b0e6fffaadcf0cb1838663e92b24ccf99576cf892f039790eda56726e4728649

Sharing

Copy URL

Twitter E-mail

General

Target

b0e6fffaadcf0cb1838663e92b24ccf99576cf892f039790eda56726e4728649
Size

3.1MB
MD5

e09364dce939c334e335f59fd0c60172
SHA1

7943222ffb8052fefaad67a4d530aabb5bdac4e9
SHA256

b0e6fffaadcf0cb1838663e92b24ccf99576cf892f039790eda56726e4728649
SHA512

dea89432c5243f4f46091a7b5b2b48fbf6aff01962e79a802233f1cd97d092af74f1fa23b7fcc67a0cb4af0c129e9e687e9851550e52ed1ff42e520a5e358131
SSDEEP

49152:POXEIlvI+tVMuRIWDvo0aFUxNgO3K2QtMzMD48hfoNtUFhZ6HBdAETEijNJgc:2jzfcFM3K2QtMQc8hQIFOHBgij

Score

1^/10

Malware Config

Signatures

Files

b0e6fffaadcf0cb1838663e92b24ccf99576cf892f039790eda56726e4728649
.exe windows x86

fb1c7bac2e408821bc7cb35474c16789

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathW
DeleteFileA
LockResource
SetEnvironmentVariableA
GetProcessHeap
LoadResource
FindResourceW
GetModuleFileNameW
CreateDirectoryW
CopyFileW
GetPrivateProfileStringW
WritePrivateProfileStringW
MultiByteToWideChar
SetLastError
GetLastError
LoadLibraryW
GetModuleHandleW
GetProcAddress
GetTempPathW
lstrlenW
WideCharToMultiByte
lstrlenA
WriteConsoleW
MulDiv
lstrcpynW
InterlockedDecrement
InterlockedIncrement
GetSystemDefaultLangID
GetLocaleInfoW
GetACP
FreeLibrary
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GlobalFree
GetTickCount
CloseHandle
WaitForSingleObject
ResumeThread
ExitProcess
GetThreadLocale
GetVersionExA
lstrcmpW
LoadLibraryA
CompareStringW
GetVersionExW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
CreateFileA
GetFileAttributesA
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetCPInfo
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
GetFileType
SetStdHandle
CreateThread
ExitThread
GetFullPathNameA
GetDriveTypeA
HeapReAlloc
HeapAlloc
HeapFree
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
FindResourceExW
VirtualProtect
Sleep
GetProfileIntW
GetCurrentThreadId
GetTempFileNameW
SetErrorMode
lstrcpyW
GetCurrentDirectoryW
GetPrivateProfileIntW
GlobalGetAtomNameW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFileTime
GetFileSizeEx
GetFileAttributesW
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
FindFirstFileW
FindNextFileW
FindClose
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
CompareStringA
InterlockedExchange
lstrcmpA
GetCurrentProcessId
GetModuleHandleA
FormatMessageW
LocalFree
FreeResource
SizeofResource

user32

UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFocusRect
DrawEdge
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
GetNextDlgGroupItem
EmptyClipboard
CloseClipboard
SetClipboardData
DestroyIcon
CopyImage
OpenClipboard
DrawStateW
RegisterClipboardFormatW
EnumChildWindows
IsMenu
SetClassLongW
SetParent
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
CreateAcceleratorTableW
LoadAcceleratorsW
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
PostThreadMessageW
DeleteMenu
WaitMessage
UnregisterClassW
GetSysColorBrush
InvalidateRgn
CopyAcceleratorTableW
CharUpperW
DestroyMenu
GetMenuItemInfoW
ShowOwnedPopups
GetMessageW
TranslateMessage
ValidateRect
SetRectEmpty
SetWindowContextHelpId
MapDialogRect
IsZoomed
PostQuitMessage
MapVirtualKeyW
GetKeyNameTextW
WindowFromPoint
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
GetMenuStringW
InsertMenuW
LoadMenuW
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
SetMenuDefaultItem
GetMenuCheckMarkDimensions
ModifyMenuW
GetMenuState
EnableMenuItem
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
GetScrollPos
IsWindowVisible
GetMenuItemID
GetMenuItemCount
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
EnableWindow
SendMessageW
CopyRect
GetWindowRect
InflateRect
GetScrollInfo
SetScrollInfo
SetWindowPlacement
CallWindowProcW
GetMenu
SetWindowLongW
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetDlgItem
OffsetRect
GetWindow
CharNextW
GetIconInfo
SetForegroundWindow
GetMenuDefaultItem
IsCharLowerW
MapVirtualKeyExW
IsClipboardFormatAvailable
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
GetUpdateRect
CharUpperBuffW
SubtractRect
ShowScrollBar
ClientToScreen
SetRect
SetScrollPos
SetCapture
ReleaseCapture
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindowLongW
SystemParametersInfoW
GetDoubleClickTime
CreateMenu
GetWindowRgn
DestroyCursor
SetMenuItemBitmaps
GetParent
InvalidateRect
GetClientRect
DrawFrameControl
GetCursorPos
ScreenToClient
PtInRect
FillRect
GetSystemMetrics
LoadBitmapW
SetTimer
LoadImageW
KillTimer
LoadIconW
GetSystemMenu
AppendMenuW
RemoveMenu
GetSubMenu
GetDC
ReleaseDC
SetWindowPos
IsIconic
DrawIcon
GetDlgCtrlID
RedrawWindow
CheckMenuItem
GetKeyState
GetFocus
MessageBoxW
MessageBeep
CopyIcon
LoadCursorW
SetCursor
IsRectEmpty
GetSysColor
FrameRect
BringWindowToTop
UpdateWindow
LockWindowUpdate
IsWindow
RegisterWindowMessageW
PostMessageW
GetDesktopWindow
DefWindowProcW
GetClassInfoW

gdi32

DeleteDC
CreateDIBSection
GetDIBits
RealizePalette
RestoreDC
StretchDIBits
SetStretchBltMode
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
SaveDC
SetBkColor
CreateBitmap
SetBkMode
SetTextColor
CombineRgn
SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
PlayEnhMetaFile
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
GetTextColor
GetDCOrgEx
CopyMetaFileW
SetPolyFillMode
SetROP2
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
GetObjectType
CreateHatchBrush
GetCharWidthW
SetRectRgn
DPtoLP
GetRgnBox
OffsetRgn
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
SetDIBColorTable
SetPixel
CreateEllipticRgn
CreatePolygonRgn
Polyline
Ellipse
Polygon
GetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
DeleteObject
PatBlt
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetBkColor
GetTextExtentPoint32W
GetTextMetricsW
GetCurrentObject
CreateRectRgn
CreateFontIndirectW
GetDeviceCaps
GetObjectW
StretchBlt
RoundRect
BitBlt
ExtCreatePen
SelectObject
Rectangle
CreatePen
CreateSolidBrush
CreateCompatibleBitmap
GetMapMode
CreateCompatibleDC
CreateFontW
OffsetWindowOrgEx
GetStockObject

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW

shell32

DragQueryFileW
ShellExecuteW
SHGetFileInfoW
SHAppBarMessage
SHGetPathFromIDListW
SHGetSpecialFolderPathW
DragFinish
SHBrowseForFolderW

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathFileExistsW

oledlg

OleUIBusyW

ole32

CoTaskMemFree
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoUninitialize
CoCreateInstance
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleLockRunning
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleGetClipboard
CoRevokeClassObject
CoRegisterMessageFilter
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor

oleaut32

SafeArrayDestroy
SafeArrayCreate
SafeArrayPutElement
SysFreeString
SysStringLen
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
OleCreateFontIndirect
VariantClear
VariantChangeType
VariantInit
VariantCopy

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCreateHBITMAPFromBitmap
GdipGetImageThumbnail
GdipCreateBitmapFromFile
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdiplusStartup
GdipLoadImageFromFile
GdipFree
GdipAlloc
GdipCloneImage

ws2_32

ntohl
htonl
ntohs
htons

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 547KB - Virtual size: 546KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb1c7bac2e408821bc7cb35474c16789

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

ws2_32

imm32

winmm

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 547KB - Virtual size: 546KB

.data Size: 37KB - Virtual size: 107KB

.rsrc Size: 146KB - Virtual size: 145KB

.reloc Size: 182KB - Virtual size: 182KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 547KB - Virtual size: 546KB

.data
Size: 37KB - Virtual size: 107KB

.rsrc
Size: 146KB - Virtual size: 145KB

.reloc
Size: 182KB - Virtual size: 182KB