9f5d73ab37f679ddaa7aa2f3787ae831f58aed04b12b007b5118bb3d4fcecc90

Sharing

Copy URL Twitter E-mail

General

Target

9f5d73ab37f679ddaa7aa2f3787ae831f58aed04b12b007b5118bb3d4fcecc90
Size

239KB
MD5

6142871860012727a52bf70573590060
SHA1

46f58ed627e269d489253c8078d925bae1eca374
SHA256

9f5d73ab37f679ddaa7aa2f3787ae831f58aed04b12b007b5118bb3d4fcecc90
SHA512

fb167f4fb79d97efa0686c700bd2a6d49659f8d9999acbe6f0dc754b1ed0bbc3cd031ad246d72a0c75edb4ed11301dd5c54242ec561e6f93da92126006031309
SSDEEP

3072:ATc1hyLZanvsd1PpTzSSx7GZHW3nHyO4KNIIVuN7l74o0+WVpGZ:AA/yLZOvsXldx7G0C0i7l74o0d6Z

Score

N/A

Malware Config

Signatures

Files

9f5d73ab37f679ddaa7aa2f3787ae831f58aed04b12b007b5118bb3d4fcecc90
.exe windows x86

054cbf5d02915fb5a5285ac8cd0e8e36

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRect
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
SendMessageW
DefWindowProcW
SystemParametersInfoW
GetAsyncKeyState
IsDlgButtonChecked
ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
FindWindowExW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA
CharUpperW
CharPrevW
wvsprintfW
DispatchMessageW
PeekMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetFileInfoW
SHGetPathFromIDListW
SHBrowseForFolderW
SHFileOperationW

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

advapi32

RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyW
RegOpenKeyExW
RegEnumValueW
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW

gdi32

GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject
SetBkColor

comctl32

ImageList_Destroy
ImageList_Create
ImageList_AddMasked

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

kernel32

SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
RtlUnwind
GetModuleFileNameA
GetStdHandle
HeapCreate
HeapReAlloc
VirtualFree
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
IsValidCodePage
GetOEMCP
GetACP
DeleteCriticalSection
GetCPInfo
LeaveCriticalSection
GetLocaleInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetFileType
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapAlloc
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
ExitThread
SetFileTime
CompareFileTime
SearchPathW
GetShortPathNameW
GetFullPathNameW
MoveFileW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
RaiseException
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringA
CompareStringW
QueryPerformanceCounter
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
HeapFree
HeapSize
SetEnvironmentVariableA
CreateFileA
EnterCriticalSection
GetExitCodeProcess
SetCurrentDirectoryW
GetFileAttributesW
GetLastError
CreateDirectoryW
lstrcpynA
DeleteFileW
FindFirstFileW
FindNextFileW
FindClose
SetFilePointer
MultiByteToWideChar
ReadFile
WriteFile
MulDiv
lstrlenA
WideCharToMultiByte
GetPrivateProfileStringW
WritePrivateProfileStringW
FreeLibrary
LoadLibraryExW
GetModuleHandleW
GlobalFree
WaitForSingleObject
GlobalAlloc
ExpandEnvironmentStringsW
lstrcmpW
lstrcmpiW
lstrcmpA
RemoveDirectoryW
lstrcpyA
GetVersion
GetSystemDirectoryW
GetVersionExW
lstrcpyW
OpenProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress
lstrcatW
GetTempFileNameW
lstrcmpiA
CreateProcessW
LoadLibraryW
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceW
lstrcpynW
lstrlenW
CloseHandle
SetErrorMode
GetCommandLineW
GetTempPathW
GetWindowsDirectoryW
ExitProcess
CopyFileW
GetCurrentProcess
GetModuleFileNameW
GetFileSize
CreateFileW
GetTickCount
Sleep
SetFileAttributesW

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

054cbf5d02915fb5a5285ac8cd0e8e36

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

comctl32

version

kernel32

Sections

.text Size: 142KB - Virtual size: 141KB

.rdata Size: 22KB - Virtual size: 22KB

.data Size: 5KB - Virtual size: 13KB

.rsrc Size: 62KB - Virtual size: 61KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 142KB - Virtual size: 141KB

.rdata
Size: 22KB - Virtual size: 22KB

.data
Size: 5KB - Virtual size: 13KB

.rsrc
Size: 62KB - Virtual size: 61KB

.reloc
Size: 6KB - Virtual size: 5KB