4c44bdd838ae1dd9b5a0e1bea1ab19b5af21db57c9cee2fa9b940db255a81419

Sharing

Copy URL Twitter E-mail

General

Target

4c44bdd838ae1dd9b5a0e1bea1ab19b5af21db57c9cee2fa9b940db255a81419
Size

3.4MB
MD5

7bb028ae9204a911abfc49bdf71383f1
SHA1

27449b93e683a02f6d9012051619f48af97ebda2
SHA256

4c44bdd838ae1dd9b5a0e1bea1ab19b5af21db57c9cee2fa9b940db255a81419
SHA512

174a7e13d5b059143084cdfcab89748830ad87389b093a1ecb4291a068483dafda063a743aba0d6b7288182e099b5f21f2ab44888bb297e95a11e7089eabb2ee
SSDEEP

98304:B8s3+lLfP/eEe+lkaFNKPq2Yd1XCM2bFLOAkGkzdnEVomFHKnP1:SePMLXCM2bFLOyomFHKnP1

Score

1^/10

Malware Config

Signatures

Files

4c44bdd838ae1dd9b5a0e1bea1ab19b5af21db57c9cee2fa9b940db255a81419
.exe windows x86

8c0159799cebdbe6e8318a43d60da81a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
GetStdHandle
GetFileType
QueryPerformanceFrequency
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
GetStringTypeW
LCMapStringW
OutputDebugStringW
FindFirstFileExA
FindNextFileA
CreateFileW
WriteConsoleW
SetStdHandle
GlobalFindAtomA
GetModuleFileNameA
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
HeapAlloc
GetProcessHeap
HeapFree
CreateEventA
WaitForSingleObject
CreateThread
ResetEvent
CloseHandle
SetEvent
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetPrivateProfileIntA
GetPrivateProfileStringA
Sleep
GetLastError
ExitProcess
WritePrivateProfileStringA
InitializeCriticalSectionEx
HeapSize
HeapReAlloc
RaiseException
DecodePointer
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
OutputDebugStringA
SetLastError
FreeResource
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GlobalLock
GlobalUnlock
GlobalFree
LoadLibraryW
FindResourceA
GetCurrentProcessId
GlobalAlloc
GlobalSize
LocalFree
MulDiv
FormatMessageA
CopyFileA
MultiByteToWideChar
GetCurrentThreadId
EncodePointer
GetSystemDirectoryW
FreeLibrary
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
GlobalAddAtomA
GetCurrentDirectoryA
GlobalGetAtomNameA
CompareStringA
GetVersionExA
GetCurrentThread
lstrcmpA
SetThreadPriority
ResumeThread
VerSetConditionMask
lstrcpyA
VerifyVersionInfoA
GetACP
GlobalFlags
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
FileTimeToSystemTime
GetThreadLocale
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetOEMCP
GetCPInfo
DeleteFileA
CreateFileA
GetFileAttributesA
GetFileSize
FindClose
FindFirstFileA
FlushFileBuffers
GetFullPathNameA
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiA
GetVolumeInformationA
GetTempPathA
GetTempFileNameA
GetWindowsDirectoryA
SearchPathA
GetTickCount
GetProfileIntA
FindResourceExW
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
GetUserDefaultLCID
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead

user32

CopyImage
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
WindowFromPoint
MessageBeep
DeleteMenu
LoadMenuW
KillTimer
ReleaseCapture
SetCapture
GetAsyncKeyState
CharUpperA
IsZoomed
TrackMouseEvent
IntersectRect
RealChildWindowFromPoint
EnumDisplayMonitors
LoadCursorW
LoadCursorA
SetLayeredWindowAttributes
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
SetCursor
ShowOwnedPopups
TranslateMessage
GetMessageA
DrawIconEx
IsRectEmpty
InflateRect
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
MapVirtualKeyA
GetKeyNameTextA
OffsetRect
SetRectEmpty
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
DestroyIcon
CheckMenuItem
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
GetWindow
GetTopWindow
GetClassLongA
SetWindowLongA
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
SetClassLongA
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
IsWindowVisible
GetUpdateRect
GetKeyboardLayout
GetKeyboardState
DrawIcon
PostMessageA
UnregisterClassA
DrawStateA
UpdateWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
LoadImageW
WaitMessage
CharNextA
CopyAcceleratorTableA
InvalidateRgn
SetRect
GetNextDlgGroupItem
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
LoadImageA
SetCursorPos
PeekMessageA
DispatchMessageA
BringWindowToTop
LockWindowUpdate
GetDoubleClickTime
GetIconInfo
CopyIcon
ModifyMenuA
EnableMenuItem
DestroyAcceleratorTable
InvalidateRect
FillRect
GetClassNameA
LoadBitmapW
IsWindow
DestroyWindow
GetSystemMetrics
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongA
GetDesktopWindow
GetParent
MessageBoxA
GetWindowThreadProcessId
GetLastActivePopup
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
RemoveMenu
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
GetSysColor
GetFocus
GetWindowRect
GetCursorPos
PtInRect
ToAsciiEx
LoadAcceleratorsW
EnableWindow
SendMessageA
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
RegisterWindowMessageA
SetTimer
LoadIconW
GetSystemMenu
AppendMenuA
GetClientRect
GetDC
ReleaseDC
IsIconic
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
MapVirtualKeyExA
IsCharLowerA
IsClipboardFormatAvailable
SubtractRect
InvertRect
HideCaret
PostThreadMessageA
FrameRect
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
CharUpperBuffA
RegisterClipboardFormatA
ShowScrollBar
CreateAcceleratorTableA

gdi32

GetTextFaceA
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
EnumFontFamiliesExA
GetPaletteEntries
CreatePalette
RoundRect
OffsetRgn
Rectangle
SetDIBColorTable
StretchBlt
SetPixel
RealizePalette
GetRgnBox
CreateDIBSection
CreateRoundRectRgn
DPtoLP
SetRectRgn
GetMapMode
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
CreateCompatibleBitmap
CreateFontIndirectA
GetTextMetricsA
Polyline
Polygon
CreatePolygonRgn
GetTextExtentPoint32A
GetTextColor
GetBkColor
Ellipse
CreateEllipticRgn
CombineRgn
PatBlt
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
CreateBitmap
BitBlt
GetDeviceCaps
CreateDCA
CopyMetaFileA
GetObjectA
GetStockObject
DeleteObject
CreateSolidBrush
DeleteDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

SystemFunction036
RegOpenKeyExA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey

shell32

DragQueryFileA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetDesktopFolder
SHAppBarMessage
DragFinish
SHGetMalloc
ShellExecuteA
SHGetFileInfoA

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

DrawThemeParentBackground
GetThemeSysColor
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeText
GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent

ole32

RevokeDragDrop
CoLockObjectExternal
OleGetClipboard
OleInitialize
CoFreeUnusedLibraries
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoRevokeClassObject
CoRegisterMessageFilter
RegisterDragDrop
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitialize
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoCreateInstance
CoInitializeEx
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
OleUninitialize

oleaut32

LoadTypeLi
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysStringLen
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
VariantChangeType
VariantClear
SysAllocStringLen
VariantInit
SysAllocStringByteLen
SysFreeString

oledlg

ord8

gdiplus

GdipSetInterpolationMode
GdipDrawImageRectI
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateFromHDC
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP

iphlpapi

GetAdaptersAddresses
GetAdaptersInfo

ws2_32

inet_addr
listen
bind
htons
socket
ntohs
setsockopt
closesocket
accept
WSACleanup
inet_ntoa
gethostbyname
gethostname
WSAStartup
recv
send

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 343KB - Virtual size: 342KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c0159799cebdbe6e8318a43d60da81a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

iphlpapi

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 343KB - Virtual size: 342KB

.data Size: 24KB - Virtual size: 49KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 128KB - Virtual size: 128KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 343KB - Virtual size: 342KB

.data
Size: 24KB - Virtual size: 49KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 128KB - Virtual size: 128KB