a245344c274060c8570fbaceb015e99c4be3ae1039c1775d2229dd65e53a6f58

Sharing

Copy URL

Twitter E-mail

General

Target

a245344c274060c8570fbaceb015e99c4be3ae1039c1775d2229dd65e53a6f58
Size

3.7MB
MD5

b3d606c9989edb88a16fe9812294f14c
SHA1

c34f352fcb19490cc720448388164bb28d7e891d
SHA256

a245344c274060c8570fbaceb015e99c4be3ae1039c1775d2229dd65e53a6f58
SHA512

207230b204955eaceb3a697a2408757f66afb93bd2a40594ddd813c5132b94558549397b73c7327e01edab63ae2bf7cfd3109dc4431f4df8423e8dd727aa6afb
SSDEEP

98304:1lVXcKGCQ+sxNWxbMffv/v/e6vR0aulYilZ7n+qDlcKCeTz9Bg:1jcxINMffv/v/VRFulYilZ7n+qDlcK/g

Score

1^/10

Malware Config

Signatures

Files

a245344c274060c8570fbaceb015e99c4be3ae1039c1775d2229dd65e53a6f58
.exe windows x86

399dd6c19a3202685045179d5c3a4ff8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetCurrentDirectoryA
GetDriveTypeA
WriteConsoleA
LCMapStringA
WriteConsoleW
SetEnvironmentVariableA
CreateFileA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
SetUnhandledExceptionFilter
HeapSize
GetFileType
SetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapReAlloc
CreateThread
ExitThread
ExitProcess
RaiseException
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
RtlUnwind
GetStartupInfoW
GetFileSizeEx
LocalFileTimeToFileTime
SetErrorMode
FindResourceExW
GetProfileIntW
GetProcessHeap
GetTimeFormatW
SearchPathW
GetDateFormatW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetDiskFreeSpaceW
GetTempFileNameW
GetFileTime
SetFileTime
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
FileTimeToLocalFileTime
CreateFileW
GetShortPathNameW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
GetStringTypeExW
MoveFileW
lstrlenA
lstrcmpA
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
InterlockedIncrement
GlobalGetAtomNameW
GetModuleHandleA
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
SuspendThread
GetCurrentThreadId
ResumeThread
SetThreadPriority
GlobalFree
CopyFileW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
ResetEvent
lstrcpynW
GetLocalTime
VirtualProtect
GetTickCount
WaitForSingleObject
OpenFileMappingW
CreateProcessW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
CreateDirectoryW
CreateEventW
CloseHandle
WinExec
InterlockedDecrement
lstrcpyW
SetEvent
FreeLibrary
SizeofResource
WritePrivateProfileStringW
GetModuleFileNameW
GetTempPathW
GetCurrentDirectoryW
ExpandEnvironmentStringsW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetLastError
SetLastError
GetModuleHandleW
GetCurrentProcessId
FindFirstFileW
GetFileAttributesW
SetFileAttributesW
RemoveDirectoryW
DeleteFileW
FindNextFileW
FindClose
lstrlenW
MultiByteToWideChar
WideCharToMultiByte
Sleep
IsDBCSLeadByte
LoadLibraryW
GetProcAddress
FindResourceW
LoadResource
LockResource
GetConsoleOutputCP

user32

SetScrollInfo
SetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
PeekMessageW
UnhookWindowsHookEx
GetWindowTextLengthW
SetWindowPos
MoveWindow
SetWindowLongW
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
CheckDlgButton
ScrollWindow
GetMenuStringW
GetScrollInfo
GetMenuItemCount
RemoveMenu
AdjustWindowRectEx
IsChild
GetForegroundWindow
RegisterClipboardFormatW
DrawIcon
SetWindowRgn
OffsetRect
GetSubMenu
LoadIconW
PostThreadMessageW
UpdateWindow
SetTimer
MapWindowPoints
WindowFromPoint
KillTimer
DrawIconEx
DestroyIcon
ReleaseCapture
SetCapture
ScreenToClient
CheckMenuItem
AppendMenuW
PtInRect
IsRectEmpty
GetMessagePos
GetMessageTime
DestroyWindow
GetTopWindow
SetActiveWindow
GetLastActivePopup
RemovePropW
GetPropW
SetPropW
GetClassLongW
EqualRect
CopyRect
FillRect
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
ShowScrollBar
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
SetMenu
GetMenuItemID
LoadMenuW
SendMessageW
PostMessageW
GetWindowRect
GetClientRect
InvalidateRect
GetFocus
GetCapture
WinHelpW
GetMenuState
SendDlgItemMessageA
GetParent
SetRectEmpty
EnableWindow
GetWindowLongW
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsWindowEnabled
SetFocus
GetWindow
IsWindow
GetKeyState
InflateRect
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
GetSystemMetrics
ChildWindowFromPointEx
ReleaseDC
GetDC
GetClassNameW
MapVirtualKeyW
UnhookWinEvent
MessageBoxW
SetWinEventHook
LoadBitmapW
GetSysColor
CreatePopupMenu
RegisterWindowMessageW
EnableMenuItem
ModifyMenuW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ClientToScreen
BeginPaint
EndPaint
GetKeyNameTextW
GetWindowThreadProcessId
TranslateAcceleratorW
GetDesktopWindow
BringWindowToTop
InsertMenuItemW
LoadAcceleratorsW
SetCursor
ReuseDDElParam
UnpackDDElParam
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
CopyAcceleratorTableW
SetRect
InvalidateRgn
CharNextW
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
CharUpperW
PostQuitMessage
ShowOwnedPopups
MapDialogRect
LockWindowUpdate
GetNextDlgGroupItem
MessageBeep
IsClipboardFormatAvailable
UnionRect
SetParent
InsertMenuW
SetMenuDefaultItem
ValidateRect
IsWindowVisible
RedrawWindow
OpenClipboard
SetForegroundWindow
ShowWindow
CloseClipboard
SetClipboardData
SetWindowContextHelpId
EmptyClipboard
PrintWindow
CreateMenu
GetClipboardData
GetDoubleClickTime
DestroyCursor
MapVirtualKeyExW
IsCharLowerW
GetWindowRgn
CharUpperBuffW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CreateAcceleratorTableW
SubtractRect
WaitMessage
GetMenuDefaultItem
IsMenu
GetSystemMenu
DeleteMenu
UnregisterClassW
GetSysColorBrush
LoadCursorW
DestroyAcceleratorTable
IsZoomed
DrawEdge
DrawFrameControl
SetCursorPos
CopyIcon
EnableScrollBar
FrameRect
DrawFocusRect
GetIconInfo
SetClassLongW
DrawStateW
CopyImage
LoadImageW
GetUpdateRect
GetWindowDC
GetAsyncKeyState
TrackPopupMenu
GetCursorPos
GetWindowTextW
EnumChildWindows

gdi32

SetROP2
SetMapMode
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SetBkMode
ExtSelectClipRgn
CreatePatternBrush
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateRectRgnIndirect
PatBlt
SetRectRgn
CombineRgn
SaveDC
GetRgnBox
GetBkColor
GetTextColor
CreateEllipticRgn
LPtoDP
GetTextMetricsW
RestoreDC
GetClipBox
GetDCOrgEx
CreateFontIndirectW
CopyMetaFileW
CreateBitmap
SetBkColor
SetTextColor
DeleteObject
GetTextExtentPoint32W
GetTextFaceW
CreateRectRgn
CreateDIBSection
SelectObject
CreateDCW
GetDeviceCaps
DeleteDC
GetStockObject
SetDCBrushColor
Ellipse
GetDIBits
RealizePalette
SetPixel
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBitmap
Polyline
CreatePolygonRgn
Polygon
CreateRoundRectRgn
OffsetRgn
Rectangle
RoundRect
SetDIBColorTable
FrameRgn
FillRgn
GetPaletteEntries
CreatePalette
PtInRegion
GetBoundsRect
SetPaletteEntries
ExtFloodFill
GetNearestPaletteIndex
GetSystemPaletteEntries
SetPixelV
GetViewportOrgEx
GetWindowOrgEx
EnumFontFamiliesExW
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
StretchBlt
GetMapMode
CreateCompatibleDC
GetObjectW
CreateCompatibleBitmap
DPtoLP
SetPolyFillMode
BitBlt

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

GetFileSecurityW
RegQueryValueExW
RegOpenKeyW
RegSetValueExW
RegCreateKeyW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueW
RegDeleteValueW
RegCloseKey
SetFileSecurityW
RegQueryValueW
RegEnumKeyW

shell32

SHAppBarMessage
SHBrowseForFolderW
ExtractIconW
DragQueryFileW
DragFinish
Shell_NotifyIconW
SHGetPathFromIDListW
SHGetFileInfoW
SHGetSpecialFolderPathW
ShellExecuteW

comctl32

ImageList_GetIconSize
ImageList_Draw
ImageList_ReplaceIcon
ImageList_Create
ImageList_Destroy
ImageList_GetIcon
ImageList_DrawEx
ImageList_GetImageCount

shlwapi

PathFindFileNameW
PathFindExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrStrIW
PathFileExistsW
SHDeleteKeyW
UrlUnescapeW

oledlg

OleUIBusyW

ole32

OleIsCurrentClipboard
OleFlushClipboard
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromProgID
CoRevokeClassObject
CoRegisterClassObject
CoInitializeEx
CreateStreamOnHGlobal
CLSIDFromString
CoDisconnectObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleDuplicateData
StringFromCLSID
CoTaskMemAlloc
ReleaseStgMedium
CoInitialize
CoCreateInstance
CoTaskMemFree
CoUninitialize
CoRegisterMessageFilter
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
DoDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator

oleaut32

VarUdateFromDate
LoadTypeLi
OleCreateFontIndirect
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
SysStringLen
VariantChangeType
SysStringByteLen
SysAllocStringByteLen
VariantInit
SysAllocStringLen
VariantCopy
SysAllocString
SysFreeString
VariantClear

urlmon

UrlMkSetSessionOption
URLDownloadToFileW

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdiplusStartup
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCloneImage
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdiplusShutdown

wininet

InternetCloseHandle
InternetGetLastResponseInfoW
InternetOpenW
InternetSetStatusCallbackW
InternetSetFilePointer
InternetWriteFile
InternetReadFile
HttpSendRequestW
InternetOpenUrlW
DeleteUrlCacheEntryW
FindNextUrlCacheEntryW
HttpQueryInfoW
InternetQueryDataAvailable
InternetQueryOptionW
InternetCanonicalizeUrlW
InternetCrackUrlW
FindFirstUrlCacheEntryW

winmm

PlaySoundW

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 405KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 828KB - Virtual size: 827KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.axc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

399dd6c19a3202685045179d5c3a4ff8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

gdiplus

wininet

winmm

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 405KB - Virtual size: 404KB

.data Size: 30KB - Virtual size: 55KB

.rsrc Size: 828KB - Virtual size: 827KB

.axc Size: 4KB - Virtual size: 4KB

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 405KB - Virtual size: 404KB

.data
Size: 30KB - Virtual size: 55KB

.rsrc
Size: 828KB - Virtual size: 827KB

.axc
Size: 4KB - Virtual size: 4KB