4fb092b28b95122be34e8c09046d7d35279021892316987e706df2323f3fc98d

Sharing

Copy URL

Twitter E-mail

General

Target

4fb092b28b95122be34e8c09046d7d35279021892316987e706df2323f3fc98d
Size

2.5MB
MD5

21920ba7aa6ec998977800d3a8adb34e
SHA1

10d8a54df5ff3a3e137193e8f01a77d49e300f7f
SHA256

4fb092b28b95122be34e8c09046d7d35279021892316987e706df2323f3fc98d
SHA512

367b2a324cb6fc1dcca27c35b4c1fde95ffaf25fe601b9f12d6faa02388cba8b8bec628fc70d1c7c1ecd5dd69acc021b0b876d9c2c7e082d6330095f9e182052
SSDEEP

49152:mKOy8sKpnfv2OjICTkEJg8PFc/+7g5vtrkVMeXrJc:mKOy8vl1kCTbJg8dc/gg5vdMNXr

Score

N/A

Malware Config

Signatures

Files

4fb092b28b95122be34e8c09046d7d35279021892316987e706df2323f3fc98d
.dll windows x86

c8dd07d9c1696b35d0b58b58bc7d63f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasHangUpA
RasGetConnectStatusA

kernel32

GetModuleHandleA
GetVolumeInformationA
SetCurrentDirectoryA
GetProcAddress
FlushFileBuffers
FileTimeToLocalFileTime
FormatMessageA
LocalFree
InterlockedDecrement
InterlockedIncrement
GetDiskFreeSpaceA
MulDiv
GetCommandLineA
LockFile
GetTickCount
CreateDirectoryA
CopyFileA
DeleteFileA
MoveFileA
GetFileAttributesA
FindClose
FindFirstFileA
GetTempPathA
IsBadCodePtr
IsBadReadPtr
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
IsBadWritePtr
LCMapStringW
LCMapStringA
SetEnvironmentVariableA
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetStdHandle
SetHandleCount
SetStdHandle
GetACP
HeapSize
TerminateProcess
GetSystemTime
RaiseException
RtlUnwind
lstrcpyW
FindResourceExA
GetOEMCP
GetCPInfo
SetErrorMode
GetProfileIntA
GlobalUnlock
GlobalLock
GlobalAlloc
Sleep
CreateEventA
CreateThread
GetPrivateProfileStringA
WritePrivateProfileStringA
GetVersionExA
lstrlenW
lstrlenA
VirtualFree
VirtualAlloc
SetFileTime
SystemTimeToFileTime
DuplicateHandle
GetFileType
GetFileSize
SetFilePointer
GetLocalTime
GlobalHandle
IsDBCSLeadByte
lstrcpynA
GetTempFileNameA
FileTimeToSystemTime
SetLastError
GetTimeZoneInformation
WideCharToMultiByte
MultiByteToWideChar
GetCurrentProcess
GetWindowsDirectoryA
GetSystemDirectoryA
CreateSemaphoreA
ResumeThread
ReleaseSemaphore
EnterCriticalSection
LeaveCriticalSection
GetUserDefaultLCID
GetProfileStringA
WriteFile
ReadFile
GetLastError
WaitForMultipleObjects
CreateFileA
SetEvent
FindResourceA
LoadResource
LockResource
GetModuleFileNameA
GetCurrentThreadId
ExitProcess
GlobalSize
GlobalFree
DeleteCriticalSection
InitializeCriticalSection
lstrcatA
WinExec
lstrcpyA
FindNextFileA
GlobalReAlloc
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
GetFullPathNameA
FreeLibrary
GetProcessVersion
GetPrivateProfileIntA
GlobalFlags
GetCurrentThread
LocalFileTimeToFileTime
GetFileTime
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
TlsAlloc
LocalAlloc
lstrcmpA
GetVersion
GlobalGetAtomNameA
WaitForSingleObject
CloseHandle
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
SetEndOfFile
UnlockFile
LoadLibraryA

user32

SendMessageA
DestroyCursor
SetParent
IsWindow
PostMessageA
GetTopWindow
GetParent
GetFocus
GetClientRect
LockWindowUpdate
InvalidateRect
ValidateRect
UpdateWindow
EqualRect
GetWindowRect
SetForegroundWindow
DestroyMenu
TrackPopupMenu
IsChild
ReleaseDC
IsRectEmpty
InvertRect
FillRect
GetDC
SetCursor
LoadCursorA
SetCursorPos
SetActiveWindow
GetSysColor
SetWindowPos
MessageBeep
GetWindowLongA
RedrawWindow
EnableWindow
IsWindowVisible
OffsetRect
PtInRect
DestroyIcon
IntersectRect
SetRect
InflateRect
SetScrollPos
SetScrollRange
GetScrollRange
SetCapture
GetCapture
ReleaseCapture
SetTimer
KillTimer
WinHelpA
LoadBitmapA
CopyRect
ChildWindowFromPointEx
ScreenToClient
GetMessagePos
SetWindowRgn
DestroyAcceleratorTable
GetWindow
GetActiveWindow
SetFocus
IsIconic
PeekMessageA
SetMenu
GetMenu
DefWindowProcA
GetClassInfoA
DeleteMenu
GetSystemMenu
MessageBoxA
GetCursorPos
GetSystemMetrics
IsClipboardFormatAvailable
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CloseClipboard
wsprintfA
SetWindowLongA
IsZoomed
PostQuitMessage
CopyAcceleratorTableA
GetKeyState
TranslateAcceleratorA
IsWindowEnabled
ShowWindow
LoadImageA
EnumDisplaySettingsA
ClientToScreen
EnableMenuItem
GetSubMenu
GetDlgCtrlID
CreateAcceleratorTableA
CreateMenu
ModifyMenuA
AppendMenuA
CreatePopupMenu
DrawIconEx
CreateIconFromResource
GetDCEx
RemoveMenu
InsertMenuA
UnregisterClassA
GetDesktopWindow
TabbedTextOutA
UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExA
GrayStringA
DrawTextA
CreateCaret
SetCaretPos
GetCaretPos
ShowCaret
GetMenuStringA
ShowScrollBar
LoadMenuA
DestroyCaret
ClipCursor
UnionRect
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
UnregisterHotKey
RegisterHotKey
CreateWindowExA
CallWindowProcA
SetWindowTextA
HideCaret
GetSysColorBrush
GetForegroundWindow
SystemParametersInfoA
TranslateMessage
LoadIconA
DrawFrameControl
DrawEdge
DrawFocusRect
WindowFromPoint
GetMessageA
DispatchMessageA
SetRectEmpty
RegisterClipboardFormatA
CreateIconFromResourceEx
GetWindowTextA
GetWindowTextLengthA
CharUpperA
GetWindowDC
BeginPaint
EndPaint
GetDlgItem
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetWindowPlacement
RegisterWindowMessageA
GetLastActivePopup
GetMessageTime
RemovePropA
GetPropA
SetPropA
GetClassLongA
GetMenuItemID
GetMenuItemCount
RegisterClassA
GetScrollPos
SetScrollInfo
GetScrollInfo
ScrollWindow
AdjustWindowRectEx
MapWindowPoints
SendDlgItemMessageA
GetDlgItemInt
SetDlgItemInt
SetDlgItemTextA
ScrollWindowEx
IsDialogMessageA
MoveWindow
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
GetMenuCheckMarkDimensions
ShowOwnedPopups
GetClassNameA
wvsprintfA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
LoadStringA
GetAsyncKeyState
MapDialogRect
FindWindowA
GetTabbedTextExtentA
InSendMessage

gdi32

SetBkMode
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
OffsetRgn
GetCharWidthA
StrokeAndFillPath
GetPath
CloseFigure
FrameRgn
GetEnhMetaFileBits
SetEnhMetaFileBits
PlayEnhMetaFile
SetWinMetaFileBits
DeleteEnhMetaFile
StretchDIBits
Polyline
CreateEllipticRgnIndirect
RectInRegion
PtInRegion
SetAbortProc
AbortDoc
GetTextMetricsA
CreateICA
EnumFontFamiliesA
TranslateCharsetInfo
CreateFontA
SetBkColor
CreateRectRgnIndirect
SetStretchBltMode
GetClipRgn
CreatePolygonRgn
SelectClipRgn
DeleteObject
CreateDIBitmap
GetSystemPaletteEntries
CreatePalette
StretchBlt
SelectPalette
RealizePalette
GetDIBits
GetWindowExtEx
GetViewportOrgEx
GetWindowOrgEx
BeginPath
EndPath
PathToRegion
CreateEllipticRgn
CreateRoundRectRgn
GetTextColor
GetBkMode
GetBkColor
GetROP2
GetStretchBltMode
GetPolyFillMode
CreateCompatibleBitmap
CreateDCA
CreateBrushIndirect
CreateHatchBrush
CreateBitmap
CreatePatternBrush
SelectObject
GetObjectA
CreatePen
PatBlt
FillRgn
CreateRectRgn
CombineRgn
CreateSolidBrush
GetStockObject
CreateFontIndirectA
EndPage
EndDoc
DeleteDC
StartDocA
StartPage
BitBlt
CreateCompatibleDC
Ellipse
Rectangle
LPtoDP
DPtoLP
GetCurrentObject
RoundRect
Pie
Chord
Arc
Polygon
GetTextExtentPoint32A
GetDeviceCaps
SaveDC
RestoreDC
GetCurrentPositionEx
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
PolyBezierTo
ExtSelectClipRgn
GetTextFaceA
GetNearestColor
EnumFontFamiliesExA
CopyMetaFileA
GetTextAlign
CloseMetaFile
DeleteMetaFile
SetRectRgn
GetMapMode
GetViewportExtEx

winmm

midiStreamOpen
midiStreamClose
midiOutReset
midiStreamStop
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
midiStreamRestart
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
waveOutPause
waveOutReset
waveOutClose
waveOutGetNumDevs
waveOutOpen
midiOutUnprepareHeader

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegQueryValueA
RegOpenKeyA
RegCreateKeyExA
RegSetValueA
SetFileSecurityA
GetFileSecurityA

shell32

Shell_NotifyIconA
SHGetFileInfoA
SHGetSpecialFolderPathA
DragAcceptFiles
DragFinish
DragQueryFileA
ExtractIconA
ShellExecuteA

ole32

CoTaskMemAlloc
OleRegGetUserType
ReadFmtUserTypeStg
ReadClassStg
OleSetClipboard
CoGetClassObject
CoInitialize
CoUninitialize
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
OleSetMenuDescriptor
OleDuplicateData
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
CoTreatAsClass
CoDisconnectObject
CreateGenericComposite
CreateItemMoniker
OleSaveToStream
WriteClassStm
OleGetIconOfClass
ReleaseStgMedium
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleCreate
OleCreateLinkToFile
OleCreateFromFile
OleCreateStaticFromData
OleCreateFromData
OleSetContainedObject
StringFromCLSID
CoTaskMemFree
OleLockRunning
CreateFileMoniker
CreateBindCtx
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleQueryCreateFromData
OleGetClipboard
CLSIDFromString
OleSave
OleConvertOLESTREAMToIStorage
OleLoad
OleIsRunning
OleInitialize
CreateStreamOnHGlobal
OleUninitialize

oleaut32

SysAllocString
UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
SysFreeString
VariantChangeType
VariantClear
VariantCopy
SysAllocStringLen
SysAllocStringByteLen

odbc32

ord72
ord48
ord49
ord20
ord17
ord59
ord8
ord19
ord46
ord12
ord43
ord41
ord2
ord1
ord10
ord5
ord16
ord13
ord18
ord11
ord14
ord9
ord15
ord50
ord45
ord51
ord44
ord3
ord54
ord68
ord4

comctl32

ImageList_LoadImageA
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_GetImageInfo
ImageList_Add
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_EndDrag
ord17
ImageList_AddMasked
ImageList_Draw

oledlg

ord3
ord4
ord11

ws2_32

WSAAsyncSelect
closesocket
send
select
WSACleanup
WSAStartup
inet_ntoa
recvfrom
ioctlsocket
recv
getpeername
accept

wininet

InternetQueryOptionA
InternetCloseHandle
InternetOpenA
InternetConnectA
FtpGetFileA
InternetReadFile
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetOpenUrlA
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetQueryDataAvailable
InternetGetLastResponseInfoA

imm32

ImmReleaseContext
ImmGetCompositionStringA
ImmGetContext
ImmSetCompositionWindow
ImmNotifyIME

comdlg32

GetFileTitleA
PrintDlgA
GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError
ChooseColorA

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 412KB - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 96KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8dd07d9c1696b35d0b58b58bc7d63f5

Headers

File Characteristics

Imports

rasapi32

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

odbc32

comctl32

oledlg

ws2_32

wininet

imm32

comdlg32

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 412KB - Virtual size: 409KB

.data Size: 96KB - Virtual size: 350KB

.rsrc Size: 172KB - Virtual size: 168KB

.data Size: 192KB - Virtual size: 188KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 412KB - Virtual size: 409KB

.data
Size: 96KB - Virtual size: 350KB

.rsrc
Size: 172KB - Virtual size: 168KB

.data
Size: 192KB - Virtual size: 188KB