71a6453d3603c5e385e998c1c4303b7effc21e94a2423be7e78d1cdd319821f2

Sharing

Copy URL Twitter E-mail

General

Target

71a6453d3603c5e385e998c1c4303b7effc21e94a2423be7e78d1cdd319821f2
Size

889KB
MD5

0eba75e535ee682c38a7bf1ba3d1e680
SHA1

817ad7786ece34fdfe13595df3ed1e9bb47eea03
SHA256

71a6453d3603c5e385e998c1c4303b7effc21e94a2423be7e78d1cdd319821f2
SHA512

035aeeaab53a97b6f0a9c4cb90d3fad8f5934e39cb2e11a2412fbb71157cbf4680d090bc7367ff0b8755cb88afcbcdbe2b6eaf5eee275af6b5906244d5888191
SSDEEP

24576:/xfxp5MtGb4vxIOx61uiukwkrqxWQFtVwPy:/ZFMt5+NoivFP

Score

N/A

Malware Config

Signatures

Files

71a6453d3603c5e385e998c1c4303b7effc21e94a2423be7e78d1cdd319821f2
.exe windows x86

18d496473766f7c4ac5a62b3be105e23

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
FindNextFileW
GetOEMCP
CopyFileW
TlsSetValue
InterlockedExchange
GetFileTime
GetSystemDefaultUILanguage
GlobalGetAtomNameW
WaitForSingleObject
GetConsoleCP
WriteFile
FileTimeToLocalFileTime
DuplicateHandle
GetDriveTypeW
GetProcAddress
GetProfileIntW
FormatMessageW
ReadFile
GetProcessHeap
lstrcmpW
LockFile
GetTempFileNameW
HeapAlloc
GetThreadLocale
GlobalMemoryStatus
LocalReAlloc
VirtualLock
HeapSize
CreateThread
HeapCreate
LeaveCriticalSection
IsDebuggerPresent
WideCharToMultiByte
FileTimeToSystemTime
VirtualQuery
GetCurrentThreadId
lstrlenW
SetFilePointer
GlobalReAlloc
GlobalFlags
SetHandleCount
CreateMutexW
Sleep
LockResource
InterlockedCompareExchange
VirtualProtect
GlobalAddAtomW
ReleaseMutex
GetStartupInfoA
MulDiv
GlobalDeleteAtom
EnterCriticalSection
lstrcpyW
GlobalFindAtomW
MultiByteToWideChar
VirtualFree
GetFileInformationByHandle
GetConsoleMode
GetVolumeInformationW
GetSystemInfo
GlobalFree
FreeResource
HeapFree
GetFileSizeEx
GetTempPathW
GetModuleFileNameW
ResumeThread
FindResourceW
GetLastError
HeapReAlloc
GetNumberFormatW
DeleteAtom
FreeLibrary
HeapQueryInformation
GetModuleHandleW
GetLocaleInfoW
GlobalLock
InitializeCriticalSectionAndSpinCount
VirtualUnlock
GlobalHandle
UnlockFile
GetStdHandle
SetUnhandledExceptionFilter
IsValidLocale
GetEnvironmentStringsW
RtlUnwind
GetThreadTimes
lstrlenA
FindResourceExW
UnhandledExceptionFilter
LoadResource
EnumSystemLocalesA
GetFullPathNameW
InterlockedIncrement
ExitProcess
WriteConsoleW
GetStartupInfoW
CompareStringA
GetFileType
QueryPerformanceCounter
GetCurrentDirectoryW
GetVersion
DeleteCriticalSection
FindClose
GetCommandLineW
ConvertDefaultLocale
SetLastError
ExitThread
SetErrorMode
lstrcmpiW
RaiseException
FindFirstFileExW
GetUserDefaultUILanguage
WritePrivateProfileStringW
GlobalSize
GetCurrentThread
InterlockedDecrement
SearchPathW
GetVersionExW
TlsFree
InitializeCriticalSection
GetCurrentProcess
FreeEnvironmentStringsW
GlobalUnlock
SizeofResource
FindFirstFileW
HeapDestroy
GetTimeZoneInformation
LoadLibraryA
lstrcmpA
GetUserDefaultLCID
CreateFileW
SetEnvironmentVariableA
GetWindowsDirectoryW
FlushFileBuffers
CloseHandle
LocalFree
HeapSetInformation
GlobalAlloc
LoadLibraryW
GetPrivateProfileIntW
GetPrivateProfileStringW
GetCurrentProcessId
FlushInstructionCache
TlsGetValue
PeekNamedPipe
LoadLibraryExW
GetFileAttributesW
GetSystemTimeAsFileTime
GetProcessWorkingSetSize
GetFileAttributesExW
GetLongPathNameW
TlsAlloc
GetFileSize
GetTickCount
GetSystemDirectoryW
LocalAlloc
IsProcessorFeaturePresent
GetProcessTimes
DeleteFileW
CreateEventW
SetStdHandle
SetEndOfFile
CompareStringW
GetACP
GetLocaleInfoA
SetThreadPriority
MoveFileExW
IsValidCodePage

user32

AdjustWindowRectEx
MonitorFromWindow
DestroyCursor
CallNextHookEx
UpdateLayeredWindow
ReleaseCapture
IsChild
DrawIcon
InsertMenuW
GetNextDlgGroupItem
SetWindowRgn
SetScrollRange
DrawTextExW
MapVirtualKeyExW
GetMenuState
ShowOwnedPopups
GetDesktopWindow
CopyIcon
GetClipboardViewer
GetMessagePos
SetCapture
RegisterClipboardFormatW
GetAsyncKeyState
DefFrameProcW
GetSystemMetrics
SetScrollPos
SetActiveWindow
PostMessageW
UnionRect
TrackPopupMenu
OpenClipboard
GetCaretPos
SetMenu
InflateRect
CharNextW
InvertRect
EnableWindow
SetLayeredWindowAttributes
GetQueueStatus
GetSysColorBrush
MonitorFromPoint
MapVirtualKeyW
DrawFocusRect
TranslateMessage
GetScrollPos
PtInRect
DestroyIcon
CallWindowProcW
GetClassInfoW
UnhookWindowsHookEx
DestroyMenu
DefWindowProcW
EmptyClipboard
IsRectEmpty
IsWindow
ModifyMenuW
GetSystemMenu
DrawIconEx
CreateIconFromResourceEx
GetWindowLongW
DefMDIChildProcW
InsertMenuItemW
SendMessageW
GetSubMenu
CopyImage
GetKeyState
ReuseDDElParam
IsIconic
GetMessageW
GetClassInfoExW
CloseClipboard
RegisterClassW
GetDC
EndDialog
LoadMenuW
SetWindowPos
CheckDlgButton
DialogBoxIndirectParamW
GetFocus
CreatePopupMenu
LoadImageW
IsMenu
GetClassLongW
GetClientRect
CreateIcon
AppendMenuW
InvalidateRgn
CharUpperBuffW
ValidateRect
GetWindow
UnpackDDElParam
FrameRect
ScrollWindow
DeferWindowPos
IsDialogMessageW
SetWindowContextHelpId
GetMessageTime
GetDoubleClickTime
KillTimer
MapDialogRect
PostQuitMessage
SetMenuDefaultItem
CheckMenuItem
GetCapture
SetMenuItemBitmaps
DrawFrameControl
SetFocus
IsWindowEnabled
GetParent
LoadIconW
EnableMenuItem
GetScrollRange
GetDlgItemTextW
GetMenuStringW
SetDlgItemTextW
CharUpperW
GetWindowThreadProcessId
GetWindowRect
TranslateAcceleratorW
EndDeferWindowPos
IsZoomed
UnregisterClassW
FillRect
GetTopWindow
SetRect
SetScrollInfo
GetMenuItemInfoW
TabbedTextOutW
SetTimer
SetWindowPlacement
MapWindowPoints
GetClassNameW
CreateDialogIndirectParamW
SetParent
SetWindowLongW
EqualRect
GetMenuItemID
LoadAcceleratorsW
GetMenuCheckMarkDimensions
DeleteMenu
OffsetRect
InvalidateRect
HideCaret
ReleaseDC
GetOpenClipboardWindow
RealChildWindowFromPoint
GetScrollInfo
MoveWindow
RemovePropW
GetWindowTextLengthW
UnregisterClassA
CopyRect
RemoveMenu
ShowWindow
GetDlgCtrlID
WaitMessage
SystemParametersInfoW
GetProcessWindowStation
GetIconInfo
TranslateMDISysAccel
SetPropW
DispatchMessageW
GetNextDlgTabItem
GetLastActivePopup
RedrawWindow
BeginDeferWindowPos
GetWindowDC
DrawStateW
ClientToScreen
SetWindowsHookExW
SetClipboardData
EndPaint
PeekMessageW
GetDlgItem
CreateWindowExW
GetMenu
DrawTextW
EnableScrollBar
PostThreadMessageW
GetWindowRgn
RegisterWindowMessageW
DialogBoxParamW
LoadCursorW
WinHelpW
GetDialogBaseUnits
GetPropW
DrawEdge
IsClipboardFormatAvailable
IntersectRect
CreateMenu
GetForegroundWindow
GetKeyNameTextW
GetWindowTextW
SubtractRect
SetWindowTextW
GetMonitorInfoW
SetCursor
LoadBitmapW
ClipCursor
GetUpdateRect
ShowScrollBar
WindowFromPoint
GrayStringW
GetActiveWindow
GetWindowPlacement
SetForegroundWindow
GetMenuItemCount
ScreenToClient
DrawMenuBar
SetRectEmpty
BeginPaint
UpdateWindow

gdi32

SetWindowExtEx
SelectPalette
Ellipse
BitBlt
PtVisible
GetNearestPaletteIndex
LineTo
RoundRect
CreateCompatibleBitmap
CreateDIBitmap
RestoreDC
EnumFontFamiliesW
GetObjectType
CreateDIBSection
Rectangle
DeleteDC
GetTextExtentPointW
GetObjectW
GetBkMode
FillRgn
SetPixelV
SetPixel
CopyMetaFileW
Polyline
CreateRoundRectRgn
Polygon
SetRectRgn
RealizePalette
PtInRegion
SetTextColor
GetTextFaceW
CreateRectRgnIndirect
GetWindowExtEx
GetClipBox
CreateRectRgn
GetBoundsRect
ScaleViewportExtEx
CombineRgn
SelectObject
RectVisible
SetTextAlign
SetWindowOrgEx
SetDIBColorTable
OffsetViewportOrgEx
SetViewportOrgEx
SetBitmapBits
SetROP2
TextOutW
GetTextColor
CreatePatternBrush
GetBkColor
LPtoDP
ScaleWindowExtEx
SetBkColor
SetViewportExtEx
GetPixel
Escape
GetTextExtentPoint32W
GetMapMode
GetStockObject
MoveToEx
GetTextCharsetInfo
OffsetRgn
GetBitmapBits
SetPolyFillMode
GetPaletteEntries
CreateBitmap
GetWindowOrgEx
ExtSelectClipRgn
SetPaletteEntries
CreateFontIndirectW
GetTextMetricsW
CreateHatchBrush
CreateEllipticRgn
CreateCompatibleDC
SetMapMode
CreatePolygonRgn
CreatePalette
IntersectClipRect
ExtFloodFill
FrameRgn
CreateFontW
SetBkMode
CreateSolidBrush
CreatePen
SetDIBits
StretchBlt
GetLayout
ExcludeClipRect
OffsetWindowOrgEx
SetDIBitsToDevice
EnumFontFamiliesExW
DeleteObject
GetViewportOrgEx
GetSystemPaletteEntries
GetDeviceCaps
GetRgnBox
SetLayout
ExtTextOutW
GetViewportExtEx
GetCurrentObject
SelectClipRgn
PatBlt
SetStretchBltMode
SaveDC
CreateDCW
DPtoLP

comdlg32

GetOpenFileNameW
GetFileTitleW
GetSaveFileNameW

advapi32

RegQueryValueExA
RegEnumKeyW
RegSetValueExW
RegOpenKeyExA
GetTokenInformation
RegQueryValueExW
RegOpenKeyExW
CryptGenRandom
RegDeleteKeyW
RegQueryValueW
AllocateAndInitializeSid
RegQueryInfoKeyW
RegDeleteValueW
CheckTokenMembership
RegEnumKeyExW
RegCloseKey
FreeSid
OpenProcessToken
RegEnumValueW
RegCreateKeyExW

shell32

Shell_NotifyIconW
ExtractIconExW
DuplicateIcon
SHAppBarMessage
ShellExecuteW
DragQueryFileW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoW
SHGetPathFromIDListW
ShellExecuteExW
DragFinish
SHBrowseForFolderW

ole32

CoLockObjectExternal
OleFlushClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
CLSIDFromProgID
OleDestroyMenuDescriptor
RegisterDragDrop
OleDuplicateData
CoCreateGuid
RevokeDragDrop
ReleaseStgMedium
CoTaskMemRealloc
CoRegisterClassObject
CoRegisterMessageFilter
CreateStreamOnHGlobal
OleTranslateAccelerator
OleLockRunning
DoDragDrop
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
IsAccelerator
CLSIDFromString
StgCreateDocfileOnILockBytes
OleCreateMenuDescriptor
CoUninitialize
CoGetClassObject
CoInitialize
OleIsCurrentClipboard
OleGetClipboard
OleUninitialize
OleInitialize
CoCreateInstance
CoInitializeEx
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes

oleaut32

VarBstrCat
VarUI4FromStr
VariantChangeType
SysFreeString
SysStringLen
SystemTimeToVariantTime
VarBstrFromDate
VarBstrCmp
SysStringByteLen
VariantTimeToSystemTime
RegisterTypeLi
SysAllocStringLen
LoadTypeLi
OleCreateFontIndirect
VariantInit
SysAllocStringByteLen
SafeArrayDestroy
UnRegisterTypeLi
SysAllocString
VariantCopy
VariantClear

comctl32

ImageList_DragMove
InitCommonControlsEx
_TrackMouseEvent
ImageList_DragShowNolock
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathIsUNCW
PathRemoveFileSpecW
PathStripToRootW
PathFindExtensionW

winmm

PlaySoundW

rpcrt4

NdrProxyErrorHandler

msimg32

TransparentBlt
AlphaBlend

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

gdiplus

GdipBitmapUnlockBits
GdiplusShutdown
GdipGetImageHeight
GdipDrawImageRectI
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdipGetImagePalette
GdipCloneImage
GdipSetInterpolationMode
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipCreateFromHDC
GdipGetImagePaletteSize
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipGetImageWidth
GdipAlloc
GdipBitmapLockBits
GdipDrawImageI
GdipCreateBitmapFromStream
GdipFree

uxtheme

CloseThemeData
OpenThemeData

Sections

.text
Size: 689KB - Virtual size: 688KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18d496473766f7c4ac5a62b3be105e23

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

msimg32

imm32

gdiplus

uxtheme

Sections

.text Size: 689KB - Virtual size: 688KB

.data Size: 190KB - Virtual size: 189KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 689KB - Virtual size: 688KB

.data
Size: 190KB - Virtual size: 189KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 5KB - Virtual size: 4KB