be41d9303e0df3b74bb48698797e27f19407b730533e3cb60d2ea6fdda108772

Sharing

Copy URL Twitter E-mail

General

Target

be41d9303e0df3b74bb48698797e27f19407b730533e3cb60d2ea6fdda108772
Size

259KB
MD5

52394bbf66e9663695a40e7913b95419
SHA1

17b3a8171160d8723ff3a21971c97c6479782957
SHA256

be41d9303e0df3b74bb48698797e27f19407b730533e3cb60d2ea6fdda108772
SHA512

d58bf11e12d06cf0e91944c227fd805326af294f19a0a1d58c0b61319690037b28e817b8ca4b7f9ca5a39397b7797b03b6de608a94f15712cba7f5fa54b8a608
SSDEEP

6144:/Ekq1KsQxq7+YFCmPQZg6DxKQFaGpceSlJHcVlQTBnMy:vq1KsQg7fMmPQdDBFaGpctrcctnR

Score

N/A

Malware Config

Signatures

Files

be41d9303e0df3b74bb48698797e27f19407b730533e3cb60d2ea6fdda108772
.exe windows x86

99df71df9b4398ab75a7908902843658

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateInstance
CreateStreamOnHGlobal

gdi32

Polygon
SelectClipRgn
GetStockObject
GetObjectType
SetROP2
PtInRegion
GetBkColor
GetTextExtentExPointW
CreatePen
CreateCompatibleDC
SetBkMode
DeleteDC
SetTextAlign
SetViewportOrgEx
DeleteObject
ExtCreatePen
CreateRectRgnIndirect
GetTextMetricsW
CreateCompatibleBitmap
SelectObject
GetClipRgn
SetPixel
BitBlt
SetTextColor
CombineRgn
RoundRect
TextOutW
CreateFontIndirectW
CreateSolidBrush
GetObjectW
SetBkColor
CreateRectRgn
GetTextExtentPoint32W
ExtTextOutW

kernel32

FormatMessageW
HeapSize
GetProcessHeap
CreateThread
FindFirstFileW
GlobalUnlock
FindClose
VirtualFree
RaiseException
DeleteFileW
lstrlenW
FreeLibrary
lstrcpynW
LoadLibraryExW
HeapFree
FindResourceExW
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
GetACP
FindNextFileW
FlushInstructionCache
GlobalLock
GetUserDefaultLCID
lstrcmpW
lstrlenA
WaitForSingleObject
HeapDestroy
GetSystemTimeAsFileTime
OpenEventW
VirtualAlloc
HeapReAlloc
UnhandledExceptionFilter
GetCurrentThreadId
IsProcessorFeaturePresent
SetLastError
GetModuleHandleW
GetUserDefaultLangID
LocalFree
GlobalFree
GetThreadLocale
FindResourceW
GetSystemDirectoryW
FatalAppExitW
CloseHandle
lstrcmpiW
lstrcpyW
LoadResource
HeapAlloc
SizeofResource
SetUnhandledExceptionFilter
GlobalAlloc
LocalAlloc
DeleteCriticalSection
GetNumberFormatW
IsDebuggerPresent
LockResource
GetModuleHandleA

msimg32

GradientFill

oleaut32

SafeArrayRedim
SafeArrayGetElement
SafeArrayCopy
SafeArrayGetUBound
VariantInit
SafeArrayAccessData
VariantCopy
SafeArrayUnaccessData
SysAllocStringLen
SysAllocString
GetRecordInfoFromGuids
VarBstrCmp
SafeArrayCreateVectorEx
SafeArrayUnlock
SysStringByteLen
SafeArrayLock
SafeArrayDestroy
SafeArrayGetVartype
SysStringLen
SafeArrayGetLBound
DispCallFunc
SafeArrayCreate
VariantClear
VariantCopyInd
SysAllocStringByteLen
SysFreeString

shell32

ShellExecuteExW
SHGetSpecialFolderPathW

shlwapi

ColorAdjustLuma
StrChrW

advapi32

RegCreateKeyExW
RegQueryValueExW
RegCloseKey
RegSetValueExW
RegOpenKeyExW

comctl32

ImageList_GetIcon
ImageList_ReplaceIcon
InitCommonControlsEx
_TrackMouseEvent
ImageList_Destroy
ImageList_GetImageCount
ImageList_Create
ImageList_Draw

user32

TabbedTextOutW
DialogBoxParamW
RedrawWindow
CharUpperW
GetSystemMetrics
ScreenToClient
KillTimer
InflateRect
SetWindowsHookExW
SetDlgItemTextW
GetSysColor
EmptyClipboard
DrawTextW
IsWindowEnabled
GetFocus
SetCapture
SetWindowLongW
IsCharAlphaNumericW
ReleaseCapture
MapWindowPoints
SetWindowPlacement
GetNextDlgTabItem
GetTopWindow
EndPaint
DrawIconEx
UnhookWindowsHookEx
GetDlgItem
DefWindowProcW
OpenClipboard
MessageBeep
GetWindowPlacement
SetDlgItemInt
GetClipboardData
GetCursorPos
CallWindowProcW
OffsetRect
GetDlgItemInt
BeginPaint
SetWindowTextW
UnregisterClassA
SystemParametersInfoW
IsWindowVisible
DrawStateW
GetWindowRect
GetTabbedTextExtentW
GetWindow
GetDlgCtrlID
GetWindowThreadProcessId
PostMessageW
GetWindowLongW
SendDlgItemMessageW
GetDC
MessageBoxW
SetWindowPos
CallNextHookEx
SetTimer
GetWindowDC
CreateWindowExW
IsCharLowerW
DrawFocusRect
SetForegroundWindow
MoveWindow
FrameRect
IsRectEmpty
GetGUIThreadInfo
PtInRect
CopyRect
ClientToScreen
SetRectEmpty
GetParent
GetCapture
DestroyWindow
IsWindow
IsClipboardFormatAvailable
GetWindowTextLengthW
InvalidateRect
CloseClipboard
GetClassNameW
SetFocus
DestroyIcon
ShowWindow
SetClipboardData
CharLowerW
EnableWindow
LoadCursorW
IsCharAlphaW
SetCursor
GetKeyState
GetClientRect
MapDialogRect
LoadImageW
EndDialog
SendMessageW
ReleaseDC
GetActiveWindow
GetWindowTextW

dbghelp

ImageRvaToSection
SymGetSymFromName
SymMatchString
FindFileInPath
SymGetOptions
StackWalk64
SymGetSymFromAddr
SymGetSearchPath
SymGetSymNext64
SymRegisterFunctionEntryCallback64
SymRegisterFunctionEntryCallback
SymGetSymFromName64

msvfw32

ICOpenFunction
MCIWndCreateW
VideoForWindowsVersion

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.PpkHQdV
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aRfCymt
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zhnS
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.AAiiu
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vvnAa
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VRZxRmK
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ILpzD
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99df71df9b4398ab75a7908902843658

Headers

File Characteristics

Imports

ole32

gdi32

kernel32

msimg32

oleaut32

shell32

shlwapi

advapi32

comctl32

user32

dbghelp

msvfw32

Sections

.text Size: 117KB - Virtual size: 117KB

.PpkHQdV Size: 2KB - Virtual size: 1KB

.aRfCymt Size: 2KB - Virtual size: 1KB

.zhnS Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 17KB

.rdata Size: 111KB - Virtual size: 110KB

.AAiiu Size: 3KB - Virtual size: 3KB

.vvnAa Size: 2KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.VRZxRmK Size: 1024B - Virtual size: 592B

.ILpzD Size: 3KB - Virtual size: 3KB

.text
Size: 117KB - Virtual size: 117KB

.PpkHQdV
Size: 2KB - Virtual size: 1KB

.aRfCymt
Size: 2KB - Virtual size: 1KB

.zhnS
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 17KB

.rdata
Size: 111KB - Virtual size: 110KB

.AAiiu
Size: 3KB - Virtual size: 3KB

.vvnAa
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB

.VRZxRmK
Size: 1024B - Virtual size: 592B

.ILpzD
Size: 3KB - Virtual size: 3KB