0f252830197d34172754c3d2d6066f3e26b65e1b4efac8c911a8c504a6324eb5

Sharing

Copy URL Twitter E-mail

General

Target

0f252830197d34172754c3d2d6066f3e26b65e1b4efac8c911a8c504a6324eb5
Size

1.6MB
MD5

107bb2e5fd3b7e329060a8a07c88b6de
SHA1

9aa5fc8b980f58d5ed6034489eef7f33d12a5294
SHA256

0f252830197d34172754c3d2d6066f3e26b65e1b4efac8c911a8c504a6324eb5
SHA512

815514a384d9ead15c8bf711e3672e1f69588d53b2bcc835171e6bf4f5df357b2776181fdcca2dab4e97146a3ff1f3115eabf41bcaae9ac795e10301fdd677b3
SSDEEP

49152:xqOaZvBU+ZpQYCRoNuYbKIXOQscaRHiAEG8EbSAtEpPtWcWt6Ws:xqOcBU+kYCRoNuYbfXOQPaRHT8ctEpwa

Score

1^/10

Malware Config

Signatures

Files

0f252830197d34172754c3d2d6066f3e26b65e1b4efac8c911a8c504a6324eb5
.exe windows x86

33abf112f74febc08eb8accd01f1a972

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFlags
DeleteFileA
InitializeCriticalSectionAndSpinCount
LocalReAlloc
GetFileSize
GetACP
SetFilePointer
GetTempFileNameA
GetTempPathA
lstrcmpiA
ReadFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetCPInfo
GetOEMCP
SetErrorMode
GetFileAttributesExA
FileTimeToLocalFileTime
GetFileSizeEx
GetFileTime
GetProfileIntA
SearchPathA
VirtualProtect
GetWindowsDirectoryA
GetNumberFormatA
FindResourceExW
GetUserDefaultLCID
EncodePointer
DecodePointer
GetConsoleMode
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapAlloc
HeapFree
HeapReAlloc
RtlUnwind
RaiseException
VirtualAlloc
GetSystemInfo
VirtualQuery
ExitThread
CreateThread
HeapQueryInformation
HeapSize
SetStdHandle
GetFileType
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
IsValidCodePage
CreateFileW
GetLocaleInfoW
GetCurrentDirectoryA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
GetStringTypeW
IsProcessorFeaturePresent
LCMapStringW
CompareStringW
GetTimeZoneInformation
GetConsoleCP
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
SetEnvironmentVariableA
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
FileTimeToSystemTime
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GlobalAddAtomA
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentProcessId
GetVersionExA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleA
LoadLibraryW
FindResourceA
FreeResource
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetModuleFileNameA
GetLocaleInfoA
CompareStringA
ActivateActCtx
DeactivateActCtx
InterlockedExchange
lstrcmpA
GetModuleHandleW
FreeLibrary
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
lstrlenW
MulDiv
GetLastError
SetLastError
MultiByteToWideChar
lstrlenA
InterlockedIncrement
TlsFree
GetStdHandle
DeleteCriticalSection
GetTickCount
InterlockedDecrement
Process32Next
Process32First
CreateToolhelp32Snapshot
OpenProcess
LoadLibraryA
GetProcAddress
ExitProcess
WinExec
Sleep
CreateDirectoryA
lstrcpyA
CloseHandle
WriteFile
CreateFileA
LockResource
SizeofResource
WideCharToMultiByte
LoadResource
GetFileAttributesA
FindResourceW

user32

CharUpperA
CreatePopupMenu
BringWindowToTop
LockWindowUpdate
SetParent
MonitorFromPoint
IsMenu
UnionRect
OpenClipboard
CopyImage
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageA
LoadImageW
DestroyIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetCursorPos
GetIconInfo
EnableScrollBar
CopyIcon
GetDoubleClickTime
SetClassLongA
DestroyAcceleratorTable
GetUpdateRect
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
UpdateLayeredWindow
UnregisterClassA
TranslateAcceleratorA
InsertMenuItemA
LoadAcceleratorsA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
RegisterClipboardFormatA
FrameRect
CharUpperBuffA
SubtractRect
IsClipboardFormatAvailable
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
GetKeyNameTextA
PostThreadMessageA
IsCharLowerA
MapVirtualKeyExA
InvertRect
HideCaret
CreateMenu
DestroyCursor
GetWindowRgn
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcA
GetMenu
DestroyMenu
GetMenuItemInfoA
GetClassNameA
InvalidateRect
UpdateWindow
ShowOwnedPopups
SetCursor
GetMessageA
IsZoomed
DispatchMessageA
GetKeyState
PeekMessageA
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuA
EnableMenuItem
CheckMenuItem
SetWindowsHookExA
UnhookWindowsHookEx
GetCursorPos
CallNextHookEx
PtInRect
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxA
LoadCursorA
GetClassInfoA
DefWindowProcA
LoadCursorW
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoA
GetMonitorInfoA
SetRectEmpty
CopyRect
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetNextDlgTabItem
EndDialog
DrawIconEx
GetSysColorBrush
RedrawWindow
IsWindowVisible
MapWindowPoints
GetWindowRect
SetWindowRgn
DrawFocusRect
DrawFrameControl
DrawEdge
FillRect
GetSysColor
OffsetRect
InflateRect
IsRectEmpty
DrawStateA
RegisterWindowMessageA
MapDialogRect
GetWindowTextLengthA
GetWindowTextA
GetFocus
SetFocus
GetParent
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
IsWindow
SetWindowTextA
GetWindowLongA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
CheckDlgButton
GetWindow
PostQuitMessage
PostMessageA
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
wsprintfA
GetSystemMenu
AppendMenuA
SendMessageA
SetWindowPos
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
EnableWindow
GetAsyncKeyState
NotifyWinEvent
LoadMenuW
MessageBeep
GetNextDlgGroupItem
IntersectRect
SetRect
CopyAcceleratorTableA
KillTimer
SetTimer
RealChildWindowFromPoint
DeleteMenu
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
LoadIconW
TranslateMessage
LoadIconA
SetScrollRange

advapi32

LookupPrivilegeValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA
OpenProcessToken
AdjustTokenPrivileges
GetLengthSid

ole32

RevokeDragDrop
OleGetClipboard
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
CreateStreamOnHGlobal
CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
CoCreateInstance
CoInitializeSecurity
CoInitializeEx
ReleaseStgMedium

oleaut32

VariantChangeType
SysStringLen
SysAllocStringLen
SysFreeString
SysAllocString
VariantClear
VariantInit
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathRemoveFileSpecW

gdiplus

GdiplusShutdown
GdipGetImageGraphicsContext
GdipDrawImageI
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup

winmm

PlaySoundA

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

gdi32

GetTextColor
GetBkColor
CombineRgn
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
PatBlt
ExtTextOutA
GetTextExtentPoint32A
GetTextMetricsA
CreateDIBitmap
GetStockObject
CreatePen
CreatePatternBrush
CreateFontIndirectA
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateSolidBrush
CreateDCA
CopyMetaFileA
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
GetObjectA
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
EnumFontFamiliesA
GetTextCharsetInfo
DeleteObject
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetViewportOrgEx
SelectObject
Escape
TextOutA
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
SetLayout
GetDeviceCaps
SetTextAlign
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreateBitmap
SelectPalette
GetObjectType
GetRgnBox
OffsetRgn
CreateRoundRectRgn
SetRectRgn
DPtoLP
CreateDIBSection
Rectangle
SetPixel
SetDIBColorTable
RealizePalette
StretchBlt
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
EnumFontFamiliesExA
GetWindowOrgEx
SetPixelV
GetTextFaceA
GetLayout

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

shell32

DragFinish
SHAppBarMessage
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
ShellExecuteA
SHGetFileInfoA

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33abf112f74febc08eb8accd01f1a972

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

msimg32

comctl32

shlwapi

gdiplus

winmm

wininet

oleacc

imm32

gdi32

winspool.drv

comdlg32

shell32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 267KB - Virtual size: 267KB

.data Size: 23KB - Virtual size: 55KB

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 166KB - Virtual size: 166KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 267KB - Virtual size: 267KB

.data
Size: 23KB - Virtual size: 55KB

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 166KB - Virtual size: 166KB