33a95aea2bbb567a38c4c44adddbf872882b9cffbcd5df410d98503ca5d76c38

Sharing

Copy URL

Twitter E-mail

General

Target

33a95aea2bbb567a38c4c44adddbf872882b9cffbcd5df410d98503ca5d76c38
Size

47KB
MD5

2f8b5dd364ca7c9d2a07661e4e61c350
SHA1

6b70bb65ede9d12911b27417cb2debe9d6adf565
SHA256

33a95aea2bbb567a38c4c44adddbf872882b9cffbcd5df410d98503ca5d76c38
SHA512

36dccbe2ebca3d3cb9ad796d19072e96b52b944d5fb506c5ef14818619737de8497c0acda4f0542132e65e08384378f1e4acce3fd0a389d5a385f6eb3e807db4
SSDEEP

768:B4+xgBIMyVZ57YsO1h27ImgpMutY5g/9tdXfcowj06N9PG+FMWBLGvyX2Gxkgdu:BZxgtyn57Y60m2RtYYPcowj06N4+6W6R

Score

N/A

Malware Config

Signatures

Files

33a95aea2bbb567a38c4c44adddbf872882b9cffbcd5df410d98503ca5d76c38
.exe windows x86

127109f9608595e24576f8789aff2211

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
InitializeAcl
RegQueryInfoKeyA
RegSetValueExW
RegDeleteKeyW
RegQueryInfoKeyW
OpenProcessToken
CryptGenRandom
RegSetValueW
RegEnumValueW
LogonUserW
FreeSid
SetSecurityDescriptorOwner
RegCloseKey
RegCreateKeyExA
SetFileSecurityW
RegDeleteKeyA
RegEnumKeyExW
AllocateAndInitializeSid
RegCreateKeyExW
RegCreateKeyA
InitializeSecurityDescriptor
AddAccessAllowedAce
RegSetValueA
DuplicateTokenEx
RegDeleteValueA
RegEnumKeyExA
RegDeleteValueW
RegOpenKeyExA
GetLengthSid
GetFileSecurityW
RegNotifyChangeKeyValue
CryptAcquireContextW
RegCreateKeyW
RegQueryValueExA
SetSecurityDescriptorDacl
RegEnumValueA
AccessCheck
RegSetValueExA
OpenThreadToken
SetSecurityDescriptorGroup
RegOpenKeyExW

user32

GetMessagePos
LoadCursorA
GetQueueStatus
FindWindowA
SetPropW
GetPropA
SendMessageA
DefWindowProcW
GetDC
GetWindowLongA
GetMonitorInfoW
MoveWindow
GetClassInfoA
GetMenu
UpdateWindow
GetDlgItemTextW
ValidateRect
SetMenu
GetDlgItem
GetDialogBaseUnits
EnumWindows
GetClassInfoExW
MonitorFromWindow
CharUpperBuffW
RegisterClassA
SetWindowLongW
CopyRect
GetWindow
KillTimer
LoadImageA
CopyAcceleratorTableA
DeleteMenu
VkKeyScanW
CheckMenuRadioItem
GetWindowRect
EnumChildWindows
MonitorFromRect
RedrawWindow
IsDlgButtonChecked
SetWindowRgn
SendDlgItemMessageW
TranslateAcceleratorW
UnionRect
CreateDialogParamA
GetWindowTextLengthW
MessageBoxW
CreateWindowExW
CloseWindow
SetMenuItemInfoA
SetDlgItemTextW
CharLowerW
SetWindowsHookExW
DestroyAcceleratorTable
GetFocus
LoadMenuW
InflateRect
FrameRect
GetParent
WaitMessage
DrawAnimatedRects
ScrollWindowEx
MessageBoxA
ShowWindow
NotifyWinEvent
GetMonitorInfoA
DrawTextA
SetClassLongW
ReleaseCapture
GetMessageW
CopyIcon
GetWindowTextLengthA
InvalidateRgn
SetWindowPos
GetClassLongW
GetMessageA
GetWindowRgn
wsprintfW
DialogBoxParamA
SetWindowTextW
SetMenuInfo
SetTimer
DrawFocusRect
DispatchMessageA
UnhookWindowsHookEx
GetMenuItemCount
VkKeyScanA
IsWindowUnicode
RegisterClipboardFormatW
ModifyMenuW
DefWindowProcA
PeekMessageW
SetClassLongA
GetMenuItemID
IsWindowVisible
GetDlgCtrlID
RegisterClassExW
PeekMessageA
IsDialogMessageW
SetForegroundWindow
DestroyIcon
GetDesktopWindow
SendMessageW
GetAncestor
SetDlgItemInt
SendMessageTimeoutA
LoadStringW
InsertMenuW
GetNextDlgTabItem
GetMenuItemInfoA
ClipCursor
CreatePopupMenu
SetRectEmpty
SetFocus
GetUpdateRect
PostMessageW
IsRectEmpty
CallWindowProcA
CallNextHookEx
GetScrollInfo
GetKeyState
EqualRect
GetDoubleClickTime
LoadIconW
WindowFromDC
SetWindowLongA
FillRect
DestroyCursor
RegisterWindowMessageA
BringWindowToTop
ScreenToClient
GetMessageTime
SetRect
GetSystemMetrics
SetWindowTextA
SetWindowsHookExA
SetCursor
UnregisterClassW
SendMessageTimeoutW
WinHelpW
GetPropW
AppendMenuA
SetActiveWindow
RegisterClipboardFormatA
PtInRect
DestroyMenu
PostQuitMessage
GetWindowLongW
EndDialog
RemoveMenu
IntersectRect
CopyAcceleratorTableW
CopyImage
GetWindowThreadProcessId
PostMessageA
LoadMenuA
SetScrollPos
GetIconInfo
PostThreadMessageA
SystemParametersInfoA
TranslateMessage
GetForegroundWindow
GetClassInfoExA
SetScrollInfo
GetClassNameA
WinHelpA
GetSysColorBrush
wvsprintfW
MonitorFromPoint
FindWindowExA
TrackPopupMenu
IsWindow
AppendMenuW
ClientToScreen
GetSysColor
InsertMenuA
SetWindowPlacement
PostThreadMessageW
MessageBeep
RegisterClassExA
SetPropA
GetMenuStringA
UnregisterClassA
GetMenuItemInfoW
GetDlgItemTextA
EnableMenuItem
GetCursorPos
GetClientRect
GetActiveWindow
GetTopWindow
LoadStringA
TrackPopupMenuEx
AdjustWindowRectEx
IsMenu
CreateMenu
CreateDialogParamW
CheckMenuItem
ReleaseDC
CreateWindowExA
CharNextA
FindWindowExW
SetCapture
DispatchMessageW
InsertMenuItemA
DrawEdge
OffsetRect
DialogBoxParamW
CharNextW
CheckRadioButton
SetMenuItemInfoW
GetWindowDC
InsertMenuItemW
IsChild
InvalidateRect
DrawIconEx
IsIconic
CheckDlgButton
EndPaint
GetAsyncKeyState
GetWindowTextW
IsWindowEnabled
SetParent
SetDlgItemTextA
GetWindowPlacement
GetClassLongA
BeginPaint
IsDialogMessageA
LoadImageW
MapWindowPoints
LoadAcceleratorsA
GetWindowTextA
SystemParametersInfoW
RegisterClassW
ModifyMenuA
RegisterWindowMessageW
GetClassNameW
DestroyWindow
ShowCursor
GetClassInfoW
LoadCursorW
CallWindowProcW
EnableWindow
LoadIconA
MsgWaitForMultipleObjects
GetMenuStringW
FindWindowW
TranslateAcceleratorA
LoadAcceleratorsW
GetCapture
GetSubMenu
DrawTextW

gdi32

GetTextExtentPointW
CreateSolidBrush
SetROP2
CloseMetaFile
TextOutW
SelectPalette
StretchDIBits
SaveDC
RectVisible
SetLayout
Rectangle
GetObjectType
SetMapMode
GetLayout
GetSystemPaletteEntries
SetPaletteEntries
BitBlt
OffsetViewportOrgEx
SetStretchBltMode
GetRegionData
LineTo
RestoreDC
SetTextCharacterExtra
GetTextExtentPointA
SetBkMode
SetWindowExtEx
ExtCreateRegion
DeleteMetaFile
SetBkColor
CreateICA
CreateCompatibleBitmap
GetClipBox
SelectObject
GetBkColor
SetRectRgn
MaskBlt
CreateBrushIndirect
GetDIBits
LPtoDP
CreateICW
CreatePalette
CreateFontIndirectA
GetPaletteEntries
GetTextExtentPoint32W
GetTextExtentPoint32A
StretchBlt
CreateDCW
GetTextMetricsA
OffsetWindowOrgEx
CreateMetaFileW
ExtSelectClipRgn
CreateDCA
GetObjectA
Polygon
PtInRegion
ExcludeClipRect
CombineRgn
DeleteDC
IntersectClipRect
SetWindowOrgEx
OffsetRgn
SelectClipRgn
CreateFontA
DeleteObject
DPtoLP
GetStockObject
SetDIBitsToDevice
CreateFontW
GetDIBColorTable
GetTextMetricsW
CreatePen
CreateFontIndirectW
GetDeviceCaps
CreateMetaFileA
GetTextAlign
CreateRectRgnIndirect
GetObjectW
CreateDIBSection
GetRgnBox
RealizePalette
SetViewportOrgEx
CreatePenIndirect
MoveToEx
PatBlt
CreateCompatibleDC
SetTextColor
SetTextAlign
ExtTextOutW
CreateRectRgn

msvcrt

strncmp
memset
iswdigit
_except_handler3
_CIpow
wcslen
_wtol
iswcntrl
wcspbrk
vswprintf
wcstol
strlen
wcscpy
_ftol
ceil
fprintf
_itoa
wcstok
clock
memmove
realloc
_onexit
iswprint
getenv
__CxxFrameHandler
_beginthreadex
_snwprintf
longjmp
_mbslen
_ultow
??2@YAPAXI@Z
wcschr
fflush
swprintf
wcsftime
memcpy
tolower
_wcsicoll
memcmp
wcsstr
__dllonexit
difftime
abs
_vsnprintf
wcstoul
_wcslwr
strcpy
_wfopen
isdigit
isspace
_adjust_fdiv
localtime
sprintf
iswascii
_memicmp
_wtoi
wcsrchr
wcscspn
_ui64tow
free
wcstombs
rand
fwrite
wcsspn
_vsnwprintf
sscanf
wcsncat
towupper
iswalpha
wcstod
_initterm
_iob
_stricmp
_wtoi64
ldexp
_strnicmp
_itow
iswalnum
_ltow
malloc
wcscoll
strchr
??3@YAXPAX@Z
_beginthread
_endthread
_setjmp3
towlower
atoi
_CIexp
iswspace
abort
swscanf
srand
time
fclose
wcsncmp
_wcsupr
_wcsicmp
_wcsnicmp
fopen
qsort
toupper
wcsncpy
bsearch
wcscmp
isxdigit
floor

rpcrt4

NdrDllRegisterProxy
CStdStubBuffer_IsIIDSupported
IUnknown_Release_Proxy
NdrCStdStubBuffer2_Release
NdrDllCanUnloadNow
NdrStubForwardingFunction
IUnknown_AddRef_Proxy
NdrDllUnregisterProxy
NdrStubCall2
UuidCreate
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_AddRef
CStdStubBuffer_QueryInterface
CStdStubBuffer_DebugServerQueryInterface
NdrClientCall2
CStdStubBuffer_CountRefs
NdrOleAllocate
CStdStubBuffer_Disconnect
NdrOleFree
NdrCStdStubBuffer_Release
IUnknown_QueryInterface_Proxy
CStdStubBuffer_Connect
CStdStubBuffer_Invoke

kernel32

GlobalAddAtomA
CompareStringA
OutputDebugStringW
EnumResourceNamesA
GetLongPathNameA
ResetEvent
LocalFileTimeToFileTime
FormatMessageW
CreateDirectoryA
WideCharToMultiByte
lstrcmpA
GetDateFormatW
GetFileType
HeapDestroy
GetTimeFormatW
OutputDebugStringA
FileTimeToLocalFileTime
QueryDosDeviceA
WriteProfileStringW
lstrcpyW
FormatMessageA
SetErrorMode
GlobalAlloc
GlobalDeleteAtom
LocalAlloc
GetVersion
lstrcpynA
CloseHandle
DeleteFileA
FindNextFileA
ReleaseSemaphore
DeviceIoControl
LCMapStringW
FindClose
LeaveCriticalSection
GetDriveTypeW
IsValidLocale
EnumResourceNamesW
GetProfileStringW
WaitForMultipleObjects
GetFullPathNameW
LoadLibraryW
GetLocaleInfoA
WritePrivateProfileStringA
GetLogicalDriveStringsA
GetVersionExA
GetModuleFileNameW
CreateFileA
InterlockedDecrement
GlobalUnlock
GetLocalTime
FindResourceExA
GetWindowsDirectoryW
lstrcpynW
FreeLibrary
CreateDirectoryW
SizeofResource
FreeResource
ReleaseMutex
ReadDirectoryChangesW
IsBadReadPtr
GetCurrentProcess
SetEndOfFile
SystemTimeToFileTime
GetProcessHeap
GetVersionExW
FindNextFileW
OpenEventA
GetFullPathNameA
FindResourceExW
GetSystemDirectoryA
LoadResource
GlobalSize
SetLastError
InterlockedExchange
GetDateFormatA
GetCurrentProcessId
GetExitCodeProcess
FreeLibraryAndExitThread
SetThreadPriority
GetNumberFormatW
WaitForSingleObject
lstrcmpiA
CompareFileTime
IsBadWritePtr
GlobalLock
GetSystemDirectoryW
WritePrivateProfileStringW
WriteProfileStringA
FindFirstChangeNotificationW
DeleteFileW
GlobalMemoryStatus
CreateEventA
MapViewOfFile
FlushFileBuffers
GetTempFileNameW
SetFileAttributesA
GetExitCodeThread
GetSystemPowerStatus
FindCloseChangeNotification
FindFirstFileA
FlushInstructionCache
FindResourceA
OpenEventW
GetSystemTime
HeapFree
GetSystemInfo
VirtualFree
GetWindowsDirectoryA
DuplicateHandle
GetNumberFormatA
LockResource
GetFileAttributesExW
GetDriveTypeA
FileTimeToSystemTime
GetTempPathA
ReadFile
QueryDosDeviceW
GetThreadPriority
HeapAlloc
GetProfileStringA
LCMapStringA
GetModuleFileNameA
lstrcmpiW
GetModuleHandleW
LoadLibraryExA
CreateFileMappingW
FindResourceW
CreateThread
GetThreadLocale
GetCurrentThread
SetEvent
WriteFile
EnterCriticalSection
GetFileAttributesExA
GetVolumeInformationW
lstrlenA
GetFileTime
GetShortPathNameW
GetFileAttributesW
GetTimeZoneInformation
GetVolumeInformationA
GetEnvironmentStrings
GetLastError
RemoveDirectoryA
UnmapViewOfFile
CopyFileExW
GetPrivateProfileStringW
FreeEnvironmentStringsW
ExpandEnvironmentStringsW
SetFilePointer
GetCurrentDirectoryA
InterlockedIncrement
GetLogicalDriveStringsW
GetDiskFreeSpaceA
GetSystemTimeAsFileTime
GetCurrentDirectoryW
FindFirstFileW
FindNextChangeNotification
MultiByteToWideChar
SetFileAttributesW
DeleteCriticalSection
FreeEnvironmentStringsA
FindAtomW
ExpandEnvironmentStringsA
SetUnhandledExceptionFilter
GlobalAddAtomW
lstrcmpW
lstrlenW
OpenProcess
MulDiv
CreateFileMappingA
InitializeCriticalSection
CreateMutexW
GetSystemDefaultLCID
CreateEventW
GetTimeFormatA
CompareStringW
GlobalFree
CreateFileW
GetFileAttributesA
GetFileSize
CreateMutexA
RemoveDirectoryW
GetUserDefaultLangID
GetUserDefaultLCID
RaiseException
lstrcatW
GetShortPathNameA
GetPrivateProfileStringA
GetLocaleInfoW
GetTempFileNameA
LocalFree
WaitForSingleObjectEx
GetLongPathNameW
QueryPerformanceCounter

comctl32

CreatePropertySheetPageA
ImageList_LoadImageA
ImageList_AddMasked
CreateStatusWindowW
ImageList_GetImageCount
_TrackMouseEvent
ImageList_Destroy
PropertySheetW
ImageList_ReplaceIcon
ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_Draw
CreatePropertySheetPageW
InitCommonControlsEx
ImageList_LoadImageW
ImageList_Create
ImageList_Remove
PropertySheetA
ImageList_Add

ole32

HBITMAP_UserMarshal
HBITMAP_UserUnmarshal
CoTaskMemRealloc
CoFreeUnusedLibraries
CreateDataAdviseHolder
CoInitializeEx
CoTaskMemAlloc
StringFromCLSID
HBITMAP_UserSize
HWND_UserSize
CoCreateInstance
StringFromGUID2
OleRegGetMiscStatus
GetHGlobalFromStream
CoMarshalInterface
PropVariantClear
CreateStreamOnHGlobal
OleLoadFromStream
CoReleaseMarshalData
CoFileTimeNow
RevokeDragDrop
CoGetInterfaceAndReleaseStream
OleSaveToStream
DoDragDrop
RegisterDragDrop
CoTaskMemFree
OleRegEnumVerbs
HMENU_UserUnmarshal
CoDisconnectObject
PropVariantCopy
HWND_UserMarshal
OleRegGetUserType
HWND_UserFree
HWND_UserUnmarshal
CLSIDFromProgID
HMENU_UserMarshal
CoCreateFreeThreadedMarshaler
CoInitialize
CoGetClassObject
CoMarshalInterThreadInterfaceInStream
HBITMAP_UserFree
WriteClassStm
CoUnmarshalInterface
CoCreateGuid
CoUninitialize
HMENU_UserSize
CLSIDFromString
IsAccelerator
StringFromIID
ReleaseStgMedium
CoRegisterClassObject
HMENU_UserFree
CoGetTreatAsClass
CreateOleAdviseHolder
CoRevokeClassObject
GetRunningObjectTable
CoGetMalloc

msvfw32

ICInfo
ICInstall

version

GetFileVersionInfoW
VerQueryValueA
VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

127109f9608595e24576f8789aff2211

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

gdi32

msvcrt

rpcrt4

kernel32

comctl32

ole32

msvfw32

version

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 19KB - Virtual size: 18KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 2KB - Virtual size: 1KB