ae28328291b9c571f948e8effe9f1ac2b4670d4173062d777843e5f47edcbb94

Sharing

Copy URL Twitter E-mail

General

Target

ae28328291b9c571f948e8effe9f1ac2b4670d4173062d777843e5f47edcbb94
Size

668KB
MD5

90b319e8f9a335b74f237356077131fe
SHA1

28f2f5df15b5d434a32ceb334936c294f5713c94
SHA256

ae28328291b9c571f948e8effe9f1ac2b4670d4173062d777843e5f47edcbb94
SHA512

8934daf538f6389ea8a096559ced91e2cc4a573680e9db25ffc4bac5ce330fa3a27abf47d8a2b555a0ac9a55a12776aa0404417f7083dc6dab0f6cfba75c7b07
SSDEEP

12288:KwSIYah7I2ZDfifq8LukvVdibw0P/d3vB/q0VVUDqbdCsq1DdMA:gSDHTy6CDqZT

Score

N/A

Malware Config

Signatures

Files

ae28328291b9c571f948e8effe9f1ac2b4670d4173062d777843e5f47edcbb94
.dll windows x86

7ace5e3d285044a7118bb3040f15526b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetConnectA
InternetQueryDataAvailable
InternetReadFile
InternetGetConnectedState
InternetOpenA
InternetCloseHandle
FtpOpenFileA

kernel32

GlobalFindAtomA
FreeResource
GlobalFlags
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetCurrentDirectoryA
LocalFileTimeToFileTime
SetFileTime
SetFileAttributesA
GetFileTime
GetCPInfo
GetOEMCP
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetProcessHeap
RtlUnwind
RaiseException
ExitProcess
SetStdHandle
GetFileType
lstrcmpW
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
GetStdHandle
GetACP
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
Sleep
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
SetConsoleCtrlHandler
GetTimeZoneInformation
GetDriveTypeA
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetCurrentDirectoryA
SetEnvironmentVariableA
GetVersionExA
InterlockedIncrement
SystemTimeToFileTime
GetAtomNameA
GlobalGetAtomNameA
SetErrorMode
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedDecrement
GetModuleFileNameW
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
MoveFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
GlobalAddAtomA
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GlobalDeleteAtom
GetModuleHandleA
GetCurrentProcessId
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
SetLastError
GetModuleFileNameA
LoadLibraryA
RemoveDirectoryA
GetProcAddress
GetFileAttributesA
GetCurrentProcess
FreeLibrary
CreateThread
ResumeThread
SuspendThread
GetThreadPriority
WaitForMultipleObjects
ResetEvent
EnterCriticalSection
SetThreadPriority
ExitThread
LeaveCriticalSection
CreateEventA
TerminateThread
InitializeCriticalSection
SetEvent
WaitForSingleObject
DeleteFileA
GetTempPathA
GetVersion
CloseHandle
CompareStringA
lstrcmpiW
LockResource
GetTempFileNameA
lstrcmpiA
GetLastError
InterlockedExchange
GetStringTypeExA
lstrlenW
MultiByteToWideChar
CompareStringW
GetEnvironmentVariableA
GetStringTypeExW
SizeofResource
WideCharToMultiByte
WriteFile
LoadResource
MoveFileExA
lstrlenA
FindResourceA
CreateFileA
GetEnvironmentVariableW
HeapSize

user32

GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
DeleteMenu
GetDesktopWindow
ClientToScreen
ScrollWindowEx
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsWindow
SetFocus
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
BeginPaint
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
CopyRect
GetScrollInfo
SetScrollInfo
PtInRect
SetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetWindowTextLengthA
GetWindowTextA
UnregisterClassA
UnhookWindowsHookEx
GetSystemMetrics
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
ShowOwnedPopups
SetCursor
PostMessageA
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
EndPaint
DestroyIcon
InflateRect
GetMenuItemInfoA
DestroyMenu
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetClientRect
GetDialogBaseUnits
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
CharUpperA
CharLowerW
CharLowerA
CharUpperW
IntersectRect

gdi32

ExtSelectClipRgn
DeleteDC
CreateDIBPatternBrushPt
CreatePatternBrush
CreateCompatibleDC
GetStockObject
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
PolyBezierTo
GetTextExtentPoint32A
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
GetTextMetricsA
BitBlt
GetWindowExtEx
GetViewportExtEx
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
PolylineTo
PolyDraw
ArcTo
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
StartDocA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateBitmap
CreateDCA
CopyMetaFileA
CreateFontIndirectA
GetDeviceCaps
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
DeleteObject
GetObjectA
GetPixel

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegQueryValueA
RegSetValueA
AdjustTokenPrivileges
RegEnumKeyA
LookupPrivilegeValueA
RegQueryValueExA
OpenProcessToken
CryptHashData
CryptDestroyHash
CryptDecrypt
CryptDestroyKey
CryptCreateHash
CryptEncrypt
CryptAcquireContextA
CryptReleaseContext
CryptDeriveKey
RegCloseKey
RegOpenKeyA
RegEnumValueA
RegDeleteValueA
RegQueryInfoKeyA
RegOpenKeyExA
RegCreateKeyA
RegEnumKeyExA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA

shell32

SHGetFolderPathA
SHGetFileInfoA
ExtractIconA
SHFileOperationA

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

ole32

WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
WriteClassStg
CoUninitialize
CoCreateInstance
CoTreatAsClass
OleRegGetUserType
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoInitialize
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
StringFromGUID2
CLSIDFromString
CoDisconnectObject
CoTaskMemFree

oleaut32

SysFreeString
SystemTimeToVariantTime
SysAllocStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayCopy
SafeArrayAllocDescriptor
SafeArrayAllocData
VariantCopy
VariantChangeType
SafeArrayRedim
VariantClear
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysStringByteLen
SysAllocStringByteLen
VarDateFromStr
VariantTimeToSystemTime
SysStringLen
SysReAllocStringLen
VarBstrFromCy
VarBstrFromDec
VarDecFromStr
VarCyFromStr
VarBstrFromDate
VariantInit

Exports

Exports

CreateSSEngineInterface
ReleaseSSEngineInterface

Sections

.text
Size: 524KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ace5e3d285044a7118bb3040f15526b

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

Exports

Exports

Sections

.text Size: 524KB - Virtual size: 520KB

.rdata Size: 96KB - Virtual size: 93KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 4KB - Virtual size: 176B

.reloc Size: 28KB - Virtual size: 27KB

.text
Size: 524KB - Virtual size: 520KB

.rdata
Size: 96KB - Virtual size: 93KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 4KB - Virtual size: 176B

.reloc
Size: 28KB - Virtual size: 27KB