19a8c956faf73ee7d4d767198d588106e3596ed8eb3cabd1c7b9090cea1a4b11

Sharing

Copy URL

Twitter E-mail

General

Target

19a8c956faf73ee7d4d767198d588106e3596ed8eb3cabd1c7b9090cea1a4b11
Size

126KB
MD5

9ccd57f97d83b28d797a7863192d93d9
SHA1

99a337c00d252ce3e394616827a8d36c462b188e
SHA256

19a8c956faf73ee7d4d767198d588106e3596ed8eb3cabd1c7b9090cea1a4b11
SHA512

b62b7a0e7ae5a7fbcabbd8ceecd9644abbf761499ebd4bc42f407fbc1c4d2f7fc3ce944eaafbb2ab0144954f8b8b9859034423f6e6b3a937df43c95df5ed6ac7
SSDEEP

3072:u/PqsKB4yHPQ5HgSYUHJaOu0bgMRDb1DIFs:uCBRP0H/laf0bHDb10Fs

Score

N/A

Malware Config

Signatures

Files

19a8c956faf73ee7d4d767198d588106e3596ed8eb3cabd1c7b9090cea1a4b11
.exe windows x86

0330e1cc0ea92477c42adb33ad697380

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetA
ImageList_Read
ImageList_GetImageCount
ImageList_ReplaceIcon
CreatePropertySheetPageW
ImageList_LoadImageW

msvcrt

bsearch
wcstod
sscanf
strtoul
strncmp
_controlfp
__set_app_type
__p__fmode
isalnum
wcslen
strerror
mbstowcs
wcspbrk
__p__commode
calloc
_amsg_exit
strtol
clearerr
toupper
_initterm
fputc
localtime
_ismbblead
fgets
_XcptFilter
wcstombs
_exit
_cexit
srand
gmtime
wcsncpy
__setusermatherr
strncpy
qsort
strspn
gets
ftell
towlower
fputs
iswdigit
__getmainargs
isprint
strcpy
strstr
strchr
isupper
strtok

user32

SetDlgItemInt
FindWindowW
GetKeyboardType
SetWindowPlacement
DrawTextExW
FillRect
GetClassLongW
LoadStringA
CreateAcceleratorTableW
CreatePopupMenu
SetDlgItemTextW
IsZoomed
ChildWindowFromPointEx
DrawTextA
IsIconic
RegisterClassExA
ActivateKeyboardLayout
SendMessageTimeoutA
SetMenu
GetKeyboardLayout
GetWindowTextA
PostThreadMessageA
CharToOemW
IsWindow
PostMessageA
CreateMenu
DefWindowProcA
CreateIconFromResource
GetMenuItemCount
CharNextA
IsChild
RedrawWindow
MessageBoxA
FindWindowA
GetMessagePos
CheckRadioButton
IsCharAlphaA
GetSysColor
PostThreadMessageW
CheckMenuRadioItem
RegisterWindowMessageA
TranslateAcceleratorW
SendInput
CreateDialogParamA
GetMenuItemInfoW
WaitForInputIdle
DialogBoxParamA
GetMonitorInfoW
SetSysColors
GetFocus
CallWindowProcA
LoadAcceleratorsW
GetWindowTextLengthW
CreateDialogParamW
SetUserObjectInformationW
TranslateMessage
CloseDesktop
CascadeWindows
GetUserObjectInformationW
CharToOemA
DrawFrameControl
GetTopWindow
InternalGetWindowText
OpenInputDesktop
SetLastErrorEx
LoadMenuW
GetActiveWindow
PeekMessageA
ShowScrollBar
IsWindowUnicode
EndPaint
OpenIcon
InsertMenuItemW
IsDialogMessageW
IsCharLowerA
SetActiveWindow
SendMessageTimeoutW
ShowCursor
LoadImageA
EndDialog
RegisterClassA
CharLowerW
OffsetRect
LockWindowUpdate
CreateCursor
AllowSetForegroundWindow
SwitchToThisWindow
GetForegroundWindow
SystemParametersInfoA
FrameRect
GetWindowPlacement
GetClassNameW
SetForegroundWindow
mouse_event
WaitMessage
LoadMenuA
GetSysColorBrush
GetDoubleClickTime
ScreenToClient
InSendMessage
GetMenuItemID
GetSystemMenu
DrawIcon
GetDlgItem
SetMenuItemBitmaps
GetWindowRect
VkKeyScanA
CreateDialogIndirectParamW
SetTimer
BeginPaint
CharLowerA
GetKeyNameTextW
IsCharUpperA
SendDlgItemMessageA
InsertMenuA
SetRect
OemToCharA
GetKeyboardLayoutNameW
SetCaretPos
LoadImageW

kernel32

GlobalFlags
SetCommBreak
SetThreadLocale
FormatMessageW
SetEndOfFile
VirtualFree
QueryDosDeviceW
FindFirstChangeNotificationW
OpenEventA
lstrcpyA
ConnectNamedPipe
CompareStringA
GetCommProperties
GetSystemTimeAsFileTime
GetStartupInfoW
MoveFileW
WinExec
GetFileType
SetPriorityClass
OpenFile
ResumeThread
FindResourceW
SetupComm
VerifyVersionInfoW
SetFileAttributesW
LocalFree
SetNamedPipeHandleState
GetModuleHandleA
SetSystemTime
lstrcmpiA
GetShortPathNameW
IsValidLanguageGroup
LCMapStringW
WaitCommEvent
CreateRemoteThread
GetComputerNameW
EnumResourceNamesA
WaitForSingleObjectEx
ReleaseMutex
GetUserDefaultLangID
CallNamedPipeW
GetCurrentThread
GetLastError
LoadResource
GetTempPathA
CreateNamedPipeW
lstrlenA
CreateWaitableTimerA
SetFileAttributesA
WaitForMultipleObjects
FileTimeToLocalFileTime
CancelWaitableTimer
UnlockFile
RemoveDirectoryW
LocalSize
GetStdHandle
FileTimeToSystemTime
GetModuleFileNameA

Exports

Exports

?RegenerateMainValues@@YGKPBDDPAX:O

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.emnar
Size: 512B - Virtual size: 126B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fire
Size: 1KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imper
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wchar
Size: 1024B - Virtual size: 754B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0330e1cc0ea92477c42adb33ad697380

Headers

File Characteristics

Imports

comctl32

msvcrt

user32

kernel32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 22KB

.emnar Size: 512B - Virtual size: 126B

.fire Size: 1KB - Virtual size: 95KB

.data Size: 2KB - Virtual size: 1KB

.imper Size: 6KB - Virtual size: 6KB

.wchar Size: 1024B - Virtual size: 754B

.wdata Size: 512B - Virtual size: 192B

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 93KB - Virtual size: 93KB

.text
Size: 22KB - Virtual size: 22KB

.emnar
Size: 512B - Virtual size: 126B

.fire
Size: 1KB - Virtual size: 95KB

.data
Size: 2KB - Virtual size: 1KB

.imper
Size: 6KB - Virtual size: 6KB

.wchar
Size: 1024B - Virtual size: 754B

.wdata
Size: 512B - Virtual size: 192B

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 93KB - Virtual size: 93KB