ec3c4185da0594167d87f3b3a3081203cd5b6aec25e48c96a801ab40c3ba03e8

Sharing

Copy URL

Twitter E-mail

General

Target

ec3c4185da0594167d87f3b3a3081203cd5b6aec25e48c96a801ab40c3ba03e8
Size

861KB
MD5

f638cac7d543178c60a8b701d3f3f410
SHA1

51086d3163639627b5b44e07c4577769c650d38b
SHA256

ec3c4185da0594167d87f3b3a3081203cd5b6aec25e48c96a801ab40c3ba03e8
SHA512

ce178f419da29014f301ec2c632453e23aee893d034038e5e08f36010c76b4a8ecc653a193d2b9bfd8e6076eff65c455813ac520644e5d594c18544cdf294273
SSDEEP

12288:Qpc8N83EkpzVUo7Zf+gzmvfbc2CW2Z5yZhg30Sulmm2WA+uD1WNVauMN/FDRMU:eNMzeQZGPfQD5EhgkSuUmyjW3apN

Score

N/A

Malware Config

Signatures

Files

ec3c4185da0594167d87f3b3a3081203cd5b6aec25e48c96a801ab40c3ba03e8
.dll windows x86

7fa83378c2db5e87a5768918ee0724a9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
GlobalAlloc
FreeResource
InterlockedExchange
GetFileTime
lstrcpynW
GetVersionExA
GetModuleHandleA
GetConsoleOutputCP
GetWindowsDirectoryW
ReadFile
FindNextFileW
GetSystemInfo
GetCommandLineA
GetVersionExW
SetUnhandledExceptionFilter
TlsAlloc
GetVolumeInformationW
GlobalFree
FreeEnvironmentStringsW
GetSystemDefaultLangID
FindResourceExW
CreateThread
SetFilePointer
WaitForSingleObject
WriteConsoleA
FlushFileBuffers
HeapDestroy
EnumUILanguagesW
RaiseException
DeleteCriticalSection
LockFile
ExitProcess
DeviceIoControl
VirtualAlloc
GetThreadLocale
GetStdHandle
FreeEnvironmentStringsA
TlsGetValue
WritePrivateProfileStringW
SizeofResource
GetPrivateProfileIntW
IsDebuggerPresent
GetCPInfo
GetStringTypeA
GlobalHandle
MulDiv
LCMapStringA
HeapReAlloc
LocalFree
CompareStringA
GetPrivateProfileStringW
OutputDebugStringW
LocalReAlloc
GetModuleFileNameW
SetHandleCount
GlobalAddAtomW
HeapSize
EnterCriticalSection
GetCommandLineW
InitializeCriticalSection
GetFileAttributesW
CreateFileW
WideCharToMultiByte
FindFirstFileW
MultiByteToWideChar
GlobalUnlock
lstrlenW
CreateProcessW
LeaveCriticalSection
GetSystemDirectoryA
lstrcatA
VirtualProtectEx
GetStartupInfoW
FormatMessageW
SetThreadPriority
GetStartupInfoA
WriteConsoleW
GlobalLock
GetTickCount
FileTimeToSystemTime
DuplicateHandle
LockResource
CreateFileA
GlobalFindAtomW
FindResourceW
LocalAlloc
EnumResourceLanguagesW
UnlockFile
GetLocaleInfoW
GetCurrentProcess
VirtualFree
GetTimeZoneInformation
GetOEMCP
LCMapStringW
GetProcessHeap
VirtualQuery
GetDateFormatW
HeapAlloc
HeapFree
GetFileType
ConvertDefaultLocale
LoadResource
TlsFree
UnhandledExceptionFilter
LoadLibraryA
TlsSetValue
Sleep
GetLastError
GetTimeFormatW
lstrcmpW
InterlockedDecrement
GetDriveTypeA
CloseHandle
GetCurrentThreadId
GetProcAddress
InterlockedIncrement
GlobalReAlloc
GetModuleHandleW
FindClose
LoadLibraryW
FileTimeToLocalFileTime
GetEnvironmentStrings
SetEnvironmentVariableA
GetConsoleCP
GetLocalTime
lstrlenA
RtlUnwind
GetEnvironmentStringsW
lstrcmpA
GetCurrentThread
GetModuleFileNameA
GetUserDefaultUILanguage
GlobalFlags
GetFullPathNameW
WriteFile
FreeLibrary
GlobalDeleteAtom
WaitForMultipleObjects
SetEndOfFile
ExitThread
TerminateProcess
HeapCreate
SetErrorMode
VirtualProtect
SetStdHandle
GetLocaleInfoA
GetCurrentDirectoryA
GetStringTypeW
QueryPerformanceCounter
SuspendThread
GetACP
CompareStringW
GetSystemTimeAsFileTime
GetFileSize
SetLastError
ResetEvent
ResumeThread
GetVersion
GetCurrentProcessId

user32

UnhookWindowsHookEx
AppendMenuW
SetCursorPos
MessageBoxW
EndDialog
PeekMessageW
GetFocus
GetClassLongW
IsChild
GetDlgItem
GetForegroundWindow
GetCursorPos
GetWindowInfo
GetClassInfoW
UpdateWindow
TrackPopupMenu
MapWindowPoints
GetActiveWindow
PostThreadMessageW
AllowSetForegroundWindow
SetFocus
GetDesktopWindow
CallWindowProcW
CreateWindowExW
GetNextDlgGroupItem
CheckMenuItem
GetMessageTime
InflateRect
MapDialogRect
GetClassInfoExW
GetClassNameW
CharUpperW
GetNextDlgTabItem
SetWindowTextW
OffsetRect
GetMessagePos
GrayStringW
GetSubMenu
SendMessageW
IsDialogMessageW
SetActiveWindow
EndPaint
DefWindowProcW
GetMenu
RedrawWindow
GetSysColor
RegisterClipboardFormatW
GetMessageW
KillTimer
InvalidateRect
GetWindowThreadProcessId
BeginPaint
LoadMenuW
UnregisterClassW
WindowFromPoint
SetWindowPlacement
SetRectEmpty
GetWindowTextLengthW
LoadBitmapW
TranslateMessage
GetKeyState
GetCapture
SendDlgItemMessageW
SystemParametersInfoA
SetMenuItemBitmaps
ClientToScreen
RegisterClassW
DispatchMessageW
RemovePropW
PostMessageW
PtInRect
SetTimer
GetMenuItemID
FindWindowW
ScreenToClient
CallNextHookEx
SetRect
GetWindowRect
ReleaseCapture
CreateDialogIndirectParamW
GetMenuState
ExitWindowsEx
SetCapture
GetWindowLongW
SetWindowContextHelpId
GetDlgCtrlID
ValidateRect
DrawFocusRect
SetWindowPos
GetTopWindow
CopyRect
DrawTextExW
GetLastActivePopup
EnableMenuItem
SetWindowLongW
MoveWindow
IsWindow
AdjustWindowRectEx
LoadCursorW
GetSystemMenu
DestroyWindow
GetWindow
SetCursor
LoadIconW
GetWindowTextW
MessageBeep
SendDlgItemMessageA
IntersectRect
RegisterWindowMessageW
GetMenuItemCount
ReleaseDC
GetSysColorBrush
SetPropW
InvalidateRgn
GetWindowPlacement
TrackMouseEvent
GetWindowDC
RemoveMenu
CharNextW
SetForegroundWindow
PostQuitMessage
MsgWaitForMultipleObjects
UnregisterClassA
LoadMenuIndirectW
GetMenuCheckMarkDimensions
SetWindowsHookExW
EnableWindow
WinHelpW
ModifyMenuW
SetMenuDefaultItem
GetClientRect
InsertMenuW
TabbedTextOutW
IsIconic
ShowWindow
IsWindowVisible
GetParent
DestroyMenu
IsRectEmpty
DrawTextW
EqualRect
CopyAcceleratorTableW
GetPropW
GetDC
IsWindowEnabled
GetSystemMetrics

gdi32

StretchDIBits
GetTextColor
ExcludeClipRect
CreateBitmap
CreateSolidBrush
GetMapMode
SetBkColor
CreateCompatibleDC
DPtoLP
GetRgnBox
CreateCompatibleBitmap
SetViewportOrgEx
CreateFontIndirectW
GetViewportExtEx
GetPixel
RestoreDC
GetTextExtentPoint32W
PatBlt
PtVisible
CreateRectRgnIndirect
ExtSelectClipRgn
OffsetViewportOrgEx
SetViewportExtEx
SelectPalette
CreatePen
CreateBitmapIndirect
GetDeviceCaps
DeleteDC
RectVisible
ExtTextOutW
SaveDC
LineTo
ScaleWindowExtEx
StretchBlt
GetClipBox
SetPixel
SetMapMode
BitBlt
SetWindowExtEx
MoveToEx
DeleteObject
TextOutW
SelectObject
Polyline
GetWindowExtEx
GetObjectW
Escape
GetBkColor
GetStockObject
SetTextColor
SetBkMode
SetStretchBltMode
ScaleViewportExtEx

comdlg32

GetFileTitleW

advapi32

RegEnumKeyExW
RegQueryValueW
AdjustTokenPrivileges
RegOpenKeyW
LookupPrivilegeValueW
StartServiceW
OpenProcessToken
OpenSCManagerW
CloseServiceHandle
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
OpenServiceW
RegNotifyChangeKeyValue
RegQueryValueExW
RegEnumKeyW
RegCreateKeyW
RegCloseKey

shell32

ShellExecuteW
SHGetFolderPathW
Shell_NotifyIconW

ole32

CoGetClassObject
StgOpenStorageOnILockBytes
CoUninitialize
OleFlushClipboard
PropVariantClear
OleInitialize
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
CoTaskMemAlloc
OleUninitialize
CLSIDFromProgID
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoCreateInstance
CreateStreamOnHGlobal
CoInitialize
CreateILockBytesOnHGlobal
CoRevokeClassObject
CLSIDFromString
CoTaskMemFree

oleaut32

VariantCopy
SysFreeString
SafeArrayDestroy
OleCreateFontIndirect
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
VariantInit
VariantTimeToSystemTime
VariantChangeType
SysAllocString
VariantClear

comctl32

_TrackMouseEvent

shlwapi

PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW

winmm

waveInGetNumDevs
waveInReset
waveInAddBuffer
waveInOpen
waveInPrepareHeader
waveInGetDevCapsW
waveInClose
PlaySoundW
waveInUnprepareHeader
waveInStart
waveInStop

rpcrt4

UuidCreate

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces

gdiplus

GdipSetTextRenderingHint
GdipCreateBitmapFromResource
GdipDrawImageRectI
GdipCreateSolidFill
GdipDrawImageRect
GdiplusStartup
GdipGetImageWidth
GdipDeleteFont
GdipDeleteBrush
GdipFillRectangle
GdipGetImageBounds
GdipCreateBitmapFromScan0
GdipDrawString
GdipCloneBrush
GdipCloneImage
GdipDeleteFontFamily
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectRect
GdipGetGenericFontFamilySansSerif
GdipCreateBitmapFromGraphics
GdipGetImageHeight
GdipDrawImagePointRectI
GdipFillRectangleI
GdipMeasureString
GdipCreateFont
GdipFree
GdipGetFontSize
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdipDrawImageI
GdipCreateHBITMAPFromBitmap
GdipImageRotateFlip
GdipGetImageGraphicsContext
GdipAlloc
GdipCreateBitmapFromStream
GdipCreateFontFamilyFromName
GdipFlush

msvcrt

exit
fclose
fread
fopen

oleacc

ObjectFromLresult

esent

JetEndSession

Sections

.text
Size: 476KB - Virtual size: 476KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.11
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.22
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.55
Size: - Virtual size: 201KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.33
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zx
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.44
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fa83378c2db5e87a5768918ee0724a9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

version

setupapi

gdiplus

msvcrt

oleacc

esent

Sections

.text Size: 476KB - Virtual size: 476KB

.11 Size: 9KB - Virtual size: 8KB

.22 Size: 2KB - Virtual size: 2KB

.55 Size: - Virtual size: 201KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 824B

.33 Size: 42KB - Virtual size: 42KB

.zx Size: 266KB - Virtual size: 265KB

.44 Size: 41KB - Virtual size: 41KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 476KB - Virtual size: 476KB

.11
Size: 9KB - Virtual size: 8KB

.22
Size: 2KB - Virtual size: 2KB

.55
Size: - Virtual size: 201KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 824B

.33
Size: 42KB - Virtual size: 42KB

.zx
Size: 266KB - Virtual size: 265KB

.44
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 5KB - Virtual size: 4KB