e6fe9d0b26ce7b3cf78fc86a226a5eba427f4d6e989b73e2d05f99f4bd6b9098

Sharing

Copy URL Twitter E-mail

General

Target

e6fe9d0b26ce7b3cf78fc86a226a5eba427f4d6e989b73e2d05f99f4bd6b9098
Size

3.5MB
MD5

9d5d524fa6e1e7176deed3552929fb6a
SHA1

9d7ce157e8570038119d94f5e3459a935534cf3b
SHA256

e6fe9d0b26ce7b3cf78fc86a226a5eba427f4d6e989b73e2d05f99f4bd6b9098
SHA512

b4e4770b9f8c6b474cb843f6ec59399f0825b53cb8e3443b5bd5de908ffead060092a2e4272d27078d010ad6bd72056951c58ac87d62f499037ab1a13870e81b
SSDEEP

98304:VN1lYw5Y0tPPQ6RLZDj3YaupKMndIbTkFLOAkGkzdnEVomFHKnP1:z1lYwDNPEndIbAFLOyomFHKnP1

Score

1^/10

Malware Config

Signatures

Files

e6fe9d0b26ce7b3cf78fc86a226a5eba427f4d6e989b73e2d05f99f4bd6b9098
.exe windows x86

02c9565b2c594e191c04e9de00ad0a43

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

shutdown
connect
WSACreateEvent
WSAIoctl
WSAEnumNetworkEvents
WSAResetEvent
recv
send
WSACloseEvent
setsockopt
ntohs
getsockname
WSASetLastError
WSAAddressToStringW
WSAStringToAddressW
WSAWaitForMultipleEvents
WSAGetLastError
freeaddrinfo
getaddrinfo
WSACleanup
WSAStartup
socket
inet_addr
htons
htonl
closesocket
WSAEventSelect
bind

kernel32

GlobalHandle
LocalAlloc
LocalReAlloc
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
lstrcmpiW
GlobalGetAtomNameW
GetTempFileNameW
GetTempPathW
VerifyVersionInfoW
SearchPathW
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
FindResourceExW
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
WriteConsoleW
VerSetConditionMask
CopyFileW
MulDiv
GlobalSize
GlobalUnlock
GlobalAddAtomW
GetCurrentProcessId
GetPrivateProfileIntW
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
LoadLibraryExW
GetVersionExW
GetCurrentThread
LockResource
SetThreadPriority
MapViewOfFileEx
SwitchToThread
HeapCreate
GetCurrentThreadId
GetTickCount
GetLocalTime
InitializeCriticalSection
OutputDebugStringA
FlushFileBuffers
WritePrivateProfileStringW
GetPrivateProfileStringW
FindResourceW
SizeofResource
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
LoadResource
FreeResource
GetWindowsDirectoryW
GetSystemInfo
GetModuleFileNameW
ResumeThread
TerminateProcess
GetCurrentProcess
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GlobalFree
GlobalAlloc
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
WriteFile
SetFilePointer
TlsAlloc
GlobalFindAtomW
ReadFile
GetFileTime
GetFileSize
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
WideCharToMultiByte
MultiByteToWideChar
FormatMessageW
LocalFree
GetModuleHandleA
GetThreadLocale
IsBadReadPtr
LoadLibraryA
GetProcAddress
GetModuleHandleW
FreeLibrary
VirtualProtect
VirtualFree
VirtualAlloc
GetNativeSystemInfo
SetLastError
CreateThread
lstrcpyW
OpenMutexW
CreateMutexW
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
GetCurrentDirectoryW
HeapAlloc
ResetEvent
LoadLibraryW
RaiseException
CloseHandle
HeapReAlloc
SetEvent
GetLastError
Sleep
CreateEventW
HeapSize
WaitForSingleObject
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
HeapFree
GetSystemDirectoryW
EncodePointer
OutputDebugStringW
RtlUnwind
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
ExitProcess
VirtualQuery
QueryPerformanceFrequency
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
GetACP
LCMapStringW
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetProfileIntW

user32

GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
UpdateLayeredWindow
WaitMessage
RealChildWindowFromPoint
GetUpdateRect
SetClassLongW
DestroyAcceleratorTable
ModifyMenuW
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemInfoW
CopyIcon
GetIconInfo
GetDoubleClickTime
EnableScrollBar
DestroyMenu
LockWindowUpdate
CreatePopupMenu
BringWindowToTop
UnionRect
SetRect
SetCursorPos
NotifyWinEvent
WindowFromPoint
MessageBeep
DeleteMenu
GetSystemMenu
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetAsyncKeyState
CharUpperW
IsZoomed
TrackMouseEvent
CopyImage
LoadImageW
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MonitorFromPoint
SetParent
IntersectRect
SendDlgItemMessageA
LoadMenuW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpW
SetScrollInfo
GetTopWindow
GetClassLongW
SetWindowLongW
EqualRect
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
MapVirtualKeyW
ShowScrollBar
GetScrollRange
SetScrollRange
GetWindowRgn
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
GetClassNameW
InvalidateRect
UpdateWindow
EnumDisplayMonitors
GetMonitorInfoW
SystemParametersInfoW
LoadCursorW
CopyRect
SetRectEmpty
SetLayeredWindowAttributes
GetClassInfoW
DefWindowProcW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
UnhookWindowsHookEx
PtInRect
ScreenToClient
ClientToScreen
GetDesktopWindow
SetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
LoadAcceleratorsW
CreateAcceleratorTableW
GetKeyNameTextW
SubtractRect
RegisterClipboardFormatW
CharUpperBuffW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
FrameRect
IsClipboardFormatAvailable
PostThreadMessageW
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DestroyWindow
IsWindow
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetComboBoxInfo
CreateMenu
SetPropW
GetLastActivePopup
DestroyCursor
InvertRect
HideCaret
GetWindowLongW
MessageBoxW
IsWindowEnabled
SetCursor
ShowOwnedPopups
PostQuitMessage
PostMessageW
GetScrollPos
DrawIconEx
GetParent
IsRectEmpty
OffsetRect
InflateRect
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
MapWindowPoints
RedrawWindow
SetWindowRgn
DrawStateW
GetFocus
DrawFrameControl
DrawEdge
RegisterWindowMessageW
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
GetMessageW
DispatchMessageW
TranslateMessage
PeekMessageW
GetWindowThreadProcessId
wsprintfW
FindWindowExW
GetWindowRect
SendMessageW
GetSystemMetrics
DrawIcon
LoadIconW
FindWindowW
GetClientRect
IsIconic
EnableWindow
UnregisterClassW
GetScrollInfo

gdi32

CreateFontIndirectW
EnumFontFamiliesW
GetTextCharsetInfo
GetMapMode
SetRectRgn
DPtoLP
SetBkColor
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
LPtoDP
ExtFloodFill
CreateDIBitmap
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
CreateCompatibleBitmap
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
TextOutW
MoveToEx
GetObjectW
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
RectVisible
SetPaletteEntries
DeleteDC
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
CreatePatternBrush
CreatePen
CreateCompatibleDC
CreateBitmap
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
ExtTextOutW
PatBlt
GetTextExtentPoint32W
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
SetBkMode

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

SetSecurityDescriptorDacl
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
InitializeSecurityDescriptor
RegCloseKey

shell32

SHGetFileInfoW
ShellExecuteExW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
DragFinish
DragQueryFileW
ShellExecuteW
Shell_NotifyIconW
SHAppBarMessage

comctl32

InitCommonControlsEx

shlwapi

StrChrW
StrPBrkW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
DrawThemeText
GetThemeSysColor
DrawThemeParentBackground
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
IsAppThemed
OpenThemeData

ole32

OleCreateMenuDescriptor
CoCreateInstance
CoInitialize
CoCreateGuid
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
OleDuplicateData
ReleaseStgMedium
CreateStreamOnHGlobal
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleUninitialize
CoInitializeEx
CoFreeUnusedLibraries
OleInitialize
CoRegisterMessageFilter
CoRevokeClassObject
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor

oleaut32

SysFreeString
LoadTypeLi
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantChangeType
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics

iphlpapi

GetAdaptersInfo

winmm

PlaySoundW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 337KB - Virtual size: 337KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02c9565b2c594e191c04e9de00ad0a43

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

iphlpapi

winmm

oleacc

imm32

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 337KB - Virtual size: 337KB

.data Size: 24KB - Virtual size: 49KB

.gfids Size: 107KB - Virtual size: 106KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 125KB - Virtual size: 124KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 337KB - Virtual size: 337KB

.data
Size: 24KB - Virtual size: 49KB

.gfids
Size: 107KB - Virtual size: 106KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 125KB - Virtual size: 124KB