da7f39f78fd079b07e2b2b8ccb3898693eba41da

Sharing

Copy URL

Twitter E-mail

General

Target

da7f39f78fd079b07e2b2b8ccb3898693eba41da
Size

848KB
MD5

23ca1e9c8b4750aebfc2a1ca471a2bf7
SHA1

da7f39f78fd079b07e2b2b8ccb3898693eba41da
SHA256

a81de77b58cef1ef3779edef6570d5830d5c84380e5c26cf63dd46d314715d03
SHA512

31e9d90f9ff102fc2aa5d641e69ac65936bbff8ca5c98efaecece3403877f0d88297b9e352f3acb97e0da1e2aa20cba7831af6e9ab4c644e4e03bde86b721c12
SSDEEP

24576:vWtjAqlQYAYo18QdEV9kKpltVg7i+tW+:ARuYAY285v3Y7L

Score

N/A

Malware Config

Signatures

Files

da7f39f78fd079b07e2b2b8ccb3898693eba41da
.exe windows x86

8e1e07ea810f9512ecae2a70517cd44f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
GetModuleFileNameW
HeapReAlloc
GetOEMCP
InitializeCriticalSectionAndSpinCount
GetProcessHeap
SizeofResource
VirtualProtect
InitializeCriticalSection
lstrcpyW
GetConsoleMode
CreateNamedPipeW
GetCommandLineW
HeapSize
GetFileAttributesExW
WriteFile
GlobalDeleteAtom
GetConsoleOutputCP
VirtualProtectEx
GetCurrentDirectoryA
CreateFileW
LeaveCriticalSection
CreateEventW
TlsFree
ResumeThread
InterlockedCompareExchange
SetEvent
GetTimeZoneInformation
DeleteCriticalSection
CreateThread
GetProcAddress
GetStdHandle
SetCurrentDirectoryW
GlobalSize
GlobalAlloc
GetTempPathW
CompareStringW
GetVolumeInformationW
GetNumberFormatW
SetFilePointer
WriteConsoleW
GetStringTypeW
LCMapStringW
GetConsoleCP
GlobalFindAtomW
SetStdHandle
TerminateProcess
GetCurrentDirectoryW
HeapQueryInformation
GetCPInfo
UnlockFile
OpenEventW
MultiByteToWideChar
TerminateThread
LocalReAlloc
LockFile
GlobalAddAtomW
TlsAlloc
HeapAlloc
lstrlenA
SetEnvironmentVariableA
TlsGetValue
GetLocaleInfoW
SearchPathW
GetModuleHandleW
FindResourceW
GetEnvironmentStringsW
LoadResource
GlobalLock
MulDiv
InterlockedDecrement
GetCurrentThread
RaiseException
VirtualAlloc
SetThreadPriority
lstrcmpA
GetTempFileNameW
CopyFileW
FileTimeToLocalFileTime
GlobalReAlloc
RtlUnwind
WideCharToMultiByte
FreeLibrary
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
GetSystemInfo
FreeResource
FileTimeToSystemTime
GetOverlappedResult
HeapFree
GetCurrentProcessId
GetACP
FindFirstFileW
CloseHandle
SetHandleCount
DuplicateHandle
CreateMutexW
lstrcmpiW
GlobalFlags
LoadLibraryExW
SetEndOfFile
LoadLibraryW
FreeEnvironmentStringsW
GetFileAttributesW
TlsSetValue
LocalAlloc
IsValidCodePage
GetUserDefaultUILanguage
GetFileTime
GlobalGetAtomNameW
GlobalFree
ExitThread
GetFullPathNameW
FindClose
EnterCriticalSection
GetFileType
lstrlenW
GetFileSizeEx
InterlockedIncrement
WaitForMultipleObjects
HeapCreate
GlobalUnlock
WaitForSingleObject
GetLastError
FormatMessageW
SetUnhandledExceptionFilter
IsDebuggerPresent
LocalFree
Sleep
DisconnectNamedPipe
ReadFile
UnhandledExceptionFilter
GetVersionExW
lstrcmpW
GetCurrentProcess
SetLastError
LockResource
GetStartupInfoW
HeapSetInformation
GlobalHandle
GetCurrentThreadId
ExitProcess
GetSystemDirectoryW
InterlockedExchange
GetFileSize
ConnectNamedPipe
FindResourceExW
GetProfileIntW
FlushFileBuffers

user32

GetWindowDC
GetWindow
LoadImageW
PostQuitMessage
InvalidateRect
ShowOwnedPopups
PeekMessageW
InvertRect
PostThreadMessageW
GetWindowRgn
IsZoomed
GetScrollRange
DefMDIChildProcW
KillTimer
DrawEdge
WaitMessage
EndPaint
CopyImage
EnableMenuItem
CharUpperBuffW
UpdateWindow
DefWindowProcW
GetWindowRect
GetMessageTime
DispatchMessageW
OpenClipboard
SetLayeredWindowAttributes
GetActiveWindow
GetMenuStringW
EnumDisplayMonitors
MapVirtualKeyW
GetMenuItemID
GetScrollInfo
EndDeferWindowPos
RegisterWindowMessageW
ReuseDDElParam
GetSystemMenu
DestroyAcceleratorTable
SendDlgItemMessageW
SetWindowsHookExW
EqualRect
LoadAcceleratorsW
SetMenu
UnhookWindowsHookEx
SetRect
MapVirtualKeyExW
GetMessageW
DrawTextExW
GetClassNameW
LockWindowUpdate
SubtractRect
GetCursorPos
InsertMenuItemW
GetDoubleClickTime
DrawStateW
GetParent
SetCursor
DestroyCursor
TranslateMDISysAccel
IsChild
FrameRect
RegisterClassW
GetNextDlgTabItem
LoadIconW
CallNextHookEx
SetFocus
ReleaseCapture
CheckDlgButton
IntersectRect
GetAsyncKeyState
GetTopWindow
GetMonitorInfoW
GetSubMenu
SetCursorPos
IsWindowVisible
ToUnicodeEx
AdjustWindowRectEx
GetMenuItemInfoW
SetClassLongW
GetMenu
SetWindowPos
WindowFromPoint
GetSystemMetrics
DrawIcon
ValidateRect
IsWindow
SendDlgItemMessageA
SetScrollInfo
DrawFocusRect
MapWindowPoints
EnumWindows
CallWindowProcW
SetForegroundWindow
TrackPopupMenu
WinHelpW
DrawMenuBar
GetMenuDefaultItem
GetDesktopWindow
IsIconic
DrawTextW
GetClassInfoExW
GetWindowPlacement
GetWindowLongW
GetKeyNameTextW
GetWindowTextW
GetDC
SetWindowTextW
GetUpdateRect
IsMenu
GetMenuCheckMarkDimensions
RegisterClipboardFormatW
GetLastActivePopup
CreateMenu
SetPropW
TranslateMessage
CreateWindowExW
GetFocus
EnableWindow
TranslateAcceleratorW
LoadMenuW
IsWindowEnabled
MessageBeep
PtInRect
GetDlgCtrlID
UnpackDDElParam
ScreenToClient
CopyRect
BeginPaint
SendMessageW
SetCapture
InsertMenuW
IsDialogMessageW
MoveWindow
GetSysColorBrush
DestroyMenu
EnableScrollBar
DestroyWindow
IsClipboardFormatAvailable
GetClientRect
SetWindowLongW
SetTimer
CreatePopupMenu
GetScrollPos
SetParent
LoadBitmapW
RedrawWindow
DrawFrameControl
FillRect
RealChildWindowFromPoint
CharUpperW
CloseClipboard
GetWindowTextLengthW
GrayStringW
ShowWindow
NotifyWinEvent
MonitorFromWindow
UpdateLayeredWindow
GetClassInfoW
GetKeyState
SetMenuItemBitmaps
SetMenuDefaultItem
MessageBoxW
GetPropW
ScrollWindow
CopyIcon
GetMessagePos
SetClipboardData
RemoveMenu
GetSysColor
DialogBoxParamW
GetDlgItem
TabbedTextOutW
DeleteMenu
ShowScrollBar
UnionRect
SetWindowRgn
GetWindowThreadProcessId
DefFrameProcW
SystemParametersInfoW
EmptyClipboard
GetIconInfo
GetKeyboardState
GetMenuState
CreateAcceleratorTableW
SetScrollRange
SetScrollPos
AppendMenuW
DeferWindowPos
SetActiveWindow
DrawIconEx
HideCaret
DestroyIcon
GetCapture
MapDialogRect
BringWindowToTop
IsCharLowerW
PostMessageW
IsRectEmpty
ModifyMenuW
CopyAcceleratorTableW
ClientToScreen
BeginDeferWindowPos
InflateRect
SetRectEmpty
GetMenuItemCount
LoadCursorW
EndDialog
MonitorFromPoint
SetWindowPlacement
ReleaseDC
OffsetRect
RemovePropW
CheckMenuItem
GetForegroundWindow
CreateDialogIndirectParamW
GetKeyboardLayout
GetClassLongW
GetNextDlgGroupItem

gdi32

LineTo
GetPaletteEntries
ExtTextOutW
StretchBlt
GetViewportExtEx
GetObjectW
SetPixel
DeleteDC
SelectClipRgn
GetBkColor
SetPixelV
SaveDC
CreatePalette
OffsetViewportOrgEx
SetViewportExtEx
PtInRegion
GetTextExtentPoint32W
GetNearestPaletteIndex
TextOutW
GetClipBox
SetTextAlign
ExcludeClipRect
CreateHatchBrush
CreateCompatibleBitmap
GetPixel
EnumFontFamiliesW
GetBitmapBits
GetTextColor
SetBkColor
CreateDIBSection
ExtSelectClipRgn
IntersectClipRect
PtVisible
Escape
SetWindowOrgEx
Ellipse
ExtFloodFill
DPtoLP
CreateBitmap
Rectangle
SetWindowExtEx
GetBoundsRect
GetViewportOrgEx
CreateFontIndirectW
Polygon
CreateDIBitmap
FillRgn
RestoreDC
CreatePolygonRgn
OffsetWindowOrgEx
CombineRgn
GetObjectType
SetBkMode
CreateRectRgnIndirect
GetStockObject
CreatePen
LPtoDP
GetTextFaceW
Polyline
GetTextMetricsW
SelectPalette
RectVisible
SetDIBColorTable
CreateRectRgn
CreateRoundRectRgn
PatBlt
GetWindowOrgEx
SelectObject
SetPolyFillMode
CreateDCW
GetWindowExtEx
MoveToEx
SetLayout
FrameRgn
GetTextCharsetInfo
GetLayout
CopyMetaFileW
CreateSolidBrush
BitBlt
SetROP2
GetSystemPaletteEntries
CreatePatternBrush
EnumFontFamiliesExW
CreateCompatibleDC
SetMapMode
ScaleWindowExtEx
GetDeviceCaps
ScaleViewportExtEx
SetPaletteEntries
SetRectRgn
CreateEllipticRgn
OffsetRgn
RealizePalette
SetTextColor
SetViewportOrgEx
GetRgnBox
DeleteObject

comdlg32

GetOpenFileNameW
GetFileTitleW

advapi32

GetSecurityDescriptorSacl
OpenProcessToken
RegEnumKeyExW
IsValidSid
RegDeleteKeyW
RegQueryValueExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCreateKeyExW
SetSecurityDescriptorSacl
RegCloseKey
GetTokenInformation
RegSetValueExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
OpenThreadToken
RegDeleteValueW
ConvertSidToStringSidW
RegOpenKeyExW

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHAppBarMessage
DragFinish
ShellExecuteExW
SHGetFolderLocation
SHGetDesktopFolder
DragQueryFileW
SHGetFileInfoW
SHGetPathFromIDListW
SHBrowseForFolderW

ole32

DoDragDrop
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoTaskMemFree
OleLockRunning
CoInitializeEx
CoLockObjectExternal
IsAccelerator
OleDuplicateData
OleTranslateAccelerator
OleGetClipboard
RegisterDragDrop
CoUninitialize
RevokeDragDrop
CoInitialize
CoTaskMemAlloc
CoCreateInstance
ReleaseStgMedium
CreateStreamOnHGlobal
CLSIDFromString

oleaut32

VariantClear
VariantInit
SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocStringLen
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
VariantChangeType
SysStringByteLen

comctl32

ImageList_GetIconSize

shlwapi

SHCopyKeyA
PathFindExtensionW
PathIsUNCW
PathFindFileNameW
PathStripToRootW
PathRemoveFileSpecW
SHDeleteValueA
ord215

winmm

PlaySoundW

msimg32

AlphaBlend
TransparentBlt

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

gdiplus

GdiplusShutdown
GdipBitmapUnlockBits
GdipDrawImageI
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipSetInterpolationMode
GdipGetImagePaletteSize
GdipBitmapLockBits
GdipFree
GdipCreateFromHDC
GdipGetImagePixelFormat
GdipCreateBitmapFromHBITMAP
GdipGetImageWidth
GdipCreateBitmapFromScan0
GdiplusStartup
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipDisposeImage
GdipGetImagePalette
GdipAlloc
GdipCloneImage
GdipGetImageHeight

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

Exports

Exports

MyCopyMemory

Sections

.text
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ffc
Size: - Virtual size: 175KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qqw
Size: 517KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vvw
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e1e07ea810f9512ecae2a70517cd44f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

msimg32

imm32

gdiplus

oleacc

Exports

Exports

Sections

.text Size: 153KB - Virtual size: 153KB

.ffc Size: - Virtual size: 175KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 20B

.qqw Size: 517KB - Virtual size: 516KB

.vvw Size: 155KB - Virtual size: 155KB

.rsrc Size: 1024B - Virtual size: 712B

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 153KB - Virtual size: 153KB

.ffc
Size: - Virtual size: 175KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 20B

.qqw
Size: 517KB - Virtual size: 516KB

.vvw
Size: 155KB - Virtual size: 155KB

.rsrc
Size: 1024B - Virtual size: 712B

.reloc
Size: 5KB - Virtual size: 4KB