7aec2b7ce2dc29925fe88f677cace2fef81d79c55febd6d5d2624ef68ce5cea1

Sharing

Copy URL Twitter E-mail

General

Target

7aec2b7ce2dc29925fe88f677cace2fef81d79c55febd6d5d2624ef68ce5cea1
Size

1.6MB
MD5

ee228b28efd9898716eb7450577b6e03
SHA1

bf13b5d2134658f7b83ecaa2c84963b9d8808077
SHA256

7aec2b7ce2dc29925fe88f677cace2fef81d79c55febd6d5d2624ef68ce5cea1
SHA512

e18d28beeada7dd17d6810e21ff3b56f88d8cf7b6b7a28054533fa5550b1bcd0543cba0baa5b1b320366dfac69de9e3102408fc91db138c2547ffee7063f141d
SSDEEP

49152:XBvj3Slm4/HL2hw1cE4VsNXXXXXXXXXXulsWVXc8n:Xih/qhw1BNXXXXXXXXXXul

Score

N/A

Malware Config

Signatures

Files

7aec2b7ce2dc29925fe88f677cace2fef81d79c55febd6d5d2624ef68ce5cea1
.exe windows x86

1cccc0f7c5e10f1e2206961e06bf96e4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFlags
FindResourceExW
SetErrorMode
HeapFree
ExitProcess
HeapAlloc
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
RaiseException
HeapReAlloc
ExitThread
CreateThread
SetStdHandle
GetFileType
HeapSize
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
HeapCreate
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
LCMapStringA
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetCurrentDirectoryA
GetDriveTypeA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
TlsFree
GetProcessHeap
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
FileTimeToLocalFileTime
VirtualProtect
GetModuleHandleA
GetCurrentProcessId
CreateEventW
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
FreeResource
CompareStringW
LoadLibraryA
GetVersionExA
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrcmpW
GlobalLock
GlobalUnlock
FormatMessageW
GetTickCount
GetFileSize
GetFileInformationByHandle
FileTimeToSystemTime
WriteFile
ReadFile
CreateFileW
SystemTimeToFileTime
SetFilePointer
GetStartupInfoW
CreatePipe
GetTempFileNameW
GetTempPathW
GetSystemDirectoryW
WinExec
CreateFileA
GlobalAlloc
DeviceIoControl
GetLogicalDrives
VirtualFreeEx
ReadProcessMemory
VirtualAllocEx
OpenProcess
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetCurrentProcess
GetVersionExW
GlobalDeleteAtom
GlobalAddAtomW
GlobalFindAtomW
LocalFree
GetComputerNameExW
SetFileAttributesW
GetWindowsDirectoryW
CreateProcessW
GetFileAttributesW
RemoveDirectoryW
GetModuleHandleW
SetLastError
GetEnvironmentVariableW
FindClose
FindNextFileW
FindFirstFileW
MulDiv
InterlockedDecrement
GetLocalTime
GetSystemDefaultLangID
ExpandEnvironmentStringsW
GlobalFree
MoveFileW
CopyFileW
CreateDirectoryW
DeleteFileW
Sleep
GetDriveTypeW
lstrlenA
MultiByteToWideChar
WaitForSingleObject
WideCharToMultiByte
GetPrivateProfileIntW
SetUnhandledExceptionFilter
GetPrivateProfileStringW
WritePrivateProfileStringW
GetCommandLineW
LoadLibraryW
GetProcAddress
FreeLibrary
GetLastError
GetModuleFileNameW
lstrlenW
FindResourceW
LoadResource
LockResource
VirtualFree
SizeofResource

user32

GetSysColorBrush
CharUpperW
GetAsyncKeyState
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemInt
GetDlgItemInt
RegisterClipboardFormatW
IsClipboardFormatAvailable
EndPaint
BeginPaint
GetWindowDC
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
CheckMenuItem
GetMessageW
TranslateMessage
ValidateRect
CreateDialogIndirectParamW
IsWindowEnabled
EndDialog
SetWindowContextHelpId
MapDialogRect
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
GetDlgItem
DestroyWindow
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
TrackPopupMenu
SetMenu
CreateWindowExW
UnregisterClassW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
GetScrollInfo
GetDlgCtrlID
DefWindowProcW
GetMenu
IntersectRect
SystemParametersInfoA
GetWindowPlacement
PostQuitMessage
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetCapture
CallWindowProcW
GetComboBoxInfo
SetWindowLongW
IsWindow
GrayStringW
GetClassInfoW
FindWindowW
PostMessageW
DrawTextExW
DrawTextW
TabbedTextOutW
EqualRect
UpdateWindow
EnumWindows
GetWindowTextW
GetClassNameW
MessageBoxW
GetWindowThreadProcessId
UnregisterHotKey
RegisterHotKey
SetScrollRange
ReleaseCapture
SetCapture
SetScrollPos
GetScrollPos
GetScrollRange
InflateRect
DrawEdge
LoadCursorW
ClipCursor
SetCursorPos
SetLayeredWindowAttributes
FrameRect
ReleaseDC
CreateIconIndirect
GetIconInfo
FillRect
DrawStateW
DrawIconEx
CopyRect
TrackPopupMenuEx
CharNextW
IsRectEmpty
SetRect
GetActiveWindow
WindowFromPoint
ClientToScreen
PostThreadMessageW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
GetClassInfoExW
CopyAcceleratorTableW
SendMessageW
LoadImageW
LoadIconW
GetSystemMetrics
SetClipboardViewer
IsIconic
GetClientRect
DrawIcon
GetDC
SetWindowRgn
SystemParametersInfoW
LoadMenuW
GetSubMenu
GetCursorPos
ModifyMenuW
DeleteMenu
AppendMenuW
RemoveMenu
SetForegroundWindow
IsWindowVisible
SetTimer
GetWindowRect
GetSysColor
OffsetRect
KillTimer
RegisterWindowMessageW
GetKeyState
DestroyIcon
SetWindowPos
PtInRect
SendInput
GetWindowLongW
GetDesktopWindow
GetWindow
GetTopWindow
GetParent
FindWindowExW
EnableWindow
DestroyCursor
DestroyMenu
GetNextDlgTabItem
SetCursor
InvalidateRect
EnableMenuItem

gdi32

CreateRectRgnIndirect
GetMapMode
GetRgnBox
EnumFontFamiliesExW
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
MoveToEx
LineTo
BeginPath
SetMapMode
SetROP2
RestoreDC
SaveDC
GetClipBox
GetBkColor
GetTextColor
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateSolidBrush
ExtCreatePen
GetDeviceCaps
Rectangle
CreatePen
SetPixel
GetPixel
CreateFontIndirectW
GetObjectW
DeleteDC
SetTextColor
SetBkColor
SelectObject
CreateBitmap
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetStockObject
DeleteObject
GetTextExtentPoint32W
CreateFontW
PathToRegion
EndPath
SetBkMode

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

CryptHashData
RegOpenKeyExW
RegQueryValueW
RegEnumKeyW
SetNamedSecurityInfoW
SetEntriesInAclW
AllocateAndInitializeSid
GetNamedSecurityInfoW
RegOpenKeyW
GetUserNameW
CryptDecrypt
CryptDestroyHash
CryptEncrypt
CryptDeriveKey
RegCreateKeyExW
CryptCreateHash
CryptDestroyKey
CryptReleaseContext
CryptGenKey
CryptGetUserKey
CryptAcquireContextW
RegEnumKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW
RegDeleteKeyW
RegCloseKey

shell32

ord155
Shell_NotifyIconW
ShellExecuteW
SHGetFileInfoW
SHGetSpecialFolderPathW
DragQueryFileW
SHFileOperationW
SHGetSpecialFolderLocation
SHGetMalloc
SHGetFolderPathW
CommandLineToArgvW
SHGetPathFromIDListW
SHBrowseForFolderW
DragFinish
ShellExecuteExW

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW

oledlg

OleUIBusyW

ole32

CreateILockBytesOnHGlobal
CoCreateInstance
CoUninitialize
StgCreateDocfile
StgIsStorageFile
StgOpenStorage
CoTaskMemFree
CLSIDFromString
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromProgID
OleGetClipboard
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoInitializeEx
CoGetClassObject
CoInitialize
StgOpenStorageOnILockBytes

oleaut32

SysFreeString
SysStringByteLen
SysAllocStringByteLen
VarDateFromStr
SysAllocStringLen
SysStringLen
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString

sti

StiCreateInstanceW

gdiplus

GdiplusShutdown
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageType
GdipCloneImage
GdipDrawImageRectI
GdipGraphicsClear
GdipSetInterpolationMode
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipAlloc
GdipFree

winmm

sndPlaySoundW
PlaySoundW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

ws2_32

WSACleanup
freeaddrinfo
getnameinfo
inet_ntoa
getaddrinfo
gethostbyname
gethostname
WSAStartup

imagehlp

MakeSureDirectoryPathExists

Sections

.text
Size: 885KB - Virtual size: 884KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cccc0f7c5e10f1e2206961e06bf96e4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

sti

gdiplus

winmm

version

ws2_32

imagehlp

Sections

.text Size: 885KB - Virtual size: 884KB

.rdata Size: 200KB - Virtual size: 200KB

.data Size: 15KB - Virtual size: 37KB

.rsrc Size: 480KB - Virtual size: 479KB

.reloc Size: 100KB - Virtual size: 100KB

.text
Size: 885KB - Virtual size: 884KB

.rdata
Size: 200KB - Virtual size: 200KB

.data
Size: 15KB - Virtual size: 37KB

.rsrc
Size: 480KB - Virtual size: 479KB

.reloc
Size: 100KB - Virtual size: 100KB