87207a498527d8b260b4ec683457a98550cdc3355d05d9378733654b52d7012f

Sharing

Copy URL Twitter E-mail

General

Target

87207a498527d8b260b4ec683457a98550cdc3355d05d9378733654b52d7012f
Size

3.9MB
MD5

08e7ba327bb40c7fb31d9f05944c5b98
SHA1

652d6064c5031ff459e0abb900b91339e4bf572e
SHA256

87207a498527d8b260b4ec683457a98550cdc3355d05d9378733654b52d7012f
SHA512

e16d593b3c41d9829f4dc2128214c8d0989598e27049575a56ee2bad261cf3300a0d7b5fb19685e206d5afb2d95a64caff5a7f74add38963388be3e52ea656c5
SSDEEP

49152:U+lALwOHjzhgouXjRmFeFX7+AoUl5Ld1wb+raStJCFFTEHrOpA4V79rbS8AFNt5g:hAwMzhmySnkbP74HipMLytex/ve

Score

N/A

Malware Config

Signatures

Files

87207a498527d8b260b4ec683457a98550cdc3355d05d9378733654b52d7012f
.exe windows x86

8a27fd3562c071a6811310606228ec82

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
LCMapStringA
InitializeCriticalSectionAndSpinCount
GetConsoleMode
GetConsoleCP
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
GetFileType
GetDriveTypeA
CreateThread
HeapReAlloc
RaiseException
RtlUnwind
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
HeapFree
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoW
GetTickCount
SetErrorMode
GetFileTime
GetFileSizeEx
GetProfileIntW
DeviceIoControl
ExpandEnvironmentStringsA
LocalSize
LoadLibraryExW
LoadLibraryExA
lstrcpynW
GetTempPathW
GetTempFileNameW
GetPrivateProfileSectionNamesW
GetExitCodeThread
TerminateThread
ResetEvent
EnumResourceTypesW
EnumResourceNamesW
SetStdHandle
GetFileAttributesW
GetCurrentDirectoryW
GlobalFlags
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
CreateEventW
WaitForSingleObject
ResumeThread
SetThreadPriority
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetThreadLocale
FileTimeToLocalFileTime
lstrlenA
lstrcmpA
VirtualProtect
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
FreeLibrary
GetCurrentProcessId
GetModuleHandleA
GlobalFree
InterlockedDecrement
MulDiv
GetVersionExW
GetCurrentProcess
TerminateProcess
OpenProcess
GetFileSize
SetFileAttributesW
SetFilePointerEx
DeleteFileW
InterlockedIncrement
SetEvent
OpenEventW
UnmapViewOfFile
MapViewOfFile
OpenFileMappingW
CreateProcessW
Sleep
GetModuleHandleW
SetLastError
ExitProcess
GetModuleFileNameW
FileTimeToSystemTime
GetTimeZoneInformation
FindNextFileW
FindClose
FindFirstFileW
RemoveDirectoryW
CreateDirectoryW
MultiByteToWideChar
LocalFree
WriteFile
CloseHandle
SetFilePointer
ReadFile
GetLastError
CreateFileW
WideCharToMultiByte
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
lstrlenW
GetProcessHeap
HeapAlloc
GetProcAddress
LoadLibraryW
FindResourceW
LoadResource
LockResource
SizeofResource
GetCurrentDirectoryA

user32

MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
ModifyMenuW
GetMenuCheckMarkDimensions
GetKeyNameTextW
MapVirtualKeyW
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
PeekMessageW
GetScrollInfo
SetScrollInfo
PtInRect
SetWindowPlacement
GetPropW
CallWindowProcW
GetMenu
OffsetRect
IntersectRect
SystemParametersInfoA
GetAsyncKeyState
GetWindowTextLengthW
GetWindowTextW
SetWindowPos
SetPropW
GetClassNameW
GetClassLongW
CallNextHookEx
SetWindowsHookExW
GetCapture
SetFocus
ShowWindow
GetMessagePos
GetMessageTime
DestroyWindow
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
DispatchMessageW
SetActiveWindow
GetForegroundWindow
DeferWindowPos
RemovePropW
MapDialogRect
GetActiveWindow
IsWindow
SendMessageW
GetSubMenu
CreatePopupMenu
LoadBitmapW
AppendMenuW
GetParent
GetWindowRect
EnableWindow
SetTimer
SetDlgItemTextA
GetDlgCtrlID
EnumChildWindows
IsChild
WinHelpW
SendDlgItemMessageA
CheckMenuItem
DefWindowProcW
EnableMenuItem
ShowCaret
HideCaret
CloseClipboard
GetClipboardData
OpenClipboard
SetClipboardData
EmptyClipboard
GetKeyState
MessageBeep
LoadIconW
CopyRect
GetSysColor
DrawFocusRect
GetClientRect
InvalidateRect
FillRect
GetFocus
GetSystemMenu
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
GetDesktopWindow
CharNextW
PostQuitMessage
SetWindowContextHelpId
ValidateRect
GetCursorPos
TranslateMessage
GetMessageW
SetCursor
ShowOwnedPopups
CharUpperW
GetSysColorBrush
LoadCursorW
SetRectEmpty
UnregisterClassW
GetDialogBaseUnits
CopyAcceleratorTableW
IsRectEmpty
SetRect
InvalidateRgn
SetCapture
ReleaseCapture
DeleteMenu
GetNextDlgGroupItem
DestroyIcon
TranslateAcceleratorW
BringWindowToTop
InsertMenuItemW
LoadAcceleratorsW
ReuseDDElParam
UnpackDDElParam
WindowFromPoint
RegisterClipboardFormatW
SetParent
UnionRect
PostThreadMessageW
GetDCEx
LockWindowUpdate
GetWindowPlacement
UpdateWindow
PostMessageW
IsIconic
GetSystemMetrics
DrawIcon
ClientToScreen
ScreenToClient
SetMenuItemBitmaps
KillTimer
LoadMenuW
RegisterWindowMessageW
GetMenuItemCount
InsertMenuW
GetMenuItemID
GetMenuStringW
GetMenuState
InflateRect
GetMenuItemInfoW
DestroyMenu
SystemParametersInfoW
TabbedTextOutW
DrawTextW
DrawTextExW
TranslateMDISysAccel
SendMessageTimeoutW
DrawMenuBar
RegisterClassA
DefMDIChildProcW
DefMDIChildProcA
DefDlgProcW
DefDlgProcA
DefFrameProcW
DefFrameProcA
DefWindowProcA
CallWindowProcA
EnableScrollBar
EnumWindows
IsWindowUnicode
GetWindowLongA
SetWindowLongA
SetClassLongW
SetCursorPos
GetMenuDefaultItem
GetTabbedTextExtentA
GetDoubleClickTime
MoveWindow
SetWindowLongW
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
SetDlgItemInt
SendDlgItemMessageW
GetDlgItemInt
GetDlgItem
GetWindow
UnhookWindowsHookEx
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringW
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
LoadImageW
DrawEdge
DrawStateW
DrawFrameControl
IsClipboardFormatAvailable
InvertRect
WaitMessage
wsprintfW
ToUnicodeEx
GetKeyboardState
GetKeyboardLayoutList
IsCharLowerW
MapVirtualKeyExW
GetKeyboardLayout
SetMenuDefaultItem
RedrawWindow
GetTabbedTextExtentW
CopyIcon
DrawIconEx
GetWindowRgn
IsMenu
GetIconInfo
CreateIconIndirect
SetWindowRgn
LoadStringW
GetCursor

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
PolyBezierTo
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateBitmap
GetStockObject
SelectPalette
GetObjectType
SelectObject
CreatePen
CreateSolidBrush
CreateRectRgnIndirect
PatBlt
GetBkColor
GetTextColor
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
GetCharWidthW
CreateFontW
StretchDIBits
CreateCompatibleBitmap
GetTextMetricsW
TextOutW
GetRgnBox
Escape
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
GetClipRgn
SelectClipRgn
DeleteObject
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetStretchBltMode
SetBrushOrgEx
SetPixel
GetWindowOrgEx
Polygon
StretchBlt
GetCurrentObject
CreateDIBSection
PtInRegion
GetDIBits
GetBitmapBits
ExtCreateRegion
GetTextAlign
GetTextExtentPoint32A
Ellipse
Polyline
StrokePath
FillPath
StrokeAndFillPath
EndPath
CloseFigure
BeginPath
OffsetRgn
GetTextCharsetInfo
GetViewportOrgEx
CreatePolygonRgn
RoundRect
CreatePalette
CreateDIBitmap
SetBkMode
GetObjectW
CreateFontIndirectW
SetTextColor
GetCurrentPositionEx
SetBkColor
GetDeviceCaps
CreateCompatibleDC
BitBlt
ExtTextOutW
GetTextExtentPoint32W
SaveDC
EnumFontFamiliesExW
RestoreDC

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegDeleteKeyW
RegQueryValueW
RegSetValueExW
RegCloseKey
OpenSCManagerW
CreateServiceW
CloseServiceHandle
OpenServiceW
ControlService
QueryServiceStatusEx
DeleteService
RegOpenKeyExA
RegQueryValueExA
OpenProcessToken
RegOpenKeyW
RegEnumKeyW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW

shell32

SHGetPathFromIDListW
SHGetMalloc
Shell_NotifyIconW
SHBrowseForFolderW
DragQueryFileW
DragFinish
ShellExecuteW
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_GetImageCount
ImageList_DrawEx
ImageList_Destroy
FlatSB_GetScrollProp
ImageList_GetBkColor
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_DrawIndirect

shlwapi

PathStripToRootW
PathRemoveFileSpecW
PathFindFileNameW
UrlUnescapeW
PathFindExtensionW
PathFileExistsW
PathIsDirectoryW
PathIsUNCW

oledlg

OleUIBusyW
OleUIAddVerbMenuW

ole32

CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
CoInitializeEx
CoDisconnectObject
OleFlushClipboard
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CoInitialize
OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoRegisterMessageFilter
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop

oleaut32

OleLoadPicturePath
VarBstrFromDate
VarDateFromStr
SafeArrayDestroy
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
LoadTypeLi
OleCreateFontIndirect
VariantInit
VariantChangeType
SysAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear
SysStringLen
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysFreeString
GetErrorInfo
VarUdateFromDate
VariantChangeTypeEx

wininet

InternetQueryOptionW
InternetCrackUrlW
InternetOpenUrlW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoW
InternetQueryDataAvailable
InternetCanonicalizeUrlW

imagehlp

ImageDirectoryEntryToData

winmm

PlaySoundW
waveOutGetNumDevs

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 465KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a27fd3562c071a6811310606228ec82

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

imagehlp

winmm

iphlpapi

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 465KB - Virtual size: 464KB

.data Size: 40KB - Virtual size: 64KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 465KB - Virtual size: 464KB

.data
Size: 40KB - Virtual size: 64KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB