e4ced18defc733b1f6413f02a42bc32964e69a9785f444bccacf9359476624f8

Sharing

Copy URL Twitter E-mail

General

Target

e4ced18defc733b1f6413f02a42bc32964e69a9785f444bccacf9359476624f8
Size

872KB
MD5

5e8154e279c23372b6916151b808ac20
SHA1

93130cfbe1056d19006c383475e721c96abd5af9
SHA256

e4ced18defc733b1f6413f02a42bc32964e69a9785f444bccacf9359476624f8
SHA512

947307e624d98b0d9331ac9355e5c437daa5f047b8ff9c795b48ccabfcb6acc84402fdac77e745dbe7b7583120d891b8b2af14825d414550ceb716eadda0cc4e
SSDEEP

24576:qFoSmCIcw2wGjR3uAm4A6bAw20jV0cIUTf1IC:woSNI5GNXmJ6A6V09UTf1I

Score

N/A

Malware Config

Signatures

Files

e4ced18defc733b1f6413f02a42bc32964e69a9785f444bccacf9359476624f8
.exe windows x86

9b16c95ed7b08282b089ca1b91b7e9a4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsSetValue
GetCurrentThread
GetStartupInfoA
LCMapStringW
InterlockedExchange
GetCurrentThreadId
GetModuleHandleW
GetLocaleInfoW
FindResourceW
GetFileType
LoadLibraryW
SizeofResource
GetProcessHeap
HeapQueryInformation
GetUserDefaultUILanguage
GetConsoleMode
GetProcAddress
LocalFree
IsDebuggerPresent
GlobalFlags
GetThreadTimes
GetThreadLocale
DuplicateHandle
TerminateProcess
CreateMutexW
GetLocaleInfoA
InterlockedCompareExchange
LoadLibraryExW
CreateFileW
GetProcessTimes
EnterCriticalSection
WriteFile
LeaveCriticalSection
LoadResource
SetEvent
HeapDestroy
GetFileSizeEx
ExitThread
SetEnvironmentVariableA
GetNumberFormatW
GetDriveTypeW
GetOEMCP
SetLastError
lstrcmpW
LocalAlloc
ResumeThread
CompareStringW
GlobalAddAtomW
lstrcpyW
EnumSystemLocalesA
GetUserDefaultLCID
GlobalFindAtomW
CloseHandle
GlobalLock
GetSystemDefaultUILanguage
VirtualProtect
GetTempFileNameW
GetPrivateProfileStringW
Sleep
FindFirstFileW
GetCurrentProcessId
GetFileInformationByHandle
FileTimeToSystemTime
lstrlenW
GetFileSize
RtlUnwind
FlushFileBuffers
GetVersion
PeekNamedPipe
DeleteAtom
LocalReAlloc
VirtualQuery
GetVolumeInformationW
GetFullPathNameW
GetFileAttributesW
GetEnvironmentStringsW
GetProcessWorkingSetSize
TlsAlloc
MulDiv
GetStartupInfoW
HeapSize
WaitForSingleObject
FreeEnvironmentStringsW
SetHandleCount
FreeLibrary
UnhandledExceptionFilter
SetStdHandle
SetErrorMode
ReleaseMutex
GetConsoleCP
GetTickCount
TlsGetValue
GetFileAttributesExW
VirtualFree
GetCurrentDirectoryW
InterlockedDecrement
GetFileTime
CompareStringA
FindFirstFileExW
IsValidCodePage
FindNextFileW
CreateThread
DeleteCriticalSection
GlobalUnlock
lstrcmpiW
GlobalGetAtomNameW
InterlockedIncrement
GlobalHandle
GetLastError
GetStdHandle
HeapFree
GlobalFree
GetPrivateProfileIntW
LockResource
HeapCreate
GetSystemInfo
LockFile
FreeResource
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
VirtualLock
GetACP
HeapSetInformation
QueryPerformanceCounter
SuspendThread
GlobalAlloc
GetModuleFileNameW
LoadLibraryA
IsValidLocale
FormatMessageW
GetLongPathNameW
DeleteFileW
GetCommandLineW
GetCPInfo
ExitProcess
GetCurrentProcess
VirtualAlloc
TlsFree
SetFilePointer
FlushInstructionCache
SetThreadPriority
HeapAlloc
MultiByteToWideChar
VirtualUnlock
InitializeCriticalSectionAndSpinCount
GlobalSize
WideCharToMultiByte
GetTempPathW
WritePrivateProfileStringW
GetTimeZoneInformation
ConvertDefaultLocale
GlobalDeleteAtom
MoveFileExW
GetStringTypeW
lstrcmpA
UnlockFile
GetWindowsDirectoryW
GetVersionExW
GetProfileIntW
CreateEventW
ReadFile
GetSystemDirectoryW
WriteConsoleW
HeapReAlloc
CopyFileW
FindResourceExW
RaiseException
IsProcessorFeaturePresent
GlobalMemoryStatus
GlobalReAlloc
SearchPathW
FindClose
InitializeCriticalSection
SetEndOfFile
SetUnhandledExceptionFilter
lstrlenA

user32

DrawEdge
CreateDialogIndirectParamW
GetSystemMetrics
BeginDeferWindowPos
SetTimer
ShowOwnedPopups
EmptyClipboard
SetDlgItemTextW
GetLastActivePopup
DrawFocusRect
GetWindowRect
DestroyAcceleratorTable
SetPropW
SubtractRect
EnableMenuItem
WaitMessage
GetDesktopWindow
SendMessageW
GetMessageTime
SetWindowRgn
GetCaretPos
CharUpperBuffW
GetTopWindow
CreateIcon
DialogBoxIndirectParamW
GetKeyboardLayout
TabbedTextOutW
PtInRect
GetIconInfo
SetClassLongW
DefWindowProcW
GetMonitorInfoW
LoadCursorW
IsRectEmpty
SetClipboardData
GetWindowPlacement
SetMenuDefaultItem
DefFrameProcW
GetMenuDefaultItem
ToUnicodeEx
DrawTextW
WindowFromPoint
LoadBitmapW
InsertMenuItemW
IsMenu
GetWindowLongW
GetClassInfoW
GetWindow
GetCursorPos
GetPropW
GetParent
InvalidateRgn
DispatchMessageW
SendDlgItemMessageW
TranslateMDISysAccel
RegisterWindowMessageW
MapVirtualKeyExW
IsIconic
CopyImage
BeginPaint
RedrawWindow
DestroyMenu
CreateWindowExW
TrackPopupMenu
DrawFrameControl
GetAsyncKeyState
GetKeyNameTextW
UnpackDDElParam
SetForegroundWindow
GetDC
SystemParametersInfoW
HideCaret
GetWindowThreadProcessId
SetFocus
CharUpperW
GetMenuItemCount
GetWindowDC
GetScrollInfo
UnhookWindowsHookEx
PostMessageW
GetMessageW
CallWindowProcW
InflateRect
GetClassInfoExW
SetActiveWindow
SetWindowLongW
IsWindowVisible
ReleaseCapture
GetFocus
WinHelpW
CheckMenuItem
RegisterClipboardFormatW
DrawIconEx
GetProcessWindowStation
NotifyWinEvent
IsCharLowerW
GetMenu
SetRectEmpty
SetMenu
ValidateRect
EndPaint
LoadMenuW
GetClipboardViewer
MoveWindow
LockWindowUpdate
CallNextHookEx
SetWindowsHookExW
DeleteMenu
UpdateLayeredWindow
DeferWindowPos
SetParent
GetDialogBaseUnits
GetSystemMenu
GetDlgItem
MapDialogRect
GetUpdateRect
ReuseDDElParam
MapWindowPoints
EqualRect
RealChildWindowFromPoint
GetQueueStatus
DrawStateW
FrameRect
ShowScrollBar
GetMenuItemInfoW
CloseClipboard
RegisterClassW
EnumWindows
GetSysColorBrush
CreateIconFromResourceEx
GetMessagePos
LoadImageW
SetWindowTextW
DestroyWindow
EnableScrollBar
GetScrollRange
SetCapture
CopyRect
OffsetRect
KillTimer
GetMenuItemID
ClipCursor
SetWindowContextHelpId
GetOpenClipboardWindow
GetActiveWindow
GetForegroundWindow
FillRect
GetDoubleClickTime
CopyIcon
OpenClipboard
PostThreadMessageW
SendDlgItemMessageA
EnumDisplayMonitors
InvalidateRect
SetScrollRange
ModifyMenuW
IsChild
PostQuitMessage
SetCursor
LoadIconW
EndDeferWindowPos
UpdateWindow
GetClassNameW
ScreenToClient
IsDialogMessageW
CreateAcceleratorTableW
IsWindowEnabled
GetClassLongW
DialogBoxParamW
CreateMenu
GetNextDlgTabItem
InsertMenuW
AdjustWindowRectEx
GetDlgItemTextW
UnregisterClassW
DestroyIcon
UnionRect
DrawTextExW
RemovePropW
DestroyCursor
GetWindowTextW
DefMDIChildProcW
CheckDlgButton
MapVirtualKeyW
CharNextW
ScrollWindow
IsZoomed
MessageBoxW
DrawIcon
PeekMessageW
SetWindowPlacement
SetScrollInfo
GetMenuStringW
IntersectRect
RemoveMenu
GetMenuState
LoadAcceleratorsW
IsClipboardFormatAvailable
CreatePopupMenu
SetScrollPos
SetMenuItemBitmaps
UnregisterClassA
SetWindowPos
EnumChildWindows
ShowWindow
MonitorFromPoint
GetClientRect
InvertRect
IsWindow
GetDlgCtrlID
GetCapture
TranslateAcceleratorW
SetLayeredWindowAttributes
DrawMenuBar
GetKeyState
MonitorFromWindow
MessageBeep
GrayStringW
SetRect
EndDialog
ReleaseDC
GetNextDlgGroupItem
GetWindowTextLengthW
EnableWindow
GetMenuCheckMarkDimensions
AppendMenuW
GetWindowRgn
TranslateMessage
SetCursorPos
GetKeyboardState
GetScrollPos
ClientToScreen
GetSysColor
GetSubMenu

gdi32

DPtoLP
CreateCompatibleBitmap
SetTextColor
SetLayout
GetBoundsRect
EnumFontFamiliesW
CreateFontIndirectW
SetBkColor
SetDIBColorTable
SetPolyFillMode
GetLayout
Rectangle
ExtFloodFill
GetViewportExtEx
SetBitmapBits
LPtoDP
GetObjectType
SetPaletteEntries
ExcludeClipRect
CreatePen
RealizePalette
CreateSolidBrush
GetTextExtentPointW
ExtSelectClipRgn
MoveToEx
CreateRectRgn
CreatePolygonRgn
PtVisible
GetWindowOrgEx
SetPixel
SetTextAlign
SetROP2
ExtTextOutW
GetBkColor
ScaleViewportExtEx
GetPaletteEntries
DeleteObject
ScaleWindowExtEx
FrameRgn
OffsetRgn
GetClipBox
Escape
GetRgnBox
GetTextMetricsW
SetWindowOrgEx
GetBitmapBits
RestoreDC
CreateFontW
GetBkMode
GetTextFaceW
CreateRectRgnIndirect
SaveDC
SetViewportOrgEx
SetDIBitsToDevice
GetPixel
CreateHatchBrush
StretchBlt
SetWindowExtEx
SetViewportExtEx
TextOutW
RectVisible
CreateDIBitmap
SelectPalette
EnumFontFamiliesExW
GetCurrentObject
GetWindowExtEx
GetViewportOrgEx
GetTextCharsetInfo
CreateDCW
DeleteDC
GetNearestPaletteIndex
SelectClipRgn
SetDIBits
GetDeviceCaps
GetObjectW
OffsetViewportOrgEx
SetBkMode
CombineRgn
LineTo
CreateRoundRectRgn
FillRgn
IntersectClipRect
Polygon
Polyline
SetStretchBltMode
CreateDIBSection
Ellipse
PatBlt
GetSystemPaletteEntries
CreatePalette
CopyMetaFileW
SetRectRgn
CreateBitmap
GetTextColor
SelectObject
GetMapMode
RoundRect
GetTextExtentPoint32W
SetMapMode
OffsetWindowOrgEx
CreateCompatibleDC
GetStockObject
CreatePatternBrush
SetPixelV
PtInRegion
CreateEllipticRgn
BitBlt

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

advapi32

AllocateAndInitializeSid
OpenProcessToken
RegOpenKeyExW
RegDeleteKeyW
GetTokenInformation
RegQueryValueExW
RegEnumKeyExW
RegQueryValueW
RegSetValueExW
RegQueryInfoKeyW
RegCreateKeyExW
FreeSid
RegEnumKeyW
RegCloseKey
RegDeleteValueW
CryptGenRandom
CheckTokenMembership
RegEnumValueW
RegQueryValueExA
RegOpenKeyExA

shell32

DragFinish
SHAppBarMessage
DragQueryFileW
ShellExecuteW
ShellExecuteExW
SHGetFileInfoW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ExtractIconExW
SHBrowseForFolderW
Shell_NotifyIconW
DuplicateIcon
SHGetDesktopFolder

ole32

CoTaskMemAlloc
OleInitialize
CoTaskMemFree
CLSIDFromString
OleDuplicateData
OleDestroyMenuDescriptor
CoUninitialize
OleCreateMenuDescriptor
IsAccelerator
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoTaskMemRealloc
DoDragDrop
CoGetClassObject
CoInitialize
CoLockObjectExternal
CoCreateInstance
OleIsCurrentClipboard
CreateStreamOnHGlobal
RevokeDragDrop
OleLockRunning
OleGetClipboard
CoCreateGuid
CoInitializeEx
OleTranslateAccelerator
CoRegisterClassObject
StringFromGUID2
CLSIDFromProgID
RegisterDragDrop
CoRevokeClassObject
CoFreeUnusedLibraries
OleFlushClipboard
CreateILockBytesOnHGlobal
OleUninitialize
ReleaseStgMedium
StgCreateDocfileOnILockBytes

oleaut32

VarBstrCat
VarBstrFromDate
SafeArrayDestroy
UnRegisterTypeLi
OleCreateFontIndirect
VariantCopy
VarBstrCmp
VariantChangeType
SysFreeString
SystemTimeToVariantTime
RegisterTypeLi
SysStringByteLen
VarUI4FromStr
SysAllocStringLen
VariantInit
VariantTimeToSystemTime
SysAllocStringByteLen
VariantClear
SysStringLen
SysAllocString
LoadTypeLi

comctl32

ImageList_DragMove
InitCommonControlsEx
ImageList_GetIconSize
_TrackMouseEvent
ImageList_DragShowNolock

shlwapi

PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathRemoveFileSpecW
PathStripToRootW

winmm

PlaySoundW

rpcrt4

UuidCreateNil

msimg32

AlphaBlend
TransparentBlt

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipDrawImageRectI
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipFree
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipGetImagePalette
GdipCloneImage
GdipSetInterpolationMode
GdipCreateFromHDC
GdipGetImageWidth
GdipAlloc
GdipGetImageGraphicsContext
GdipCreateBitmapFromStream
GdipDeleteGraphics
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdiplusShutdown
GdipGetImageHeight
GdipGetImagePaletteSize

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

uxtheme

OpenThemeData
CloseThemeData

Sections

.text
Size: 663KB - Virtual size: 663KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 175KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b16c95ed7b08282b089ca1b91b7e9a4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

msimg32

imm32

oledlg

gdiplus

oleacc

uxtheme

Sections

.text Size: 663KB - Virtual size: 663KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 175KB - Virtual size: 200KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 663KB - Virtual size: 663KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 175KB - Virtual size: 200KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 5KB - Virtual size: 4KB