988b6189781b0eee9a1aed2549ea82ac4b9655cb78cabbcdd3d4271aa8ac9801

Sharing

Copy URL

Twitter E-mail

General

Target

988b6189781b0eee9a1aed2549ea82ac4b9655cb78cabbcdd3d4271aa8ac9801
Size

46KB
MD5

069ba8e6c51b0080ac7e3cf23cec2e50
SHA1

c31b926e74c00fb8e2d456e81789a09b6a77113f
SHA256

988b6189781b0eee9a1aed2549ea82ac4b9655cb78cabbcdd3d4271aa8ac9801
SHA512

bd1a0589961e531dd94047ba1d6fae1105c396ad6eabeb313bc8baa592ec6c1061e252e04fa47fbe856c86d343d5681997fc110e2296b7b6ad3fa2e0c85b555f
SSDEEP

768:j1+zu59QmFYItfoez2rAMfAXy9g/1/q++p9TN7H1p3Fm5UhuzLy4qzwV7ykLV/qH:j1IOTmIWebXyL+w9hrAWwzLy4ewV7yk6

Score

N/A

Malware Config

Signatures

Files

988b6189781b0eee9a1aed2549ea82ac4b9655cb78cabbcdd3d4271aa8ac9801
.exe windows x86

2c9733fca64a8ca339541f30a19c9063

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentPoint32A
CreateSolidBrush
TextOutW
SetBkColor
PatBlt
SetStretchBltMode
GetTextExtentPointA
GetDeviceCaps
GetTextExtentPoint32W
CreateMetaFileA
SetLayout
CreateDCA
Rectangle
BitBlt
SetMapMode
GetClipBox
SetWindowOrgEx
CreateDCW
CreateBrushIndirect
CreateFontIndirectW
CreateCompatibleDC
DeleteDC
GetTextExtentPointW
CreateCompatibleBitmap
CreateICA
PtInRegion
CombineRgn
MoveToEx
LPtoDP
GetTextMetricsA
GetRegionData
DeleteMetaFile
SetROP2
SetViewportOrgEx
SetTextCharacterExtra
ExtTextOutW
IntersectClipRect
DeleteObject
SetBkMode
RectVisible
CreateICW
GetObjectW
CreatePen
MaskBlt
GetLayout
StretchBlt
RealizePalette
SetDIBitsToDevice
CreateFontA
GetTextMetricsW
LineTo
SetRectRgn
SetTextAlign
OffsetWindowOrgEx
ExcludeClipRect
CreatePalette
ExtCreateRegion
CreateRectRgnIndirect
CreateRectRgn
SelectPalette
CreatePenIndirect
GetStockObject
GetObjectType
ExtSelectClipRgn
CreateFontW
SetTextColor
GetBkColor
OffsetViewportOrgEx
GetRgnBox
GetSystemPaletteEntries
SetWindowExtEx
SelectObject
RestoreDC
SaveDC
GetPaletteEntries
DPtoLP
CreateDIBSection
OffsetRgn
GetTextAlign
GetObjectA
Polygon
GetDIBits
GetDIBColorTable
StretchDIBits
CreateMetaFileW
CloseMetaFile
SetPaletteEntries
CreateFontIndirectA
SelectClipRgn

kernel32

VirtualFree
lstrcmpA
CreateDirectoryW
GetModuleHandleW
GlobalUnlock
LCMapStringW
MulDiv
GetTempFileNameW
FindFirstFileA
GetUserDefaultLangID
GlobalAlloc
WriteProfileStringA
OpenEventA
lstrcmpiA
WritePrivateProfileStringA
ReadFile
QueryPerformanceCounter
HeapAlloc
GetLogicalDriveStringsA
EnumResourceNamesW
FreeLibraryAndExitThread
WaitForMultipleObjects
OutputDebugStringA
DeleteFileW
FindResourceExW
lstrlenW
GetModuleFileNameW
GetLocaleInfoW
ReleaseSemaphore
GetLongPathNameW
GetVolumeInformationW
GetProfileStringW
GetTimeZoneInformation
FreeEnvironmentStringsA
OpenEventW
CompareFileTime
LoadResource
GlobalAddAtomA
lstrcpyW
CopyFileExW
GetFileType
CreateEventW
GlobalMemoryStatus
QueryDosDeviceW
SetFileAttributesA
lstrlenA
GetUserDefaultLCID
GetShortPathNameW
GetExitCodeThread
LocalFree
SetLastError
GetSystemDirectoryW
ExpandEnvironmentStringsA
InterlockedDecrement
GetFileSize
RaiseException
LoadLibraryW
GlobalSize
InterlockedIncrement
CreateFileMappingW
GlobalDeleteAtom
GetDateFormatA
lstrcmpW
FreeLibrary
CompareStringW
CreateFileW
ExpandEnvironmentStringsW
GetFileAttributesA
GetWindowsDirectoryA
RemoveDirectoryW
FreeResource
FindFirstChangeNotificationW
GetSystemTime
FormatMessageW
GetCurrentDirectoryA
MultiByteToWideChar
WriteFile
ReadDirectoryChangesW
FindClose
GetSystemPowerStatus
GetProfileStringA
GetVersionExW
FindFirstFileW
GetSystemDefaultLCID
GetVersion
CreateFileMappingA
SetFileAttributesW
CreateFileA
GetTimeFormatW
DuplicateHandle
WriteProfileStringW
IsBadWritePtr
GetThreadLocale
LockResource
FindResourceW
CreateMutexA
FindAtomW
GetPrivateProfileStringW
GetThreadPriority
LCMapStringA
GetCurrentThread
LoadLibraryExA
GetSystemInfo
GetDriveTypeW
GetFileTime
FindNextFileA
GlobalAddAtomW
FindResourceA
GetTempFileNameA
OpenProcess
SizeofResource
GetLongPathNameA
FlushFileBuffers
EnterCriticalSection
IsValidLocale
GetDriveTypeA
EnumResourceNamesA
lstrcatW
GetCurrentProcess
HeapDestroy
GetLocaleInfoA
SetEndOfFile
GetPrivateProfileStringA
lstrcmpiW
SetThreadPriority
RemoveDirectoryA
InitializeCriticalSection
FindNextChangeNotification
FindNextFileW
FormatMessageA
GetShortPathNameA
GetModuleFileNameA
lstrcpynA
GetEnvironmentStrings
GetFileAttributesW
IsBadReadPtr
GetCurrentProcessId
SetUnhandledExceptionFilter
DeleteCriticalSection
ReleaseMutex
GetVolumeInformationA
CloseHandle
QueryDosDeviceA
GetSystemDirectoryA
GetLastError
SetEvent
GetTempPathA
WaitForSingleObjectEx
GetDateFormatW
MapViewOfFile
GlobalLock
CompareStringA
GetExitCodeProcess
FreeEnvironmentStringsW
lstrcpynW
GetNumberFormatW
HeapFree
WideCharToMultiByte
CreateEventA
GetLogicalDriveStringsW
WritePrivateProfileStringW
GetFullPathNameA
InterlockedExchange
SetErrorMode
SystemTimeToFileTime
FindCloseChangeNotification
GetProcessHeap
UnmapViewOfFile
CreateMutexW
GetFileAttributesExW
CreateDirectoryA
CreateThread
FileTimeToSystemTime
GetVersionExA
GetFileAttributesExA
FlushInstructionCache
LeaveCriticalSection
GetWindowsDirectoryW
GetTimeFormatA
LocalAlloc
LocalFileTimeToFileTime
FindResourceExA
GetFullPathNameW
DeviceIoControl
WaitForSingleObject
GlobalFree
ResetEvent
GetDiskFreeSpaceA
GetCurrentDirectoryW
GetSystemTimeAsFileTime
SetFilePointer
FileTimeToLocalFileTime
DeleteFileA
GetNumberFormatA
OutputDebugStringW
GetLocalTime

comctl32

_TrackMouseEvent
ImageList_Destroy
PropertySheetW
CreatePropertySheetPageA
DestroyPropertySheetPage
ImageList_Add
PropertySheetA
ImageList_GetIconSize
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Draw
ImageList_LoadImageW
CreateStatusWindowW
CreatePropertySheetPageW
ImageList_Create
ImageList_LoadImageA
ImageList_Remove
ImageList_AddMasked

user32

RegisterWindowMessageW
MonitorFromRect
LoadStringW
GetDlgItemTextA
GetWindowTextLengthA
CallWindowProcA
LoadAcceleratorsW
SetScrollPos
DrawFocusRect
GetPropA
ScreenToClient
DrawEdge
InflateRect
DestroyWindow
CallWindowProcW
ReleaseCapture
CreateDialogParamW
AppendMenuA
GetTopWindow
RemoveMenu
EndDialog
BeginPaint
SetWindowTextA
DrawIconEx
ClientToScreen
EnableMenuItem
SetTimer
RegisterClipboardFormatA
CreateDialogParamA
TranslateAcceleratorA
CreateWindowExW
CallNextHookEx
UpdateWindow
ShowWindow
GetMenuItemID
DeleteMenu
GetNextDlgTabItem
LoadCursorW
GetSysColor
SetRect
GetIconInfo
WaitMessage
MsgWaitForMultipleObjects
IsDlgButtonChecked
GetFocus
GetClientRect
LoadIconA
PeekMessageW
SetForegroundWindow
GetMonitorInfoA
MonitorFromWindow
EndPaint
SetClassLongA
GetDlgCtrlID
EnumChildWindows
GetWindowTextA
GetAncestor
GetWindowRgn
MessageBeep
SendMessageA
SetMenuInfo
GetWindowLongW
CopyIcon
LoadStringA
InsertMenuA
IsWindowUnicode
UnhookWindowsHookEx
GetMenuItemCount
LoadMenuW
SetWindowsHookExA
CharLowerW
LoadIconW
KillTimer
SetMenuItemInfoA
InsertMenuW
SetClassLongW
SetWindowLongW
DrawAnimatedRects
InvalidateRect
MoveWindow
SetRectEmpty
LoadAcceleratorsA
UnregisterClassW
SetCapture
VkKeyScanA
FindWindowA
SetParent
SetDlgItemTextA
SetWindowLongA
GetWindow
ModifyMenuA
GetWindowThreadProcessId
VkKeyScanW
DispatchMessageA
SetCursor
SetScrollInfo
CloseWindow
IsDialogMessageW
IsMenu
WinHelpA
TranslateMessage
SystemParametersInfoW
PostThreadMessageA
GetWindowTextW
GetForegroundWindow
GetClassInfoExW
SetFocus
TrackPopupMenu
GetUpdateRect
SetMenuItemInfoW
SendDlgItemMessageW
EnableWindow
SetMenu
GetWindowPlacement
SetWindowPos
CharNextW
MonitorFromPoint
AppendMenuW
CreateMenu
DispatchMessageW
GetMonitorInfoW
ShowCursor
GetKeyState
GetMenu
GetClassInfoA
InsertMenuItemW
LoadImageW
GetMenuStringW
RegisterClassW
InsertMenuItemA
FindWindowW
GetMessagePos
CopyAcceleratorTableW
RegisterClassA
FindWindowExA
RegisterClassExA
IsWindowEnabled
SetDlgItemInt
SetWindowPlacement
RegisterWindowMessageA
DestroyAcceleratorTable
GetClassInfoW
LoadMenuA
SetActiveWindow
GetMenuStringA
GetMenuItemInfoW
GetClassLongA
CopyRect
CreatePopupMenu
GetDC
OffsetRect
IsDialogMessageA
CopyImage
TranslateAcceleratorW
GetClassInfoExA
IsRectEmpty
SetPropA
UnregisterClassA
BringWindowToTop
IsWindow
IntersectRect
GetMessageA
GetDlgItemTextW
LoadCursorA
DestroyIcon
NotifyWinEvent
CheckMenuItem
IsIconic
GetMenuItemInfoA
RegisterClassExW
SendMessageW
GetDesktopWindow
GetWindowTextLengthW
GetActiveWindow
SetWindowsHookExW
SetWindowRgn
DialogBoxParamW
InvalidateRgn
DefWindowProcA
WindowFromDC
SendMessageTimeoutW
DestroyCursor
GetScrollInfo
GetMessageTime
CopyAcceleratorTableA
WinHelpW
CreateWindowExA
CheckMenuRadioItem
IsChild
GetSysColorBrush
PtInRect
PostThreadMessageW
FrameRect
RegisterClipboardFormatW
GetWindowLongA
GetPropW
GetSubMenu
GetAsyncKeyState
GetQueueStatus
MessageBoxA
DialogBoxParamA
CheckDlgButton
ClipCursor
CharNextA
CharUpperBuffW
TrackPopupMenuEx
PostQuitMessage
ReleaseDC
PostMessageW
ValidateRect
AdjustWindowRectEx
PostMessageA
GetWindowDC
GetCursorPos
MapWindowPoints
DefWindowProcW
DrawTextW
EqualRect
MessageBoxW
SendMessageTimeoutA
GetDoubleClickTime
EnumWindows
SetDlgItemTextW
GetSystemMetrics
RedrawWindow
LoadImageA
SystemParametersInfoA
ScrollWindowEx
GetClassNameW
SetPropW
IsWindowVisible
GetMessageW
GetParent
wsprintfW
DestroyMenu
GetDlgItem
DrawTextA
ModifyMenuW
FillRect
GetWindowRect
GetCapture
PeekMessageA
GetClassLongW
SetWindowTextW
UnionRect
GetClassNameA
CheckRadioButton
FindWindowExW
wvsprintfW
GetDialogBaseUnits

ole32

HWND_UserMarshal
CoTaskMemFree
GetRunningObjectTable
OleSaveToStream
CoReleaseMarshalData
StringFromIID
CoGetInterfaceAndReleaseStream
HBITMAP_UserSize
CreateStreamOnHGlobal
CoDisconnectObject
HBITMAP_UserFree
PropVariantClear
DoDragDrop
CLSIDFromString
CoInitialize
WriteClassStm
CoMarshalInterThreadInterfaceInStream
CoRevokeClassObject
CoCreateFreeThreadedMarshaler
GetHGlobalFromStream
StringFromGUID2
CoRegisterClassObject
CLSIDFromProgID
OleRegGetMiscStatus
CoCreateInstance
OleLoadFromStream
CoUninitialize
RevokeDragDrop
StringFromCLSID
HMENU_UserUnmarshal
OleRegGetUserType
HWND_UserUnmarshal
CoTaskMemRealloc
CreateDataAdviseHolder
IsAccelerator
HWND_UserFree
CoGetClassObject
CoCreateGuid
CoFreeUnusedLibraries
HBITMAP_UserMarshal
HMENU_UserFree
RegisterDragDrop
CoGetMalloc
HMENU_UserSize
HBITMAP_UserUnmarshal
CoInitializeEx
CoTaskMemAlloc
CreateOleAdviseHolder
HMENU_UserMarshal
CoGetTreatAsClass
OleRegEnumVerbs
CoFileTimeNow
CoMarshalInterface
HWND_UserSize
ReleaseStgMedium
PropVariantCopy
CoUnmarshalInterface

advapi32

RegSetValueW
RegQueryInfoKeyA
RegDeleteKeyW
RegOpenKeyExW
RegCreateKeyA
RegSetValueExW
OpenProcessToken
InitializeSecurityDescriptor
RegEnumKeyExA
RegQueryValueExA
RegCreateKeyExW
RegDeleteValueW
RegEnumValueW
SetSecurityDescriptorGroup
RegCloseKey
RegCreateKeyW
LogonUserW
RegDeleteValueA
FreeSid
RegSetValueExA
AllocateAndInitializeSid
SetSecurityDescriptorOwner
RegSetValueA
DuplicateTokenEx
GetLengthSid
RegOpenKeyExA
RegCreateKeyExA
OpenThreadToken
RegDeleteKeyA
CryptAcquireContextW
AddAccessAllowedAce
RegEnumKeyExW
GetFileSecurityW
RegNotifyChangeKeyValue
CryptGenRandom
RegEnumValueA
InitializeAcl
SetSecurityDescriptorDacl
SetFileSecurityW
RegQueryInfoKeyW
AccessCheck
RegQueryValueExW

msvcrt

toupper
_ultow
difftime
srand
iswspace
wcscoll
_stricmp
_wtoi64
strchr
_wtoi
__CxxFrameHandler
_wcsnicmp
_except_handler3
wcsncmp
wcspbrk
_ltow
_itow
wcstol
_itoa
??2@YAPAXI@Z
isspace
localtime
fwrite
bsearch
_ftol
fprintf
isxdigit
towlower
iswalpha
swprintf
strcpy
wcsrchr
isdigit
wcsstr
wcscspn
iswcntrl
strncmp
clock
wcscpy
wcschr
strlen
time
_beginthreadex
memcmp
wcsncpy
ceil
_endthread
_ui64tow
_adjust_fdiv
fopen
_snwprintf
fclose
_vsnwprintf
_wfopen
_onexit
malloc
abs
iswalnum
__dllonexit
fflush
wcslen
vswprintf
_setjmp3
memcpy
_strnicmp
wcsspn
_wcslwr
_mbslen
iswprint
getenv
??3@YAXPAX@Z
_wtol
sprintf
_vsnprintf
wcstoul
_CIpow
sscanf
memmove
wcstod
tolower
_beginthread
_wcsicoll
_wcsicmp
wcsncat
towupper
_iob
_initterm
atoi
_CIexp
swscanf
free
_memicmp
wcsftime
wcstok
iswascii
abort
rand
_wcsupr
longjmp
wcstombs
qsort
realloc
memset
floor
wcscmp
ldexp
iswdigit

rpcrt4

IUnknown_QueryInterface_Proxy
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Disconnect
UuidCreate
CStdStubBuffer_Invoke
CStdStubBuffer_QueryInterface
NdrOleFree
CStdStubBuffer_AddRef
NdrCStdStubBuffer_Release
NdrClientCall2
NdrDllCanUnloadNow
CStdStubBuffer_DebugServerQueryInterface
IUnknown_Release_Proxy
IUnknown_AddRef_Proxy
CStdStubBuffer_Connect
NdrCStdStubBuffer2_Release
CStdStubBuffer_CountRefs
NdrDllUnregisterProxy
NdrStubForwardingFunction
NdrOleAllocate
NdrDllRegisterProxy
NdrStubCall2

version

GetFileVersionInfoA
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
VerQueryValueA

msvfw32

ICInstall
ICInfo

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c9733fca64a8ca339541f30a19c9063

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

comctl32

user32

ole32

advapi32

msvcrt

rpcrt4

version

msvfw32

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 19KB - Virtual size: 18KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 1KB - Virtual size: 1KB