8e1fa591b3dea2bb41f15292aaf3d2f3be0a8f538b9843105033fe509b27c08f

Sharing

Copy URL

Twitter E-mail

General

Target

8e1fa591b3dea2bb41f15292aaf3d2f3be0a8f538b9843105033fe509b27c08f
Size

2.1MB
MD5

30158bcab930499ebe8e0b7a1621ae6f
SHA1

b7c7c06570bfe390f24f1200ce81d8cd2b5d024b
SHA256

8e1fa591b3dea2bb41f15292aaf3d2f3be0a8f538b9843105033fe509b27c08f
SHA512

e3f343055db0bb2fae6613aaf2d7b52247f7970d580aed471d6ba0f5aef3c2b3d3506e2ff756b0a919c632d2620ab35ba18377c5923c1650f8a39c74f3041925
SSDEEP

49152:kNoZEVnpVk2wLo8aLWGVMGs98Joz/+MtTBH1YNbdbC5fMdh8vJ:klXmLdaLWGVMGse2/BBlONbYMd

Score

1^/10

Malware Config

Signatures

Files

8e1fa591b3dea2bb41f15292aaf3d2f3be0a8f538b9843105033fe509b27c08f
.exe windows x86

e22f97e35bb6408da77bca69d2331825

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetProcessHeap
WriteConsoleW
WriteConsoleA
SetEnvironmentVariableA
GetConsoleOutputCP
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringA
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
ExitProcess
GetFileType
SetStdHandle
RaiseException
RtlUnwind
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapFree
GetSystemTimeAsFileTime
HeapAlloc
ExitThread
GetStartupInfoW
FindResourceExW
VirtualProtect
GetProfileIntW
SearchPathW
GetTempPathW
GetTempFileNameW
lstrcpyW
GetCurrentDirectoryW
SetErrorMode
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
lstrlenA
GlobalGetAtomNameW
ReleaseMutex
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetThreadLocale
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetCurrentProcessId
GetModuleHandleA
SetLastError
GlobalSize
MulDiv
QueryPerformanceCounter
QueryPerformanceFrequency
LocalAlloc
GetVersionExW
FreeLibrary
FreeResource
GetPrivateProfileStringW
CreateMutexW
GetPrivateProfileIntW
LocalFree
GetCommandLineW
SetWaitableTimer
CreateWaitableTimerW
InterlockedDecrement
InterlockedIncrement
GetProcAddress
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
FormatMessageW
CreateDirectoryW
GetFileAttributesW
CopyFileW
MoveFileW
lstrcmpiW
lstrlenW
GetModuleHandleW
FindClose
FindNextFileW
FindFirstFileW
GetFileSize
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalAlloc
GetTickCount
GetOverlappedResult
CancelIo
GetLocalTime
OutputDebugStringW
GetLastError
WaitForSingleObject
WriteFile
ReadFile
CreateFileW
CreateThread
GetModuleFileNameW
DeleteFileW
WritePrivateProfileStringW
FindResourceW
LoadResource
LockResource
SizeofResource
WaitForMultipleObjects
CreateSemaphoreW
CreateEventW
ReleaseSemaphore
CloseHandle
Sleep
SetEvent

user32

SetWindowContextHelpId
MapDialogRect
MessageBeep
IsZoomed
PostQuitMessage
GetKeyNameTextW
CharUpperW
LoadMenuW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetForegroundWindow
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
ValidateRect
GetMenu
IntersectRect
GetWindowPlacement
IsRectEmpty
GetWindowThreadProcessId
IsWindowEnabled
EndPaint
BeginPaint
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
MapVirtualKeyW
SetWindowPos
UpdateWindow
ReleaseCapture
ClientToScreen
SetCapture
SetWindowRgn
GetWindowDC
OffsetRect
TrackPopupMenu
CreatePopupMenu
GetLastActivePopup
RegisterDeviceNotificationW
DrawIcon
IsIconic
SetForegroundWindow
AppendMenuW
GetSystemMenu
FindWindowW
PostMessageW
MessageBoxW
InvalidateRect
IsWindow
UnregisterDeviceNotification
LoadIconW
LoadImageW
GetDoubleClickTime
SystemParametersInfoW
RedrawWindow
DrawEdge
InflateRect
GetSysColor
CreateWindowExW
CallWindowProcW
DestroyWindow
GetWindowTextW
SetRectEmpty
TrackMouseEvent
SetWindowLongW
GetWindowLongW
KillTimer
TranslateMessage
GetMessageW
ShowOwnedPopups
GetMenuItemInfoW
DestroyMenu
WindowFromPoint
GetSysColorBrush
WaitMessage
DeleteMenu
PostThreadMessageW
CopyAcceleratorTableW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
ReleaseDC
CopyRect
SetTimer
GetSystemMetrics
GetWindowRect
SetCursor
LoadCursorW
ScreenToClient
GetCursorPos
PtInRect
GetDC
GetAsyncKeyState
DestroyAcceleratorTable
LoadAcceleratorsW
CreateAcceleratorTableW
NotifyWinEvent
SetParent
SetClassLongW
DefWindowProcW
IsMenu
GetClientRect
SetRect
FillRect
IsWindowVisible
FrameRect
GetParent
EnableWindow
SendMessageW
GetFocus
SetFocus
BringWindowToTop
LockWindowUpdate
EnumChildWindows
GetWindow
RegisterClipboardFormatW
DestroyCursor
GetWindowRgn
CreateMenu
GetIconInfo
SubtractRect
CopyIcon
CharUpperBuffW
GetUpdateRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
IsClipboardFormatAvailable
MapVirtualKeyExW
IsCharLowerW
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFocusRect
DrawFrameControl
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
UnregisterClassW
GetNextDlgGroupItem
InvalidateRgn
CharNextW
EmptyClipboard
CloseClipboard
SetClipboardData
DestroyIcon
CopyImage
OpenClipboard
SystemParametersInfoA
DrawStateW

gdi32

SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
GetObjectType
RestoreDC
CreateHatchBrush
GetDCOrgEx
CreateRectRgnIndirect
PatBlt
SetRectRgn
GetMapMode
DPtoLP
GetTextMetricsW
OffsetRgn
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
GetTextColor
SetDIBColorTable
GetBkColor
Ellipse
Polygon
Rectangle
RoundRect
CreatePalette
GetPaletteEntries
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
SaveDC
CopyMetaFileW
GetDeviceCaps
GetTextExtentPoint32W
RemoveFontResourceW
AddFontResourceW
CreateFontIndirectW
CreateRectRgn
Polyline
CreateSolidBrush
CreatePolygonRgn
GetDIBits
RealizePalette
SelectPalette
GetStockObject
StretchBlt
DeleteDC
DeleteObject
CombineRgn
SelectObject
CreateDIBSection
GetObjectW
SetPixel
PtInRegion
GetPixel
CreateEllipticRgn
CreateFontW
BitBlt
CreatePen
CreateCompatibleBitmap
CreateCompatibleDC

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegOpenKeyExW
RegQueryValueExW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegOpenKeyW
RegCreateKeyExW
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHBrowseForFolderW
CommandLineToArgvW
Shell_NotifyIconW
ShellExecuteExW
DragQueryFileW
DragFinish
ShellExecuteW
SHAppBarMessage
SHGetFileInfoW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

StrStrIW
PathRemoveFileSpecW
PathFindExtensionW
PathRemoveExtensionW
PathStripToRootW
PathIsUNCW
PathFileExistsW
PathFindFileNameW

oledlg

OleUIBusyW

ole32

ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleLockRunning
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleGetClipboard
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
PropVariantClear
CreateStreamOnHGlobal
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitialize
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect
SysFreeString
SysStringLen

urlmon

URLDownloadToFileW

gdiplus

GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipFillRectangleI
GdipSetSmoothingMode
GdipDrawImageRectI
GdiplusShutdown
GdiplusStartup
GdipIsVisiblePathPointI
GdipSetPenColor
GdipFillPath
GdipDrawRectangle
GdipDrawPath
GdipDeletePen
GdipCreatePen1
GdipAddPathLineI
GdipAddPathArcI
GdipDeletePath
GdipCreatePath
GdipCloneBitmapAreaI
GdipFillRectangle
GdipFree
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRect
GdipCreateBitmapFromFile
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipDrawImageRect
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext

setupapi

SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces

hid

HidD_SetFeature
HidD_GetHidGuid
HidD_GetPreparsedData
HidD_GetAttributes
HidP_GetCaps
HidD_FreePreparsedData
HidP_GetSpecificButtonCaps
HidP_GetSpecificValueCaps
HidD_GetFeature

wininet

DeleteUrlCacheEntryW

imm32

ImmGetVirtualKey
ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

winmm

PlaySoundW
timeBeginPeriod
timeGetDevCaps
timeEndPeriod
timeKillEvent

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 356KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e22f97e35bb6408da77bca69d2331825

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

gdiplus

setupapi

hid

wininet

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 356KB - Virtual size: 356KB

.data Size: 27KB - Virtual size: 164KB

.rsrc Size: 37KB - Virtual size: 36KB

.reloc Size: 167KB - Virtual size: 166KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 356KB - Virtual size: 356KB

.data
Size: 27KB - Virtual size: 164KB

.rsrc
Size: 37KB - Virtual size: 36KB

.reloc
Size: 167KB - Virtual size: 166KB