27c159608252527e6b979422a3156dd1[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

27c159608252527e6b979422a3156dd1.bin
Size

992KB
MD5

43c2cfef6f86f1bec2c340240ac8b9e9
SHA1

f7d31d3af9d0a57482946a4e909edda596ae3a96
SHA256

141e45a88dd8975ad4b3f5bc6812c0b4cc7e3898a01eddba34517d7d7b7100b8
SHA512

2f5a67264deda0d53f0ba29e093c5bf1c4fe4cff39501eaaf96b2a45a305685eb53c362969d60638dd554a3414183a1fd4eadacdd4e440c46897038c0db04d0b
SSDEEP

12288:DaoVMxRzLwA7pL4C2DI769FQ5QeQNisYBgo/nlElfVzN2sSINomIcM7gKOChaKSB:DxVuRLww4CiosgdPl49cg1d+6

Score

1^/10

Malware Config

Signatures

Files

27c159608252527e6b979422a3156dd1.bin
.zip

Password: infected
a436d81ed1ad9b0b463982b6edd29a27dc53474dfdfbfa4c01815a1e12735a28.exe
.exe windows x86

Password: infected

9023017cf685edc5c5ac756e90730768

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
GetFileAttributesA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetTickCount
SystemTimeToFileTime
ReplaceFileA
SetFileTime
GetFileTime
GetTempFileNameA
GetFullPathNameA
GetDiskFreeSpaceA
GetThreadLocale
FileTimeToSystemTime
InitializeCriticalSection
GlobalFlags
LocalAlloc
TlsGetValue
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
GetACP
Sleep
SetFilePointer
GetTempPathA
GetProfileIntA
SearchPathA
GetStringTypeExA
lstrcmpiA
DeleteFileA
MoveFileA
ReadFile
WriteFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetVolumeInformationA
GetShortPathNameA
FileTimeToLocalFileTime
GetFileAttributesExA
LocalFileTimeToFileTime
GetFileSizeEx
GetWindowsDirectoryA
GetNumberFormatA
SetErrorMode
FindResourceExW
EncodePointer
DecodePointer
ExitProcess
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapFree
HeapReAlloc
RtlUnwind
RaiseException
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetLocaleInfoA
CreateThread
HeapQueryInformation
HeapSize
SetStdHandle
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetStdHandle
HeapCreate
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
IsValidCodePage
GetStringTypeW
LCMapStringW
CompareStringW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
GlobalReAlloc
WaitForSingleObject
ResumeThread
SetThreadPriority
CloseHandle
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetCurrentDirectoryA
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
FormatMessageA
LocalFree
lstrlenW
MulDiv
FindResourceA
FreeResource
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
FreeLibrary
CompareStringA
LoadLibraryW
lstrcmpW
GlobalLock
GlobalUnlock
GetCurrentProcessId
GlobalGetAtomNameA
GlobalAddAtomA
MultiByteToWideChar
lstrcmpA
CreateFileA
ExitThread
GetFileSize
VirtualProtect
FindClose
VirtualAlloc
EnumUILanguagesW
FindFirstFileA
lstrcatA
lstrlenA
lstrcpyA
InterlockedDecrement
InterlockedIncrement
CheckRemoteDebuggerPresent
IsDebuggerPresent
GetCurrentProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress
SetLastError
GetLastError
DeactivateActCtx
ActivateActCtx
LockResource
SizeofResource
WideCharToMultiByte
LoadResource
GetCurrentThread
FindResourceW

user32

DrawFocusRect
GetSysColorBrush
DrawIconEx
SetClassLongA
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetWindowDC
BeginPaint
EndPaint
GetMenuDefaultItem
SetMenuDefaultItem
RegisterClipboardFormatA
EnumDisplayMonitors
SetLayeredWindowAttributes
DestroyAcceleratorTable
TranslateMessage
OpenClipboard
CopyImage
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
GetMenuItemInfoA
GetIconInfo
CharUpperBuffA
PostQuitMessage
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
PostThreadMessageA
WaitMessage
LoadAcceleratorsW
FrameRect
InvertRect
HideCaret
RealChildWindowFromPoint
SetCursorPos
CopyIcon
CopyAcceleratorTableA
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableA
SubtractRect
GetDoubleClickTime
IsClipboardFormatAvailable
UnregisterClassA
EnumChildWindows
GetNextDlgGroupItem
DestroyCursor
CharNextA
InvalidateRgn
DrawIcon
IsCharLowerA
MapVirtualKeyExA
CreateMenu
GetWindowRgn
GetTabbedTextExtentW
GetCursorPos
MonitorFromPoint
SystemParametersInfoA
UpdateLayeredWindow
LoadCursorA
EnableScrollBar
SetCapture
KillTimer
SetTimer
ValidateRect
UnionRect
MoveWindow
IsDialogMessageA
SetDlgItemTextA
CheckDlgButton
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
SetParent
SetWindowRgn
IsZoomed
IsRectEmpty
GetMenuStringA
AppendMenuA
InsertMenuA
RemoveMenu
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
DrawFrameControl
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
MessageBoxA
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
PtInRect
SetWindowPlacement
GetWindowPlacement
DefWindowProcA
CallWindowProcA
GetClassNameA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
WinHelpA
SetWindowPos
DestroyIcon
SetFocus
GetWindowThreadProcessId
GetActiveWindow
IsWindowEnabled
EqualRect
GetDlgItem
SetWindowLongA
GetDlgCtrlID
GetKeyState
LoadIconW
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
IsWindowVisible
IsIconic
InsertMenuItemA
GetMenuItemID
GetMenuItemCount
CreatePopupMenu
GetClassInfoA
IntersectRect
OffsetRect
CopyRect
GetMenu
GetLastActivePopup
BringWindowToTop
PostMessageA
SetMenu
GetDesktopWindow
GetWindow
ShowWindow
GetWindowLongA
IsWindow
TranslateAcceleratorA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
EnableWindow
UpdateWindow
LoadBitmapW
GetSysColor
LoadMenuW
InvalidateRect
InflateRect
SetRectEmpty
SendMessageA
GetClientRect
GetParent
GetFocus
GetSubMenu
IsChild
GetWindowRect
ScreenToClient
LoadImageA
GetSystemMetrics
RedrawWindow
ClientToScreen
wsprintfA
DrawEdge
FillRect
DrawStateA
LockWindowUpdate
GetUpdateRect
MapVirtualKeyA
SetRect
GetKeyNameTextA
ReleaseDC
GetDC
CharUpperA
NotifyWinEvent
MessageBeep
LoadCursorW
WindowFromPoint
GetSystemMenu
DeleteMenu
IsMenu
GetAsyncKeyState
RemovePropA
GetMessageA
SetWindowTextA

gdi32

GetObjectType
CreateCompatibleBitmap
CreateCompatibleDC
SetTextColor
SetBkColor
GetDeviceCaps
CopyMetaFileA
CreateDCA
DeleteDC
SelectObject
CreateDIBSection
BitBlt
CreatePen
CreateRoundRectRgn
CreateRectRgnIndirect
PatBlt
CreateSolidBrush
CreateHatchBrush
CreateRectRgn
CreateEllipticRgn
CreatePolygonRgn
CombineRgn
GetObjectA
GetTextExtentPoint32A
GetStockObject
DeleteObject
GetBkColor
GetTextColor
Polyline
Ellipse
Polygon
SelectPalette
CreatePatternBrush
ExtSelectClipRgn
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
ExtTextOutA
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
PtVisible
StartDocA
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateFontIndirectA
CreateBitmap
SetPixelV
GetTextExtentPoint32W
GetLayout
SetLayout
SetRectRgn
GetTextExtentPointA
GetTextFaceA
GetMapMode
DPtoLP
GetTextMetricsA
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
SetPixel
Rectangle
RoundRect
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetCharWidthA
OffsetRgn
GetRgnBox
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
GetNearestPaletteIndex
GetSystemPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
EnumFontFamiliesExA
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
SelectClipRgn

oleaut32

VariantInit
SysAllocStringLen
SysAllocString
SysStringLen
VariantChangeType
VariantCopy
SysAllocStringByteLen
VariantClear
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
SysFreeString

msimg32

AlphaBlend
TransparentBlt

comctl32

InitCommonControlsEx
ImageList_DrawEx
ImageList_Destroy
ImageList_GetImageCount
ImageList_Create
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetIconSize

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord8

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight

wininet

FtpOpenFileA
InternetCrackUrlA
InternetCloseHandle
InternetOpenA
FtpGetFileSize
InternetConnectA
InternetReadFile

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

winspool.drv

DocumentPropertiesA
GetJobA
ClosePrinter
OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegOpenKeyExW
RegCloseKey
RegSetValueA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
SetFileSecurityA
GetFileSecurityA
RegEnumKeyExA
RegEnumValueA

shell32

SHAddToRecentDocs
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoA
ShellExecuteA
SHAppBarMessage
DragQueryFileA
DragFinish
ExtractIconA

ole32

CoRevokeClassObject
CoRegisterMessageFilter
CoInitializeEx
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
StgCreateDocfileOnILockBytes
CoGetClassObject
OleLockRunning
OleGetClipboard
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemFree
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
StringFromCLSID
OleCreateMenuDescriptor

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 335KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

9023017cf685edc5c5ac756e90730768

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

msimg32

comctl32

shlwapi

oledlg

gdiplus

wininet

oleacc

imm32

winmm

winspool.drv

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 335KB - Virtual size: 334KB

.data Size: 27KB - Virtual size: 57KB

.rsrc Size: 51KB - Virtual size: 50KB

.reloc Size: 176KB - Virtual size: 175KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 335KB - Virtual size: 334KB

.data
Size: 27KB - Virtual size: 57KB

.rsrc
Size: 51KB - Virtual size: 50KB

.reloc
Size: 176KB - Virtual size: 175KB