33380108c7d2b5cab58d46a4e976a5a0a7703c66388c9b60dc730b6a41538d9c

Sharing

Copy URL Twitter E-mail

General

Target

33380108c7d2b5cab58d46a4e976a5a0a7703c66388c9b60dc730b6a41538d9c
Size

656KB
MD5

0711c88b54be44b4ee56c18087f3c3fa
SHA1

55a053bc52652e0a33efa79d8f327596de75a746
SHA256

33380108c7d2b5cab58d46a4e976a5a0a7703c66388c9b60dc730b6a41538d9c
SHA512

d0591856cd54827ea397eb3d690ae724b3808692034e85b24399caee5cdcc24b00598ff8b35693e3ed6569d392f3f802318c4e30db084888f10362806c665e2f
SSDEEP

12288:5n6ZGuScSvtomfZUwK2YgthC3GGWN2tE9ba8KX8NQ3qi2:56ZGu8v5hC3XSba8cc

Score

1^/10

Malware Config

Signatures

Files

33380108c7d2b5cab58d46a4e976a5a0a7703c66388c9b60dc730b6a41538d9c
.dll windows x86

4270731f6c5a10ee479f287752ea9923

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
TerminateProcess
GetSystemDirectoryW
InterlockedIncrement
OutputDebugStringW
GetWindowsDirectoryW
InterlockedDecrement
GetTickCount
SetEndOfFile
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileType
SetHandleCount
GetConsoleMode
GetConsoleCP
GetStdHandle
HeapCreate
ExitProcess
Sleep
LCMapStringW
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetCPInfo
RtlUnwind
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetThreadLocale
GetLocaleInfoA
GetACP
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetModuleFileNameA
GetModuleHandleW
lstrlenW
MoveFileW
WritePrivateProfileStringW
LocalFree
SetFilePointer
LocalAlloc
FlushFileBuffers
CreateFileA
WriteFile
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
DeleteCriticalSection
GetLocalTime
RaiseException
FreeResource
GetPrivateProfileIntW
CreateFileW
GetFileSize
ReadFile
SetLastError
GetCurrentThreadId
CloseHandle
lstrlenA
GetLastError
GetVersionExW
InterlockedExchange
MultiByteToWideChar
FlushInstructionCache
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
WideCharToMultiByte
CreateDirectoryW
FindClose
LoadLibraryW
GetProcAddress
LoadResource
GetModuleFileNameW
InitializeCriticalSection
FindResourceExW
SizeofResource
GetPrivateProfileStringW
FindFirstFileW
FreeLibrary
LockResource
DeleteFileW
FindResourceW
GetStartupInfoA

user32

ReleaseDC
InvalidateRect
GetMonitorInfoW
RegisterWindowMessageW
FindWindowW
DestroyWindow
GetClassInfoExW
DefWindowProcW
MoveWindow
GetActiveWindow
CopyRect
GetDesktopWindow
IsWindowEnabled
GetParent
EnableWindow
GetWindow
GetWindowRect
GetWindowThreadProcessId
SetWindowLongW
GetWindowLongW
GetForegroundWindow
GetClientRect
MapWindowPoints
SystemParametersInfoW
IsWindow
SetWindowPos
AttachThreadInput
PostMessageW
SetForegroundWindow
LoadCursorW
SendMessageW
SetActiveWindow
CreateWindowExW
RegisterClassExW
GetDC
LoadImageW
LoadBitmapW
InflateRect
PostThreadMessageW
DispatchMessageW
PeekMessageW
TranslateMessage
GetMessageW
IntersectRect
SetTimer
ReleaseCapture
BeginPaint
ClientToScreen
GetNextDlgTabItem
LoadIconW
GetFocus
MonitorFromWindow
SetFocus
IsDialogMessageW
DrawIconEx
UpdateLayeredWindow
EqualRect
ShowWindow
DrawFrameControl
GetCursorPos
SetRect
ScreenToClient
EndPaint
SetRectEmpty
GetDlgItem
OffsetRect
KillTimer
IsChild
DrawTextW
SetCursor
DestroyIcon
GetDlgCtrlID
SetCapture
IsWindowVisible
IsRectEmpty
PtInRect
UnregisterClassA
CallWindowProcW

gdi32

CreateFontIndirectW
GetTextColor
CombineRgn
RoundRect
GetViewportOrgEx
ExtSelectClipRgn
LineTo
SetBkMode
GetTextExtentPoint32W
CreateRectRgnIndirect
CreateRoundRectRgn
GetClipRgn
TextOutW
OffsetRgn
RectInRegion
SetViewportOrgEx
CreateCompatibleDC
CreatePen
GetCurrentObject
CreateDIBSection
SaveDC
RestoreDC
SetBkColor
StretchBlt
CreateCompatibleBitmap
DeleteDC
GetObjectW
SetTextColor
SetStretchBltMode
Rectangle
BitBlt
CreateBitmap
SelectObject
CreateRectRgn
ExtTextOutW
GetStockObject
GetDeviceCaps
DeleteObject
SelectClipRgn
MoveToEx

advapi32

RegOpenKeyExW
RegDeleteValueW
RegEnumKeyExW
RegSetValueExW
RegEnumValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyW
RegCloseKey
RegQueryValueExW

shell32

ShellExecuteW
SHGetSpecialFolderPathW

ole32

CoUninitialize
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance

shlwapi

StrToIntA
StrToIntW
PathAppendW
PathIsDirectoryW
PathAddBackslashW
PathFindFileNameW
PathFileExistsW
PathRemoveFileSpecW

comctl32

_TrackMouseEvent

msimg32

AlphaBlend

gdiplus

GdipNewPrivateFontCollection
GdipFillRectangleI
GdipSetPenEndCap
GdipGetFontSize
GdipAddPathPieI
GdipSetPenMode
GdipTranslateWorldTransform
GdipCloneBrush
GdipRotateWorldTransform
GdipAddPathStringI
GdipDrawString
GdipDrawRectangleI
GdipCreateFont
GdipSetTextRenderingHint
GdipDeleteStringFormat
GdipGetFontCollectionFamilyCount
GdipDeletePen
GdipGetFontCollectionFamilyList
GdipCreatePen1
GdipSetPenStartCap
GdipCreateLineBrushFromRectWithAngleI
GdipDeleteBrush
GdipSetPixelOffsetMode
GdipCreatePath
GdipGetFamily
GdipSetStringFormatTrimming
GdipFillPath
GdipCreateStringFormat
GdipSetStringFormatFlags
GdipSetPenDashStyle
GdipCloneFontFamily
GdipDrawLine
GdipSetCompositingQuality
GdipDrawLinesI
GdipSetStringFormatLineAlign
GdipSetClipPath
GdipDrawImageI
GdipMeasureString
GdipDeletePath
GdipClosePathFigure
GdipCreateFontFromLogfontW
GdipPrivateAddFontFile
GdipAddPathRectangleI
GdipSetSmoothingMode
GdipDeleteFont
GdipDeletePrivateFontCollection
GdipCreateSolidFill
GdipAddPathArcI
GdipFillRectangle
GdipResetWorldTransform
GdipDrawPath
GdipDrawImageRectRectI
GdiplusStartup
GdipGetImageHeight
GdipAlloc
GdipDrawImageRectI
GdipSetImageAttributesColorMatrix
GdipGetImageGraphicsContext
GdipCreateFromHDC
GdipDrawImageRectRect
GdipDisposeImageAttributes
GdipLoadImageFromStream
GdipCloneImage
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipDrawImagePointsRectI
GdiplusShutdown
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGraphicsClear
GdipGetImagePixelFormat
GdipGetImageWidth
GdipSetInterpolationMode
GdipDisposeImage
GdipCloneBitmapArea
GdipImageRotateFlip
GdipCreateImageAttributes
GdipLoadImageFromFile
GdipFree
GdipDeleteFontFamily
GdipSetStringFormatAlign

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Exports

Exports

DllGetClassObject

Sections

.text
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4270731f6c5a10ee479f287752ea9923

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

msimg32

gdiplus

version

Exports

Exports

Sections

.text Size: 480KB - Virtual size: 479KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 36KB - Virtual size: 33KB

.reloc Size: 40KB - Virtual size: 37KB

.text
Size: 480KB - Virtual size: 479KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 36KB - Virtual size: 33KB

.reloc
Size: 40KB - Virtual size: 37KB