d01a44ca657a01f7a254e94af7f1212be1882b0302ef168968066cbe515d6b99

Sharing

Copy URL

Twitter E-mail

General

Target

d01a44ca657a01f7a254e94af7f1212be1882b0302ef168968066cbe515d6b99
Size

5.4MB
MD5

0bc0291f558d7ea30af9ecd2b314baed
SHA1

ba74563f93d689d7b4611f080c253d3a79411f17
SHA256

d01a44ca657a01f7a254e94af7f1212be1882b0302ef168968066cbe515d6b99
SHA512

1320347da594687579d6a280fe307ab44df392d55b9bfe13d04a785c4f1e954e6c6da89a497cc806382858fa04b798e4c1cf20c94c5aa7d26d6d6ec7380d6824
SSDEEP

98304:3ZgNpzcRp6zdBHR5toZdvxhOfE4weQkZXlU6q1e1dyAa5clJOgkesW1BKaJplE:3RWftsAc4ykZXlU6CAyA6PesWfKaJp

Score

1^/10

Malware Config

Signatures

Files

d01a44ca657a01f7a254e94af7f1212be1882b0302ef168968066cbe515d6b99
.exe windows x86

d33d57e2673b4ab7f39ba8378b692c46

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
gethostbyname
inet_addr

winhttp

WinHttpSetStatusCallback
WinHttpSendRequest
WinHttpCloseHandle
WinHttpConnect
WinHttpCrackUrl
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSetOption
WinHttpOpen
WinHttpOpenRequest

kernel32

RtlUnwind
RaiseException
HeapReAlloc
SetStdHandle
GetFileType
ExitThread
HeapQueryInformation
HeapSize
VirtualAlloc
VirtualQuery
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
DeleteFileA
GetFileInformationByHandle
PeekNamedPipe
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
GetConsoleCP
MoveFileA
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetTimeZoneInformation
GetDriveTypeA
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
GetFullPathNameA
GetSystemTimeAsFileTime
MultiByteToWideChar
WideCharToMultiByte
CreateFileA
WriteFile
CloseHandle
GetLastError
SizeofResource
LoadResource
LockResource
FindResourceW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetTickCount
LoadLibraryW
GetProcAddress
FreeLibrary
GetNativeSystemInfo
GetCurrentDirectoryW
OpenProcess
TerminateProcess
lstrcmpiW
DecodePointer
EncodePointer
GetConsoleMode
FindFirstFileExA
DosDateTimeToFileTime
GetLocalTime
GetFileAttributesA
GetStartupInfoW
HeapSetInformation
FindResourceExW
GetUserDefaultLCID
VirtualProtect
SearchPathW
GetProfileIntW
GetTempFileNameW
GetNumberFormatW
GetWindowsDirectoryW
GetUserDefaultUILanguage
GetLocaleInfoW
InterlockedExchange
GlobalFindAtomW
GlobalDeleteAtom
GlobalAddAtomW
GlobalFlags
lstrcmpW
GetCurrentThreadId
SetThreadPriority
lstrcmpA
GlobalGetAtomNameW
CompareStringW
InterlockedIncrement
lstrlenW
lstrcpyW
DeleteFileW
TlsFree
LocalReAlloc
ExitProcess
GetPrivateProfileStringW
GetFileAttributesW
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
MoveFileW
GetFileTime
GetFileSizeEx
SetFileTime
SystemTimeToFileTime
GetFileAttributesExW
InterlockedDecrement
ReleaseActCtx
FindFirstFileW
FindClose
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
FormatMessageW
LocalFree
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
ActivateActCtx
DeactivateActCtx
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
GetSystemInfo
GlobalFree
GlobalAlloc
HeapFree
CreateDirectoryW
GetProcessHeap
HeapAlloc
lstrlenA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
OpenFileMappingW
CopyFileW
SetFileAttributesW
GetStdHandle
GetCommandLineW
FreeResource
GetPrivateProfileStringA
GetPrivateProfileIntW
GetTempPathW
MoveFileExW
CreateFileW
Sleep
ResumeThread
CreateProcessW
CreateMutexW
GetPrivateProfileIntA
GetCurrentProcessId
WritePrivateProfileStringW
GetCurrentDirectoryA
WinExec
CreateThread
GetModuleFileNameW
VirtualFreeEx
WriteProcessMemory
VirtualAllocEx
WaitForSingleObject
CreateRemoteThread
GetModuleHandleW
GetVersionExW
GetCurrentProcess
LCMapStringW

user32

IsMenu
MonitorFromPoint
UpdateLayeredWindow
UnionRect
MapVirtualKeyExW
IsCharLowerW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
GetKeyNameTextW
LockWindowUpdate
BringWindowToTop
SetCursorPos
SetRect
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyAcceleratorTableW
DrawFrameControl
DrawEdge
DrawStateW
LoadMenuW
SetClassLongW
WindowFromPoint
DestroyAcceleratorTable
SetParent
IsZoomed
DrawIconEx
GetNextDlgGroupItem
LoadImageW
CopyImage
GetIconInfo
OffsetRect
MessageBeep
NotifyWinEvent
EnableScrollBar
HideCaret
DrawFocusRect
InvertRect
ReleaseCapture
GetAsyncKeyState
SetCapture
MapVirtualKeyW
IsRectEmpty
CreatePopupMenu
GetMenuDefaultItem
RedrawWindow
KillTimer
SetTimer
InvalidateRect
DeleteMenu
ShowOwnedPopups
SetCursor
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
CreateDialogIndirectParamW
GetNextDlgTabItem
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
IntersectRect
InflateRect
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageA
WinHelpW
IsChild
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
UpdateWindow
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
TranslateAcceleratorW
GetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
MoveWindow
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
CheckDlgButton
GetScrollPos
SetScrollPos
SetFocus
DestroyIcon
GetFocus
RealChildWindowFromPoint
ClientToScreen
GetWindow
GetDlgCtrlID
GetClassNameW
PtInRect
SetWindowTextW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
PeekMessageW
InsertMenuItemW
ReuseDDElParam
UnpackDDElParam
PostThreadMessageW
WaitMessage
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
CreateMenu
SetMenuDefaultItem
GetCursorPos
ValidateRect
GetWindowTextLengthW
GetWindowTextW
LoadCursorW
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetWindowRgn
DestroyCursor
DrawIcon
MapDialogRect
SubtractRect
GetDoubleClickTime
CharUpperBuffW
SendMessageW
GetLastActivePopup
IsWindowEnabled
EnableWindow
CharUpperW
GetSystemMetrics
SetCaretPos
ShowCaret
CreateCaret
CharPrevW
CharNextW
wvsprintfW
InvalidateRgn
RegisterClassExW
UnhookWindowsHookEx
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
GetDesktopWindow
wsprintfW
EndDialog
CopyIcon
IsClipboardFormatAvailable
DialogBoxParamW
SetWindowRgn
GetWindowRect
GetClientRect
ScreenToClient
IsIconic
SetWindowLongW
GetWindowLongW
IsWindow
FindWindowA
ShowWindow
PostQuitMessage
SetWindowPos
AppendMenuW
GetSystemMenu
MessageBoxW
EnumWindows
GetWindowThreadProcessId
GetClassNameA
IsWindowVisible
GetParent
GetUpdateRect
FrameRect
SetWindowPlacement
GetCapture
RegisterClipboardFormatW

gdi32

GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateBitmap
CreateCompatibleDC
GetStockObject
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateFontIndirectW
CreateRectRgnIndirect
SetRectRgn
CombineRgn
PatBlt
DPtoLP
GetTextExtentPoint32W
CreateDIBitmap
CreateCompatibleBitmap
GetTextMetricsW
CreateRectRgn
GetObjectW
GetBkColor
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreateDIBSection
CreatePolygonRgn
GetTextColor
CreateEllipticRgn
Polyline
Ellipse
Polygon
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
OffsetRgn
GetRgnBox
EnumFontFamiliesExW
RoundRect
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
SetPixelV
GetTextFaceW
GetTextCharsetInfo
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateDCW
CopyMetaFileW
GetDeviceCaps
DeleteObject
EnumFontFamiliesW
GetCharABCWidthsW
CreatePenIndirect
GetObjectA
CreateRoundRectRgn

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

MD5Init
MD5Update
MD5Final
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW

shell32

ShellExecuteW
ShellExecuteExA
SHGetFileInfoW
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
DragFinish
SHAppBarMessage
DragQueryFileW

comctl32

_TrackMouseEvent
ImageList_GetIconSize
ord17

shlwapi

PathIsDirectoryW
UrlUnescapeW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW
PathRemoveFileSpecW

gdiplus

GdipCloneBrush
GdipSetTextRenderingHint
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipCreateLineBrushI
GdipDeleteFont
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeleteBrush
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipDrawString

winmm

PlaySoundW

wininet

InternetQueryDataAvailable
InternetQueryOptionW
InternetCanonicalizeUrlW
InternetCrackUrlW
InternetCloseHandle
InternetReadFile
HttpQueryInfoW
InternetOpenUrlW
InternetOpenW
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetGetLastResponseInfoW

oleaut32

SystemTimeToVariantTime
SysStringLen
VariantTimeToSystemTime
VariantChangeType
VariantClear
VarBstrFromDate
VariantInit
SysAllocString
SysFreeString
SysAllocStringLen

ole32

OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CLSIDFromProgID
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitialize
DoDragDrop
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateStreamOnHGlobal
CoInitializeEx
CLSIDFromString
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium

shell

?FourierTransformationStart@@YAXXZ
?FourierTransformationEnd@@YAXXZ

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 339KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.0MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d33d57e2673b4ab7f39ba8378b692c46

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

winhttp

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

gdiplus

winmm

wininet

oleaut32

ole32

shell

oleacc

imm32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 339KB - Virtual size: 339KB

.data Size: 3.0MB - Virtual size: 3.1MB

.rsrc Size: 480KB - Virtual size: 479KB

.reloc Size: 191KB - Virtual size: 191KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 339KB - Virtual size: 339KB

.data
Size: 3.0MB - Virtual size: 3.1MB

.rsrc
Size: 480KB - Virtual size: 479KB

.reloc
Size: 191KB - Virtual size: 191KB