37312334158e98e5a3e536b38660de4c83d3a0628115ef7fbc09a15b5f9ccf33

Sharing

Copy URL

Twitter E-mail

General

Target

37312334158e98e5a3e536b38660de4c83d3a0628115ef7fbc09a15b5f9ccf33
Size

1.3MB
MD5

03f39d4df6508064da95ed5a273a6979
SHA1

60cb1fa320b0d8ac4082f8af7bf59e54de6b9ccb
SHA256

37312334158e98e5a3e536b38660de4c83d3a0628115ef7fbc09a15b5f9ccf33
SHA512

89212c00bfdc1addfa063d1786c96c3f69d932cdd678f9be3be58dfb89ed571417105ad8034b7ad88d4801f35755a847961f8ff6f1e91c26bf372d8be4da485c
SSDEEP

6144:IRhSg4hflDPZdm+6kLhLPBGvwkeWNX7eoTRt013:KoflDhPLhlbdAreoTz+3

Score

N/A

Malware Config

Signatures

Files

37312334158e98e5a3e536b38660de4c83d3a0628115ef7fbc09a15b5f9ccf33
.exe windows x86

e5c11daa24dc8b401ea8c36bae96968d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
HeapSize
HeapReAlloc
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FlushFileBuffers
WriteConsoleW
GetModuleHandleA
GetTickCount
DuplicateHandle
GetProcessHeap
Sleep
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
GetFileType
LCMapStringW
GetStringTypeW
HeapAlloc
HeapFree
GetACP
WriteFile
GetStdHandle
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameA
GetModuleHandleExW
ExitProcess
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
CreateFileW
EnterCriticalSection
SetLastError
RtlUnwind
RaiseException
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CloseHandle
GetLastError
GetCurrentProcess
GetProcAddress
VirtualProtect

shell32

DragQueryFileA
SHChangeNotify
DragAcceptFiles
SHGetFolderPathA
SHGetFileInfoA
SHGetFolderPathW

ole32

OleFlushClipboard
CoCreateGuid
OleInitialize
ReleaseStgMedium
RegisterDragDrop

gdi32

CreateHatchBrush
GetDIBits
CreateDCW
CreateCompatibleDC
GetCharacterPlacementA
GetOutlineTextMetricsW
GetPolyFillMode
CreateFontA
AddFontResourceA
GetBoundsRect
GetCharacterPlacementW
CreateBitmap
GetObjectW
GetFontData
CreateColorSpaceA
GetCurrentObject
BitBlt
GetPath
CreateScalableFontResourceW
CreateFontIndirectW
CreateRectRgn
CancelDC
CreateFontW
CreatePen
GetObjectType
GetColorSpace
CreateFontIndirectExA
CreateEllipticRgn
CreateDIBitmap
CreateFontIndirectExW
GetBitmapBits
CreateDiscardableBitmap
GetGlyphIndicesW
AnimatePalette
CreateDCA
CreatePalette
CreateSolidBrush
DeleteDC
ChoosePixelFormat
CreateDIBPatternBrushPt
GetPixelFormat
GetClipRgn
GetDeviceCaps

user32

GetMenuDefaultItem
EnumDisplayMonitors
CreateWindowExW
FlashWindow
OemToCharBuffA
DefDlgProcA
GetCursor
GetLastActivePopup
FindWindowA
RegisterClipboardFormatA
GetNextDlgTabItem
SendMessageA
EqualRect
InsertMenuItemA
GetPropA
CharNextA
EndPaint
GetWindowLongA
GetClientRect
CreateDialogIndirectParamA
SetDlgItemInt
SetDlgItemTextA
DeferWindowPos
IsWindowVisible
IsDialogMessageA
ReleaseDC
wsprintfA
GetDC
PtInRect
LoadStringW
InSendMessage
DrawIconEx
DrawTextExA
SetTimer
GetWindowTextA
GetCursorPos
GetSysColor
CreatePopupMenu
IsIconic
SetDlgItemTextW
SendMessageW
GetDlgItemTextW
GetSystemMenu
DialogBoxParamW
CreateDialogParamA
PostMessageA
EndDeferWindowPos
SetRectEmpty
SetRect
CharLowerA
SetMenu
GetClassInfoW
CharPrevA
RemoveMenu
CharUpperA
LoadImageA
MonitorFromWindow
GetWindowTextLengthA
BeginDeferWindowPos
GetDlgItem
CloseWindow
TranslateMessage
MonitorFromRect
DispatchMessageA
GetDlgItemInt
GetKeyNameTextA
GetMessagePos
GetMonitorInfoA
MessageBoxW
PeekMessageW
DestroyMenu
DispatchMessageW
DrawFocusRect

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 999KB - Virtual size: 1003KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 187KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e5c11daa24dc8b401ea8c36bae96968d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

ole32

gdi32

user32

advapi32

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 30KB - Virtual size: 30KB

.data Size: 999KB - Virtual size: 1003KB

.reloc Size: 5KB - Virtual size: 5KB

.text Size: 187KB - Virtual size: 188KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 30KB - Virtual size: 30KB

.data
Size: 999KB - Virtual size: 1003KB

.reloc
Size: 5KB - Virtual size: 5KB

.text
Size: 187KB - Virtual size: 188KB