7fa5d4fb622ac94578c66ceb062ab0e87a815c34a40384905882275011ac5f45

Sharing

Copy URL Twitter E-mail

General

Target

7fa5d4fb622ac94578c66ceb062ab0e87a815c34a40384905882275011ac5f45
Size

5.1MB
MD5

f8355b41e61b56954d47cc16bf9ce991
SHA1

1580d5c7d7c7e7086f1b6073edfb09f9b6b7bd26
SHA256

7fa5d4fb622ac94578c66ceb062ab0e87a815c34a40384905882275011ac5f45
SHA512

7e8d9f820f91ee355742cf86b289a0d6dbccae252144da383120ec57bd7172f0ec00fd0b26f1756c78cb6eb956a21412fa6f9170cb3f48d2eb83d9373e27056b
SSDEEP

98304:8e8/cZkhhtbbJA9c+cYY/swhq6Rz8B3V8V8ga1mgLUKGmLmNfMJFksi2J175H:STtbb+e/swhqrB32TgLUpmLwWFkX2f7

Score

1^/10

Malware Config

Signatures

Files

7fa5d4fb622ac94578c66ceb062ab0e87a815c34a40384905882275011ac5f45
.exe windows x86

41c3c9f9a1629f745d2312158fd4c070

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpOpenRequestW
HttpAddRequestHeadersW
InternetReadFile
InternetConnectW
InternetCloseHandle
HttpSendRequestW
InternetCrackUrlW
HttpQueryInfoW
InternetOpenW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

psapi

GetProcessImageFileNameW

kernel32

WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeSListHead
IsDebuggerPresent
GetConsoleMode
GetACP
ExitProcess
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
GetWindowsDirectoryW
VirtualAlloc
GetSystemInfo
HeapQueryInformation
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
RtlUnwind
GetCPInfo
GetStringTypeW
LCMapStringW
OutputDebugStringW
FindResourceExW
WriteConsoleW
SetErrorMode
SetEnvironmentVariableA
GetProfileIntW
GetTempPathW
GetTempFileNameW
SearchPathW
VirtualQuery
VirtualProtect
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
SetFilePointerEx
GetConsoleCP
HeapFree
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
HeapSize
MultiByteToWideChar
GetLastError
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
DeleteCriticalSection
GetProcessHeap
WideCharToMultiByte
GetStartupInfoW
ReadFile
SizeofResource
GetCurrentProcess
WaitForSingleObject
LockResource
GlobalAlloc
GlobalFree
CloseHandle
LoadLibraryW
LoadResource
FindResourceW
GetFileTime
GetFileSizeEx
GetFileAttributesExW
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
GlobalFindAtomW
FreeResource
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
GetSystemDirectoryW
EncodePointer
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalGetAtomNameW
GetProcAddress
CreateProcessW
GetTickCount
LoadLibraryA
lstrcmpiW
GetModuleHandleA
DuplicateHandle
OutputDebugStringA
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
LocalAlloc
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
FileTimeToLocalFileTime
GlobalAddAtomW
GetPrivateProfileIntW
SetThreadPriority
CompareStringA
GlobalDeleteAtom
LoadLibraryExW
GetCurrentThread
lstrcmpA
SetLastError
FormatMessageW
MulDiv
LocalFree
GlobalUnlock
GlobalLock
GlobalSize
CreateFileA
TerminateProcess
InitializeCriticalSection
ResumeThread
GetCurrentThreadId
ResetEvent
SetEvent
CreateEventW
ExitThread
GetSystemTimeAsFileTime
CopyFileW
SetFileAttributesW
OpenProcess
GetFileAttributesW
FindClose
FindFirstFileW
IsBadReadPtr
CreateThread
GetLocalTime
SetFilePointer
FreeLibrary
GetVersionExW
DeleteFileW
WritePrivateProfileStringW
GetPrivateProfileStringW
CreateDirectoryW
GetCurrentProcessId
GetCommandLineW
CreateMutexW
ReleaseMutex
GetFileSize
WriteFile
CreateFileW
GetModuleFileNameW
Sleep
lstrcmpW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetModuleHandleW

user32

DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetRect
UnionRect
GetKeyNameTextW
MapDialogRect
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
SendDlgItemMessageA
GetMenuItemInfoW
IsDialogMessageW
CheckDlgButton
MoveWindow
SetClassLongW
LockWindowUpdate
RegisterClipboardFormatW
EnumChildWindows
CopyAcceleratorTableW
DestroyAcceleratorTable
CreateAcceleratorTableW
MapVirtualKeyW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
PostThreadMessageW
ModifyMenuW
NotifyWinEvent
InflateRect
SetWindowRgn
GetSystemMenu
GetAsyncKeyState
TrackMouseEvent
IsRectEmpty
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
MonitorFromPoint
SetParent
ReuseDDElParam
UnpackDDElParam
LoadImageW
DestroyIcon
IntersectRect
SetRectEmpty
InsertMenuItemW
DestroyMenu
CreatePopupMenu
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetTopWindow
GetClassLongW
SetWindowLongW
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
TrackPopupMenu
SetMenu
GetMenu
SetFocus
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
FillRect
EndPaint
BeginPaint
GetWindowDC
SetCursorPos
CharUpperBuffW
UpdateLayeredWindow
EnableScrollBar
GetMenuDefaultItem
SetMenuDefaultItem
CopyIcon
FrameRect
IsClipboardFormatAvailable
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsCharLowerW
MapVirtualKeyExW
SubtractRect
GetUpdateRect
GetDoubleClickTime
GetIconInfo
CreateMenu
DestroyCursor
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageW
ShowOwnedPopups
SetCursor
EnableWindow
IsWindowEnabled
MessageBoxW
GetWindowLongW
GetLastActivePopup
GetDesktopWindow
CharUpperW
GetSystemMetrics
GetWindowTextW
GetWindowTextLengthW
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetNextDlgGroupItem
LoadCursorW
GetComboBoxInfo
DrawIcon
GetWindowRgn
HideCaret
WaitMessage
GetCapture
InvertRect
UnregisterClassW
wsprintfW
IsWindow
GetWindowThreadProcessId
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
UnhookWindowsHookEx
PostMessageW
PostQuitMessage
SetCapture
SendMessageW
IsZoomed
RedrawWindow
MessageBeep
OffsetRect
SystemParametersInfoW
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetParent
LoadBitmapW
GetMessageW
TranslateMessage
DispatchMessageW
ReleaseCapture
ClientToScreen
ScreenToClient
WindowFromPoint
GetClientRect
CopyImage
DeleteMenu
GetDlgCtrlID
SetWindowTextW
GetWindowRect
PtInRect
GetClassNameW
GetWindow
RealChildWindowFromPoint
SetTimer
KillTimer
UpdateWindow
InvalidateRect
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW

gdi32

RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetObjectW
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CreateDIBitmap
CreateFontIndirectW
CreateRectRgnIndirect
EnumFontFamiliesW
GetTextCharsetInfo
GetTextMetricsW
CombineRgn
GetDIBits
PtVisible
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
GetRgnBox
OffsetRgn
GetTextColor
GetTextExtentPoint32W
SetRectRgn
DPtoLP
GetBkColor
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
RoundRect
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetSystemPaletteEntries
GetTextFaceW
SetPixelV
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
DeleteDC
CopyMetaFileW
CreateDCW
GetDeviceCaps
CreateBitmap
DeleteObject
BitBlt
CreateCompatibleDC
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
PatBlt
Escape

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegDeleteValueW
RegQueryValueExW
OpenProcessToken
ConvertSidToStringSidW
GetTokenInformation

shell32

ShellExecuteW
SHGetFileInfoW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetMalloc
SHBrowseForFolderW
CommandLineToArgvW
SHGetDesktopFolder

shlwapi

PathFileExistsW
PathRemoveFileSpecW
PathStripPathW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathCombineW

uxtheme

DrawThemeText
DrawThemeParentBackground
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
OpenThemeData
CloseThemeData
GetThemePartSize
IsAppThemed
GetThemeColor
GetCurrentThemeName
GetWindowTheme
GetThemeSysColor

ole32

RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
CoInitialize
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
OleLockRunning
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoUninitialize

oleaut32

SysAllocStringLen
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantCopy
VariantChangeType
VarBstrFromDate
LoadTypeLi
VariantClear
VariantInit
SysAllocString
SysFreeString

gdiplus

GdipFree
GdipAlloc
GdiplusShutdown
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat

iphlpapi

GetAdaptersAddresses
GetAdaptersInfo

netapi32

Netbios

snmpapi

SnmpUtilOidCpy
SnmpUtilOidNCmp
SnmpUtilVarBindFree

ws2_32

__WSAFDIsSet
closesocket
gethostbyname
select
socket
connect
recv
htons
WSAGetLastError
WSAStartup
send

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 378KB - Virtual size: 378KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41c3c9f9a1629f745d2312158fd4c070

Headers

DLL Characteristics

File Characteristics

Imports

wininet

version

psapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

iphlpapi

netapi32

snmpapi

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 378KB - Virtual size: 378KB

.data Size: 21KB - Virtual size: 55KB

.gfids Size: 105KB - Virtual size: 104KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 2.9MB - Virtual size: 2.9MB

.reloc Size: 124KB - Virtual size: 123KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 378KB - Virtual size: 378KB

.data
Size: 21KB - Virtual size: 55KB

.gfids
Size: 105KB - Virtual size: 104KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 2.9MB - Virtual size: 2.9MB

.reloc
Size: 124KB - Virtual size: 123KB