45f3d6d321155dca2aa90306dae71979709cb5e090be8c6f9203da3d2d3199d6

Sharing

Copy URL Twitter E-mail

General

Target

45f3d6d321155dca2aa90306dae71979709cb5e090be8c6f9203da3d2d3199d6
Size

3.0MB
MD5

27739f12b8bb2451aa2412458314c45d
SHA1

ea98d49a0d982d8b64d785de2d3bd172faaa9196
SHA256

45f3d6d321155dca2aa90306dae71979709cb5e090be8c6f9203da3d2d3199d6
SHA512

53ad9475e8c3a63ecb85caffc18cf539e13c099281598ed97a5113f300f563a45a567521fdd31bea3fc900961625f3cae624bba6a318705a8af9308af4f637e5
SSDEEP

98304:g/7cLt0JHlSRBA/DFGRSwDqFUtboRBxMO1:gYLtgTN7UtboRBxt

Score

1^/10

Malware Config

Signatures

Files

45f3d6d321155dca2aa90306dae71979709cb5e090be8c6f9203da3d2d3199d6
.exe windows x86

ce096af06fc9a82c4257fcc8fdbcd167

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoW
WriteConsoleA
IsValidLocale
GetEnvironmentStrings
GetProcessHeap
EnumSystemLocalesA
GetUserDefaultLCID
CompareStringW
GetEnvironmentStringsW
GetConsoleOutputCP
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetTimeZoneInformation
GetStringTypeW
GetStringTypeA
GetStdHandle
VirtualFree
HeapCreate
LCMapStringW
LCMapStringA
IsValidCodePage
GetACP
HeapSize
SetStdHandle
ExitThread
RaiseException
HeapReAlloc
RtlUnwind
GetStartupInfoA
GetCommandLineA
SetEnvironmentVariableA
ExitProcess
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapAlloc
HeapFree
VirtualProtect
GetProfileIntA
SearchPathA
GetTempPathA
GetTempFileNameA
SetErrorMode
GetOEMCP
InterlockedIncrement
GetModuleHandleW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LocalAlloc
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameA
GetVolumeInformationA
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
lstrcmpA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GlobalSize
FormatMessageA
LocalFree
SuspendThread
ResumeThread
GetCurrentProcessId
InterlockedDecrement
GetModuleFileNameW
DuplicateHandle
GetFileType
ReadFile
WriteFile
GetCurrentProcess
DosDateTimeToFileTime
DeleteCriticalSection
EnumResourceNamesA
CreateEventA
InitializeCriticalSection
SetEvent
lstrcpyA
FreeLibrary
GetTickCount64
CreateThread
GetCurrentThreadId
SetThreadPriority
GetSystemDirectoryA
TerminateThread
GetTickCount
WaitForSingleObject
SetEndOfFile
UnmapViewOfFile
SetFilePointer
GetSystemTime
GetCurrentDirectoryA
WritePrivateProfileStringA
GetFileAttributesA
GetPrivateProfileIntA
CompareFileTime
SystemTimeToFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
MulDiv
DeleteFileA
CloseHandle
CreateMutexA
FindNextFileA
GetDiskFreeSpaceA
FindClose
CopyFileA
GetLogicalDriveStringsA
FindFirstFileA
CreateDirectoryA
CreateProcessA
Sleep
GetDriveTypeA
GetModuleFileNameA
CreateFileMappingA
GlobalFree
GlobalUnlock
GlobalAlloc
FindResourceExA
GlobalLock
MapViewOfFile
GetFileSize
CreateFileA
EnterCriticalSection
InterlockedExchange
LeaveCriticalSection
FreeResource
GetVersion
GetVersionExA
GetModuleHandleA
LockResource
LoadLibraryA
GetProcAddress
SetLastError
GetLastError
lstrlenW
MultiByteToWideChar
SizeofResource
WideCharToMultiByte
LoadResource
FindResourceA
GetCPInfo
lstrlenA
WriteConsoleW

user32

CheckDlgButton
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
GetClassLongA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
SetScrollInfo
SetWindowPlacement
GetMenu
IsIconic
GetWindowPlacement
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
PeekMessageA
ValidateRect
IntersectRect
EndPaint
BeginPaint
GetLastActivePopup
IsWindowEnabled
GetMenuStringA
MapVirtualKeyA
GetKeyNameTextA
DefWindowProcA
GetDlgCtrlID
GetKeyState
IsChild
GetCapture
DeferWindowPos
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
DrawIcon
SetRectEmpty
SetParent
GetScrollInfo
GetWindow
IsRectEmpty
MessageBeep
CopyIcon
IsWindow
LoadCursorA
GetMessagePos
GetClassNameA
GetSystemMenu
SetTimer
UnpackDDElParam
SetCapture
KillTimer
SetForegroundWindow
LoadIconA
GetForegroundWindow
ReleaseCapture
FindWindowA
DrawFrameControl
GetWindowThreadProcessId
RedrawWindow
UpdateWindow
MessageBoxA
GetNextDlgTabItem
ClientToScreen
SetCursor
LoadMenuA
WindowFromPoint
CreateIconIndirect
GetIconInfo
InflateRect
DrawStateA
OffsetRect
TrackPopupMenuEx
DestroyCursor
FrameRect
GetActiveWindow
DestroyMenu
ScreenToClient
GetCursorPos
SetWindowRgn
GetWindowDC
LoadImageA
OpenClipboard
SetClipboardData
GetWindowRect
CopyRect
ModifyMenuA
DestroyIcon
EnableWindow
InsertMenuA
GetFocus
GetParent
SendMessageA
PtInRect
DrawFocusRect
SetWindowLongA
GetWindowLongA
ShowWindow
CallWindowProcA
GetClientRect
InvalidateRect
SetWindowPos
PostMessageA
FillRect
GetMenuItemID
DrawTextA
GetSubMenu
DrawIconEx
DeleteMenu
LoadBitmapA
CreateMenu
GrayStringA
DrawEdge
DrawTextExA
GetDC
SetRect
IsDialogMessageA
SetWindowTextA
MoveWindow
EndDialog
CreateDialogIndirectParamA
CopyImage
CharUpperA
ShowOwnedPopups
MapDialogRect
ReleaseDC
GetMenuState
TabbedTextOutA
GetDesktopWindow
GetSysColor
GetMenuItemInfoA
CreatePopupMenu
GetSysColorBrush
AppendMenuA
GetMenuItemCount
RemoveMenu
SystemParametersInfoA
SetWindowContextHelpId
IsZoomed
UnregisterClassA
TranslateAcceleratorA
BringWindowToTop
InsertMenuItemA
LoadAcceleratorsA
PostQuitMessage
ReuseDDElParam
GetSystemMetrics
CloseClipboard
EmptyClipboard
GetWindowRgn
SubtractRect
CharUpperBuffA
GetUpdateRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
IsClipboardFormatAvailable
MapVirtualKeyExA
IsCharLowerA
UpdateLayeredWindow
EnableScrollBar
GetDoubleClickTime
GetMenuDefaultItem
SetMenuDefaultItem
UnionRect
SetCursorPos
RegisterClipboardFormatA
EnumChildWindows
LockWindowUpdate
IsMenu
SetClassLongA
NotifyWinEvent
CreateAcceleratorTableA
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
PostThreadMessageA
GetNextDlgGroupItem
WaitMessage
CharNextA
InvalidateRgn
SetActiveWindow
CopyAcceleratorTableA

gdi32

SetDIBColorTable
CreateDCA
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
SelectPalette
GetObjectType
ExtCreateRegion
SetRectRgn
GetMapMode
DPtoLP
CopyMetaFileA
GetDCOrgEx
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreateEllipticRgn
LPtoDP
CreatePolygonRgn
GetTextColor
Polyline
Polygon
RealizePalette
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
CreatePalette
GetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
GetTextFaceA
SetPixelV
SetBkColor
SetTextColor
CreateBitmap
CreatePatternBrush
GetDIBits
CombineRgn
GetBkColor
GetDIBColorTable
CreateRectRgn
StretchBlt
GetTextMetricsA
CreateFontA
CreateBrushIndirect
GetStockObject
BitBlt
PatBlt
GetTextExtentPoint32A
CreateHatchBrush
DeleteDC
CreateDIBSection
GetDeviceCaps
CreateFontIndirectA
SetPixel
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle
Ellipse
PtVisible
Escape
CreatePen
RectVisible
GetPixel
ExtTextOutA
CreateSolidBrush
GetObjectA
TextOutA

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegEnumKeyExA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA

shell32

DragQueryFileA
SHGetSpecialFolderPathA
SHFileOperationA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
DragFinish
SHAppBarMessage

comctl32

ImageList_GetIconSize
_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsDirectoryA
PathFileExistsA
PathRemoveFileSpecW
PathFindExtensionA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
PathFindFileNameA

oledlg

ord8

ole32

OleIsCurrentClipboard
CreateStreamOnHGlobal
CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemFree
IsAccelerator
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleLockRunning
OleTranslateAccelerator
OleFlushClipboard
DoDragDrop
OleGetClipboard
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
SysAllocString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocStringByteLen
SysFreeString
SysStringLen

gdiplus

GdiplusStartup
GdipGetImageWidth
GdipCloneImage
GdiplusShutdown
GdipFree
GdipGetImageHeight
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipDrawImageI
GdipAlloc
GdipDisposeImage
GdipGetImagePaletteSize
GdipBitmapLockBits

winmm

PlaySoundA

iphlpapi

GetAdaptersInfo

ws2_32

WSAStartup
WSACleanup
gethostname
connect
ntohl
htonl
select
WSAGetLastError
htons
ntohs
setsockopt
recv
socket
closesocket
gethostbyname
send
inet_addr

wininet

InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetSetOptionExA
InternetOpenUrlA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA
InternetQueryDataAvailable

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 355KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1014KB - Virtual size: 1014KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce096af06fc9a82c4257fcc8fdbcd167

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

winmm

iphlpapi

ws2_32

wininet

imm32

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 355KB - Virtual size: 355KB

.data Size: 30KB - Virtual size: 397KB

.rsrc Size: 1014KB - Virtual size: 1014KB

.reloc Size: 171KB - Virtual size: 171KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 355KB - Virtual size: 355KB

.data
Size: 30KB - Virtual size: 397KB

.rsrc
Size: 1014KB - Virtual size: 1014KB

.reloc
Size: 171KB - Virtual size: 171KB