d8332e46dbdcff7b7ab522b7fd736c4a92ab4e74d89fb5c97ad00d8b485f5df8

Sharing

Copy URL

Twitter E-mail

General

Target

d8332e46dbdcff7b7ab522b7fd736c4a92ab4e74d89fb5c97ad00d8b485f5df8
Size

2.1MB
MD5

03e99de75400de2a5ccec48525fb4130
SHA1

c6a8ef8d1157f2075a5d8e2b8c13bc5889eeacac
SHA256

d8332e46dbdcff7b7ab522b7fd736c4a92ab4e74d89fb5c97ad00d8b485f5df8
SHA512

afe5bc09506e9bfc6ed6e46ad273275ddc144903823b3a2ccc1fc0bb6dc2bdf42160b698ad1b8d5d31cfcaea964284859b802f2691e68d6b7b05c8905793d21d
SSDEEP

49152:3UwhOiO15/PmNd1qG2DcMZB4XA/f8y1ENhlIOZ/LSSOw+QV:3z5CAz2DcMZmw/fL14lIWDSSO

Score

N/A

Malware Config

Signatures

Files

d8332e46dbdcff7b7ab522b7fd736c4a92ab4e74d89fb5c97ad00d8b485f5df8
.exe windows x86

4656a208372c632c4641646cc15de008

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCloseHandle
GetUrlCacheEntryInfoW
DeleteUrlCacheEntryW
InternetOpenW
InternetCrackUrlW
InternetReadFile
InternetOpenUrlW
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetSetOptionExW
InternetQueryOptionW
InternetCanonicalizeUrlW
HttpOpenRequestW
HttpQueryInfoW
HttpAddRequestHeadersW
HttpSendRequestW
InternetConnectW

psapi

EnumProcesses
EnumProcessModules
GetModuleFileNameExW
GetModuleBaseNameW

kernel32

GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
VirtualFree
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
LCMapStringW
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
HeapReAlloc
RaiseException
RtlUnwind
GetDateFormatA
GetTimeFormatA
HeapAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetFileAttributesA
HeapFree
FindResourceExW
VirtualProtect
GetProfileIntW
SearchPathW
GetTempPathW
GetTempFileNameW
SetErrorMode
GetFileTime
GetFileSizeEx
lstrcpyW
GetCurrentDirectoryW
GetPrivateProfileIntW
GlobalFlags
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetThreadLocale
SetThreadPriority
GetStdHandle
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetCurrentProcessId
GetModuleHandleA
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
GetVersionExA
SetLastError
GlobalSize
FormatMessageW
LocalFree
MulDiv
CreateSemaphoreW
ReleaseSemaphore
ResumeThread
GetCurrentThreadId
ExitThread
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WriteProcessMemory
GetExitCodeThread
VirtualAllocEx
VirtualFreeEx
CreateRemoteThread
Module32NextW
Module32FirstW
TerminateProcess
FindClose
GlobalFree
GetVersionExW
CopyFileW
GetSystemTimeAsFileTime
GetCurrentProcess
FindFirstFileW
GetModuleHandleW
GetStartupInfoW
lstrlenA
InterlockedDecrement
InterlockedIncrement
lstrcmpA
OpenProcess
OpenEventW
Sleep
CreateProcessW
WritePrivateProfileStringW
lstrlenW
MultiByteToWideChar
FreeLibrary
GetProcAddress
LoadLibraryW
GetTickCount
SetEvent
GetFileSize
ReadFile
CreateFileW
WriteFile
DeleteFileW
WaitForMultipleObjects
CreateEventW
CreateThread
CreateDirectoryA
GetFileAttributesW
GlobalAlloc
GlobalLock
GlobalUnlock
FreeResource
WideCharToMultiByte
WaitForSingleObject
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
lstrcmpW
GetLastError
CreateMutexW
CloseHandle
ReleaseMutex
GetModuleFileNameW
FindResourceW
LoadResource
LockResource
SizeofResource
GetFileType
VirtualQuery
SetStdHandle
GetSystemInfo
VirtualAlloc
GetCurrentThread
HeapSize
QueryPerformanceCounter

user32

DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
UnregisterClassW
GetNextDlgTabItem
GetNextDlgGroupItem
InvalidateRgn
SetRect
EmptyClipboard
CloseClipboard
SetClipboardData
LoadImageW
DestroyIcon
CopyImage
OpenClipboard
DrawStateW
RegisterClipboardFormatW
EnumChildWindows
LockWindowUpdate
BringWindowToTop
IsRectEmpty
IsMenu
GetSystemMenu
SetClassLongW
SetParent
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
CreateAcceleratorTableW
LoadAcceleratorsW
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
CopyAcceleratorTableW
PostThreadMessageW
WaitMessage
WindowFromPoint
DestroyMenu
GetMenuItemInfoW
GetSysColorBrush
CharUpperW
InflateRect
CharNextW
ShowOwnedPopups
GetMessageW
TranslateMessage
GetActiveWindow
ValidateRect
SetWindowContextHelpId
MapDialogRect
SystemParametersInfoW
MessageBeep
RedrawWindow
IsZoomed
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
TabbedTextOutW
FillRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
IsWindowEnabled
SetWindowTextW
IsDialogMessageW
CheckDlgButton
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
GetDoubleClickTime
SetCursorPos
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
GetMenu
OffsetRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetParent
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
RemoveMenu
IntersectRect
SetRectEmpty
PtInRect
CopyRect
SetCursor
ScreenToClient
UnionRect
EnableScrollBar
SetMenuDefaultItem
GetMenuDefaultItem
IsCharLowerW
GetKeyNameTextW
MapVirtualKeyExW
IsClipboardFormatAvailable
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
SetCapture
SetFocus
GetCursorPos
ReleaseCapture
CallWindowProcW
DefWindowProcW
GetWindowThreadProcessId
TrackPopupMenu
GetSubMenu
DeleteMenu
LoadMenuW
FrameRect
GetUpdateRect
EndDialog
DrawIcon
DestroyCursor
GetWindowRgn
IsWindowVisible
MoveWindow
SetPropW
FindWindowExW
RegisterWindowMessageW
KillTimer
SetTimer
SetWindowPos
ReleaseDC
UpdateLayeredWindow
SetWindowLongW
GetWindowLongW
GetDC
GetWindowRect
GetClientRect
LoadCursorW
FindWindowW
SendMessageW
GetPropW
IsWindow
GetDesktopWindow
GetWindow
ShowWindow
PostMessageW
InvalidateRect
GetSysColor
EnableWindow
GetIconInfo
GetFocus
CreateMenu
SubtractRect
CopyIcon
CharUpperBuffW
RemovePropW
CreateDialogIndirectParamW
DrawTextW

gdi32

GetTextColor
CreateFontIndirectW
SetRectRgn
GetMapMode
PatBlt
DPtoLP
GetTextExtentPoint32W
OffsetRgn
PtVisible
GetRgnBox
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
SetPixel
CreateEllipticRgn
CreatePolygonRgn
Polyline
Ellipse
Polygon
Rectangle
RoundRect
CreatePalette
GetPaletteEntries
GetBkColor
PtInRegion
FillRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
GetPixel
GetWindowExtEx
GetWindowOrgEx
CreateHatchBrush
GetViewportExtEx
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreatePatternBrush
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
CombineRgn
CreateRoundRectRgn
CreateRectRgn
GetClipBox
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
ExtSelectClipRgn
DeleteDC
OffsetViewportOrgEx
SetViewportOrgEx
Escape
DeleteObject
SelectObject
CreateDIBSection
BitBlt
CreateCompatibleBitmap
ExtTextOutW
TextOutW
CreateCompatibleDC
GetObjectW
FrameRgn
CreateSolidBrush
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetDCOrgEx
CopyMetaFileW
GetDeviceCaps
SelectClipRgn
CreateRectRgnIndirect
RectVisible

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
GetUserNameW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
InitializeSecurityDescriptor
AdjustTokenPrivileges
LookupPrivilegeValueW
RegOpenKeyW
OpenProcessToken

shell32

SHChangeNotify
ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
SHAppBarMessage
SHBrowseForFolderW
DragFinish
DragQueryFileW
ShellExecuteExW

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathFileExistsW
StrToIntA
PathStripPathW
PathQuoteSpacesW
PathFindExtensionW
PathFindFileNameW
UrlUnescapeW
PathStripToRootW
PathIsUNCW

oledlg

OleUIBusyW

ole32

OleFlushClipboard
CreateStreamOnHGlobal
CoTaskMemFree
CoInitialize
CoInitializeSecurity
CoCreateInstance
CoUninitialize
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
DoDragDrop
OleGetClipboard
OleUninitialize
CoFreeUnusedLibraries
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleLockRunning
OleIsCurrentClipboard
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
OleInitialize

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
OleCreateFontIndirect
VariantChangeType
VariantInit
SysStringLen
SysFreeString
SysAllocString
VariantClear
SysAllocStringLen

gdiplus

GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipCreatePath
GdipDeletePath
GdipGetFontSize
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC
GdipDeleteGraphics
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipFree
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRect
GdipDeleteBrush
GdipDeletePen
GdipCloneBrush
GdipSetImageAttributesColorMatrix
GdipSetTextRenderingHint
GdipDeleteFont
GdipSetImageAttributesWrapMode
GdipSetStringFormatAlign
GdipDeleteFontFamily
GdipCreateSolidFill
GdipDisposeImageAttributes
GdipCreateFont
GdipCreateImageAttributes
GdipDrawString
GdipCreateFontFamilyFromName
GdipSetSolidFillColor
GdipFillRectangleI
GdipCreateStringFormat
GdipCreatePen1
GdipDeleteStringFormat
GdipDrawRectangleI
GdipGetPathWorldBounds
GdipGetFontStyle
GdipGetFamily
GdipAddPathString

iphlpapi

GetAdaptersInfo
GetAdaptersAddresses

netapi32

Netbios

snmpapi

SnmpUtilOidCpy
SnmpUtilVarBindFree
SnmpUtilOidNCmp

ws2_32

gethostbyname
send
WSAStartup
connect
closesocket
__WSAFDIsSet
socket
recv
htons
WSAGetLastError
select

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 321KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 187KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4656a208372c632c4641646cc15de008

Headers

DLL Characteristics

File Characteristics

Imports

wininet

psapi

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

iphlpapi

netapi32

snmpapi

ws2_32

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 321KB - Virtual size: 320KB

.data Size: 27KB - Virtual size: 55KB

.rsrc Size: 187KB - Virtual size: 187KB

.reloc Size: 153KB - Virtual size: 152KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 321KB - Virtual size: 320KB

.data
Size: 27KB - Virtual size: 55KB

.rsrc
Size: 187KB - Virtual size: 187KB

.reloc
Size: 153KB - Virtual size: 152KB