3e9e46dc36c2d79ed3bc1ccc162d4e3127fb047765a05fa83e9ffcae57e7c399

Sharing

Copy URL

Twitter E-mail

General

Target

3e9e46dc36c2d79ed3bc1ccc162d4e3127fb047765a05fa83e9ffcae57e7c399
Size

3.3MB
MD5

17c3ff8c759ad298ed6fe39659e8c33e
SHA1

ebdf1fa7cc5b6630339a6ec0c5781bd10c1470b2
SHA256

3e9e46dc36c2d79ed3bc1ccc162d4e3127fb047765a05fa83e9ffcae57e7c399
SHA512

56cd99a01a06c76495f06e5c61891b0e0ce620f08c26d26b6a60a90ba57cf8adca99e99ae2788b539194f79802305dadbc691db8c6f4a2265ec1da9ee047b4dc
SSDEEP

24576:HL5Iy9VatSqaaSsjHTQO0N+kj6sjNArEjoazRbrDsd/tgUTWOhuqEjAYMwaJafar:ri2F/KrEsIjnqjaCKqtypmkmwp4

Score

N/A

Malware Config

Signatures

Files

3e9e46dc36c2d79ed3bc1ccc162d4e3127fb047765a05fa83e9ffcae57e7c399
.exe windows x86

34f91a8ac5576fa43dcb9eddb05107a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
SetEnvironmentVariableA
CompareStringW
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetDateFormatA
GetTimeFormatA
LCMapStringW
LCMapStringA
GetLocaleInfoW
GetProcessHeap
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetACP
HeapReAlloc
HeapSize
HeapAlloc
HeapFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetHandleCount
LoadLibraryW
SetConsoleCtrlHandler
FatalAppExitA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetFileType
SetStdHandle
ExitProcess
ExitThread
CreateThread
VirtualQuery
GetSystemInfo
IsBadReadPtr
HeapValidate
GetStartupInfoA
GetCommandLineA
RaiseException
RtlUnwind
GetDiskFreeSpaceA
GetTempFileNameA
FindResourceExA
GetCurrentDirectoryA
SetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesA
WaitForMultipleObjects
ReleaseMutex
CreateMutexA
ReleaseSemaphore
CreateSemaphoreA
SystemTimeToFileTime
FileTimeToSystemTime
GetModuleHandleW
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
InterlockedIncrement
GetOEMCP
GetCPInfo
GetProfileIntA
VirtualProtect
InterlockedDecrement
GetModuleFileNameW
GetAtomNameA
SetErrorMode
GlobalFlags
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetHandleInformation
InterlockedExchange
lstrcmpA
GetCurrentThread
GetLocaleInfoA
ConvertDefaultLocale
EnumResourceLanguagesA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ResetEvent
PulseEvent
CreateEventA
SetEvent
WaitForSingleObject
CloseHandle
lstrlenW
CopyFileA
GlobalSize
GlobalAlloc
FormatMessageA
LocalFree
GetCurrentProcessId
MulDiv
lstrlenA
SuspendThread
ResumeThread
GetThreadPriority
SetThreadPriority
CompareStringA
MultiByteToWideChar
lstrcmpW
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
GetModuleHandleA
SetLastError
GlobalLock
GetLastError
GlobalUnlock
GlobalFree
FreeResource
GetTickCount
GetPrivateProfileStringA
FreeLibrary
VirtualFree
VirtualAlloc
GetLocalTime
LoadLibraryA
GetProcAddress
Sleep
GetCurrentThreadId
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
WritePrivateProfileStringA
GetModuleFileNameA
GetPrivateProfileIntA
OpenEventA

user32

DlgDirListA
SetCapture
KillTimer
SetTimer
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
ValidateRgn
ValidateRect
InvalidateRgn
InvalidateRect
GetUpdateRgn
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ClientToScreen
BringWindowToTop
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
HiliteMenuItem
GetSystemMenu
DrawMenuBar
DragDetect
GetMenuCheckMarkDimensions
RegisterWindowMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
SendDlgItemMessageA
GetClientRect
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetParent
GetWindow
GetCapture
WinHelpA
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetKeyState
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
DlgDirListComboBoxA
GetClassNameA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
SetClipboardViewer
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongA
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetWindowRect
PostMessageA
MapDialogRect
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectA
LoadMenuA
SetMenuItemBitmaps
RemoveMenu
ModifyMenuA
InsertMenuItemA
InsertMenuA
GetSubMenu
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuStringA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
AppendMenuA
DeleteMenu
IsMenu
CreatePopupMenu
CreateMenu
ScrollDC
GrayStringA
GetTabbedTextExtentA
DrawTextExA
TabbedTextOutA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
OpenClipboard
GetOpenClipboardWindow
GetClipboardOwner
GetClipboardViewer
SetWindowPos
ExcludeUpdateRgn
WindowFromDC
LoadBitmapA
GetSysColorBrush
EndDialog
GetDesktopWindow
GetActiveWindow
SetActiveWindow
EnableWindow
CreateDialogIndirectParamA
GetWindowLongA
GetDlgItem
IsWindowEnabled
IsWindow
DestroyWindow
DlgDirSelectExA
DlgDirSelectComboBoxExA
GetNextDlgGroupItem
GetNextDlgTabItem
ShowScrollBar
ChildWindowFromPoint
ChildWindowFromPointEx
FindWindowA
FindWindowExA
GetLastActivePopup
SetParent
WindowFromPoint
FlashWindow
GetClassLongA
ChangeClipboardChain
SendMessageA
DrawTextA
IsWindowUnicode
GetMessageW
DispatchMessageW
SubtractRect
UnionRect
InflateRect
SetRect
PtInRect
SystemParametersInfoA
PostQuitMessage
DestroyCursor
LoadImageA
ReleaseCapture
GetSysColor
SetCursor
CreateCaret
GetCaretPos
SetCaretPos
HideCaret
ShowCaret
SetForegroundWindow
GetForegroundWindow
SendNotifyMessageA
SetWindowContextHelpId
GetSystemMetrics
LoadIconA
GetWindowContextHelpId
PostThreadMessageA
LoadCursorA
CloseWindow
OpenIcon
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
GetWindowThreadProcessId
GetKeyNameTextA
MapVirtualKeyA
TranslateMessage
GetMessageA
GetCursorPos
WaitMessage
CharUpperA
GetDialogBaseUnits
DestroyMenu
GetAsyncKeyState
SetRectEmpty
GetClipboardFormatNameA
UnpackDDElParam
LoadAcceleratorsA
TranslateAcceleratorA
ReuseDDElParam
GetMenuBarInfo
MsgWaitForMultipleObjects
DestroyIcon
CharNextA
CopyAcceleratorTableA
MessageBeep
UnregisterClassA
IsRectEmpty
IsClipboardFormatAvailable
InSendMessage
SetMenu
RegisterClipboardFormatA

gdi32

GetBitmapBits
SetBitmapDimensionEx
GetBitmapDimensionEx
CreateCompatibleBitmap
CreateDiscardableBitmap
CreatePalette
CreateHalftonePalette
GetPaletteEntries
SetPaletteEntries
AnimatePalette
GetNearestPaletteIndex
ResizePalette
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePolyPolygonRgn
CreateRoundRectRgn
PathToRegion
ExtCreateRegion
GetRegionData
SetRectRgn
CombineRgn
EqualRgn
OffsetRgn
GetRgnBox
RectInRegion
CreateDCA
CreateICA
CreateCompatibleDC
GetDeviceCaps
GetBrushOrgEx
SetBrushOrgEx
EnumObjects
GetNearestColor
RealizePalette
UpdateColors
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutA
ExtTextOutA
GetTextExtentPoint32A
GetTextAlign
GetTextFaceA
GetTextMetricsA
GetTextCharacterExtra
SetBitmapBits
GetFontLanguageInfo
GetCharacterPlacementA
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCA
GetOutlineTextMetricsA
GetCharABCWidthsA
GetFontData
GetKerningPairsA
GetGlyphOutlineA
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatA
GetCharWidthFloatA
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
CreateMetaFileA
CloseMetaFile
CreateEnhMetaFileA
CloseEnhMetaFile
GetDCOrgEx
GetClipBox
SetBkColor
DeleteDC
SaveDC
RestoreDC
SelectPalette
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
CreateBitmapIndirect
CreateBitmap
CreateFontA
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
CreateDIBPatternBrushPt
CreatePatternBrush
CreateHatchBrush
ExtCreatePen
CreatePenIndirect
CreatePen
GetObjectType
UnrealizeObject
GetStockObject
GetObjectA
CreateSolidBrush
FillRgn
CreateFontIndirectA
SelectObject
SetBkMode
SetTextColor
PtInRegion
CreateBrushIndirect
DeleteObject
GetCharWidthA
DeleteMetaFile
EnumFontFamiliesExA
StretchDIBits
CopyMetaFileA
PlayMetaFile
EnumMetaFile
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
CreatePolygonRgn

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA

advapi32

RegCloseKey
RevertToSelf
RegSetValueA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA
GetFileSecurityA
SetThreadToken
OpenThreadToken

shell32

ExtractIconA
Shell_NotifyIconA
DragAcceptFiles
SHGetFileInfoA
DragFinish
DragQueryFileA
SHGetSpecialFolderPathA

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord3
ord7
ord6
ord5
ord9
ord4
ord8

ole32

CoRevokeClassObject
OleRun
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleIsCurrentClipboard
OleSetClipboard
OleFlushClipboard
CreateItemMoniker
CreateGenericComposite
CreateFileMoniker
GetClassFile
CreateStreamOnHGlobal
CoGetMalloc
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
OleLockRunning
OleSetContainedObject
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateFromFile
OleCreateLinkToFile
OleCreate
OleLoad
OleSave
CoRegisterClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
StringFromGUID2
CoDisconnectObject
CoUninitialize
CoInitializeEx
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
ReleaseStgMedium
CoTaskMemAlloc
CoTreatAsClass
StringFromCLSID
ReadClassStg
StgIsStorageILockBytes
GetHGlobalFromILockBytes
OleGetIconOfClass
WriteClassStm
OleSaveToStream
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleGetClipboard
OleSetMenuDescriptor
DoDragDrop
OleRegEnumVerbs
OleRegGetMiscStatus
CoLockObjectExternal
GetRunningObjectTable
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
CoTaskMemFree
OleDuplicateData
OleDestroyMenuDescriptor
CreateOleAdviseHolder
CreateDataAdviseHolder
OleTranslateAccelerator
CoUnmarshalInterface
CoMarshalInterface
CoReleaseMarshalData
IsAccelerator
OleCreateMenuDescriptor

oleaut32

SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate
VariantCopy
SysReAllocStringLen
VarCyFromStr
VarBstrFromCy
SafeArrayCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VarBstrFromDec
VarDecFromStr
VarDateFromStr
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
LoadRegTypeLi
LoadTypeLi
RegisterTypeLi
SafeArrayGetElemsize
SafeArrayGetDim
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
SafeArrayPtrOfIndex
SystemTimeToVariantTime
DosDateTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
VarDateFromUdate
VariantClear

ws2_32

shutdown
listen
ioctlsocket
bind
getsockopt
setsockopt
getsockname
getpeername
connect
sendto
recvfrom
socket
select
WSAGetLastError
WSAAsyncSelect
send
recv
gethostbyname
closesocket
htonl
inet_addr
htons
accept
ntohs
inet_ntoa
WSAStartup
WSASetLastError
gethostname
WSACleanup

msvfw32

ICSeqCompressFrame
ICSeqCompressFrameEnd
ICCompressorFree
ICClose
ICOpen
ICSendMessage
ICSeqCompressFrameStart
DrawDibDraw
DrawDibEnd
DrawDibClose
DrawDibOpen
DrawDibBegin
ICDecompress

avicap32

capGetDriverDescriptionA
capCreateCaptureWindowA

winmm

waveOutOpen
waveOutClose
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveInUnprepareHeader
waveInStop
waveInReset
waveInClose
waveInOpen
waveInPrepareHeader
waveInAddBuffer
waveInStart
waveOutPrepareHeader
waveOutSetVolume

Sections

.textbss
Size: - Virtual size: 965KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 346KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 390KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 1024B - Virtual size: 793B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 572KB - Virtual size: 571KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34f91a8ac5576fa43dcb9eddb05107a2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

ws2_32

msvfw32

avicap32

winmm

Sections

.textbss Size: - Virtual size: 965KB

.text Size: 2.0MB - Virtual size: 2.0MB

.rdata Size: 346KB - Virtual size: 346KB

.data Size: 390KB - Virtual size: 433KB

.idata Size: 25KB - Virtual size: 24KB

.didat Size: 1024B - Virtual size: 793B

.rsrc Size: 572KB - Virtual size: 571KB

.textbss
Size: - Virtual size: 965KB

.text
Size: 2.0MB - Virtual size: 2.0MB

.rdata
Size: 346KB - Virtual size: 346KB

.data
Size: 390KB - Virtual size: 433KB

.idata
Size: 25KB - Virtual size: 24KB

.didat
Size: 1024B - Virtual size: 793B

.rsrc
Size: 572KB - Virtual size: 571KB