IsWindowVisible
IsIconic
SetMenuItemBitmaps
DestroyWindow
ModifyMenuA
UpdateWindow
IsWindow
GetDC
FillRect
GetSysColorBrush
GetClientRect
GetWindow
SetRectEmpty
InflateRect
GetParent
GetSysColor
InvalidateRect
GetWindowRect
LoadBitmapA
PostMessageA
RegisterWindowMessageA
LoadImageA
SetMenuDefaultItem
GetMenuItemID
TrackPopupMenu
SetForegroundWindow
GetCursorPos
GetClassNameA
SystemParametersInfoA
EnumChildWindows
FindWindowA
SetParent
GetWindowPlacement
GetMenuCheckMarkDimensions
CreateDialogIndirectParamA
EndDialog
wvsprintfA
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadStringA
IsRectEmpty
ShowOwnedPopups
PostQuitMessage
ValidateRect
TranslateMessage
GetMessageA
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatA
WaitMessage
GetAsyncKeyState
CharUpperA
LoadCursorA
PtInRect
CharNextA
InsertMenuA
DeleteMenu
GetMenuStringA
DestroyIcon
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
DrawAnimatedRects
SetActiveWindow
ClientToScreen
GetFocus
GetMenuItemCount
GetMenu
BringWindowToTop
CreateWindowExA
DefFrameProcA
TranslateMDISysAccel
TranslateAcceleratorA
DrawMenuBar
DefMDIChildProcA
SetWindowLongA
GetWindowLongA
SetWindowPos
AdjustWindowRectEx
wsprintfA
GetActiveWindow
LoadAcceleratorsA
UnregisterClassA
GetDCEx
CreateMenu
GetWindowThreadProcessId
GetDesktopWindow
IsWindowEnabled
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
SetCapture
IsZoomed
GetSystemMenu
WindowFromPoint
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
DestroyAcceleratorTable
DrawIconEx
GetIconInfo
CopyImage
GetMenuItemInfoA
IsMenu
DrawFrameControl
DrawStateA
DrawEdge
DrawIcon
DrawFocusRect
CharUpperBuffA
GetMenuDefaultItem
CreatePopupMenu
UnionRect
LockWindowUpdate
ShowCaret
CreateCaret
DestroyCaret
SetCaretPos
HideCaret
GetTabbedTextExtentA
IsClipboardFormatAvailable
CloseClipboard
EmptyClipboard
OpenClipboard
SetClipboardData
GetCaretPos
GetUpdateRect
SetClassLongA
FrameRect
EnableScrollBar
SetCursorPos
CreateAcceleratorTableA
CopyIcon
SubtractRect
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
DestroyCursor
InvertRect
IsWindowUnicode
DefDlgProcA
ExcludeUpdateRgn

gdi32

GetCurrentPositionEx
CreateRectRgn
ExtSelectClipRgn
GetViewportExtEx
GetWindowExtEx
CreatePen
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
LPtoDP
DPtoLP
PatBlt
CreateRectRgnIndirect
GetMapMode
SetRectRgn
CombineRgn
GetTextExtentPoint32A
GetTextColor
GetBkColor
CopyMetaFileA
SaveDC
StartDocA
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
BitBlt
SetDIBitsToDevice
CreateSolidBrush
GetTextMetricsA
GetStockObject
DeleteObject
GetObjectA
GetDeviceCaps
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
CreateCompatibleBitmap
Polygon
SetPixel
Polyline
CreatePolygonRgn
RoundRect
Rectangle
CreateDIBSection
EnumFontFamiliesA
GetTextCharsetInfo
CreateDIBitmap
GetDIBits
RealizePalette
StretchBlt
GetPixel
OffsetRgn
Ellipse
GetPaletteEntries
CreatePalette
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
PtInRegion
FrameRgn
SetPixelV
GetTextExtentPointA
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
GetViewportOrgEx
GetWindowOrgEx
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
SelectObject
RestoreDC
CreateDCA
GetCharWidthA
GetTextFaceA
GetROP2
GetBkMode
CreateFontIndirectA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA
CommDlgExtendedError
PrintDlgA
ChooseColorA
FindTextA
ReplaceTextA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryInfoKeyA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyExA
RegSetValueExA
RegEnumValueA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegEnumKeyExA

shell32

ExtractIconA
SHGetFileInfoA
DragQueryFileA
DragFinish
SHAppBarMessage
Shell_NotifyIconA
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA

comctl32

ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_DrawEx
ImageList_Draw
ImageList_GetImageInfo
ImageList_Duplicate
ImageList_Create
ImageList_Destroy
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ord17
ImageList_GetIcon
ImageList_AddMasked

oledlg

ord8

ole32

ReleaseStgMedium
CoRevokeClassObject
CoRegisterMessageFilter
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleFlushClipboard
OleIsCurrentClipboard
OleDuplicateData
CoGetClassObject
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal
CoUninitialize
CoInitialize
DoDragDrop
OleLockRunning
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
VarBstrFromDate
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
VariantClear

wsock32

htons
ioctlsocket
socket
connect
shutdown
closesocket
send
recv
WSAStartup
WSACleanup

winmm

PlaySoundA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 224KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3dfd025a9f01013c3115bac246e111ab

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 224KB - Virtual size: 221KB

.data Size: 92KB - Virtual size: 211KB

.rsrc Size: 88KB - Virtual size: 87KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 224KB - Virtual size: 221KB

.data
Size: 92KB - Virtual size: 211KB

.rsrc
Size: 88KB - Virtual size: 87KB