7c9f70b3e16faa4257fe634f94f0498253a97fa2ac4ab5b65f1c7877d8a78309

Sharing

Copy URL Twitter E-mail

General

Target

7c9f70b3e16faa4257fe634f94f0498253a97fa2ac4ab5b65f1c7877d8a78309
Size

1.5MB
MD5

faa3aec1544f1204c3cb8bf603cde1ea
SHA1

46c1d6ebcf4ea3334c41a9f23d0b0b506a77adca
SHA256

7c9f70b3e16faa4257fe634f94f0498253a97fa2ac4ab5b65f1c7877d8a78309
SHA512

452274049654de720f6eadf46863bb872737b534e75f523bbf9f20fb7e85d731882da7c73a868b96c0f865d9e31c34829b2ea2ec431416211914c006c67ec588
SSDEEP

24576:/I41VEjLC6hwsD5daAUPkGN2MAlN5CbVcsx+1UuJc58ZH:/NVES6hws+2MAlN5CbVLOdJr

Score

1^/10

Malware Config

Signatures

Files

7c9f70b3e16faa4257fe634f94f0498253a97fa2ac4ab5b65f1c7877d8a78309
.exe windows x64

0f67977960dd87f990171a1775ca6857

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetStartupInfoA
FlsGetValue
FlsSetValue
FlsFree
FlsAlloc
HeapSetInformation
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
GetCPInfo
GetACP
GetOEMCP
Sleep
GetFileType
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapSize
RtlPcToFileHeader
RaiseException
HeapReAlloc
RtlUnwindEx
RtlLookupFunctionEntry
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
GetTickCount
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentDirectoryW
TlsFree
LocalReAlloc
TlsSetValue
GlobalHandle
GlobalReAlloc
TlsAlloc
TlsGetValue
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFlags
GetVersionExW
GetProfileIntW
GetShortPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
DeleteFileW
MoveFileW
lstrlenA
FormatMessageW
LocalFree
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
GetFileAttributesW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetModuleFileNameW
lstrcmpA
GetLocaleInfoW
CompareStringA
GetVersion
GetCurrentProcessId
GlobalGetAtomNameW
WideCharToMultiByte
MulDiv
GetModuleHandleA
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
FreeLibrary
CompareStringW
GetLastError
SetLastError
lstrcmpW
GetVersionExA
lstrlenW
GetModuleHandleW
LoadLibraryW
FreeResource
FindResourceW
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
GlobalAlloc
GlobalLock
CreateFileW
WriteFile
GlobalUnlock
GlobalFree
CloseHandle
ExitProcess
LoadLibraryA
GetProcAddress

user32

UnregisterClassW
CreateMenu
PostThreadMessageW
GetTabbedTextExtentA
RegisterClipboardFormatW
SetParent
GetSystemMenu
DeleteMenu
IsZoomed
DestroyCursor
GetMenuItemInfoW
GetDCEx
SetWindowRgn
DrawIcon
IsRectEmpty
FindWindowW
SystemParametersInfoW
CharUpperW
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
PostQuitMessage
UnpackDDElParam
ReuseDDElParam
DestroyMenu
GetWindowThreadProcessId
SetCursor
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
BringWindowToTop
SetMenu
TranslateAcceleratorW
InflateRect
GetDesktopWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetMessageW
TranslateMessage
GetActiveWindow
ValidateRect
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
WindowFromPoint
KillTimer
MessageBeep
SendDlgItemMessageA
SendDlgItemMessageW
WinHelpW
IsChild
CallNextHookEx
GetClassNameW
GetClassLongPtrW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetWindowLongPtrW
SetWindowLongPtrW
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
GetMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
IsWindow
GetSysColor
GetWindowRect
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
DestroyIcon
LockWindowUpdate
RegisterWindowMessageW
GetSysColorBrush
SetRectEmpty
SetWindowLongW
LoadIconW
SetTimer
IsWindowVisible
SendMessageW
GetParent
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetKeyState
ReleaseCapture
SetCapture
GetCapture
ClientToScreen
LoadMenuW
GetSubMenu
FillRect
PostMessageW
GetCursorPos
LoadCursorW
ReleaseDC
GetDC
ScreenToClient
SetRect
GetSystemMetrics
SetWindowPos
UpdateWindow
EnableWindow
InvalidateRect
GetClientRect
PtInRect
SetWindowsHookExW
UnregisterClassA

gdi32

TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
CreateSolidBrush
CreateFontIndirectW
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
RectVisible
CreateEllipticRgn
LPtoDP
UnrealizeObject
GetTextExtentPoint32W
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetViewportOrgEx
GetTextMetricsW
GetTextColor
GetRgnBox
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceW
GetTextExtentPoint32A
GetWindowOrgEx
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
PtVisible
StartDocW
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
Rectangle
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetBkColor
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
StretchDIBits
CreateFontW
SelectObject
GetCharWidthW
DeleteObject
Ellipse
CreateDCW
GetDeviceCaps
DeleteDC
GetObjectW
SelectPalette
RealizePalette
GetDIBits
CreateCompatibleDC
CreateCompatibleBitmap
CreatePen
GetStockObject
DPtoLP

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
GetJobW
ClosePrinter

advapi32

RegSetValueW
GetFileSecurityW
SetFileSecurityW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegCreateKeyW

shell32

DragFinish
DragQueryFileW
SHGetFileInfoW
ExtractIconW
DragAcceptFiles

shlwapi

PathRemoveExtensionW
PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
OleInitialize

oleaut32

VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
SysStringLen
SysFreeString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen

Sections

.text
Size: 468KB - Virtual size: 468KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 818KB - Virtual size: 842KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f67977960dd87f990171a1775ca6857

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 468KB - Virtual size: 468KB

.rdata Size: 188KB - Virtual size: 187KB

.data Size: 818KB - Virtual size: 842KB

.pdata Size: 37KB - Virtual size: 37KB

.rsrc Size: 46KB - Virtual size: 46KB

.text
Size: 468KB - Virtual size: 468KB

.rdata
Size: 188KB - Virtual size: 187KB

.data
Size: 818KB - Virtual size: 842KB

.pdata
Size: 37KB - Virtual size: 37KB

.rsrc
Size: 46KB - Virtual size: 46KB