3f0da7b95b6b2b9519a4454f49633d96590e7870284757f05b93bb88052eb649

Sharing

Copy URL Twitter E-mail

General

Target

3f0da7b95b6b2b9519a4454f49633d96590e7870284757f05b93bb88052eb649
Size

3.4MB
MD5

9f3a5df12eb35204a900619a206f8607
SHA1

b4521f0aa56966749428b417c5395cd47503bd73
SHA256

3f0da7b95b6b2b9519a4454f49633d96590e7870284757f05b93bb88052eb649
SHA512

b111bc0efb783002d8057ae9e1d56335072d8f729743908f551195593831c27b610293c8f7368c470ce16ecb41744f664a2b33b9830d71f435671c93acc7e014
SSDEEP

98304:R+p9n306MHM2+YaGGCkPBs9gFLOAkGkzdnEVomFHKnP:RwyvkPBs9gFLOyomFHKnP

Score

1^/10

Malware Config

Signatures

Files

3f0da7b95b6b2b9519a4454f49633d96590e7870284757f05b93bb88052eb649
.exe windows x86

84e52fdd3fb247ac6930e01870d19716

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
CreateThread
GetCommandLineW
GetCommandLineA
VirtualQuery
GetSystemInfo
GetModuleHandleExW
RtlUnwind
VirtualFree
FindNextFileW
GetFileInformationByHandle
GetStdHandle
OutputDebugStringW
GetTimeZoneInformation
GetConsoleOutputCP
ExitProcess
SetFilePointerEx
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetConsoleMode
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
GetTempFileNameW
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTempPathW
GetTickCount
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
lstrcmpiW
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
FileTimeToSystemTime
GlobalGetAtomNameW
GetFileAttributesW
CreateFileW
VerifyVersionInfoW
VerSetConditionMask
GetThreadLocale
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
GlobalReAlloc
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GlobalAddAtomW
ResumeThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
GetCurrentProcessId
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
LoadLibraryA
lstrcpyW
WideCharToMultiByte
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
SetLastError
OutputDebugStringA
GlobalFree
GlobalUnlock
GlobalLock
SizeofResource
GlobalAlloc
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
VirtualAlloc
Sleep
GetCurrentProcess
GetModuleHandleA
GetProcAddress
VirtualProtect
ReadFile
GetFileSize
MultiByteToWideChar
CloseHandle
CreateProcessW
GetModuleFileNameW
FindResourceW
LoadResource
LockResource

user32

SetScrollInfo
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
EqualRect
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
SetCursor
ShowOwnedPopups
ValidateRect
GetKeyState
PeekMessageW
GetScrollInfo
TranslateMessage
GetMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
CallNextHookEx
UnhookWindowsHookEx
UpdateLayeredWindow
LoadAcceleratorsW
TranslateAcceleratorW
LoadIconW
GetSystemMenu
AppendMenuW
SendMessageW
GetClientRect
InsertMenuItemW
GetCursorPos
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
RemoveMenu
InsertMenuW
GetMenuItemCount
MoveWindow
CheckDlgButton
SetWindowTextW
IsDialogMessageW
WinHelpW
GetMenuItemID
GetSubMenu
MonitorFromWindow
GetMonitorInfoW
SendDlgItemMessageA
SetRectEmpty
DestroyMenu
GetMenuItemInfoW
SystemParametersInfoW
DispatchMessageW
IsIconic
GetSystemMetrics
DrawIcon
PostQuitMessage
EnableWindow
CopyRect
OffsetRect
InflateRect
DrawFocusRect
FillRect
GetWindowLongW
InvalidateRect
GetSysColor
GetWindowRect
UnregisterClassW
SetRect
PtInRect
GetCapture
SetCapture
ScreenToClient
GetParent
ReleaseCapture
PostMessageW
SetWindowPos
SetWindowContextHelpId
FrameRect
GetWindow
MapDialogRect
RegisterWindowMessageW
DrawEdge
DrawFrameControl
IsWindowVisible
GetFocus
DrawStateW
SetWindowRgn
RedrawWindow
MapWindowPoints
GetSysColorBrush
IsRectEmpty
DrawIconEx
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
LoadMenuW
GetKeyNameTextW
MapVirtualKeyW
WaitMessage
SetActiveWindow
GetDesktopWindow
MessageBoxW
GetWindowThreadProcessId
GetLastActivePopup
GetMenuStringW
GetMenuState
WindowFromPoint
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
SubtractRect
CharUpperBuffW
GetWindowRgn
DestroyCursor
CreateMenu
InvertRect
HideCaret
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
PostThreadMessageW
IsClipboardFormatAvailable
LoadCursorW
CopyImage
DeleteMenu
RealChildWindowFromPoint
SetTimer
KillTimer
CharNextW
CopyAcceleratorTableW
InvalidateRgn
IntersectRect
GetNextDlgGroupItem
MessageBeep
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
LoadImageW
SetParent
MonitorFromPoint
TrackMouseEvent
IsZoomed
CharUpperW
GetAsyncKeyState
NotifyWinEvent
SetCursorPos
UnionRect
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
EnableScrollBar
GetDoubleClickTime
GetIconInfo
CopyIcon
GetMenuDefaultItem
SetMenuDefaultItem
ModifyMenuW
DestroyAcceleratorTable
SetClassLongW
GetUpdateRect
ShowWindow
SetWindowsHookExW

gdi32

PatBlt
ExtTextOutW
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
CopyMetaFileW
CreateDCW
GetDeviceCaps
BitBlt
CreateBitmap
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
GetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
GetRgnBox
GetMapMode
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
RealizePalette
SetPixel
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
GetBkColor
Ellipse
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
GetDIBColorTable
StretchBlt
CreateDIBSection
GetObjectW
CreateCompatibleDC
SetDIBColorTable
SelectObject
DeleteObject
DeleteDC
GetTextExtentPoint32W
CreateSolidBrush
TextOutW
CreatePatternBrush
CreatePen

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegEnumValueW
RegCloseKey
RegEnumKeyW
RegSetValueExW
RegDeleteValueW

shell32

ShellExecuteW
DragFinish
DragQueryFileW
SHGetFileInfoW
SHAppBarMessage
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetDesktopFolder

comctl32

InitCommonControlsEx

shlwapi

PathStripToRootW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathIsUNCW
StrFormatKBSizeW

uxtheme

GetThemeSysColor
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
DrawThemeText
DrawThemeParentBackground
GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoDisconnectObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
CreateStreamOnHGlobal
CoInitializeEx

oleaut32

VariantCopy
LoadTypeLi
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysAllocString
VarBstrFromDate

oledlg

OleUIBusyW

gdiplus

GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdiplusShutdown
GdiplusStartup
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipFree
GdipAlloc
GdipCloneImage
GdipCreateBitmapFromScan0
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipCreateBitmapFromStream

odbc32

ord12
ord13
ord14
ord15
ord16
ord43
ord44
ord18
ord48
ord49
ord20
ord59
ord5
ord68
ord108
ord110
ord3
ord111
ord117
ord119
ord139
ord145
ord141
ord138
ord176
ord1
ord9
ord2
ord61

crypt32

CryptUnprotectData
CryptProtectData

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 367KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84e52fdd3fb247ac6930e01870d19716

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

odbc32

crypt32

imm32

oleacc

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 367KB - Virtual size: 366KB

.data Size: 25KB - Virtual size: 43KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 145KB - Virtual size: 144KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 367KB - Virtual size: 366KB

.data
Size: 25KB - Virtual size: 43KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 145KB - Virtual size: 144KB