482321d35a18193197fda2ee747d824173f28b249e443838896d06c1409d3e05

Sharing

Copy URL

Twitter E-mail

General

Target

482321d35a18193197fda2ee747d824173f28b249e443838896d06c1409d3e05
Size

4.4MB
MD5

8baca0bf8bc5b0d5532507f17cb738ea
SHA1

99d62e93c0ec8d89178d9bb6a6c873621e10afff
SHA256

482321d35a18193197fda2ee747d824173f28b249e443838896d06c1409d3e05
SHA512

743465eec97d61ed362c2ba0dfb86af5db0cdcc787697909b580177de1b3f33df643e54e5d53ac7990ea06692b8bfa23530688bdc579885ba460c2387809d967
SSDEEP

49152:e5KHeLkNHApmTwDyfLW5Vnzq4xGRD3xmvUak71TUM41X/ceQvipjCt1iWggSzpQR:SKHakNHA6W/3G13wQ5GJ/G1YlQeCJTr

Score

1^/10

Malware Config

Signatures

Files

482321d35a18193197fda2ee747d824173f28b249e443838896d06c1409d3e05
.exe windows x86

4fac4b97f40254f48a86f4f7ec6324a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

GetMappedFileNameW

kernel32

QueryDosDeviceW
OpenProcess
ResumeThread
DeleteFileW
GetFileSizeEx
GetTickCount
FindNextFileW
FindClose
CreateDirectoryW
GetFullPathNameW
RemoveDirectoryW
GetTempPathW
SetFileAttributesW
MoveFileExW
GetTempFileNameW
MoveFileW
HeapFree
GetCurrentThreadId
GlobalAlloc
GlobalFree
HeapAlloc
LocalFree
GetProcessHeap
GetCurrentProcessId
GetLogicalDriveStringsW
CreateEventW
SetEvent
ResetEvent
InterlockedExchangeAdd
FormatMessageW
GetACP
MultiByteToWideChar
WideCharToMultiByte
InterlockedExchange
SetLastError
InterlockedDecrement
InterlockedIncrement
LoadLibraryExW
MulDiv
lstrcmpW
SetWaitableTimer
CreateWaitableTimerW
LocalAlloc
GlobalLock
GlobalUnlock
UnmapViewOfFile
CreateFileMappingW
MapViewOfFileEx
QueryPerformanceFrequency
QueryPerformanceCounter
TlsSetValue
GetModuleHandleA
DisableThreadLibraryCalls
lstrcmpiW
CreateThread
TlsGetValue
VirtualProtect
GetModuleHandleExW
OutputDebugStringA
HeapCreate
HeapDestroy
ReleaseMutex
CreateMutexW
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetStringTypeW
GetCPInfo
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
OutputDebugStringW
InterlockedPopEntrySList
InterlockedPushEntrySList
VirtualAlloc
VirtualFree
LoadLibraryExA
ExitProcess
InterlockedCompareExchange
Thread32Next
Thread32First
SuspendThread
CreateToolhelp32Snapshot
HeapReAlloc
GetThreadContext
SetThreadContext
OpenThread
VirtualQuery
RtlUnwind
ExitThread
FreeLibraryAndExitThread
GetStdHandle
GetFileType
GetTimeZoneInformation
HeapSize
GetConsoleMode
ReadConsoleW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCommandLineA
GetSystemInfo
lstrcpyW
lstrcatW
GetVersionExW
lstrlenW
TlsAlloc
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetFileSize
SetEndOfFile
SetFilePointer
WriteFile
ReadFile
GetFileAttributesExW
CreateFileW
GetLongPathNameW
FindFirstFileW
SetEnvironmentVariableA
SetStdHandle
FlushFileBuffers
GetConsoleCP
SetFilePointerEx
WriteConsoleW
GetModuleHandleW
GetFileAttributesW
GetModuleFileNameW
ExpandEnvironmentStringsW
CloseHandle
WaitForSingleObject
SetErrorMode
TerminateProcess
GetCurrentProcess
DeleteCriticalSection
DecodePointer
RaiseException
GetLastError
Sleep
InitializeCriticalSectionAndSpinCount
FreeLibrary
GetProcAddress
FindResourceW
LoadResource
LoadLibraryW
LockResource
FreeResource
SizeofResource
SwitchToThread
FlushInstructionCache
EncodePointer

user32

AttachThreadInput
SetCaretPos
LoadBitmapW
DrawIconEx
GetIconInfo
ToAscii
GetCaretBlinkTime
GetKeyboardState
GetSysColor
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
SetClipboardData
EmptyClipboard
GetAncestor
EnumThreadWindows
CreateAcceleratorTableW
DestroyAcceleratorTable
LoadStringW
GetFocus
GetAsyncKeyState
GetPropW
MonitorFromWindow
SetWindowRgn
ShowWindow
InvalidateRgn
OpenClipboard
GetMonitorInfoW
IsChild
MapWindowPoints
SystemParametersInfoW
ValidateRect
MoveWindow
SetFocus
BringWindowToTop
SetRectEmpty
MsgWaitForMultipleObjects
FillRect
UpdateLayeredWindow
SetRect
GetWindowThreadProcessId
GetWindowTextLengthW
AdjustWindowRectEx
RemovePropW
GetForegroundWindow
SetPropW
GetClassNameW
SetParent
GetDlgItem
BeginPaint
EndPaint
EnableWindow
GetWindowTextW
ShowWindowAsync
GetWindow
IsWindowVisible
GetKeyState
ScreenToClient
TrackMouseEvent
SetCapture
ReleaseCapture
GetMessageW
DispatchMessageW
PeekMessageW
TranslateMessage
PostQuitMessage
GetClassLongW
CharNextW
SetWindowTextW
DialogBoxParamW
UnionRect
PtInRect
GetWindowRect
SetWindowPos
EqualRect
EnumChildWindows
OffsetRect
RedrawWindow
CopyRect
ClientToScreen
IntersectRect
GetWindowDC
SetCursor
GetClientRect
IsZoomed
GetParent
InvalidateRect
GetDCEx
IsIconic
IsRectEmpty
LoadMenuW
GetDC
CreateWindowExW
SendMessageW
GetSystemMetrics
RegisterClassExW
TrackPopupMenu
GetSubMenu
IsWindow
SetTimer
GetMenuDefaultItem
DestroyIcon
IsMenu
SetMenuDefaultItem
DestroyMenu
LoadCursorW
KillTimer
GetClassInfoExW
RegisterWindowMessageW
LoadImageW
ReleaseDC
GetCursorPos
EndDialog
GetWindowLongW
DefWindowProcW
CallWindowProcW
DestroyWindow
GetActiveWindow
LoadIconW
SetWindowLongW
GetDesktopWindow
SetForegroundWindow
MessageBoxW
UnregisterClassW
PostMessageW

gdi32

CreateSolidBrush
ExtTextOutW
CreateDCW
GetDIBits
CreateDIBSection
CreateRoundRectRgn
PtInRegion
EnumFontsW
GetObjectW
CreateFontIndirectW
SetGraphicsMode
GetStockObject
SetWorldTransform
CreateRectRgnIndirect
CreatePolygonRgn
GetDeviceCaps
BitBlt
SetViewportOrgEx
GetRgnBox
CreateCompatibleBitmap
SelectObject
GetClipBox
SetTextColor
DeleteDC
CreateCompatibleDC
DeleteObject
SetBkColor

advapi32

RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegQueryInfoKeyW
RegDeleteValueW
RegOpenKeyExW

shell32

Shell_NotifyIconW
DragQueryFileW
DragFinish
SHGetSpecialFolderPathW
ShellExecuteExW

ole32

CoTaskMemAlloc
OleLockRunning
CLSIDFromString
OleInitialize
CLSIDFromProgID
StringFromGUID2
OleUninitialize
CoGetClassObject
CreateStreamOnHGlobal
CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance

oleaut32

VariantClear
SysAllocStringLen
SysStringLen
SysAllocString
OleCreateFontIndirect
LoadTypeLi
VariantInit
LoadRegTypeLi
VarUI4FromStr
SysFreeString
DispCallFunc

shlwapi

PathFindFileNameW
ord12
StrDupW
PathAppendW
StrToIntA

comctl32

_TrackMouseEvent
InitCommonControlsEx

msimg32

AlphaBlend

urlmon

CoInternetCreateSecurityManager
CoInternetCreateZoneManager

imm32

ImmAssociateContextEx
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmNotifyIME

winmm

timeGetTime

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdiplus

GdipDrawRectangle
GdipDrawLine
GdipSetPenDashStyle
GdipGraphicsClear
GdipMultiplyWorldTransform
GdipGetPathWorldBounds
GdipFillPath
GdipTransformRegion
GdipSetStringFormatTrimming
GdipGetFontStyle
GdipCreateSolidFill
GdipCloneBitmapArea
GdipGetCellDescent
GdipSetInterpolationMode
GdipSetLinePresetBlend
GdipCreateFont
GdipSetStringFormatLineAlign
GdipCreatePath
GdipEndContainer
GdipSetSmoothingMode
GdipCreateMatrix
GdipGetStringFormatAlign
GdipDeletePath
GdipDisposeImageAttributes
GdipCreateMatrix2
GdipDeleteBrush
GdipGetLineSpacing
GdipSetLineWrapMode
GdipCreateLineBrushI
GdipDrawImageRectRect
GdipSaveGraphics
GdipCreateFontFamilyFromName
GdipGetEmHeight
GdipGetStringFormatLineAlign
GdipAddPathString
GdipGetTextRenderingHint
GdipGetFamily
GdipSetCompositingQuality
GdipSetImageAttributesColorMatrix
GdipGetLineTransform
GdipDeleteFontFamily
GdipGetInterpolationMode
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageSelectActiveFrame
GdipGetPropertyItem
GdipImageGetFrameDimensionsCount
GdipCreateRegionPath
GdipAddPathLineI
GdipAddPathBezierI
GdipCombineRegionPath
GdipAddPathEllipseI
GdipAddPathArcI
GdipAddPathRectangleI
GdipCombineRegionRegion
GdipScaleWorldTransform
GdipSetLineTransform
GdipSetTextureTransform
GdiplusShutdown
GdiplusStartup
GdipSetCompositingMode
GdipSetClipRegion
GdipDrawPath
GdipDrawString
GdipSetImageAttributesWrapMode
GdipGetClipBoundsI
GdipCreateFromHDC
GdipFillEllipse
GdipBeginContainer2
GdipCreateTexture
GdipGetTextureTransform
GdipGetMatrixElements
GdipCloneStringFormat
GdipSetTextRenderingHint
GdipGetCellAscent
GdipStringFormatGetGenericTypographic
GdipRotateWorldTransform
GdipRestoreGraphics
GdipCloneBrush
GdipMeasureString
GdipDeleteRegion
GdipGetImageGraphicsContext
GdipFillRectangleI
ord1
GdipDeleteGraphics
GdipDeleteStringFormat
GdipDeleteFont
GdipGetFontSize
GdipTranslateWorldTransform
GdipDeletePen
GdipCreatePen1
GdipSetStringFormatAlign
GdipDrawImageRectRectI
GdipDeleteMatrix
GdipGetFamilyName
GdipCloneRegion
GdipSetStringFormatFlags
GdipGetImageHeight
GdipCloneImage
GdipBitmapUnlockBits
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipGetImagePixelFormat
GdipCloneBitmapAreaI
GdipFree
GdipBitmapLockBits
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipSetClipRectI
GdipClosePathFigure
GdipGetSmoothingMode
GdipDrawArcI
GdipSetPixelOffsetMode
GdipGetBrushType
GdipCreateImageAttributes
GdipCreateHBITMAPFromBitmap

Sections

.text
Size: 936KB - Virtual size: 935KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4fac4b97f40254f48a86f4f7ec6324a2

Headers

DLL Characteristics

File Characteristics

Imports

psapi

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

urlmon

imm32

winmm

version

gdiplus

Sections

.text Size: 936KB - Virtual size: 935KB

.rdata Size: 234KB - Virtual size: 233KB

.data Size: 17KB - Virtual size: 26KB

_RDATA Size: 2KB - Virtual size: 1KB

.rsrc Size: 4.6MB - Virtual size: 4.6MB

.reloc Size: 58KB - Virtual size: 58KB

.text
Size: 936KB - Virtual size: 935KB

.rdata
Size: 234KB - Virtual size: 233KB

.data
Size: 17KB - Virtual size: 26KB

_RDATA
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 4.6MB - Virtual size: 4.6MB

.reloc
Size: 58KB - Virtual size: 58KB