8c02fb9e091a1213a09d126ca2b9b1c394d76656ecbc6220f81c785ff3319241

Sharing

Copy URL Twitter E-mail

General

Target

8c02fb9e091a1213a09d126ca2b9b1c394d76656ecbc6220f81c785ff3319241
Size

171KB
MD5

05a9b2fecf06ee22f283bda63ec9a4b7
SHA1

4801bbb33a49b9bb93c7b180cccffeb5e8dcf0a3
SHA256

8c02fb9e091a1213a09d126ca2b9b1c394d76656ecbc6220f81c785ff3319241
SHA512

12c440bbccd097ed34c8a398b81fc5e59425cb6c40790ba644ee7089b9113e41d07a932ee343f6bb065c6750ca14d9fadd8fb4b632616e5897e393c063121000
SSDEEP

3072:GfnkXwzDfAmlDUqkAzAs3Uwqj8ThksOlafBeYaAWllBTkc+6L+SrPuiIEMmOQpxz:GbTAiDUfmBqQq531AYujfSrP/q+pxG8m

Score

N/A

Malware Config

Signatures

Files

8c02fb9e091a1213a09d126ca2b9b1c394d76656ecbc6220f81c785ff3319241
.dll windows x86

7661f076bb398c89d6dea58ffb3aeb9e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

WriteClassStm
CoTaskMemRealloc
StringFromCLSID
CoCreateInstanceEx
OleRegGetUserType
CoGetMalloc
ReadOleStg
CoTaskMemAlloc
CoCreateInstance
StgCreateDocfileOnILockBytes
CoMarshalInterThreadInterfaceInStream
CoMarshalInterface
GetHGlobalFromStream
CoGetObjectContext
ReleaseStgMedium
StringFromGUID2
OleLoadFromStream
CoRevokeClassObject
CreateILockBytesOnHGlobal
StringFromIID
OleRegEnumVerbs
OleSaveToStream
StgIsStorageFile
CoImpersonateClient

comdlg32

PrintDlgExW
FindTextA
CommDlgExtendedError
ChooseColorA
ChooseColorW
GetOpenFileNameW
PrintDlgA
GetSaveFileNameW
GetFileTitleA
FindTextW

comctl32

CreatePropertySheetPageW
ImageList_ReplaceIcon

user32

SetDlgItemTextA
GetWindowDC
UnregisterClassA
ReleaseDC
OffsetRect
RegisterClassA
DialogBoxParamA
GetMenuItemCount
GetMessageA
IsIconic
SystemParametersInfoW
IsChild
CharUpperA
CallNextHookEx
CreatePopupMenu
CheckDlgButton
IsWindow
LoadStringA
GetMenu
TranslateMessage
GetWindowPlacement
GetDlgItem
DrawFocusRect
GetWindowRect
DefWindowProcA
GetSystemMenu
GetWindowTextLengthW
wsprintfW
wsprintfA

msvcrt

wcslen
setlocale
_wcsupr
wcsstr
towlower
wcscat
atol
wcschr
fflush
wcsspn
_CIsqrt
_ultow
_adjust_fdiv
sprintf
wcstombs
__set_app_type
_vsnwprintf
wcsncat
_controlfp
fprintf
__p__commode
_stricmp
?terminate@@YAXXZ
wcstoul
isspace
atoi
_ltoa
rand
swprintf
fopen
__setusermatherr
fseek
_fileno
iswalpha
__p__fmode
__initenv
srand

kernel32

EnterCriticalSection
FreeEnvironmentStringsW
GetLocalTime
GetCurrentThread
CreateMutexW
GetCurrentThreadId
CreateProcessA
GetCPInfo
LockResource
ResetEvent
LoadResource
RtlUnwind
GetFileSize
CompareStringW
MultiByteToWideChar
MulDiv
GetConsoleMode
ExitProcess
CreateThread
WriteConsoleW
RemoveDirectoryW
lstrcmpA
GetSystemTime
UnmapViewOfFile
lstrcpynA
OutputDebugStringA
lstrlenW
GetCurrentProcessId
ReadFile
GlobalLock
VirtualAlloc

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 144KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 495B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7661f076bb398c89d6dea58ffb3aeb9e

Headers

File Characteristics

Imports

ole32

comdlg32

comctl32

user32

msvcrt

kernel32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 18KB - Virtual size: 18KB

.data Size: 144KB - Virtual size: 334KB

.reloc Size: 512B - Virtual size: 495B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 18KB - Virtual size: 18KB

.data
Size: 144KB - Virtual size: 334KB

.reloc
Size: 512B - Virtual size: 495B