da38520edfa9552e5ef74b10cec77bdece02e8a9a0404d568351d1a999deb2d9

Sharing

Copy URL

Twitter E-mail

General

Target

da38520edfa9552e5ef74b10cec77bdece02e8a9a0404d568351d1a999deb2d9
Size

740KB
MD5

90c6a6c57adcb2cad018e421033fb141
SHA1

62894f6213a69b0f1167002d44f2875b02f69269
SHA256

da38520edfa9552e5ef74b10cec77bdece02e8a9a0404d568351d1a999deb2d9
SHA512

9c6d47c8ca2f1efa1da7fb1dcf0d80c11666b572ba1815f57f333992c3b0080bec50aac24b9ef9ba78bb6e537c0aace9db605e7a29e2fad944b522c0cf2b6440
SSDEEP

12288:b2MXTbkeIn4AZmKWJF4BE2wUeBZcjkxXMWjHQW6H/ltEx+sqTBuQKoU:b2IbT+4AgfJYwUerc4XljHsltaG8J

Score

N/A

Malware Config

Signatures

Files

da38520edfa9552e5ef74b10cec77bdece02e8a9a0404d568351d1a999deb2d9
.exe windows x86

0509820aefe8f0af81768af7efe0fa3f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetVersionExA
GetNumberFormatW
LockResource
lstrcmpW
LocalAlloc
TlsFree
GetConsoleCP
SetStdHandle
GetThreadLocale
UnhandledExceptionFilter
IsValidCodePage
FatalAppExitA
CreatePipe
LoadLibraryA
SetUnhandledExceptionFilter
FormatMessageW
GetStringTypeA
GetTempPathW
HeapReAlloc
UnlockFile
LocalFileTimeToFileTime
SetThreadPriority
GetConsoleMode
TlsAlloc
ReadFile
GetConsoleOutputCP
WinExec
GetDriveTypeA
GetEnvironmentStringsW
CompareStringW
HeapCreate
GetLocaleInfoW
HeapDestroy
MulDiv
GetEnvironmentStrings
IsDBCSLeadByte
GetTempPathA
GetACP
TerminateProcess
GetModuleFileNameW
lstrcmpA
MultiByteToWideChar
GetTickCount
GlobalAddAtomA
WriteConsoleW
InterlockedCompareExchange
SuspendThread
WritePrivateProfileStringA
GetTimeFormatW
TlsGetValue
GetModuleHandleA
WaitForSingleObject
GetTimeFormatA
CreateDirectoryA
FlushFileBuffers
FileTimeToSystemTime
GetTimeZoneInformation
SetHandleCount
LCMapStringA
MoveFileA
GetVolumeInformationW
DeleteCriticalSection
GetProcAddress
FreeEnvironmentStringsW
GetFileAttributesW
SetFilePointer
GetProcessHeap
GetCommandLineA
GetSystemDirectoryA
lstrlenA
Beep
FileTimeToLocalFileTime
GetPrivateProfileIntA
GetCurrentProcess
GlobalDeleteAtom
lstrlenW
GetCurrentDirectoryW
LoadResource
OpenMutexA
GetLocalTime
CreateProcessA
FindResourceExA
GetLastError
GetModuleHandleW
GetWindowsDirectoryA
SizeofResource
EnterCriticalSection
GetCurrentDirectoryA
GetUserDefaultLCID
TlsSetValue
WriteFile
LeaveCriticalSection
SetEvent
GlobalFlags
GetCurrentThread
GlobalUnlock
ExitProcess
CreateMutexA
GetSystemTime
ReleaseMutex
SetCurrentDirectoryA
FindResourceA
GlobalGetAtomNameA
SetFileTime
CopyFileA
GetOEMCP
ConvertDefaultLocale
GetStartupInfoW
CompareStringA
GlobalFree
GetFileTime
WaitForMultipleObjectsEx
CreateEventA
GetStartupInfoA
InitializeCriticalSection
WriteConsoleA
IsBadReadPtr
LockFile
GetDateFormatA
GetFullPathNameA
GetEnvironmentVariableA
DuplicateHandle
FindClose
FreeResource
EnumSystemLocalesA
GetFileAttributesExW
IsBadCodePtr
MapViewOfFile
Sleep
GlobalFindAtomW
ResetEvent
ReleaseSemaphore
InterlockedDecrement
VirtualAlloc
CreateThread
ExitThread
FindFirstFileA
HeapAlloc
LocalReAlloc
CopyFileW
EnumResourceLanguagesW
GetCurrentProcessId
WaitNamedPipeA
InterlockedExchange
SetEnvironmentVariableA
SystemTimeToFileTime
lstrcpyA
lstrcmpiA
SetEndOfFile
SetErrorMode
QueryPerformanceCounter
GlobalReAlloc
GetCommandLineW
OutputDebugStringW
GetProfileIntA
GetStdHandle
GetVersionExW
GlobalLock
GetStringTypeW
ResumeThread
FindNextFileA
FreeEnvironmentStringsA
HeapSize
SetFileAttributesW
CreateFileA
GlobalHandle
GetCPInfo
LCMapStringW
GetFileType
VirtualQuery
GetSystemInfo
LoadLibraryExA
GetFullPathNameW
WaitForMultipleObjects
CloseHandle
RtlUnwind
LocalFree
GetCurrentThreadId
GetProfileStringA
IsBadWritePtr
GetTempFileNameW
GetTempFileNameA
InterlockedIncrement
VirtualFree
SetLastError
DeviceIoControl
FindFirstFileW
GetPrivateProfileStringA
WideCharToMultiByte
IsValidLocale
GetVolumeInformationA
VirtualProtect
GetFileAttributesA
GetSystemTimeAsFileTime
CreateFileW
InitializeCriticalSectionAndSpinCount
GetModuleFileNameA
GetFileSize
HeapFree
FreeLibrary
GetSystemDefaultLangID
GetVersion

shell32

SHCreateDirectoryExW
DragQueryFileW
ShellExecuteW
ShellExecuteA
SHGetFileInfoW
DragAcceptFiles
ExtractIconExA
Shell_NotifyIconA
CommandLineToArgvW
DragQueryFileA
ShellExecuteExW
DragFinish
SHGetPathFromIDListA
SHChangeNotify
SHGetSpecialFolderPathW
ord155
SHFileOperationW
SHBrowseForFolderA
SHGetSpecialFolderLocation

winspool.drv

ClosePrinter
FindNextPrinterChangeNotification
EnumPrintersW
EnumPortsW
OpenPrinterW
DocumentPropertiesA
SetPrinterW
SetJobW
ord204
SetPrinterDataW
FreePrinterNotifyInfo
DeviceCapabilitiesW
OpenPrinterA
DeviceCapabilitiesA
FindFirstPrinterChangeNotification

gdi32

StartDocW
SetViewportOrgEx
SetAbortProc
CreateRoundRectRgn
CreatePolyPolygonRgn
CreateFontIndirectA
EndDoc
GetCurrentPositionEx
GetCurrentObject
GetTextMetricsA
AngleArc
ScaleViewportExtEx
GdiComment
EndPage
GetDIBColorTable
BitBlt
DPtoLP
GetStretchBltMode
ExtCreatePen
GetBitmapBits
CreatePen
ExtTextOutW
SetPolyFillMode
PatBlt
AnimatePalette
CreateEllipticRgnIndirect
GetStockObject
GetTextFaceW
CombineRgn
StretchDIBits
GetBkColor
GetObjectType
EnumFontFamiliesExA
GetObjectA
CreatePalette
CreateFontIndirectW
GetRegionData
EnumMetaFile
CreateRectRgn
StrokePath
DrawEscape
SelectClipPath
GetTextFaceA
SetBkMode
GetEnhMetaFileBits
SelectClipRgn
EqualRgn
SaveDC
CreatePatternBrush
AbortDoc
FillRgn
GetPixel
CreateDiscardableBitmap
PolyDraw
GetTextExtentExPointW
WidenPath
OffsetRgn
GetBoundsRect
GetClipBox
GetTextExtentPointA
CreateHatchBrush
PtInRegion
TextOutW
BeginPath
SetPixelV
SetEnhMetaFileBits
FloodFill
CreatePolygonRgn
GetTextExtentPoint32W
CreateRectRgnIndirect
EndPath
SetTextColor
GetDeviceCaps
GetAspectRatioFilterEx
GetBrushOrgEx
LPtoDP
SetBkColor
GetTextColor
PlayMetaFile
CreateMetaFileA
CreateDIBitmap
SetGraphicsMode
GetNearestColor
SetPixel
CreateHalftonePalette
CreateCompatibleBitmap
GetWindowOrgEx
GetROP2
SetBrushOrgEx
GetGlyphOutlineA
ExcludeClipRect
GetPolyFillMode
SetTextAlign
EnumObjects
RectVisible
SetROP2
GetOutlineTextMetricsA
IntersectClipRect
MoveToEx
SetRectRgn
RestoreDC
FrameRgn
CreateDIBSection
ExtTextOutA
CloseFigure
SetMapperFlags
ResizePalette
CreateEllipticRgn
SetMiterLimit
TextOutA
ScaleWindowExtEx
AbortPath
StartPage
SetDIBitsToDevice
PolyBezier
FlattenPath
GetCharWidthFloatA
Ellipse
GetNearestPaletteIndex
PtVisible
GetRgnBox
SetWindowExtEx
PlgBlt
SetColorAdjustment
CreateCompatibleDC
CreateICA
SetWindowOrgEx
StartDocA
GetTextExtentPoint32A
StretchBlt
PlayMetaFileRecord
GetPath
GetTextCharacterExtra
CreateDCA
CopyMetaFileA
SelectObject
Polyline
SetWinMetaFileBits
Pie
Arc
GetArcDirection
InvertRgn
GetDIBits
GetViewportExtEx
GetTextAlign
GetViewportOrgEx
ExtFloodFill
RectInRegion
CreateBitmapIndirect
GetCharABCWidthsW
GetWindowExtEx
MaskBlt
GetCharABCWidthsFloatA
GetTextMetricsW
SetPaletteEntries
CreateFontW
CreateBitmap
GetCharWidthA
Rectangle
DeleteDC
GetBkMode
SelectPalette
GetMapMode
CreateDCW
RoundRect
Escape
CreateDIBPatternBrushPt
RealizePalette
GetObjectW
SetStretchBltMode
Chord
GetKerningPairsA
GetMiterLimit
PaintRgn
CreateFontA
GetClipRgn
DeleteObject
StrokeAndFillPath
SetDIBits
UnrealizeObject
SetViewportExtEx
OffsetViewportOrgEx
ExtSelectClipRgn
GetColorAdjustment
PlayEnhMetaFile
LineTo
SetMapMode
Polygon
CloseMetaFile
ArcTo
CreateSolidBrush

advapi32

AdjustTokenPrivileges
OpenSCManagerW
OpenServiceA
CreateServiceW
SetSecurityDescriptorDacl
GetUserNameA
RegQueryValueA
DeleteService
MapGenericMask
ReportEventA
RegCloseKey
OpenThreadToken
OpenSCManagerA
RegEnumKeyW
RegisterServiceCtrlHandlerW
RegEnumKeyA
ReportEventW
GetSecurityDescriptorControl
RegSetValueExA
QueryServiceStatus
RegSetValueExW
RegOpenKeyA
RegQueryInfoKeyW
RegCreateKeyExW
OpenServiceW
RegOpenKeyExW
ControlService
RegEnumKeyExA
RegQueryValueExW
SetFileSecurityW
RegDeleteKeyA
GetTokenInformation
CryptAcquireContextA
StartServiceCtrlDispatcherW
SetServiceStatus
RegisterServiceCtrlHandlerA
DeregisterEventSource
RegCreateKeyW
QueryServiceConfigW
RegQueryValueExA
RegDeleteValueW
EqualSid
InitializeSecurityDescriptor
RegQueryValueW
RegOpenKeyExA
RegCreateKeyExA
RegQueryInfoKeyA
RegDeleteKeyW
OpenProcessToken
SetEntriesInAclW
RegEnumKeyExW
RevertToSelf
CryptGetHashParam
RegisterEventSourceW
AccessCheck
RegOpenKeyW
CloseServiceHandle
GetFileSecurityW
RegCreateKeyA

user32

GetWindowLongW
PostQuitMessage
ShowWindow
SendMessageW
EnableMenuItem
CopyAcceleratorTableA
GetWindow
PostThreadMessageA
DrawTextA
EndDialog
PtInRect
CreateDialogIndirectParamW
TrackPopupMenuEx
GetForegroundWindow
LoadCursorW
ReleaseDC
TabbedTextOutA
GetParent
IsWindow
SetWindowPos
DestroyMenu
GetClassInfoExA
IsWindowVisible
LoadMenuW
ShowScrollBar
RedrawWindow
CreateIcon
GetClassInfoA
GetSysColorBrush
DispatchMessageW
DestroyCursor
DefFrameProcA
SetRect
DrawStateA
GetSystemMetrics
FrameRect
InflateRect
GetDlgCtrlID
PeekMessageA
SystemParametersInfoA
ChildWindowFromPoint
CallWindowProcA
SetWindowLongA
ModifyMenuA
TrackPopupMenu
GrayStringW
GetCursorPos
ScrollWindow
WindowFromPoint
GetNextDlgTabItem
RemoveMenu
CreateWindowExA
SetCursorPos
GetWindowTextLengthW
MapWindowPoints
FindWindowA
EnableScrollBar
ModifyMenuW
LoadIconA
UnregisterClassA
SetWindowsHookExA
ScreenToClient
SetFocus
UnregisterClassW
DestroyWindow
InsertMenuA
DdeClientTransaction
EqualRect
CallWindowProcW
IsDialogMessageA
GetScrollInfo
EnumClipboardFormats
GetIconInfo
CreateWindowExW
MessageBoxA
IsChild
GetMenu
SetForegroundWindow
PostMessageA
KillTimer
TranslateMessage
GetTopWindow
IsClipboardFormatAvailable
GetMenuStringA
DdeFreeStringHandle
SetMenuItemInfoW
MsgWaitForMultipleObjects
GetKeyboardState
RegisterClassExA
CharNextA
DeleteMenu
DialogBoxIndirectParamW
UpdateWindow
ReleaseCapture
UnpackDDElParam
CheckMenuItem
DrawTextW
GetMessageA
SetScrollPos
RegisterClassExW
DrawStateW
LoadBitmapA
DdeDisconnect
GetPropW
SetCursor
CopyRect
GetKeyState
CreateDialogParamA
SetClassLongA
GetClassNameA
RegisterClassA
ValidateRgn
MapDialogRect
GetDlgItem
SetRectEmpty
EndPaint
SetTimer
HideCaret
GetClientRect
CreatePopupMenu
DispatchMessageA
ChangeClipboardChain
ScrollWindowEx
GetClassLongA
GetScrollPos
CloseClipboard
CreateIconIndirect
DrawMenuBar
IsZoomed
GetScrollRange
GetDoubleClickTime
MoveWindow
GetWindowTextA
GetSystemMenu
GrayStringA
LoadAcceleratorsW
SystemParametersInfoW
DrawTextExA
BeginPaint
CallNextHookEx
ValidateRect
ExcludeUpdateRgn
GetTabbedTextExtentA
IsWindowUnicode
PeekMessageW
SetDlgItemTextA
GetMenuCheckMarkDimensions
wsprintfW
GetDesktopWindow
BringWindowToTop
LoadImageW
InvalidateRgn
PostThreadMessageW
GetWindowLongA
LoadCursorA
AdjustWindowRectEx
GetSysColor
SendDlgItemMessageA
DefDlgProcA
wvsprintfA
ShowCaret
IsIconic
CopyIcon
GetNextDlgGroupItem
GetUpdateRect
IsMenu
GetWindowThreadProcessId
MapVirtualKeyA
IntersectRect
BeginDeferWindowPos
MessageBeep
GetMenuState
UnregisterHotKey
FillRect
DestroyIcon
SetParent
GetClassInfoExW
IsRectEmpty
wsprintfA
RegisterClipboardFormatA
DrawFocusRect
GetFocus
TranslateAcceleratorA
OffsetRect
DdeUninitialize
GetMenuItemCount
WinHelpA
GetWindowTextLengthA
IsWindowEnabled
EnableWindow
CheckMenuRadioItem
SetMenu
RemovePropA
EnumChildWindows
GetPropA
CharUpperW
GetMessagePos
GetSubMenu
DefWindowProcA
GetMenuItemID
SetActiveWindow
SetCapture
TabbedTextOutW
EndDeferWindowPos
ClientToScreen
LoadMenuA
CreateMenu
LoadStringA
CheckRadioButton
GetLastActivePopup
TranslateAcceleratorW
ReuseDDElParam
GetCapture
EmptyClipboard
CharUpperA
GetWindowDC
UnhookWindowsHookEx
GetDC
DrawIcon
GetWindowPlacement
EnumWindows
SetWindowTextW
GetActiveWindow
InvertRect
RegisterWindowMessageA
DrawIconEx
SetWindowContextHelpId
PostMessageW
GetWindowTextW
SetDlgItemTextW
GetClassInfoW
DefWindowProcW
SubtractRect
SetWindowsHookExW
AppendMenuA
SetMenuItemBitmaps
GetWindowRgn
SetWindowRgn
SetMenuDefaultItem
RegisterWindowMessageW
IsDialogMessageW
GetClipboardData
SetWindowTextA
InsertMenuW

comctl32

ord17
ImageList_AddMasked
ImageList_ReplaceIcon
PropertySheetA
ImageList_SetOverlayImage
ImageList_DragMove
DestroyPropertySheetPage
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_GetIconSize
ImageList_Read
ImageList_DragLeave
ImageList_DragShowNolock
InitCommonControlsEx
ImageList_SetImageCount
ImageList_Remove
ImageList_BeginDrag
ImageList_DrawEx
ImageList_Duplicate
ImageList_DragEnter
ImageList_GetIcon
ImageList_GetImageCount
ImageList_EndDrag
ImageList_Draw
CreatePropertySheetPageA
ImageList_LoadImageA
ImageList_Add
ImageList_Write
ImageList_GetBkColor
ImageList_Replace
ImageList_Create
ImageList_Destroy
PropertySheetW

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 476KB - Virtual size: 475KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0509820aefe8f0af81768af7efe0fa3f

Headers

File Characteristics

Imports

kernel32

shell32

winspool.drv

gdi32

advapi32

user32

comctl32

Sections

.text Size: 72KB - Virtual size: 70KB

.rdata Size: 476KB - Virtual size: 475KB

.data Size: 132KB - Virtual size: 137KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 72KB - Virtual size: 70KB

.rdata
Size: 476KB - Virtual size: 475KB

.data
Size: 132KB - Virtual size: 137KB

.rsrc
Size: 56KB - Virtual size: 54KB