2024dc3a094a85787a286c4f1c424e28df8ef21a3f0c0c41c9d089c7033f980c

Sharing

Copy URL Twitter E-mail

General

Target

2024dc3a094a85787a286c4f1c424e28df8ef21a3f0c0c41c9d089c7033f980c
Size

4.0MB
MD5

dbc79ae86ad01f26d1ac60114f9aaf38
SHA1

47a9c3132ff20800e53e803603546d9120895556
SHA256

2024dc3a094a85787a286c4f1c424e28df8ef21a3f0c0c41c9d089c7033f980c
SHA512

f13182fd12faa7c4bb4d55653840b82a30f94e846eb7012ed16b837d61a35856c952675f88c19f3e2f4d1bf2acbe0827ac64e05633e35ee5ed02b46439368d49
SSDEEP

49152:/db76ocu69sxox8QGeF0j+u3p1ccSoTemhP2UR0crV3+R5+0ojeKKpr6I4y:Iu6H1d0Rjn0

Score

1^/10

Malware Config

Signatures

Files

2024dc3a094a85787a286c4f1c424e28df8ef21a3f0c0c41c9d089c7033f980c
.exe windows x64

09fd280ae3d739087fa81a3b5be4e061

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

FindClose
CreateDirectoryA
lstrlenW
GetEnvironmentVariableA
FindNextFileA
FindFirstFileA
GetFileAttributesA
LoadLibraryA
GetProcAddress
Sleep
MultiByteToWideChar
FindResourceW
LoadResource
GetTickCount
SizeofResource
OpenEventA
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
SetFilePointer
SetEnvironmentVariableA
CreateFileW
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
CompareStringW
LCMapStringW
GetStringTypeW
HeapFree
HeapQueryInformation
HeapReAlloc
HeapAlloc
HeapCreate
GetVersion
HeapSetInformation
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
IsValidCodePage
FlsFree
FlsAlloc
FlsSetValue
FlsGetValue
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
GetSystemInfo
SetThreadStackGuarantee
VirtualAlloc
RtlPcToFileHeader
RaiseException
ExitThread
CreateThread
RtlUnwindEx
IsBadReadPtr
HeapValidate
HeapSize
GetStartupInfoW
GetCommandLineA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
ExitProcess
GetSystemTimeAsFileTime
DecodePointer
EncodePointer
InitializeCriticalSectionAndSpinCount
FindResourceExW
SearchPathA
GetNumberFormatA
GetWindowsDirectoryA
GetTempPathA
GetFileAttributesExA
GetFileSizeEx
GetTempFileNameA
GetFileTime
GetOEMCP
GetCPInfo
FileTimeToSystemTime
lstrcmpiA
GetFullPathNameA
GetVolumeInformationA
MoveFileA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
GetHandleInformation
GetProfileIntA
VirtualProtect
GetACP
GetAtomNameA
GetThreadLocale
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
lstrcpyA
DeleteFileA
GlobalFlags
SetErrorMode
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
LoadLibraryW
GetVersionExA
lstrcmpW
GlobalGetAtomNameA
GlobalFindAtomA
MulDiv
CopyFileA
GlobalSize
FormatMessageA
LocalFree
ResumeThread
SetThreadPriority
GetCurrentProcessId
GlobalAddAtomA
SetEvent
WaitForSingleObject
GlobalUnlock
GetModuleHandleA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrlenA
FindResourceA
FreeResource
GlobalFree
CompareStringA
ActivateActCtx
GetLastError
DeactivateActCtx
SetLastError
GlobalLock
GlobalAlloc
GetModuleHandleW
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GetLocaleInfoA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetModuleFileNameA
SetFileTime
WriteFile
LocalFileTimeToFileTime
GetCurrentDirectoryA
SystemTimeToFileTime
ReadFile
LockResource
CloseHandle
WideCharToMultiByte

user32

SendDlgItemMessageA
MonitorFromWindow
GetMonitorInfoA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpA
TrackPopupMenu
SetWindowPlacement
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetClassLongA
GetClassLongPtrA
GetWindowLongPtrA
SetPropA
GetPropA
CallWindowProcA
SetWindowLongPtrA
RemovePropA
DefWindowProcA
SetMenu
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongA
GetSysColor
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
PostThreadMessageA
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
NotifyWinEvent
GetForegroundWindow
SetForegroundWindow
HideCaret
OpenClipboard
WindowFromPoint
SetParent
IsChild
GetTopWindow
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
SetCapture
GetCapture
KillTimer
SetTimer
EnableScrollBar
RedrawWindow
LockWindowUpdate
ShowOwnedPopups
IsWindowVisible
InvalidateRgn
InvalidateRect
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
RegisterClassA
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MapWindowPoints
LoadAcceleratorsW
GetWindowRect
BringWindowToTop
GetWindowRgn
SetWindowRgn
IsZoomed
IsIconic
GetSystemMenu
DrawMenuBar
GetClassNameA
MessageBoxA
GetLastActivePopup
GetWindowThreadProcessId
SetCursor
GetKeyState
PeekMessageA
ValidateRect
GetMessageA
TranslateMessage
DispatchMessageA
GetMenuCheckMarkDimensions
GetFocus
PostMessageA
SetWindowsHookExA
UnhookWindowsHookEx
GetCursorPos
CallNextHookEx
LoadMenuW
LoadMenuA
SetMenuItemBitmaps
RemoveMenu
ModifyMenuA
InsertMenuItemA
InsertMenuA
GetSubMenu
GetMenuItemInfoA
GetMenuStringA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
AppendMenuA
DeleteMenu
IsMenu
CreatePopupMenu
DestroyMenu
CharNextA
CopyAcceleratorTableA
MessageBeep
CreateMenu
MapVirtualKeyExA
GetSystemMetrics
wsprintfA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
LoadBitmapW
GetClassInfoA
GetClassInfoExA
CreateWindowExA
CheckDlgButton
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
GetSysColorBrush
EndDialog
GetDesktopWindow
GetActiveWindow
SetActiveWindow
IsWindow
EnableWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
ReleaseCapture
WaitMessage
RealChildWindowFromPoint
SystemParametersInfoA
EnumDisplayMonitors
GetDC
SetLayeredWindowAttributes
SubtractRect
UnionRect
IntersectRect
InflateRect
SetRect
PostQuitMessage
GetParent
SetWindowContextHelpId
GetWindow
SetWindowPos
MapDialogRect
SendMessageA
RegisterWindowMessageA
IsWindowEnabled
GetDlgItem
GetKeyNameTextA
MapVirtualKeyA
GetAsyncKeyState
CharUpperA
MonitorFromPoint
UpdateLayeredWindow
SetRectEmpty
GetClipboardFormatNameA
UnpackDDElParam
DestroyIcon
LoadAcceleratorsA
TranslateAcceleratorA
ReuseDDElParam
LoadImageA
UnregisterClassA
DrawIconEx
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
SetCursorPos
SetClassLongPtrA
RegisterClipboardFormatA
DestroyCursor
GetIconInfo
IsCharLowerA
GetDoubleClickTime
IsClipboardFormatAvailable
DefMDIChildProcA
TranslateMDISysAccel
DefFrameProcA
CharUpperBuffA
IsRectEmpty
CopyIcon
OffsetRect
PtInRect
EmptyClipboard
CloseClipboard
SetClipboardData
LoadImageW
GetClientRect
CopyImage

gdi32

CreateBitmap
CreateCompatibleBitmap
CreatePalette
GetPaletteEntries
SetPaletteEntries
GetNearestPaletteIndex
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreatePolygonRgn
CreateRoundRectRgn
SetRectRgn
CombineRgn
OffsetRgn
GetRgnBox
PtInRegion
CreateDCA
CreateCompatibleDC
GetDeviceCaps
SelectObject
RealizePalette
GetBkColor
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
PtVisible
RectVisible
Polyline
Ellipse
Polygon
Rectangle
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
ExtFloodFill
TextOutA
ExtTextOutA
GetTextExtentPoint32A
GetTextFaceA
GetTextMetricsA
Escape
GetBoundsRect
SetPixelV
DeleteObject
CopyMetaFileA
DeleteDC
SaveDC
RestoreDC
SelectPalette
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetLayout
SetLayout
CreateFontIndirectA
CreatePatternBrush
CreateHatchBrush
CreateSolidBrush
CreatePen
GetObjectType
ExtSelectClipRgn
EnumFontFamiliesA
GetTextCharsetInfo
CreateDIBitmap
CreateDIBSection
GetStockObject
GetSystemPaletteEntries
GetObjectA
EnumFontFamiliesExA
SetDIBColorTable

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

OpenThreadToken
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegEnumValueA
RegEnumKeyExA
SetThreadToken
RevertToSelf

shell32

DragQueryFileA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHAppBarMessage
ShellExecuteA
SHGetMalloc
DragFinish
SHGetFileInfoA

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathFindExtensionA
PathStripToRootA

ole32

OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoRevokeClassObject
CoFreeUnusedLibraries
OleInitialize
CoInitializeEx
StringFromGUID2
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
CoCreateGuid
CLSIDFromProgID
CLSIDFromString
OleDuplicateData
CoGetClassObject
CoUninitialize
CoInitialize
CoCreateInstance
ReleaseStgMedium
CoTaskMemAlloc
StringFromCLSID
RegisterDragDrop
OleUninitialize
CoTaskMemFree
CoRegisterMessageFilter

oleaut32

SafeArrayDestroy
SysAllocString
VariantCopy
OleCreateFontIndirect
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VariantInit
VariantClear
VariantChangeType
SysAllocStringByteLen
SysFreeString
SysAllocStringLen

oledlg

ord8

gdiplus

GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipCloneImage
GdipFree
GdipDisposeImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdiplusShutdown
GdipCreateBitmapFromStreamICM

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 745KB - Virtual size: 745KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09fd280ae3d739087fa81a3b5be4e061

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 3.0MB - Virtual size: 3.0MB

.rdata Size: 745KB - Virtual size: 745KB

.data Size: 33KB - Virtual size: 84KB

.pdata Size: 143KB - Virtual size: 142KB

text Size: 3KB - Virtual size: 2KB

data Size: 2KB - Virtual size: 1KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 87KB - Virtual size: 86KB

.text
Size: 3.0MB - Virtual size: 3.0MB

.rdata
Size: 745KB - Virtual size: 745KB

.data
Size: 33KB - Virtual size: 84KB

.pdata
Size: 143KB - Virtual size: 142KB

text
Size: 3KB - Virtual size: 2KB

data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 87KB - Virtual size: 86KB