f0711f6aa995104cb78da929714704399ce21c0f5b31a82d99a148a75be7cc41

Sharing

Copy URL

Twitter E-mail

General

Target

f0711f6aa995104cb78da929714704399ce21c0f5b31a82d99a148a75be7cc41
Size

1.9MB
MD5

17240792017283a7589dd2a828dbd7f5
SHA1

c576f953bafdce8b31a714e98a2ac22de12d2094
SHA256

f0711f6aa995104cb78da929714704399ce21c0f5b31a82d99a148a75be7cc41
SHA512

7445ccf21fdb726573a236b7c11db9b82d6b21fb54974f574b01b28bf876b81e1974da07a0fae445136479557e5c70e25648a0f76af710e06724ce3fa1da2391
SSDEEP

49152:azq9YIElcuqHoSYcohUO2pA/l8+TKTYEPbcBInNp9i6QFa35ZcTzq:aSElMHo4ohUOeA/l8+TKTLTc6pTQFa37

Score

1^/10

Malware Config

Signatures

Files

f0711f6aa995104cb78da929714704399ce21c0f5b31a82d99a148a75be7cc41
.exe windows x86

06514e80351879b63f064def7d8607f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
EnumFontFamiliesExW
Rectangle
SetPixel
StretchBlt
SetDIBColorTable
GetRgnBox
OffsetRgn
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Polygon
Ellipse
Polyline
CreateEllipticRgn
GetTextColor
GetBkColor
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
DPtoLP
PatBlt
CombineRgn
SetRectRgn
CreateBitmap
SetTextColor
SetBkColor
GetObjectW
DeleteObject
CreateFontIndirectW
CreateCompatibleDC
BitBlt
ExtTextOutW
GetTextExtentPoint32W
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
ExtFloodFill
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SetPaletteEntries
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
SelectPalette
GetObjectType
CreatePen
GetTextFaceW
SetPixelV
CreateDCW
CopyMetaFileW
GetDeviceCaps
GetTextMetricsW
EnumFontFamiliesW
SetBkMode
CreateSolidBrush
CreateHatchBrush
CreateDIBitmap
CreateCompatibleBitmap
CreateRectRgnIndirect
GetStockObject
GetTextCharsetInfo

user32

CloseClipboard
SetClipboardData
OpenClipboard
GetUpdateRect
FrameRect
IsClipboardFormatAvailable
SetMenuDefaultItem
GetWindow
PostThreadMessageW
CreateMenu
IsMenu
UpdateLayeredWindow
UnionRect
MonitorFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
CreateDialogIndirectParamW
EndDialog
GetNextDlgGroupItem
EmptyClipboard
GetIconInfo
GetNextDlgTabItem
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
LockWindowUpdate
BringWindowToTop
SetCursorPos
SetRect
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
CopyAcceleratorTableW
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateW
MessageBeep
ReleaseCapture
SetCapture
GetSystemMenu
LoadMenuW
SetClassLongW
RegisterClipboardFormatW
CopyIcon
GetWindowThreadProcessId
GetTopWindow
EndPaint
GetWindowRgn
DestroyCursor
DrawIcon
MapDialogRect
SubtractRect
MapVirtualKeyExW
GetKeyNameTextW
IsCharLowerW
GetDoubleClickTime
LoadImageW
CharUpperBuffW
GetAsyncKeyState
NotifyWinEvent
WindowFromPoint
CreatePopupMenu
DestroyAcceleratorTable
GetDC
ReleaseDC
WaitMessage
SetParent
SetWindowRgn
IsZoomed
OffsetRect
IsRectEmpty
KillTimer
SetTimer
DeleteMenu
ShowOwnedPopups
SetCursor
IntersectRect
InvalidateRect
IsIconic
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
CopyImage
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
CharUpperW
DestroyIcon
GetDesktopWindow
RealChildWindowFromPoint
ClientToScreen
IsDialogMessageW
GetMessageW
DispatchMessageW
TranslateMessage
LoadIconW
LoadCursorW
RegisterClassExW
UpdateWindow
GetSystemMetrics
CreateWindowExW
SetWindowTextW
DestroyWindow
GetClientRect
MoveWindow
PostQuitMessage
DefWindowProcW
ShowWindow
MessageBoxW
SendMessageW
BeginPaint
UnhookWindowsHookEx
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetParent
RemoveMenu
GetSubMenu
GetMenuItemCount
InsertMenuW
GetMenuItemID
AppendMenuW
GetMenuStringW
GetMenuState
ValidateRect
GetCursorPos
PeekMessageW
GetKeyState
IsWindowVisible
GetActiveWindow
CallNextHookEx
SetWindowsHookExW
GetSysColorBrush
GetSysColor
GetWindowTextW
GetWindowTextLengthW
CheckMenuItem
EnableMenuItem
ModifyMenuW
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
PtInRect
CopyRect
SetWindowPos
SetWindowLongW
GetMenu
CallWindowProcW
GetDlgCtrlID
GetWindowPlacement
SetWindowPlacement
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
ScreenToClient
GetWindowRect
AdjustWindowRectEx
RegisterClassW
GetClassInfoW
GetClassInfoExW
PostMessageW
RedrawWindow
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
SetMenu
TrackPopupMenu
ScrollWindow
MapWindowPoints
GetMonitorInfoW
MonitorFromWindow
GetMessagePos
GetMessageTime
GetDlgItem
EndDeferWindowPos
BeginDeferWindowPos
SetActiveWindow
GetForegroundWindow
SetFocus
IsWindow
RemovePropW
GetPropW
SetPropW
GetClassNameW
GetClassLongW
GetCapture
IsChild
WinHelpW
SendDlgItemMessageA
SendDlgItemMessageW
RegisterWindowMessageW
CheckDlgButton

gdiplus

GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateFromHDC
GdipDrawImageRectI
GdipCloneImage
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipLoadImageFromStreamICM
GdipCreateStringFormat
GdipDeleteStringFormat
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipDeleteFont
GdipSetImageAttributesColorMatrix
GdipAlloc
GdipSetStringFormatAlign
GdipDrawString
GdipDrawImageRectRectI
GdipCreateFont
GdipCloneBrush
GdiplusShutdown
GdiplusStartup
GdipLoadImageFromStream
GdipDeleteBrush
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipCreateSolidFill
GdipFree
GdipDrawImageI

kernel32

GetFileAttributesExW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetCurrentDirectoryW
GetTempFileNameW
GetWindowsDirectoryW
GetNumberFormatW
GetTickCount
GetProfileIntW
SearchPathW
VirtualProtect
GetUserDefaultLCID
FindResourceExW
HeapAlloc
HeapFree
RtlUnwind
RaiseException
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
FindFirstFileExA
FindNextFileA
DeleteFileA
GetFileType
ExitProcess
DecodePointer
EncodePointer
GetCommandLineA
HeapSetInformation
HeapReAlloc
ExitThread
HeapSize
HeapQueryInformation
VirtualAlloc
GetSystemInfo
VirtualQuery
SetStdHandle
IsProcessorFeaturePresent
GetStdHandle
HeapCreate
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetTimeZoneInformation
GetCPInfo
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStartupInfoW
GetProcessHeap
GetStringTypeW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
LCMapStringW
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
lstrcpyW
GetSystemDirectoryW
GetUserDefaultUILanguage
GetLocaleInfoW
InterlockedExchange
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
lstrcmpiW
GlobalFlags
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
InitializeCriticalSectionAndSpinCount
LoadLibraryW
lstrcmpW
FileTimeToSystemTime
lstrlenA
lstrcmpA
GlobalGetAtomNameW
CompareStringW
InterlockedIncrement
GetProcAddress
GetCurrentThreadId
SetThreadPriority
CopyFileW
GlobalSize
FormatMessageW
MulDiv
lstrlenW
GetCurrentProcessId
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
ActivateActCtx
ReleaseActCtx
DeactivateActCtx
TlsFree
GlobalFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalFree
LocalAlloc
SetLastError
GetACP
SetEnvironmentVariableW
GetModuleHandleW
Sleep
GetVersionExW
WideCharToMultiByte
GetTempPathW
MultiByteToWideChar
CreateFileW
ReadFile
BeginUpdateResourceW
SetFilePointer
UpdateResourceW
EndUpdateResourceW
CreateThread
ResumeThread
WaitForSingleObject
CloseHandle
SetEvent
CreateEventW
FindResourceW
GetLastError
LoadResource
LockResource
SizeofResource
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateDirectoryA
GetDriveTypeW
GetFullPathNameA
RemoveDirectoryA

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegQueryValueExW

shell32

ShellExecuteExW
SHGetFileInfoW
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetSpecialFolderLocation
ShellExecuteW
DragFinish
DragQueryFileW
SHAppBarMessage
SHBrowseForFolderW

comctl32

ImageList_GetIconSize

shlwapi

PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW
PathFindFileNameW

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
DoDragDrop
OleGetClipboard
RegisterDragDrop
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CreateStreamOnHGlobal
RevokeDragDrop
CoLockObjectExternal

oleaut32

SysAllocString
VariantInit
VarBstrFromDate
SysAllocStringLen
SysStringLen
SystemTimeToVariantTime
SysFreeString
VariantClear
VariantChangeType
VariantTimeToSystemTime

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 322KB - Virtual size: 322KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 663KB - Virtual size: 662KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06514e80351879b63f064def7d8607f1

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

gdiplus

kernel32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oleacc

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 322KB - Virtual size: 322KB

.data Size: 24KB - Virtual size: 55KB

.rsrc Size: 663KB - Virtual size: 662KB

.reloc Size: 167KB - Virtual size: 167KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 322KB - Virtual size: 322KB

.data
Size: 24KB - Virtual size: 55KB

.rsrc
Size: 663KB - Virtual size: 662KB

.reloc
Size: 167KB - Virtual size: 167KB