9fd3d745c3eb5353f9c121e0a50aa1293dabd04b768fc3469fdb09dd4c80298f

Sharing

Copy URL Twitter E-mail

General

Target

9fd3d745c3eb5353f9c121e0a50aa1293dabd04b768fc3469fdb09dd4c80298f
Size

446KB
MD5

555978b2a315a57b55570c20a2657320
SHA1

b1ba72418290bda0f7f193a25fd223b6305de708
SHA256

9fd3d745c3eb5353f9c121e0a50aa1293dabd04b768fc3469fdb09dd4c80298f
SHA512

b980d864aaff49211bbb2d79e20c091b398daa8e71106d31bd8a785dd96707c71482698bca03375d138f83b7a6b0598f600e8bd7a3badec3a744637fc51a31c7
SSDEEP

12288:X3GLvtEvZyCoYcU31SkCX0e0uBX/v7VVWa+RQZGyk:mLv6bPc0e0uZzr54

Score

N/A

Malware Config

Signatures

Files

9fd3d745c3eb5353f9c121e0a50aa1293dabd04b768fc3469fdb09dd4c80298f
.dll windows x86

2d893a79632fc7d1a3043eec1b5bb921

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetWriteFile
InternetSetStatusCallbackA
InternetSetOptionExA
InternetSetFilePointer
InternetSetCookieA
InternetReadFile
InternetQueryOptionA
InternetQueryDataAvailable
InternetOpenUrlA
InternetOpenA
InternetGetLastResponseInfoA
InternetGetCookieA
InternetFindNextFileA
InternetErrorDlg
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
InternetCanonicalizeUrlA
HttpSendRequestExA
HttpSendRequestA
HttpQueryInfoA
HttpOpenRequestA
HttpEndRequestA
HttpAddRequestHeadersA
GopherOpenFileA
GopherGetAttributeA
GopherFindFirstFileA
GopherCreateLocatorA
FtpSetCurrentDirectoryA
FtpRenameFileA
FtpRemoveDirectoryA
FtpPutFileA
FtpOpenFileA
FtpGetFileA
FtpGetCurrentDirectoryA
FtpFindFirstFileA
FtpDeleteFileA
FtpCreateDirectoryA
FtpCommandA

shell32

ShellExecuteW
SHGetSpecialFolderPathW
ExtractIconA
SHGetFileInfoA

advapi32

RegEnumKeyExW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegSetValueExW
RegSetValueExA
RegSetValueA
RegQueryValueExW
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyA
RegEnumKeyA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExW
RegCreateKeyExA
AdjustTokenPrivileges

shlwapi

PathCanonicalizeW
PathFindExtensionA
PathFindFileNameA
PathIsUNCA
PathRemoveExtensionA
PathRemoveFileSpecW
PathStripToRootA
UrlUnescapeA
PathCombineW

ole32

ReadFmtUserTypeStg
ReadClassStg
OleRegGetUserType
OleDuplicateData
CreateStreamOnHGlobal
StringFromGUID2
ReleaseStgMedium
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoDisconnectObject
CoCreateInstance
CLSIDFromString
SetConvertStg
CoTreatAsClass
StringFromCLSID
WriteClassStg
WriteFmtUserTypeStg
CreateBindCtx

kernel32

FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceA
FindResourceExW
FindResourceW
FindVolumeClose
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetAtomNameA
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNumberFormatW
GetOEMCP
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeExW
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadLocale
GetTickCount
GetTimeFormatA
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GetVersionExW
GetVolumeInformationA
GetVolumeInformationW
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFlags
GlobalFree
GlobalGetAtomNameA
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalReAlloc
LockFile
LockResource
MapViewOfFileEx
MoveFileA
MoveFileExA
MulDiv
MultiByteToWideChar
OpenMutexA
OpenProcess
QueryPerformanceCounter
RaiseException
ReadFile
ResumeThread
RtlUnwind
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
SuspendThread
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
FileTimeToLocalFileTime
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW
CloseHandle
CompareStringA
CompareStringW
ConvertDefaultLocale
CopyFileA
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileMappingW
CreateMutexA
CreateProcessW
CreateThread
DeleteCriticalSection
DeleteFileA
FatalAppExitA
DeleteFileW
DuplicateHandle
EnterCriticalSection
EnumResourceLanguagesA
EnumSystemLocalesA
ExitProcess
ExitThread
UnlockFile

user32

GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetTopWindow
GetWindow
GetWindowDC
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowTextW
GetWindowThreadProcessId
GrayStringA
InflateRect
InsertMenuA
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsDlgButtonChecked
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
KillTimer
LoadBitmapA
LoadCursorA
LoadCursorW
LoadIconA
LoadIconW
LoadImageW
MapWindowPoints
MessageBoxA
MessageBoxW
ModifyMenuA
MoveWindow
OffsetRect
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterClassA
RegisterClassExW
RegisterClassW
RegisterWindowMessageA
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
ScrollWindowEx
GetMenuItemInfoA
SendMessageA
SendMessageW
SetActiveWindow
SetCapture
SetCursor
SetDlgItemInt
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetPropA
SetRect
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
GetScrollInfo
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutA
TrackPopupMenu
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UpdateWindow
ValidateRect
WinHelpA
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyState
GetForegroundWindow
GetFocus
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDialogBaseUnits
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoExW
GetClassInfoExA
GetClassInfoA
GetCapture
GetActiveWindow
FindWindowW
FillRect
DefWindowProcW
EqualRect
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
DrawTextW
DrawTextExA
DrawTextA
DrawFocusRect
DrawEdge
DispatchMessageW
DispatchMessageA
DialogBoxParamW
DestroyWindow
DefWindowProcA
DefDlgProcW
CreateWindowExW
CreateWindowExA
CreateDialogParamW
CreateDialogIndirectParamA
CopyRect
CheckRadioButton
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperA
CharNextW
CharLowerW
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BeginPaint
BeginDeferWindowPos
AppendMenuA
AdjustWindowRectEx
GetPropA
GetParent
GetNextDlgTabItem
GetMessageW
GetMessageTime
GetMessagePos
GetMessageA
GetMenuStringA
SetWindowPos
GetMenuState
DestroyMenu
DestroyIcon
DeleteMenu
SendDlgItemMessageA
DeferWindowPos
ExitWindowsEx
ClientToScreen

oleaut32

SysReAllocStringLen
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
VariantTimeToSystemTime
VariantInit
VariantCopy
VariantClear
VariantChangeType
VarUI4FromStr
VarR8FromStr
VarI4FromStr
VarDecFromStr
VarDecCmp
VarDateFromStr
VarCyFromStr
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
SystemTimeToVariantTime
SysStringLen
SysStringByteLen
SafeArrayAccessData
SysFreeString
SysAllocStringLen
SysAllocStringByteLen
SafeArrayUnlock
SafeArrayUnaccessData
SafeArrayRedim
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayLock
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetElement
SafeArrayGetDim
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayCreate

winmm

PlaySoundW

comctl32

_TrackMouseEvent
ord17
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Draw
ImageList_Destroy

gdi32

GetObjectA
GetMapMode
GetDeviceCaps
GetDCOrgEx
GetCurrentPositionEx
ExtTextOutA
ExtSelectClipRgn
ExtCreatePen
ExcludeClipRect
Escape
GetObjectType
GetObjectW
GetPixel
GetStockObject
GetTextExtentPoint32A
GetTextMetricsA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
ModifyWorldTransform
MoveToEx
OffsetClipRgn
OffsetViewportOrgEx
OffsetWindowOrgEx
PatBlt
PlayMetaFile
PlayMetaFileRecord
PolyBezierTo
PolyDraw
Polygon
PolylineTo
PtVisible
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
EnumMetaFile
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePen
CreatePatternBrush
CreateHatchBrush
TextOutA
StretchBlt
StartDocA
SetWorldTransform
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextJustification
SetTextColor
SetTextCharacterExtra
SetTextAlign
SetStretchBltMode
SetRectRgn
SetROP2
SetPolyFillMode
SetMapperFlags
SetMapMode
SetGraphicsMode
CreateFontIndirectW
CreateFontIndirectA
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileA
CombineRgn
BitBlt
ArcTo
SelectClipPath
SelectClipRgn
SelectObject
SelectPalette
SetArcDirection
SetBkColor
SetBkMode
SetColorAdjustment
SetDIBColorTable
GetClipRgn
GetClipBox

comdlg32

ChooseFontW
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

Exports

Exports

FileExFlags
FromContiguous
FromVoidPtrAndDesc
IndexError
String_Concat
_flags
start_read_image

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d893a79632fc7d1a3043eec1b5bb921

Headers

File Characteristics

Imports

wininet

shell32

advapi32

shlwapi

ole32

kernel32

user32

oleaut32

winmm

comctl32

gdi32

comdlg32

winspool.drv

Exports

Exports

Sections

.text Size: 74KB - Virtual size: 73KB

.rdata Size: 262KB - Virtual size: 261KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 35KB - Virtual size: 35KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 74KB - Virtual size: 73KB

.rdata
Size: 262KB - Virtual size: 261KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 35KB - Virtual size: 35KB

.reloc
Size: 4KB - Virtual size: 3KB