d4529be749be487da4107d8cf9c88b6d1d4ce1ef62766856374bbd90ccb68194

Sharing

Copy URL Twitter E-mail

General

Target

d4529be749be487da4107d8cf9c88b6d1d4ce1ef62766856374bbd90ccb68194
Size

147KB
MD5

a3b2773dc90bb3c7f2b065d542b24fa8
SHA1

151149200fcbf128205881bf2725f0f30507a1c5
SHA256

d4529be749be487da4107d8cf9c88b6d1d4ce1ef62766856374bbd90ccb68194
SHA512

9eb7034cf665003f59fa284bdb4426a4f64091cf83652d4f5deb1ec890b2b8ff78501c96adb98dd1e099e61e6f1736038a93734d7579ea1debaa966cdd843b84
SSDEEP

3072:0iGHRtzLF+UHSy+wb3fKlRr1e9pjCIrEusUo:ifdpSy+wb3fKlRR++8EXU

Score

N/A

Malware Config

Signatures

Files

d4529be749be487da4107d8cf9c88b6d1d4ce1ef62766856374bbd90ccb68194
.dll windows x86

d02024d01c0337ddf70df3fde7bad179

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNIA
ord157
PathIsContentTypeA
SHRegSetPathW
SHRegCloseUSKey

shell32

ord80
ord191

kernel32

lstrcpyA
HeapAlloc
ClearCommError
GetCurrentProcess
SetHandleInformation
FindFirstFileExW
BackupSeek
lstrcpynW
TerminateProcess
GetMailslotInfo
GetLastError
GetModuleHandleA
BackupWrite
FindClose
MoveFileA
GetProfileStringA
WaitForMultipleObjects
EnumResourceNamesA
DuplicateHandle
SetFileShortNameA
CloseHandle
ResetWriteWatch
lstrcmpiW
EnumResourceTypesW
LoadLibraryA
GetProcAddress
lstrlenW
GetTimeZoneInformation
FileTimeToDosDateTime
GetNamedPipeInfo
GetTempFileNameW
LocalFileTimeToFileTime
FileTimeToSystemTime
FormatMessageW
_lcreat
DosDateTimeToFileTime
BackupRead

user32

EndPaint
IsWindowVisible
CreateDialogParamW
GetKeyboardState
CharLowerW
CharPrevA
DlgDirSelectExA
LoadCursorW
LoadImageW
EnumPropsW
TranslateAcceleratorW
EnumPropsExA
PostMessageW
SetMenuItemBitmaps
GetWindowInfo
BeginPaint
wsprintfW
SetPropW
TranslateMessage
LoadAcceleratorsW
GetWindowTextA
PeekMessageW
SetScrollPos
ReleaseDC
LoadCursorFromFileW
ScrollWindow
GetWindowRgn
SendMessageW
SetMenuItemInfoW
GetPropW
DispatchMessageW
GetDC
GetDesktopWindow
ValidateRgn

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
GetBitmapBits
GetGlyphIndicesW
GetTextExtentExPointW
LineTo
FillRgn
GetCharABCWidthsA
SetWindowExtEx
DescribePixelFormat
SetDIBitsToDevice
SetBkColor
AngleArc
OffsetClipRgn
SetTextCharacterExtra
CreateBitmapIndirect
UpdateColors

advapi32

GetSidLengthRequired
EqualSid
PrivilegedServiceAuditAlarmA
GetSidSubAuthority
InitializeSid

ntdll

memset

Exports

Exports

_MaxCharWidth@12
_ValidateMaxCharWidth@12

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.expdata
Size: 512B - Virtual size: 114B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.filedat
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pimport
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d02024d01c0337ddf70df3fde7bad179

Headers

File Characteristics

Imports

shlwapi

shell32

kernel32

user32

gdi32

advapi32

ntdll

Exports

Exports

Sections

.text Size: 1KB - Virtual size: 1KB

.code Size: 12KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 188B

.temp Size: 512B - Virtual size: 128B

.expdata Size: 512B - Virtual size: 114B

.filedat Size: 512B - Virtual size: 500B

.pimport Size: 3KB - Virtual size: 3KB

.rsrc Size: 126KB - Virtual size: 126KB

.reloc Size: 1024B - Virtual size: 834B

.text
Size: 1KB - Virtual size: 1KB

.code
Size: 12KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 188B

.temp
Size: 512B - Virtual size: 128B

.expdata
Size: 512B - Virtual size: 114B

.filedat
Size: 512B - Virtual size: 500B

.pimport
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 126KB - Virtual size: 126KB

.reloc
Size: 1024B - Virtual size: 834B