057fc0cc9170a7eda0185e77356fa5ce6f2b8f92a4e578254c0ba8ef01a35368

Sharing

Copy URL Twitter E-mail

General

Target

057fc0cc9170a7eda0185e77356fa5ce6f2b8f92a4e578254c0ba8ef01a35368
Size

812KB
MD5

fc56ecd8fc2ea4cef921b7b861f766c6
SHA1

32fe3a12c2d713ad8d69a82976f3e27857347e52
SHA256

057fc0cc9170a7eda0185e77356fa5ce6f2b8f92a4e578254c0ba8ef01a35368
SHA512

50715da4a88e4d832514940604ab63fd74cf3a229506e9e9925cc271a6df585fb36aebd717882cead74d92ecffb58899400bea1a76a32a85a3b71ddbd4f3f1ff
SSDEEP

24576:1DFBGUYKszDcgPxcrxCjy3YySXI+7mf2YXMhMkZx65vE5Mf:1DFBVYKMcgPxMxC+3YySXMmhlx65cC

Score

1^/10

Malware Config

Signatures

Files

057fc0cc9170a7eda0185e77356fa5ce6f2b8f92a4e578254c0ba8ef01a35368
.exe windows x86

4303192ba10965d2f1048eb67276a021

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragEnter
ImageList_BeginDrag
ImageList_Draw
ImageList_Remove
ImageList_LoadImageW
ImageList_DragMove
CreatePropertySheetPageW
_TrackMouseEvent
FlatSB_SetScrollProp
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_Create
ImageList_EndDrag
PropertySheetW
ImageList_GetImageCount
ord8
InitCommonControlsEx
ImageList_GetIconSize
ImageList_GetIcon
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_AddMasked
DestroyPropertySheetPage

winmm

waveOutPrepareHeader
waveOutWrite
waveOutGetPosition
waveOutSetVolume
waveOutRestart
waveOutGetVolume
waveOutPause
waveOutGetNumDevs
waveOutGetDevCapsW
waveOutUnprepareHeader
waveOutClose
waveOutOpen
waveOutReset

wininet

InternetOpenW
InternetReadFile
InternetConnectW
HttpOpenRequestW
HttpQueryInfoW
InternetSetOptionW
InternetCloseHandle
HttpSendRequestW
InternetCrackUrlW

msvcrt

strcpy
_CxxThrowException
_itoa
_stricmp
_strnicmp
_wcslwr
_wcsupr
__wgetmainargs
_itow
_mbsupr
strncpy
log10
isalnum
isalpha
strncmp
isspace
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
strstr
memset
_except_handler3
strlen
wcslen
wcscmp
wcsrchr
wcscat
wcscpy
wcschr
??3@YAXPAX@Z
free
memmove
malloc
memcpy
__CxxFrameHandler
vswprintf
_purecall
_beginthreadex
_wcsicmp
wcsncmp
??2@YAPAXI@Z
wcsstr
strrchr
realloc
abs
sscanf
vsprintf
_mbsicmp
iswspace
_wtoi
strcmp
_mbsstr
_mbsinc
atoi
strchr
floor
memcmp
swscanf
labs
wcsncpy
calloc
isleadbyte
iswalnum
log
rand
pow
_wcsdup
_mbscmp
sprintf
_wcsnicmp
swprintf
_mbslwr
wcspbrk
fabs
_mbschr
sin
cos
sqrt
_controlfp
_clearfp
tan
atof
srand
??1type_info@@UAE@XZ
?terminate@@YAXXZ
__dllonexit
_onexit
_exit
_XcptFilter
exit
_wcmdln

kernel32

CreateFileA
SetEndOfFile
GetVolumeInformationW
SearchPathW
DeviceIoControl
GetVersionExA
QueryPerformanceCounter
lstrcatA
lstrcpyA
CreateFileMappingA
lstrlenA
GetStartupInfoW
LCMapStringW
GetSystemTimeAsFileTime
GetWindowsDirectoryW
GetCommandLineA
CompareFileTime
CreateSemaphoreW
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
RaiseException
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceW
GetModuleFileNameW
FindClose
FindFirstFileW
GetFileAttributesW
lstrlenW
GetLastError
CreateDirectoryW
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
VirtualAlloc
VirtualFree
GetSystemInfo
CreateEventW
CloseHandle
WaitForSingleObject
ResetEvent
TerminateThread
SetEvent
GetTickCount
SuspendThread
ResumeThread
GetCurrentThreadId
MulDiv
DeleteFileW
FreeLibrary
GetProcAddress
VirtualQueryEx
MultiByteToWideChar
LoadLibraryW
GetModuleFileNameA
GetModuleHandleW
lstrcmpiW
ExitProcess
SetUnhandledExceptionFilter
lstrcpynW
ReleaseSemaphore
lstrcpyW
FreeResource
EnumResourceLanguagesW
EnumSystemCodePagesW
GetCPInfoExW
FindNextFileW
SetFilePointer
HeapReAlloc
WriteFile
ReadFile
SetLastError
GetFullPathNameW
CreateFileW
WaitForMultipleObjects
CreateThread
lstrcatW
GetFileSize
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SetThreadPriority
IsBadReadPtr
GlobalUnlock
GlobalLock
GlobalAlloc
lstrcmpW
CompareStringW
MoveFileW
Sleep
SetEnvironmentVariableW
GetEnvironmentVariableW
LoadLibraryExW
GetCurrentProcessId
GetDriveTypeW
GetLocalTime
SetCurrentDirectoryW
GlobalFree
DosDateTimeToFileTime
GetTempFileNameW
GetTempPathW
InterlockedExchangeAdd

user32

DeferWindowPos
BeginDeferWindowPos
GetSystemMenu
BringWindowToTop
GetIconInfo
IsMenu
GetMenuItemID
CheckMenuRadioItem
SetMenuItemInfoW
GetClassLongW
ModifyMenuW
SetForegroundWindow
DrawIconEx
ShowScrollBar
InvertRect
LockWindowUpdate
PostQuitMessage
FindWindowW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
ExitWindowsEx
SetClassLongW
WindowFromPoint
GetMessagePos
GetMenuItemRect
GetWindowDC
EnumWindows
FrameRect
CharLowerW
GetKeyState
DrawEdge
WindowFromDC
IntersectRect
GetMenuStringW
InsertMenuItemW
RegisterClipboardFormatW
CheckRadioButton
GetKeyNameTextW
MapVirtualKeyW
OemToCharBuffW
MessageBoxA
UpdateWindow
MoveWindow
IsIconic
LoadStringW
GetCursorPos
PtInRect
DestroyCursor
DrawTextA
ReleaseCapture
CreateCursor
SetCapture
KillTimer
SetTimer
ScreenToClient
SendDlgItemMessageW
MessageBeep
GetWindowTextLengthW
GetWindowTextW
GetFocus
DialogBoxParamW
DialogBoxIndirectParamW
EndPaint
BeginPaint
GetSysColor
LoadIconW
DefWindowProcW
CallWindowProcW
EndDeferWindowPos
SetMenuDefaultItem
AppendMenuW
TrackPopupMenu
CreatePopupMenu
SetCursor
GetWindow
IsDlgButtonChecked
CheckDlgButton
SetFocus
SetWindowTextW
GetWindowLongW
GetActiveWindow
CreateWindowExW
RegisterClassExW
GetSubMenu
DestroyMenu
LoadMenuW
InsertMenuW
GetMenuItemCount
DeleteMenu
GetDlgCtrlID
UnionRect
GetDC
ReleaseDC
OffsetRect
LoadCursorW
GetClassInfoExW
SetWindowRgn
DestroyIcon
GetParent
EnableWindow
MapWindowPoints
GetClientRect
GetWindowRect
SetWindowPos
MessageBoxW
CreateDialogParamW
InflateRect
wsprintfW
DestroyWindow
LoadBitmapW
DrawTextW
MsgWaitForMultipleObjects
GetWindowThreadProcessId
GetSysColorBrush
ClientToScreen
TrackPopupMenuEx
EmptyClipboard
SetClipboardData
CloseClipboard
GetDlgItemInt
SetDlgItemInt
SetActiveWindow
CreateAcceleratorTableW
GetClassNameW
IsChild
GetDesktopWindow
InvalidateRgn
FillRect
DestroyAcceleratorTable
UnregisterClassW
UnregisterHotKey
RegisterHotKey
GetSystemMetrics
LoadImageW
SystemParametersInfoW
SetRect
SetRectEmpty
RegisterWindowMessageW
SetWindowLongW
SendMessageW
PostMessageW
InvalidateRect
ShowWindow
SetDlgItemTextW
GetDlgItem
IsWindow
DispatchMessageA
DispatchMessageW
TranslateMessage
GetMessageA
GetMessageW
GetWindowRgn
DrawStateW
DrawFocusRect
IsWindowEnabled
AdjustWindowRectEx
GetCapture
RedrawWindow
CharNextW
TranslateAcceleratorW
GetMenuItemInfoW
EnableMenuItem
CheckMenuItem
DrawFrameControl
IsRectEmpty
IsWindowVisible
OpenClipboard
GetDlgItemTextW
EndDialog
IsWindowUnicode
PeekMessageW
IsDialogMessageW

gdi32

GetDIBits
ExtCreateRegion
GetCurrentObject
CreateRectRgn
BitBlt
DeleteObject
CreateCompatibleBitmap
SetBkColor
ExtTextOutW
SelectClipRgn
SetTextColor
SelectObject
CreateCompatibleDC
SetBkMode
CreateRoundRectRgn
FrameRgn
GetTextMetricsW
GetWindowOrgEx
PatBlt
CreateRectRgnIndirect
CombineRgn
OffsetRgn
GetRegionData
ExcludeClipRect
CreatePatternBrush
SetBrushOrgEx
Polygon
CreateSolidBrush
CreateBitmap
PtInRegion
SaveDC
IntersectClipRect
OffsetWindowOrgEx
RestoreDC
StretchBlt
SetStretchBltMode
GetDeviceCaps
CreateDIBSection
CreatePen
LineTo
MoveToEx
CreateFontIndirectW
SetPixel
GetPixel
GetStockObject
GetClipBox
LPtoDP
DPtoLP
SetWindowOrgEx
SelectPalette
RealizePalette
SetDIBitsToDevice
StretchDIBits
GetObjectW
DeleteDC

comdlg32

GetSaveFileNameW
ChooseFontW
ChooseColorW
GetOpenFileNameW

advapi32

RegCloseKey
RegQueryInfoKeyW
RegEnumKeyExW
RegEnumValueW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteA
SHChangeNotify
SHGetDataFromIDListW
SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetMalloc
SHAddToRecentDocs
Shell_NotifyIconW
SHFileOperationW
DragQueryFileW
ShellExecuteW
SHGetSpecialFolderPathW
ExtractIconExW
SHBrowseForFolderW

ole32

CLSIDFromProgID
CLSIDFromString
CoCreateInstance
OleInitialize
CoGetClassObject
OleDuplicateData
RegisterDragDrop
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal
OleLockRunning
StringFromGUID2
OleUninitialize
StringFromCLSID
ProgIDFromCLSID
CoFreeUnusedLibraries
RevokeDragDrop
CoInitialize
ReleaseStgMedium
OleSetClipboard
DoDragDrop
OleGetClipboard
CoTaskMemRealloc

oleaut32

VarUI4FromStr
DispCallFunc
VarDecCmp
VarDecFromStr
VarR8FromStr
VarI4FromStr
VarDateFromStr
LoadTypeLi
LoadRegTypeLi
VariantInit
VariantClear
OleCreateFontIndirect
SysStringByteLen
SysStringLen
SysAllocString
SysAllocStringLen
SysFreeString

ttpcomm

ord93
ord92
ord23
ord39
ord31
ord46
ord40
ord38
ord32
ord26
ord20
ord24
ord27
ord28
ord25
ord30
ord37
ord44
ord42
ord36
ord35
ord34
ord29
ord43
ord41
ord21
ord22
ord19
ord17
ord18
ord15
ord16
ord14
ord11
ord13
ord12
ord10
ord1
ord200
ord201
ord100
ord102
ord104
ord103
ord105
ord80
ord81
ord82
ord101
ord202
ord206
ord205
ord204
ord90
ord91

msacm32

acmStreamSize
acmStreamUnprepareHeader
acmStreamConvert
acmStreamPrepareHeader
acmStreamReset
acmStreamClose
acmStreamOpen

Exports

Exports

CreateSoundBuffer
CreateStdContent
CreateStreamOnFile
CreateStreamOnInet
GetSoundCodecName
_set_security_error_handler

Sections

.text
Size: 660KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lif
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4303192ba10965d2f1048eb67276a021

Headers

File Characteristics

Imports

comctl32

winmm

wininet

msvcrt

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

ttpcomm

msacm32

Exports

Exports

Sections

.text Size: 660KB - Virtual size: 660KB

.rdata Size: 97KB - Virtual size: 96KB

.data Size: 15KB - Virtual size: 19KB

.rsrc Size: 39KB - Virtual size: 40KB

.lif Size: - Virtual size: 4KB

.text
Size: 660KB - Virtual size: 660KB

.rdata
Size: 97KB - Virtual size: 96KB

.data
Size: 15KB - Virtual size: 19KB

.rsrc
Size: 39KB - Virtual size: 40KB

.lif
Size: - Virtual size: 4KB