a28e337ee4f59b63afd5f48196a9c745b50d679ad5a4a1e7a39420e8037ee2cb

Sharing

Copy URL

Twitter E-mail

General

Target

a28e337ee4f59b63afd5f48196a9c745b50d679ad5a4a1e7a39420e8037ee2cb
Size

871KB
MD5

876fd0d8e9a5455bc35461f4e2516670
SHA1

3915ec14954dc1a73bd6474b27198e64b1b17497
SHA256

a28e337ee4f59b63afd5f48196a9c745b50d679ad5a4a1e7a39420e8037ee2cb
SHA512

fcee36c0d760e029a7e51623529dfaace1f90ef7510ef9d1cd3ce0d6e95d220b35f9c656f89cfe1ef9effa316d07e073340fc568f39da09722c1f448fb89c3c2
SSDEEP

12288:b9sAw7BuGRgma4mN+4fTtbFjzPJkCKmgQ05UIwoOwHKUBsKiZ6Ugav3ueWhL:5s1B7KhN+SFPZKwwHpBhiZTfuPhL

Score

N/A

Malware Config

Signatures

Files

a28e337ee4f59b63afd5f48196a9c745b50d679ad5a4a1e7a39420e8037ee2cb
.dll windows x86

820dc9f5f07d7403298fcc88280aaff6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
HeapReAlloc
LocalReAlloc
TlsGetValue
FindClose
GetLocaleInfoA
GetLongPathNameW
QueryPerformanceCounter
VirtualUnlock
VirtualProtect
FreeLibrary
DeleteAtom
GetCurrentThreadId
HeapDestroy
LocalAlloc
GetFileAttributesW
FindFirstFileW
ExitThread
GetWindowsDirectoryW
GetFullPathNameW
GetModuleHandleW
WideCharToMultiByte
GetThreadLocale
DuplicateHandle
GlobalAddAtomW
GetFileInformationByHandle
GetCurrentProcessId
GetStdHandle
GetConsoleMode
GlobalFree
SetUnhandledExceptionFilter
MulDiv
GetModuleFileNameW
HeapFree
CompareStringA
IsProcessorFeaturePresent
UnhandledExceptionFilter
VirtualQuery
FindNextFileW
GlobalMemoryStatus
GetProcessWorkingSetSize
GetThreadTimes
GetFileAttributesExW
lstrlenA
GetFileSize
ReleaseMutex
HeapAlloc
lstrcmpW
WritePrivateProfileStringW
GetProcessHeap
FindFirstFileExW
DeleteCriticalSection
GetPrivateProfileIntW
GetSystemInfo
SetFilePointer
GlobalGetAtomNameW
GetFileSizeEx
WriteFile
FreeEnvironmentStringsW
GetNumberFormatW
ConvertDefaultLocale
TlsAlloc
CloseHandle
CreateMutexW
GetFileType
SetThreadPriority
PeekNamedPipe
SetHandleCount
HeapCreate
FreeResource
GetTickCount
HeapQueryInformation
InterlockedExchange
SetEnvironmentVariableA
GetConsoleCP
FindResourceExW
SizeofResource
TlsSetValue
GlobalLock
LeaveCriticalSection
CopyFileW
Sleep
SetStdHandle
GetCurrentThread
LocalFree
GetOEMCP
LockResource
GetPrivateProfileStringW
ExitProcess
DeleteFileW
LoadLibraryW
HeapSetInformation
ResumeThread
GlobalAlloc
GetCommandLineW
SetEndOfFile
TlsFree
GlobalUnlock
CreateEventW
InterlockedIncrement
CreateThread
InterlockedDecrement
WaitForSingleObject
GlobalSize
FlushFileBuffers
GetVolumeInformationW
GlobalFlags
lstrcmpA
lstrcpyW
InitializeCriticalSection
ReadFile
lstrlenW
RaiseException
GetSystemDirectoryW
GetEnvironmentStringsW
EnumSystemLocalesA
GetStartupInfoA
GetFileTime
GetSystemTimeAsFileTime
FlushInstructionCache
WriteConsoleW
FormatMessageW
LoadResource
GetUserDefaultUILanguage
GlobalReAlloc
RtlUnwind
MoveFileExW
GetLastError
UnlockFile
GlobalDeleteAtom
GlobalHandle
IsValidLocale
EnterCriticalSection
LockFile
MultiByteToWideChar
GetVersionExW
LoadLibraryExW
SearchPathW
VirtualFree
GetCurrentDirectoryW
GetTempPathW
FileTimeToSystemTime
GetProcAddress
LoadLibraryA
SuspendThread
lstrcmpiW
GetSystemDefaultUILanguage
InterlockedCompareExchange
GetACP
IsValidCodePage
GetCurrentProcess
FindResourceW
CreateFileW
SetLastError
GetStartupInfoW
GetDriveTypeW
VirtualLock
FileTimeToLocalFileTime
GetProfileIntW
InitializeCriticalSectionAndSpinCount
GetTempFileNameW
GetLocaleInfoW
GetVersion
GlobalFindAtomW
IsDebuggerPresent
HeapSize
GetUserDefaultLCID
GetTimeZoneInformation
GetProcessTimes
SetErrorMode

user32

GetLastActivePopup
DispatchMessageW
IsChild
KillTimer
RegisterClassW
WindowFromPoint
DrawFrameControl
CheckMenuItem
GetMenuCheckMarkDimensions
MapWindowPoints
GetKeyNameTextW
RealChildWindowFromPoint
CopyImage
IsClipboardFormatAvailable
GetSysColorBrush
ClipCursor
ShowOwnedPopups
GetMenuStringW
LoadCursorW
GetDlgItem
GetClassLongW
GetQueueStatus
EndDeferWindowPos
EqualRect
GetScrollRange
GetMessageW
IsIconic
GetMenuItemInfoW
GetScrollPos
RegisterClipboardFormatW
GetMonitorInfoW
MonitorFromPoint
DefMDIChildProcW
SetWindowRgn
SubtractRect
DrawMenuBar
MonitorFromWindow
DrawStateW
DestroyIcon
ValidateRect
CharUpperBuffW
EnumDisplayMonitors
GetDialogBaseUnits
GetPropW
InvalidateRgn
SetWindowPos
TabbedTextOutW
LoadBitmapW
CallNextHookEx
GetDlgItemTextW
DrawIconEx
DefWindowProcW
IntersectRect
CallWindowProcW
ModifyMenuW
RedrawWindow
SetMenuDefaultItem
IsWindowVisible
EnableWindow
IsDialogMessageW
RegisterWindowMessageW
EnumChildWindows
SendDlgItemMessageA
SetFocus
InvertRect
IsZoomed
UnhookWindowsHookEx
SetLayeredWindowAttributes
GetMenuState
DialogBoxParamW
GetWindowLongW
SetRectEmpty
GetKeyState
TranslateAcceleratorW
CheckDlgButton
OpenClipboard
GetActiveWindow
EndDialog
LoadMenuW
GetSubMenu
SetCapture
LoadAcceleratorsW
SetScrollInfo
GetDC
GetClassInfoExW
GetForegroundWindow
GetClassInfoW
SetWindowLongW
HideCaret
ReleaseDC
InsertMenuItemW
GetNextDlgTabItem
GetWindow
GetWindowPlacement
CreateIconFromResourceEx
TrackPopupMenu
DefFrameProcW
EnumWindows
ScrollWindow
DeferWindowPos
ShowWindow
LoadImageW
BeginDeferWindowPos
GetUpdateRect
SendMessageW
GetProcessWindowStation
InsertMenuW
GetClassNameW
GetAsyncKeyState
ClientToScreen
DestroyCursor
GetScrollInfo
PtInRect
IsWindow
BeginPaint
MessageBoxW
PostThreadMessageW
FillRect
MapVirtualKeyW
InvalidateRect
CharNextW
DrawEdge
GrayStringW
ShowScrollBar
GetSystemMetrics
WaitMessage
UpdateLayeredWindow
CreateMenu
EmptyClipboard
WinHelpW
CharUpperW
GetFocus
GetWindowTextW
GetClipboardViewer
GetIconInfo
PostMessageW
UpdateWindow
SetForegroundWindow
CopyIcon
CreateDialogIndirectParamW
GetOpenClipboardWindow
DrawTextW
SetActiveWindow
DrawIcon
GetNextDlgGroupItem
SetMenu
LoadIconW
GetWindowThreadProcessId
UnionRect
GetMessageTime
SetParent
GetCaretPos
GetMenu
RemoveMenu
CreatePopupMenu
InflateRect
GetDoubleClickTime
MapDialogRect
SetDlgItemTextW
DeleteMenu
ScreenToClient
SetMenuItemBitmaps
GetDesktopWindow
GetTopWindow
SetClipboardData
RemovePropW
SetScrollRange
IsWindowEnabled
UnpackDDElParam
DrawTextExW
EnableScrollBar
SetTimer
GetWindowDC
AdjustWindowRectEx
PostQuitMessage
SetScrollPos
SetWindowPlacement
SetCursor
SetWindowContextHelpId
TranslateMDISysAccel
TranslateMessage
SetWindowsHookExW
SetWindowTextW
UnregisterClassA
CloseClipboard
DrawFocusRect
ReleaseCapture
AppendMenuW
SetRect
UnregisterClassW
GetCapture
GetClientRect
GetMenuItemID
GetWindowTextLengthW
SendDlgItemMessageW
GetMessagePos
EndPaint
PeekMessageW
EnableMenuItem
IsRectEmpty
GetParent
MoveWindow
CopyRect
GetWindowRgn
IsMenu
CreateIcon
GetDlgCtrlID
FrameRect
OffsetRect
GetCursorPos
DialogBoxIndirectParamW
GetMenuItemCount
GetSystemMenu
GetWindowRect
MapVirtualKeyExW
DestroyMenu
CreateWindowExW
SystemParametersInfoW
SetPropW
ReuseDDElParam

gdi32

GetTextExtentPointW
StretchBlt
SetMapMode
GetBoundsRect
Polygon
CreateRectRgnIndirect
CreatePolygonRgn
SetPixel
EnumFontFamiliesExW
GetPixel
GetBitmapBits
SetROP2
DPtoLP
GetTextMetricsW
SetViewportOrgEx
GetObjectType
SetWindowOrgEx
OffsetViewportOrgEx
CreateBitmap
CreateRectRgn
CreateCompatibleDC
CreateFontW
Escape
SetViewportExtEx
CreatePen
OffsetWindowOrgEx
GetObjectW
Polyline
TextOutW
FillRgn
SetLayout
GetCurrentObject
SaveDC
GetMapMode
RealizePalette
BitBlt
ScaleViewportExtEx
DeleteObject
CreatePatternBrush
ScaleWindowExtEx
CreateRoundRectRgn
SetTextAlign
CreateFontIndirectW
CopyMetaFileW
GetTextFaceW
RoundRect
SetPaletteEntries
SetDIBColorTable
IntersectClipRect
SelectPalette
GetTextExtentPoint32W
CombineRgn
ExtFloodFill
GetSystemPaletteEntries
SetBkColor
ExtTextOutW
CreateHatchBrush
CreateEllipticRgn
CreatePalette
SetStretchBltMode
SetPolyFillMode
PatBlt
SelectClipRgn
EnumFontFamiliesW
DeleteDC
SetPixelV
GetViewportExtEx
GetStockObject
GetWindowExtEx
GetTextColor
LineTo
GetBkColor
SetRectRgn
SetDIBits
Rectangle
GetNearestPaletteIndex
PtInRegion
SetBkMode
SetTextColor
GetViewportOrgEx
OffsetRgn
RectVisible
CreateDCW
GetTextCharsetInfo
GetWindowOrgEx
CreateDIBSection
SelectObject
ExcludeClipRect
CreateDIBitmap
MoveToEx
FrameRgn
SetDIBitsToDevice
CreateCompatibleBitmap
GetPaletteEntries
GetRgnBox
GetBkMode
ExtSelectClipRgn
GetDeviceCaps
RestoreDC
CreateSolidBrush
PtVisible
SetWindowExtEx
GetLayout
SetBitmapBits
GetClipBox
Ellipse
LPtoDP

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

advapi32

RegDeleteValueW
RegQueryValueW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
CryptGenRandom
OpenProcessToken
RegSetValueExW
RegQueryInfoKeyW
CheckTokenMembership
FreeSid
GetTokenInformation
RegQueryValueExA
RegEnumValueW
RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyExA
RegEnumKeyW
AllocateAndInitializeSid

shell32

SHAppBarMessage
ExtractIconExW
DragQueryFileW
SHGetDesktopFolder
Shell_NotifyIconW
DragFinish
ShellExecuteExW
ShellExecuteW
SHGetPathFromIDListW
DuplicateIcon
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetFileInfoW

ole32

CoTaskMemAlloc
OleFlushClipboard
OleInitialize
CreateStreamOnHGlobal
ReleaseStgMedium
CoTaskMemRealloc
CoFreeUnusedLibraries
RevokeDragDrop
CreateILockBytesOnHGlobal
CoUninitialize
StgOpenStorageOnILockBytes
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleTranslateAccelerator
CoGetClassObject
OleUninitialize
CLSIDFromProgID
DoDragDrop
OleCreateMenuDescriptor
OleDuplicateData
CoInitializeEx
OleIsCurrentClipboard
OleDestroyMenuDescriptor
CoTaskMemFree
CoRegisterMessageFilter
StringFromGUID2
CoRegisterClassObject
CoInitialize
IsAccelerator
StgCreateDocfileOnILockBytes
CLSIDFromString
OleLockRunning
CoCreateInstance
CoRevokeClassObject
CoCreateGuid

oleaut32

SysAllocStringLen
OleCreateFontIndirect
VariantTimeToSystemTime
VarBstrCat
VariantClear
VariantCopy
VarBstrCmp
LoadTypeLi
VarBstrFromDate
RegisterTypeLi
SysStringByteLen
VariantChangeType
SafeArrayDestroy
SysStringLen
SystemTimeToVariantTime
SysFreeString
VarUI4FromStr
SysAllocStringByteLen
SysAllocString
VariantInit
UnRegisterTypeLi

comctl32

InitCommonControlsEx
ImageList_DragMove
_TrackMouseEvent
ImageList_DragShowNolock
ImageList_GetIconSize

shlwapi

PathIsUNCW
PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
PathFindFileNameW

winmm

PlaySoundW

rpcrt4

NdrProxyErrorHandler

msimg32

AlphaBlend
TransparentBlt

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

gdiplus

GdipGetImagePaletteSize
GdipDrawImageI
GdipFree
GdipGetImagePalette
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdiplusShutdown
GdipGetImageHeight
GdipGetImageWidth
GdipCreateFromHDC
GdipBitmapUnlockBits
GdipAlloc
GdipCloneImage
GdiplusStartup
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipBitmapLockBits
GdipCreateBitmapFromStream

uxtheme

OpenThemeData
CloseThemeData

Sections

.text
Size: 662KB - Virtual size: 661KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

820dc9f5f07d7403298fcc88280aaff6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

msimg32

imm32

gdiplus

uxtheme

Sections

.text Size: 662KB - Virtual size: 661KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 176KB - Virtual size: 200KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 662KB - Virtual size: 661KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 176KB - Virtual size: 200KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 5KB - Virtual size: 4KB