f437c7818bd92d5ba08b92a8dcadff6fd6748c697f73008cda42ec0951b2cd97

Sharing

Copy URL

Twitter E-mail

General

Target

f437c7818bd92d5ba08b92a8dcadff6fd6748c697f73008cda42ec0951b2cd97
Size

301KB
MD5

0536dcbd92c02cb8549e7b4d6f6d14e5
SHA1

e9c32cb61487f786b5a741cd6002b8d186e0ee0b
SHA256

f437c7818bd92d5ba08b92a8dcadff6fd6748c697f73008cda42ec0951b2cd97
SHA512

e538e5df2d3d99575363fee9d72cd95b966f58bec777a78dda510eaa45c02cdf352dc7b4e913e781641f9568efe4b4881151100e366451cebf9c555e75b0081b
SSDEEP

6144:TAUUyJ6UztVT59mxcVXdkr9EAa0szsBmVMM8/w:TAmVT6c/1Rf

Score

N/A

Malware Config

Signatures

Files

f437c7818bd92d5ba08b92a8dcadff6fd6748c697f73008cda42ec0951b2cd97
.dll windows x86

aa6964640d96d8531756b0eb35586b10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
HeapReAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadReadPtr
IsDBCSLeadByte
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
LockResource
MapUserPhysicalPages
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenFile
OpenMutexA
OpenThread
QueryPerformanceCounter
RaiseException
ReadConsoleOutputA
ReadFile
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
FreeResource
ResumeThread
RtlMoveMemory
SearchPathA
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
GlobalLock
SetHandleInformation
SetLastError
SetSystemTime
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStructW
_hwrite
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW
FreeLibraryAndExitThread
FreeLibrary
FormatMessageW
FormatMessageA
FlushInstructionCache
FlushFileBuffers
FindResourceA
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
ExitProcess
EnumTimeFormatsA
EnumSystemCodePagesW
EnumCalendarInfoW
GlobalFree
GlobalAlloc
GetVersionExA
GetVersion
GetUserDefaultUILanguage
GetUserDefaultLCID
GetTimeFormatW
GetTickCount
GetTempPathW
GetTempPathA
GetTempFileNameW
GetTempFileNameA
GetSystemWindowsDirectoryA
GetSystemTimeAsFileTime
GetSystemTime
GetSystemPowerStatus
GetSystemInfo
GetSystemDirectoryW
GetSystemDirectoryA
GetSystemDefaultUILanguage
GetStringTypeExA
GetStdHandle
GetShortPathNameW
GetProfileIntA
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileType
GetFileTime
GetFileSize
GetFileAttributesW
GetExitCodeThread
GetExitCodeProcess
GetEnvironmentVariableW
GetDriveTypeW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
SetFileTime
GetACP
EnterCriticalSection
EndUpdateResourceW
DuplicateHandle
DeviceIoControl
DeleteTimerQueueTimer
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateTimerQueueTimer
CreateThread
CreateProcessW
CreateMutexW
CreateMutexA
CreateFileW
CreateEventW
CreateEventA
CreateDirectoryW
CopyFileW
ConnectNamedPipe
CompareStringW
CompareStringA
CompareFileTime
ReplaceFileA
CloseHandle

shfolder

SHGetFolderPathA

shlwapi

SHQueryValueExA
SHQueryValueExW
SHRegGetBoolUSValueA
SHRegSetUSValueA
SHSetValueA
SHSetValueW
StrCSpnA
StrCSpnW
StrChrA
StrCmpIW
StrCmpNIA
StrCmpNIW
StrCmpNW
StrCmpW
StrDupA
StrDupW
StrFormatByteSizeW
StrRChrIW
PathIsUNCServerW
PathIsRootW
PathIsRelativeW
PathIsFileSpecW
PathIsDirectoryW
PathIsDirectoryEmptyW
PathIsContentTypeW
PathIsContentTypeA
PathGetArgsA
SHQueryInfoKeyW
SHGetValueW
SHGetValueA
SHEnumKeyExW
SHDeleteValueW
SHDeleteValueA
SHDeleteKeyW
SHDeleteKeyA
ord16
SHCopyKeyA
SHAutoComplete
PathUnquoteSpacesW
PathUnquoteSpacesA
PathUnExpandEnvStringsW
PathStripPathW
PathSearchAndQualifyA
PathRenameExtensionW
PathRemoveFileSpecW
PathRemoveFileSpecA
PathRemoveExtensionW
PathRemoveBackslashW
PathRemoveArgsA
StrStrA
StrStrIA
StrStrIW
StrStrW
StrToIntA
StrToIntExA
StrToIntExW
StrToIntW
StrTrimA
UrlApplySchemeW
UrlCombineW
UrlCreateFromPathW
UrlUnescapeA
UrlUnescapeW
PathFindFileNameW
PathFindFileNameA
PathFindExtensionW
PathFileExistsW
PathFileExistsA
PathCompactPathExW
PathCombineW
PathAppendW
PathAppendA
PathAddExtensionW
PathAddBackslashW
HashData
PathFindOnPathW
PathIsURLW
PathRelativePathToW

user32

IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadAcceleratorsW
LoadCursorA
LoadIconA
LoadImageA
LoadImageW
LoadMenuA
LoadMenuW
LoadStringA
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuW
MonitorFromPoint
MoveWindow
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageA
SendMessageCallbackW
SendMessageTimeoutA
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetDlgItemInt
SetDlgItemTextA
SetDlgItemTextW
SetFocus
IsDlgButtonChecked
SetMenu
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoA
SetMenuItemInfoW
SetParent
SetPropA
SetPropW
SetRect
SetRectEmpty
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
TrackMouseEvent
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorA
TranslateAcceleratorW
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WindowFromPoint
IsDialogMessageW
IsDialogMessageA
IsChild
InvalidateRect
IntersectRect
InsertMenuW
InsertMenuItemW
InsertMenuItemA
InsertMenuA
InflateRect
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowTextLengthA
CreateDialogParamW
CopyRect
CloseClipboard
ClientToScreen
CheckRadioButton
CheckMenuRadioItem
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperA
CharPrevW
CharPrevA
CharNextW
CharNextExA
CharNextA
CharLowerW
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BeginPaint
BeginDeferWindowPos
AppendMenuW
AppendMenuA
AdjustWindowRectEx
AdjustWindowRect
ActivateKeyboardLayout
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowInfo
GetWindowDC
GetWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollBarInfo
GetPropW
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMonitorInfoA
GetMessageW
GetMessagePos
GetMessageExtraInfo
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardLayoutList
GetKeyState
GetGUIThreadInfo
GetForegroundWindow
GetFocus
GetDlgItemTextW
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassNameA
GetClassInfoW
CreatePopupMenu
GetClassInfoExA
GetClassInfoA
GetCapture
GetActiveWindow
FindWindowExW
FindWindowExA
FillRect
EqualRect
EnumWindows
EnumThreadWindows
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawTextA
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DispatchMessageA
DialogBoxParamW
DialogBoxParamA
DialogBoxIndirectParamA
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
DdeAbandonTransaction
CreateWindowExW
SetForegroundWindow
CreateWindowExA
GetClassInfoExW

dbghelp

MapDebugInformation
UnDecorateSymbolName
lmi
vc7fpo

ws2_32

WSADuplicateSocketW
WSAAddressToStringA
WSACreateEvent
socket
ntohs
closesocket
WSCInstallProvider
WSAEventSelect

advapi32

AllocateAndInitializeSid
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyA
RegEnumKeyExA
RegEnumKeyExW
RegEnumValueW
RegOpenKeyA
RegOpenKeyExW
RegQueryInfoKeyA
RegQueryInfoKeyW
RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegSetValueExW
RegisterTraceGuidsA
SystemFunction001
SystemFunction025
SystemFunction026
TraceEvent
UnregisterTraceGuids
RegCreateKeyExA
RegConnectRegistryW
RegCloseKey
OpenThreadToken
OpenSCManagerA
OpenProcessToken
MapGenericMask
LsaQueryInfoTrustedDomain
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
GetTokenInformation
FreeSid
EnumServicesStatusA
ElfDeregisterEventSource
ElfCloseEventLog
CreateProcessWithLogonW
CloseServiceHandle
RegCreateKeyExW

rpcrt4

IUnknown_QueryInterface_Proxy
CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_QueryInterface
IUnknown_AddRef_Proxy
IUnknown_Release_Proxy
I_RpcServerInqLocalConnAddress
NdrCStdStubBuffer_Release
NdrClientCall2
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
RpcImpersonateClient

winspool.drv

WritePrinter
SetPrinterDataExA
GetPrinterDriverA
GetJobW
ord201
AddPrinterW
DeviceCapabilitiesW
DeviceMode
EXTDEVICEMODE

gdi32

BitBlt
CloseMetaFile
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateFontA
CreateFontIndirectA
CreateFontIndirectW
CreateMetaFileA
CreatePen
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteMetaFile
DeleteObject
Ellipse
EnumFontFamiliesExA
ExtTextOutA
ExtTextOutW
GetClipBox
GetDeviceCaps
GetObjectA
GetObjectW
GetTextExtentPoint32W
GetTextExtentPointA
GetTextExtentPointW
GetTextMetricsA
LPtoDP
LineTo
MoveToEx
PatBlt
Polygon
Polyline
Rectangle
RestoreDC
SaveDC
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetTextColor
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutW
ChoosePixelFormat

msvcrt

_strnset
iswpunct
_wremove

opengl32

glColor3fv
glCopyTexImage1D
glGetPixelMapusv
glGetTexLevelParameterfv
glGetTexLevelParameteriv
glLighti
glMapGrid1d
glNormal3dv
glPixelMapuiv
glRasterPos4dv
glRasterPos4fv
glStencilOp
glTexCoord4dv
glTexCoord4i
glTexCoord4sv
glVertex4iv
wglGetCurrentContext
GlmfCloseMetaFile

Sections

.text
Size: 221KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa6964640d96d8531756b0eb35586b10

Headers

File Characteristics

Imports

kernel32

shfolder

shlwapi

user32

dbghelp

ws2_32

advapi32

rpcrt4

winspool.drv

gdi32

msvcrt

opengl32

Sections

.text Size: 221KB - Virtual size: 224KB

.rdata Size: 29KB - Virtual size: 31KB

.data Size: 22KB - Virtual size: 23KB

.idata Size: 16KB - Virtual size: 19KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 221KB - Virtual size: 224KB

.rdata
Size: 29KB - Virtual size: 31KB

.data
Size: 22KB - Virtual size: 23KB

.idata
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 11KB - Virtual size: 11KB