df2a3c461729157bafb09334c73d5d111201d008903ebb956da36afd0b4aecd6

Sharing

Copy URL Twitter E-mail

General

Target

df2a3c461729157bafb09334c73d5d111201d008903ebb956da36afd0b4aecd6
Size

2.1MB
MD5

2333b4f534801f6d415970a68212521a
SHA1

f353c6af70238466f0bd9a998b4492961c9b0d42
SHA256

df2a3c461729157bafb09334c73d5d111201d008903ebb956da36afd0b4aecd6
SHA512

2afb0ee8ef1e3222c88060b523170ea0df2fffe89bdf9cc1b5e00026cf2e48cdb4ad392903ffd7be526131a5584df48fd2c6f7d37edce428394b43621a7e6c68
SSDEEP

24576:93yyMgkmiQhlPDbisq+3j6oelJ45sWs0nw6RsUyBfOYd8DE5kFIg/MLccDbqa7+i:Br1HiEzfZMk2fL1MBWK6mi

Score

1^/10

Malware Config

Signatures

Files

df2a3c461729157bafb09334c73d5d111201d008903ebb956da36afd0b4aecd6
.exe windows x86

4c7db3bbfce436e316a471319b6f3cb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

ImageDirectoryEntryToData

comctl32

_TrackMouseEvent
ImageList_Destroy
ImageList_DrawIndirect
ImageList_GetBkColor
ImageList_GetIconSize
ImageList_GetImageInfo
InitCommonControlsEx
FlatSB_GetScrollProp

kernel32

GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
LocalSize
LockFile
LockResource
lstrcmpA
lstrcmpW
lstrlenA
lstrlenW
MapViewOfFile
MulDiv
MultiByteToWideChar
OpenFileMappingW
GlobalReAlloc
OpenProcess
Process32NextW
QueryPerformanceCounter
RaiseException
ReadFile
ReleaseMutex
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetHandleCount
SetLastError
SetPriorityClass
SetStdHandle
SetThreadExecutionState
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringW
InitializeCriticalSection
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetVersion
RtlUnwind
GlobalLock
GlobalHandle
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetWindowsDirectoryW
GetVolumeInformationW
GetVersionExW
GetVersionExA
GetTimeZoneInformation
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
Process32FirstW
GetSystemInfo
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoW
GetStartupInfoA
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLogicalDriveStringsW
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFileType
GetFileTime
GetFileAttributesW
GetExitCodeProcess
GetEnvironmentStringsW
GetDriveTypeW
GetDiskFreeSpaceExW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCPInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FormatMessageW
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
EnumResourceTypesW
EnumResourceNamesW
EnumResourceLanguagesW
EnterCriticalSection
DuplicateHandle
DeviceIoControl
DeleteFileW
DeleteCriticalSection
CreateThread
CreateMutexW
CreateFileW
GetSystemPowerStatus
CreateFileA
ConvertDefaultLocale
CompareStringW
CreateToolhelp32Snapshot
CompareStringA
CloseHandle
GetProcessHeap
ExitProcess
OpenMutexW

user32

InvalidateRect
InvalidateRgn
IsChild
IsDialogMessageW
IsIconic
IsRectEmpty
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
LoadBitmapW
LoadMenuW
LookupIconIdFromDirectoryEx
MapDialogRect
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuW
MoveWindow
OffsetRect
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterClassA
RegisterClassW
RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClassLongW
SetCursor
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetParent
SetPropW
SetRectEmpty
SetScrollInfo
SetScrollPos
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
ShowScrollBar
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutW
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnregisterClassW
UpdateWindow
ValidateRect
WindowFromPoint
WinHelpW
GetWindowTextLengthW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetTopWindow
IntersectRect
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetIconInfo
GetForegroundWindow
GetFocus
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassInfoW
GetClassInfoExW
GetCapture
GetActiveWindow
FillRect
ExitWindowsEx
EqualRect
EnumWindows
EndPaint
EndDialog
EnableWindow
EnableScrollBar
EnableMenuItem
DrawTextW
DrawTextExW
DrawStateW
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DestroyWindow
DestroyMenu
DestroyIcon
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefMDIChildProcA
DefFrameProcW
GetDlgCtrlID
LoadCursorW
LoadIconW
LoadImageW
DefFrameProcA
DefDlgProcW
DefDlgProcA
CreateWindowExW
CreatePopupMenu
CreateIconIndirect
CreateIconFromResourceEx
CreateDialogIndirectParamW
CopyRect
CopyIcon
CopyAcceleratorTableW
ClientToScreen
CheckMenuItem
CharUpperW
CharNextW
CallWindowProcW
CallWindowProcA
CallNextHookEx
BeginPaint
GetClassLongW
InsertMenuW
InflateRect
GrayStringW
GetWindowThreadProcessId
GetSystemMetrics
GetWindowTextW
GetDoubleClickTime

gdi32

GetBkColor
GetClipBox
GetClipRgn
GetDeviceCaps
GetDIBits
GetMapMode
GetObjectType
GetObjectW
GetPixel
GetRgnBox
GetStockObject
GetTextCharsetInfo
GetTextColor
GetTextExtentPoint32W
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
LineTo
MoveToEx
OffsetRgn
OffsetViewportOrgEx
PatBlt
Polygon
PtVisible
RectVisible
ExtTextOutW
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetStretchBltMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchBlt
StretchDIBits
CreatePalette
CreateFontW
CreateFontIndirectW
CreateDIBSection
CreateDIBitmap
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
ExtSelectClipRgn
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
RestoreDC
CreatePen
IntersectClipRect
CombineRgn

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegOpenKeyExW
RegEnumKeyW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
OpenProcessToken
LookupPrivilegeValueW
CloseServiceHandle
ChangeServiceConfigW
AdjustTokenPrivileges
RegQueryValueW

ole32

OleFlushClipboard
OleInitialize
OleIsCurrentClipboard
OleUninitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
CoGetClassObject
CoFreeUnusedLibraries
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject

shlwapi

PathFindExtensionW
PathIsUNCW
PathRemoveFileSpecW
PathStripToRootW
PathFindFileNameW

Sections

.text
Size: 292KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 836KB - Virtual size: 832KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.m0212
Size: 999KB - Virtual size: 1000KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4c7db3bbfce436e316a471319b6f3cb1

Headers

File Characteristics

Imports

imagehlp

comctl32

kernel32

user32

gdi32

winspool.drv

advapi32

ole32

shlwapi

Sections

.text Size: 292KB - Virtual size: 288KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 12.1MB

.data1 Size: 4KB - Virtual size: 522B

.rsrc Size: 836KB - Virtual size: 832KB

.m0212 Size: 999KB - Virtual size: 1000KB

.text
Size: 292KB - Virtual size: 288KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 12.1MB

.data1
Size: 4KB - Virtual size: 522B

.rsrc
Size: 836KB - Virtual size: 832KB

.m0212
Size: 999KB - Virtual size: 1000KB