072925807282184546a8573cd2b74193dbd96dd620cdf15b4657f8a97e7c4b6f

Sharing

Copy URL Twitter E-mail

General

Target

072925807282184546a8573cd2b74193dbd96dd620cdf15b4657f8a97e7c4b6f
Size

283KB
MD5

cae67a17926b2e15d4b3e8c61bb50190
SHA1

a6dbf772b3932837b6ce4bd8d31046783f789024
SHA256

072925807282184546a8573cd2b74193dbd96dd620cdf15b4657f8a97e7c4b6f
SHA512

9be92c8c6fac5f6a60969140658f5334f2acd54c8fb19155c7c07801d05038ca122cb4255b3e88b9362192ce484c236abdca0d5e7c3ab334ae929d916e8fb6c0
SSDEEP

3072:lWbVGYHLLPHLLP/P2CcXVWnVGJFDhQd8f:YVGYHLLPHLLP/PJhyL

Score

N/A

Malware Config

Signatures

Files

072925807282184546a8573cd2b74193dbd96dd620cdf15b4657f8a97e7c4b6f
.exe windows

83b1eff9ce7d8009ba208a5c7b515129

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeExA
GetStringTypeExW
GetStringTypeW
GetSystemDirectoryW
GetSystemInfo
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempFileNameW
GetTempPathA
GetTempPathW
GetTickCount
GetTimeFormatA
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultUILanguage
GetVersion
GetVersionExW
GetWindowsDirectoryW
GlobalAddAtomW
GlobalAlloc
GlobalFindAtomW
GlobalFree
GlobalLock
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSetInformation
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
IsBadReadPtr
IsBadWritePtr
IsDBCSLeadByte
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LockResource
MapViewOfFile
MoveFileExW
MulDiv
GetStringTypeA
OpenFileMappingW
OpenProcess
OutputDebugStringW
QueryPerformanceCounter
QueueUserAPC
RaiseException
ReadDirectoryChangesW
ReadFile
ReadProcessMemory
ReleaseMutex
ReleaseSemaphore
RemoveDirectoryA
ResetEvent
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetEvent
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetStdHandle
SetSystemPowerState
SetThreadExecutionState
SetThreadLocale
SetUnhandledExceptionFilter
SizeofResource
Sleep
SleepEx
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WinExec
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringW
WriteProcessMemory
lstrcmpW
lstrcmpiW
lstrcpyA
lstrcpyW
lstrcpynW
lstrlenA
lstrlenW
GetStdHandle
GetStartupInfoW
GetStartupInfoA
GetShortPathNameW
GetProcessHeap
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileStringA
GetPrivateProfileIntW
GetPrivateProfileIntA
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameW
GetFileType
GetFileTime
GetFileSize
GetFileAttributesW
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentStringsW
GetDriveTypeW
GetDiskFreeSpaceW
GetDateFormatA
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetCPInfo
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FormatMessageW
FlushInstructionCache
FlushFileBuffers
FindResourceW
FindResourceExW
FindNextFileW
FindFirstFileW
FindClose
FatalAppExitA
ExpandEnvironmentStringsW
ExitThread
ExitProcess
EnumSystemLocalesA
EnterCriticalSection
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateThread
CreateSemaphoreW
CreateProcessW
CreateProcessA
CreatePipe
CreateMutexW
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventW
CreateDirectoryW
CopyFileW
CopyFileA
CompareStringW
CompareStringA
CloseHandle
MultiByteToWideChar
CancelIo

user32

UpdateLayeredWindow
UnregisterHotKey
UnregisterClassA
UnhookWindowsHookEx
TrackPopupMenu
SystemParametersInfoW
SubtractRect
ShowWindow
SetWindowsHookExW
SetWindowTextW
SetWindowPos
SetWindowLongW
SetTimer
SetRectEmpty
SetRect
SetMenuItemInfoW
SetMenuInfo
SetForegroundWindow
SetClipboardViewer
SetClipboardData
SendNotifyMessageW
SendMessageW
SendMessageTimeoutW
SendMessageA
SendDlgItemMessageW
ScreenToClient
ReleaseDC
RegisterWindowMessageW
RegisterHotKey
RegisterDeviceNotificationA
RegisterClipboardFormatW
RegisterClassExW
PtInRect
PrivateExtractIconsW
PostQuitMessage
PostMessageW
PeekMessageW
OpenClipboard
OffsetRect
MoveWindow
MonitorFromWindow
MonitorFromPoint
ModifyMenuW
MessageBoxW
MessageBoxA
MapWindowPoints
LoadStringW
LoadStringA
LoadMenuW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
KillTimer
IsZoomed
IsWindowVisible
IsWindow
IsRectEmpty
IsIconic
IsClipboardFormatAvailable
IsCharAlphaA
InvalidateRect
IntersectRect
InsertMenuW
InflateRect
GetWindowWord
GetWindowTextW
GetWindowRect
GetWindowLongW
GetWindowDC
GetWindow
GetSystemMetrics
GetSysColor
GetSubMenu
GetParent
GetMonitorInfoW
GetMessageW
GetMenuStringW
GetMenuItemRect
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuInfo
GetMenuDefaultItem
GetKeyboardLayoutList
GetDoubleClickTime
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
GetClipboardData
GetClientRect
GetClassInfoExW
GetActiveWindow
FindWindowW
ExitWindowsEx
EqualRect
EndDialog
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawStateW
DrawMenuBar
DrawEdge
DispatchMessageW
DialogBoxParamW
DestroyWindow
AppendMenuW
BringWindowToTop
CallNextHookEx
CallWindowProcW
ChangeClipboardChain
CharNextA
CharNextW
CheckMenuItem
ClientToScreen
CloseClipboard
CopyRect
CreateDialogParamW
CreatePopupMenu
CreateWindowExW
DefWindowProcW
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
GetIconInfo

gdi32

AddFontResourceA
bMakePathNameW
XLATEOBJ_cGetPalette
SetVirtualResolution
SetTextColor
SetTextCharacterExtra
SetRectRgn
SetPixelFormat
SetBkMode
SetBkColor
SelectPalette
SelectObject
SelectFontLocal
ScaleWindowExtEx
SaveDC
STROBJ_vEnumStart
ResetDCW
RemoveFontResourceW
Rectangle
Polyline
HT_Get8BPPMaskPalette
GetTextMetricsA
GetTextExtentPoint32W
GetStockObject
GetObjectW
GetMetaRgn
GetMetaFileBitsEx
GetGlyphOutline
GetDIBColorTable
GetDCPenColor
GetDCOrgEx
GetCurrentObject
GetClipBox
GetBoundsRect
GetAspectRatioFilterEx
GdiStartPageEMF
GdiStartDocEMF
GdiPlayEMF
GdiIsMetaPrintDC
GdiGetPageHandle
GdiEntry4
GdiEntry15
GdiDeleteSpoolFileHandle
FONTOBJ_cGetGlyphs
ExtTextOutW
ExcludeClipRect
EqualRgn
EngFillPath
EngCopyBits
AddFontMemResourceEx
AnimatePalette
BitBlt
CancelDC
ChoosePixelFormat
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectW
CreateFontW
CreatePen
CreatePolyPolygonRgn
CreateSolidBrush
DeleteDC
DeleteObject

advapi32

LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegOpenKeyW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW
RegQueryValueExA
AdjustTokenPrivileges

shell32

ShellExecuteW
ShellExecuteExW
ShellExecuteEx
ShellExecuteA
ShellAboutA
SHPathPrepareForWriteW
SHParseDisplayName
SHOpenFolderAndSelectItems
SHLoadInProc
SHGetSpecialFolderLocation
SHGetSettings
SHGetPathFromIDListW
SHGetPathFromIDList
SHGetMalloc
SHGetFolderPathW
SHGetFileInfoW
SHGetFileInfoA
SHGetDiskFreeSpaceExA
SHGetDiskFreeSpaceA
SHGetDataFromIDListW
SHFreeNameMappings
SHFormatDrive
SHFileOperation
SHCreateDirectoryExW
SHChangeNotify
SHBrowseForFolderW
SHBrowseForFolderA
SHBrowseForFolder
SHBindToParent
SHAppBarMessage
FindExecutableW
FindExecutableA
ExtractIconExW
ExtractIconExA
ExtractAssociatedIconExW
DragQueryFileW
DragQueryFileA
DragFinish
DragAcceptFiles
DoEnvironmentSubstA
CommandLineToArgvW
CheckEscapesW
Shell_NotifyIconW

ole32

RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoUninitialize
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoInitializeEx
CoInitialize
CoCreateInstance
CLSIDFromProgID

shlwapi

ColorHLSToRGB
ColorRGBToHLS
PathAppendW
PathCombineW
PathFileExistsW
PathFindExtensionA
PathFindExtensionW
PathFindFileNameW
PathIsDirectoryW
PathIsURLA
PathIsURLW
PathRemoveExtensionW
PathRemoveFileSpecW
StrChrA
StrCmpNA
StrCpyNW
StrCpyW
StrRChrW
StrStrIA

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83b1eff9ce7d8009ba208a5c7b515129

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 74KB - Virtual size: 73KB

.rsrc Size: 21KB - Virtual size: 21KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 74KB - Virtual size: 73KB

.rsrc
Size: 21KB - Virtual size: 21KB