1506235ef20de5e302756790a06e84aba843ef488af220956041a154a0901e98

Sharing

Copy URL

Twitter E-mail

General

Target

1506235ef20de5e302756790a06e84aba843ef488af220956041a154a0901e98
Size

493KB
MD5

6c7e410f44893d5274d311126f2c70f6
SHA1

f057ffd3ef87238b2a99df772832a9468cbe5d68
SHA256

1506235ef20de5e302756790a06e84aba843ef488af220956041a154a0901e98
SHA512

f248792d2a9ebfb978c5acf8512849c77d0776707be5a568a0cafc00b212dcee6c67de161fa292575b26a82f14c7253be454d9e68f21f0425c41c7f460772a38
SSDEEP

6144:PseFPcfIB+6+AVbYXkbv7xxfC0Gwxbr6hYYJu:0ChB+YVbYUbjxx60b

Score

N/A

Malware Config

Signatures

Files

1506235ef20de5e302756790a06e84aba843ef488af220956041a154a0901e98
.exe windows x86

c8a24117bdf08c923cd852c22688a30e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
VirtualAlloc

user32

SetMenu
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UnregisterClassA
UpdateWindow
WinHelpA
wsprintfA
LoadBitmapA
IsZoomed
IsWindowVisible
IsIconic
IsCharUpperW
IsCharLowerW
IsCharAlphaW
IsCharAlphaNumericW
InvalidateRect
GetWindowTextA
GetWindowRect
GetWindowLongA
GetSystemMetrics
GetSubMenu
GetParent
GetMonitorInfoW
GetMessageTime
GetMessageA
GetMenuStringW
GetMenuItemID
GetMenu
GetKeyboardLayoutNameW
GetKeyboardLayoutList
GetKeyNameTextA
GetDlgItemTextA
GetDlgItem
GetDesktopWindow
SetForegroundWindow
GetCursorPos
GetCursorInfo
GetClipboardViewer
GetClipboardData
GetClassNameW
GetCaretPos
FindWindowA
FillRect
EndPaint
EndDialog
EnableWindow
EnableMenuItem
DrawTextA
DrawMenuBar
DrawCaption
DispatchMessageA
DialogBoxParamA
DialogBoxIndirectParamW
DialogBoxIndirectParamA
DestroyWindow
DeleteMenu
DefWindowProcA
DdePostAdvise
CreateWindowExA
CreateDialogParamW
CreateDesktopW
ClientToScreen
CheckMenuRadioItem
CheckMenuItem
CharUpperBuffA
ChangeDisplaySettingsA
BeginPaint
CharLowerA
LoadIconW
AnyPopup
CloseWindowStation
GetLastActivePopup
CountClipboardFormats
CloseClipboard
SetFocus
SetDlgItemTextA
SetCursorPos
SetCursor
SetCapture
SendMessageTimeoutW
SendMessageA
SendDlgItemMessageA
ReleaseDC
ReleaseCapture
RegisterWindowMessageA
RegisterHotKey
RegisterClassA
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageA
PeekMessageA
MoveWindow
MonitorFromPoint
MessageBoxA
MessageBeep
MapVirtualKeyA
LoadStringA
LoadIconA
GetDC
LoadCursorA

gdi32

GetTextCharset
CreateMetaFileA
GetMapMode
StrokeAndFillPath
StretchBlt
SetViewportOrgEx
SetTextColor
SetPixel
SetBkMode
SetBkColor
SelectObject
RoundRect
Rectangle
PolyDraw
MoveToEx
LineTo
GetTextFaceW
GetTextExtentPoint32W
GetPixel
GetObjectW
GetKerningPairsA
GetDeviceCaps
GetDIBits
GdiAlphaBlend
ExtCreatePen
EndPath
Ellipse
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontW
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CloseFigure
BeginPath
AngleArc
GetSystemPaletteUse
GetGraphicsMode
GetFontLanguageInfo
WidenPath
GetObjectType
GetLayout
StrokePath
GetTextCharacterExtra
GetTextAlign
GetROP2
RealizePalette
GetStretchBltMode
GetPolyFillMode
GetStockObject
GetTextColor
UnrealizeObject
SetMetaRgn
UpdateColors
SwapBuffers
GetPixelFormat
SaveDC
PathToRegion

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegOpenKeyW
RegQueryValueExW

shell32

SHFileOperationW
Shell_NotifyIcon
ShellExecuteW
DoEnvironmentSubstA
DragFinish
DragQueryFileW
DragQueryPoint
ExtractIconExW
SHBrowseForFolderW
SHCreateDirectoryExW
SHEmptyRecycleBinA
SHEmptyRecycleBinW
Shell_NotifyIconW
SHGetDesktopFolder
SHGetDiskFreeSpaceExW
SHGetFileInfo
SHGetFolderPathW
SHGetMalloc
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderPathA
SHPathPrepareForWriteA
ShellExecuteExW

ole32

CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoCreateInstanceEx
StringFromIID
StringFromCLSID
OleUninitialize
OleSetMenuDescriptor
OleSetContainedObject
OleInitialize
MkParseDisplayName
IIDFromString
CreateStreamOnHGlobal
CreateBindCtx
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoSetProxyBlanket
CoInitializeSecurity
CoInitialize

shlwapi

StrStrW
StrRChrW
StrRStrIW

msvcrt

_cexit
wcslen
wcscpy
strstr
sscanf
sprintf
realloc
rand
memmove
malloc
isspace
isdigit
isalnum
free
fopen
floor
fclose
exit
calloc
atol
atoi
_CIacos
_XcptFilter
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_itoa
_ltoa
_purecall
_strnicmp

Sections

.text
Size: 261KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8a24117bdf08c923cd852c22688a30e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

msvcrt

Sections

.text Size: 261KB - Virtual size: 260KB

.rdata Size: 47KB - Virtual size: 47KB

.data Size: 177KB - Virtual size: 177KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 261KB - Virtual size: 260KB

.rdata
Size: 47KB - Virtual size: 47KB

.data
Size: 177KB - Virtual size: 177KB

.rsrc
Size: 7KB - Virtual size: 6KB