b87ab3ad7f6c01047c0229e227ff52e25a167986290a7c7d15b35756cfdcba1e

Sharing

Copy URL Twitter E-mail

General

Target

b87ab3ad7f6c01047c0229e227ff52e25a167986290a7c7d15b35756cfdcba1e
Size

1.1MB
MD5

7aa497393bf3d92d16fedf37f53fc7e7
SHA1

d5e8613fc3d2341ead5931b375125c557f4f7233
SHA256

b87ab3ad7f6c01047c0229e227ff52e25a167986290a7c7d15b35756cfdcba1e
SHA512

7188597c05c4031dc6f146ff290e90c6039006483d912ddc354b43667afb6f701df20e044638d1a65f740a4519e4011ce7cfbdfedb84ca2ea750e5f101d661e4
SSDEEP

12288:20GHqYnTU76w+H6bGminBB8zyMpXMoylI4Z9/a7s/T/xSC0iar/5mB/ZZE3oqsiS:EvBH8GnSZylI4Z9a7s/7LzK4Oc

Score

N/A

Malware Config

Signatures

Files

b87ab3ad7f6c01047c0229e227ff52e25a167986290a7c7d15b35756cfdcba1e
.exe windows x86

25639276836cd85f729c89a93d9899b2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend

shlwapi

SHDeleteKeyA

kernel32

IsBadReadPtr
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
GetStringTypeW
GetUserDefaultLCID
SetConsoleCtrlHandler
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetStringTypeA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
FatalAppExitA
HeapReAlloc
HeapSize
GetACP
ExitThread
CreateThread
RaiseException
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
RtlUnwind
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetShortPathNameA
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
LockFile
FlushFileBuffers
DuplicateHandle
SetErrorMode
GlobalSize
GetThreadLocale
GetCurrentDirectoryA
GetPrivateProfileIntA
lstrlenW
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetCurrentThread
FileTimeToLocalFileTime
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
FormatMessageA
LocalFree
SetLastError
InterlockedDecrement
InterlockedIncrement
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetCurrentProcess
GetVersionExA
CreateFileMappingA
GlobalMemoryStatusEx
OpenEventA
WideCharToMultiByte
GetTickCount
HeapAlloc
GetProcessHeap
HeapFree
ExitProcess
WaitForSingleObject
CreateToolhelp32Snapshot
Process32First
Process32Next
OpenProcess
GetExitCodeProcess
TerminateProcess
CreateProcessA
WriteProcessMemory
FindResourceA
GetModuleHandleA
LoadResource
LockResource
SizeofResource
lstrcmpA
QueryPerformanceFrequency
QueryPerformanceCounter
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
CreateDirectoryA
MoveFileA
CopyFileA
GetFileTime
GetLogicalDrives
DeviceIoControl
lstrcpynA
Sleep
GetModuleFileNameA
GetSystemDirectoryA
GetDiskFreeSpaceExA
FindClose
RemoveDirectoryA
GetLogicalDriveStringsA
GetDriveTypeA
FindFirstFileA
FindNextFileA
ReadFile
GetFileSize
LockFileEx
SetEndOfFile
UnlockFile
WriteFile
SetFilePointer
CreateFileA
CloseHandle
GetProcAddress
FileTimeToSystemTime
GetTimeZoneInformation
SystemTimeToTzSpecificLocalTime
GetLongPathNameA
GetFileAttributesA
SetFileAttributesA
DeleteFileA
GetLastError
WritePrivateProfileStringA
GetPrivateProfileStringA
MultiByteToWideChar
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
MulDiv
GetProfileStringA
EnumSystemLocalesA

user32

GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
GetDlgItemTextA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
PostQuitMessage
LoadIconA
CallWindowProcA
SetParent
FindWindowA
SendMessageTimeoutA
GetWindowThreadProcessId
DispatchMessageA
PeekMessageA
SetDlgItemTextA
OpenClipboard
EmptyClipboard
SetClipboardData
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
DefWindowProcA
IsDlgButtonChecked
CloseClipboard
GetCursorInfo
DrawIconEx
wsprintfA
SetWindowPos
GetNextDlgGroupItem
ClientToScreen
SetWindowRgn
GetCapture
WindowFromPoint
DrawEdge
DrawFocusRect
PostMessageA
GetCursorPos
LoadCursorA
CopyIcon
IsWindow
GetWindowLongA
MessageBeep
SetWindowLongA
TrackPopupMenu
GetIconInfo
IsRectEmpty
DrawFrameControl
InflateRect
DestroyIcon
LoadImageA
GetMessagePos
ScreenToClient
GetWindowDC
SetRect
GetSystemMetrics
SetWindowTextA
UpdateWindow
GetDC
ReleaseDC
DrawStateA
OffsetRect
GrayStringA
DrawTextA
TabbedTextOutA
ScrollWindowEx
IsDialogMessageA
MoveWindow
ShowWindow
IsWindowEnabled
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetDialogBaseUnits
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
GetWindowRect
InvalidateRect
SetCursor
CopyRect
LoadBitmapA
KillTimer
ReleaseCapture
SetCapture
PtInRect
SetTimer
EnableWindow
FillRect
SendMessageA
GetParent
GetClientRect
GetSysColor
SetDlgItemInt
CharToOemA
OemToCharA
BeginPaint
EndPaint
ValidateRect
GetActiveWindow
GetMessageA
CreateDialogIndirectParamA
EndDialog
wvsprintfA
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
GetClassNameA
GetDesktopWindow
GetSysColorBrush
DestroyMenu
PostThreadMessageA
RegisterClipboardFormatA
CharUpperA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
LoadStringA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RemoveMenu
AppendMenuA
CopyAcceleratorTableA
CharNextA
GetMenuStringA
DeleteMenu
InsertMenuA
WaitMessage
TranslateMessage
SetMenu

gdi32

SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
SetROP2
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
ExtCreatePen
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
GetMapMode
SetRectRgn
DPtoLP
GetTextColor
GetBkColor
LPtoDP
CopyMetaFileA
SetPolyFillMode
RestoreDC
SaveDC
StartDocA
CreateRectRgnIndirect
PatBlt
GetClipBox
GetDCOrgEx
BeginPath
EndPath
PathToRegion
CreateBitmap
CreateDIBitmap
Ellipse
Polygon
FloodFill
GetDeviceCaps
SelectPalette
RealizePalette
GetDIBits
CreateDIBSection
CreateDCA
RoundRect
CreatePalette
SetTextColor
SetBkColor
CreateRectRgn
CombineRgn
SelectClipRgn
CreateRoundRectRgn
CreatePolygonRgn
PaintRgn
CreatePen
SetBkMode
CreateFontIndirectA
DeleteObject
DeleteDC
GetTextExtentPoint32A
SetPixel
GetPixel
GetNearestColor
GetObjectA
Rectangle
GetStockObject
SelectObject
GetTextMetricsA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
StretchBlt
PolyDraw
GetTextExtentPointA
CreateSolidBrush

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

CopySid
RegQueryValueA
RegOpenKeyExA
CloseServiceHandle
QueryServiceStatus
OpenServiceA
OpenSCManagerA
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegRestoreKeyA
RegSaveKeyA
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyA
RegDeleteKeyA
RegSetKeySecurity
AllocateAndInitializeSid
InitializeAcl
AddAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
FreeSid
RegGetKeySecurity
GetTokenInformation
GetLengthSid
RegCloseKey
GetSidIdentifierAuthority
GetSidSubAuthorityCount
GetSidSubAuthority
LookupAccountNameA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
EnumDependentServicesA
ControlService
RegCreateKeyA
RegSetValueA
RegOpenKeyA

shell32

ExtractIconA
SHGetFileInfoA
DragFinish
DragAcceptFiles
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderPathA
ShellExecuteA
Shell_NotifyIconA
DragQueryFileA

comctl32

ImageList_GetIcon
FlatSB_EnableScrollBar
InitializeFlatSB
ImageList_Draw
ImageList_GetImageInfo
ImageList_AddMasked
_TrackMouseEvent
ord17
ord13
ord14
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Write
ImageList_Read

oledlg

ord8

ole32

OleRegGetUserType
OleIsCurrentClipboard
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleDuplicateData
CreateBindCtx
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
OleRun
CoDisconnectObject
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard

olepro32

ord252
ord253

oleaut32

SafeArrayAllocDescriptor
LoadTypeLi
SysStringLen
SysFreeString
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantClear
SafeArrayRedim
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
SysStringByteLen
VarCyFromStr
VarBstrFromCy
VarDateFromStr
VarBstrFromDate
SafeArrayCopy
SafeArrayAllocData
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SysReAllocStringLen

wininet

InternetOpenA
InternetOpenUrlA
InternetQueryDataAvailable
InternetReadFile
InternetCloseHandle
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
DeleteUrlCacheEntry

gdiplus

GdipCreateFont
GdipDeleteFontFamily
GdipCreateStringFormat
GdipSetStringFormatAlign
GdiplusShutdown
GdipDrawString
GdipDeleteStringFormat
GdipDeleteFont
GdipGetGenericFontFamilySansSerif
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCreateBitmapFromResource
GdipLoadImageFromStream
GdipDrawImage
GdipCreateMatrix
GdipTranslateMatrix
GdipRotateMatrix
GdipCreateFontFamilyFromName
GdipGraphicsClear
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCloneBitmapArea
GdipDrawImageI
GdipGetImageThumbnail
GdiplusStartup
GdipSetStringFormatLineAlign
GdipDeleteBrush
GdipFillRectangleI
GdipCreateSolidFill
GdipDeletePen
GdipDeleteGraphics
GdipDrawLineI
GdipDrawRectangleI
GdipCreatePen1
GdipCreateFromHDC
GdipAlloc
GdipCloneBrush
GdipFree
GdipCreateLineBrushFromRectI
GdipDrawImageRectRect
GdipGetImageWidth
GdipGetImageHeight
GdipCreateHBITMAPFromBitmap
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipDisposeImage
GdipCloneImage
GdipReleaseDC
GdipDrawEllipseI
GdipSetPenDashStyle
GdipFillPolygonI
GdipDrawPolygonI
GdipBitmapSetPixel
GdipBitmapGetPixel
GdipDisposeImageAttributes
GdipDrawImageRectRectI
GdipSetImageAttributesColorMatrix
GdipCreateImageAttributes
GdipGetImageGraphicsContext
GdipCloneBitmapAreaI
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipDeleteMatrix
GdipSetWorldTransform

Sections

.text
Size: 792KB - Virtual size: 789KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25639276836cd85f729c89a93d9899b2

Headers

File Characteristics

Imports

msimg32

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

gdiplus

Sections

.text Size: 792KB - Virtual size: 789KB

.rdata Size: 120KB - Virtual size: 119KB

.data Size: 44KB - Virtual size: 65KB

.idata Size: 24KB - Virtual size: 21KB

.rsrc Size: 40KB - Virtual size: 37KB

.reloc Size: 52KB - Virtual size: 51KB

.text
Size: 792KB - Virtual size: 789KB

.rdata
Size: 120KB - Virtual size: 119KB

.data
Size: 44KB - Virtual size: 65KB

.idata
Size: 24KB - Virtual size: 21KB

.rsrc
Size: 40KB - Virtual size: 37KB

.reloc
Size: 52KB - Virtual size: 51KB