913949dc455f0997e06dbccef9d4decd4d12c42da9a449c0b187fbf29ad1b7ea

Sharing

Copy URL

Twitter E-mail

General

Target

913949dc455f0997e06dbccef9d4decd4d12c42da9a449c0b187fbf29ad1b7ea
Size

4.6MB
MD5

da7658894e1495a8c13acbba03a9bf1a
SHA1

88e994b5873742bec5f71d8ab4505c237a0d6bef
SHA256

913949dc455f0997e06dbccef9d4decd4d12c42da9a449c0b187fbf29ad1b7ea
SHA512

e0485a360f8c3079d315e4cce19daa59c4f1533da85dbdadc0ae3f6c7ab01990436ae73d994620cf087e1b914fbe213dbc84bd089a20d6aa0637e9bb86bc7f4d
SSDEEP

98304:ScIb8CQ0/3876hQ4ANC2XKdmPBYuRafu020OvoiI75KK8NcaIwJDIJutZm2+8Oi:Yb8CQ0/f6euRafu020Oc5npaLD+uLw8B

Score

1^/10

Malware Config

Signatures

Files

913949dc455f0997e06dbccef9d4decd4d12c42da9a449c0b187fbf29ad1b7ea
.exe windows x86

6bdd71180c452ef3ff0f10f9687f250a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
GetFileType
IsValidCodePage
GetStdHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetStringTypeW
GetTimeZoneInformation
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetConsoleCP
GetModuleHandleExW
ReadConsoleW
SetFilePointerEx
LCMapStringW
IsValidLocale
EnumSystemLocalesW
OutputDebugStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
FindResourceExW
LockResource
GetUserDefaultLCID
VirtualProtect
SearchPathA
GetProfileIntA
VerifyVersionInfoA
HeapQueryInformation
lstrcpyA
GetWindowsDirectoryA
SetErrorMode
GetCPInfo
GetOEMCP
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetFileTime
GetFileSizeEx
GetFileAttributesExA
LocalAlloc
FileTimeToLocalFileTime
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
FileTimeToSystemTime
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
SetEvent
lstrcmpA
MulDiv
LocalFree
ExitThread
CreateThread
VerSetConditionMask
AreFileApisANSI
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
GetThreadLocale
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
LoadLibraryW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
SetLastError
EncodePointer
GetModuleHandleA
ReadFile
GetTickCount
TerminateProcess
ExitProcess
GetCurrentProcessId
OpenProcess
SetEndOfFile
Sleep
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
CreateProcessA
GetACP
GetFileAttributesA
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetCommandLineA
MapViewOfFile
GetFileInformationByHandle
OutputDebugStringA
CreateFileA
SetFilePointer
WriteFile
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
DecodePointer
CopyFileA
GetTempFileNameA
GetTempPathA
GetFileSize
FormatMessageA
QueryPerformanceCounter
FindNextFileA
FindFirstFileA
FindClose
MoveFileA
MultiByteToWideChar
GetModuleFileNameW
GetModuleFileNameA
lstrlenA
RaiseException
SetThreadLocale
WideCharToMultiByte
GetVersionExA
MapViewOfFileEx
DeleteFileA
CreateDirectoryA
FindResourceW
LoadLibraryA
OpenFileMappingA
CreateFileMappingA
CreateMutexA
UnmapViewOfFile
CloseHandle
SizeofResource
LoadResource
WaitForSingleObject
ReleaseMutex
GetLastError
GetProcAddress
GetConsoleMode

user32

LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
LockWindowUpdate
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
IsZoomed
GetComboBoxInfo
LoadMenuW
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
SetParent
GetSystemMenu
UnionRect
GetKeyNameTextA
MapVirtualKeyA
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetIconInfo
DrawIconEx
DrawFocusRect
ReuseDDElParam
UnpackDDElParam
LoadImageA
SetRectEmpty
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
MessageBeep
GetNextDlgGroupItem
LoadCursorW
WindowFromPoint
DestroyIcon
DeleteMenu
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
CopyImage
SystemParametersInfoA
InflateRect
GetMenuItemInfoA
DestroyMenu
KillTimer
SetTimer
WaitMessage
CharUpperA
IsRectEmpty
IntersectRect
SetRect
InvalidateRgn
InvalidateRect
ReleaseCapture
SetCapture
FillRect
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
GetWindowRgn
GrayStringA
DrawTextExA
DrawTextA
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
GetCursorPos
TranslateMessage
GetMessageA
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuState
GetMenuStringA
IsDialogMessageA
SetWindowTextA
IsWindowEnabled
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
OffsetRect
CharNextA
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetParent
GetClassLongA
SetWindowLongA
GetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
DestroyCursor
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
FrameRect
CharUpperBuffA
UpdateWindow
ModifyMenuA
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongA
SetCursorPos
DestroyAcceleratorTable
TabbedTextOutA
CreateAcceleratorTableA
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
PostThreadMessageA
FlashWindow
wsprintfA
GetAsyncKeyState
UnregisterClassA
PostQuitMessage
PostMessageA
RegisterWindowMessageA
LoadIconW
GetClientRect
DrawIcon
GetSystemMetrics
IsIconic
SendMessageA
EnableWindow
CopyAcceleratorTableA

gdi32

OffsetViewportOrgEx
SetTextAlign
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
GetRgnBox
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
CombineRgn
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
SetWindowOrgEx
EnumFontFamiliesExA
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceA
SetROP2
SetPolyFillMode
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
Rectangle
SetBkColor
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
CreateDCA
CopyMetaFileA
GetTextColor
GetStockObject
GetDeviceCaps
GetBkColor
CreateBitmap
GetObjectA
SetTextColor

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA

shell32

SHBrowseForFolderA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
SHAppBarMessage
ShellExecuteA
DragFinish

comctl32

ord17

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA
UrlUnescapeA
StrFormatKBSizeA
PathFindExtensionA
PathRemoveFileSpecW

uxtheme

DrawThemeParentBackground
OpenThemeData
CloseThemeData
GetThemeColor
GetCurrentThemeName
GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
DrawThemeBackground
DrawThemeText
IsAppThemed

ole32

OleUninitialize
CLSIDFromString
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
CoRegisterMessageFilter
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoFreeUnusedLibraries
CoInitialize
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CreateBindCtx
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CoCreateInstance
OleLockRunning
DoDragDrop
CoInitializeEx

oleaut32

SysAllocString
LoadTypeLi
VarBstrFromDate
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetElemsize
SafeArrayDestroy
SafeArrayCreate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringByteLen
OleCreateFontIndirect
DispCallFunc
LoadRegTypeLi
VariantChangeType
VariantCopy
VariantClear
VariantInit
SysFreeString
SysAllocStringLen

oledlg

ord8

urlmon

CreateURLMoniker
CreateAsyncBindCtx
RegisterBindStatusCallback

ws2_32

recvfrom
recv
inet_addr
htons
htonl
select
connect
closesocket
bind
accept
WSAGetLastError
WSASetLastError
WSAAsyncSelect
send
sendto
socket
WSAStartup
gethostbyname
WSACleanup

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

wininet

FtpDeleteFileA
FtpPutFileA
InternetSetStatusCallback
InternetSetOptionExA
InternetConnectA
InternetCanonicalizeUrlA
InternetCrackUrlA
HttpQueryInfoA
InternetQueryDataAvailable
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA
InternetGetLastResponseInfoA

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 417KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 269B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6bdd71180c452ef3ff0f10f9687f250a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

urlmon

ws2_32

version

oleacc

wininet

gdiplus

imm32

winmm

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 417KB - Virtual size: 417KB

.data Size: 41KB - Virtual size: 136KB

.tls Size: 512B - Virtual size: 269B

.rsrc Size: 2.3MB - Virtual size: 2.3MB

.reloc Size: 140KB - Virtual size: 140KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 417KB - Virtual size: 417KB

.data
Size: 41KB - Virtual size: 136KB

.tls
Size: 512B - Virtual size: 269B

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

.reloc
Size: 140KB - Virtual size: 140KB