d81f8c7316b4c747cd1a33cc776bb7fbf2d5b1a89cf70d5b24b1828a4e97449c

Sharing

Copy URL Twitter E-mail

General

Target

d81f8c7316b4c747cd1a33cc776bb7fbf2d5b1a89cf70d5b24b1828a4e97449c
Size

284KB
MD5

6342ca54773b9f9ec321c8b743be3489
SHA1

659ea14b5ba00084ecbc03765a815e80a97e3bdc
SHA256

d81f8c7316b4c747cd1a33cc776bb7fbf2d5b1a89cf70d5b24b1828a4e97449c
SHA512

745775d43cbc8b53f1c5b7a0e4a1133ef8e129dab517bca6f8760e657b080f59aa1c036cf7736d0d7ab9343bd1657898e13d8645666be084ef00bc654d973e02
SSDEEP

6144:fMcez+qXmDa30ENq9eRnrSf/6ThJ9TFSf1:frK2fE

Score

N/A

Malware Config

Signatures

Files

d81f8c7316b4c747cd1a33cc776bb7fbf2d5b1a89cf70d5b24b1828a4e97449c
.exe windows x86

83c31f1af0bcabc16a6941a009b90391

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
GetSystemDefaultLCID
lstrcmpA
lstrcpynA
SetConsoleCtrlHandler
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetVersionExA
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
HeapCreate
HeapDestroy
HeapSize
TerminateProcess
HeapReAlloc
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
RtlUnwind
GetCurrentThreadId
WaitForSingleObject
CreateFileMappingA
MapViewOfFile
CreateMutexA
UnmapViewOfFile
ReleaseMutex
GetEnvironmentVariableA
SetLastError
GetCurrentProcess
LocalAlloc
GetModuleFileNameA
GetBinaryTypeA
LocalFree
VirtualFree
Sleep
FindResourceExA
LoadResource
LockResource
lstrcpyW
GetFileAttributesW
GetFileAttributesA
WideCharToMultiByte
CreateThread
GetDriveTypeA
lstrcatW
Beep
GetTempFileNameA
GlobalLock
GetLastError
CreateFileA
CloseHandle
DeleteFileA
lstrcmpiA
FindFirstFileA
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
CompareStringA
SetErrorMode
LoadLibraryExA
FreeLibrary
lstrlenW
lstrcatA
lstrcpyA
lstrlenA
MultiByteToWideChar
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
UnhandledExceptionFilter
InterlockedExchange

user32

EqualRect
MoveWindow
ShowWindow
ScreenToClient
IsWindowVisible
SendMessageA
GetWindowLongA
GetWindowTextA
IsWindowEnabled
GetCursorPos
GetKeyState
SendMessageW
EnumWindows
GetClassNameA
SendMessageTimeoutA
PtInRect
GetWindowRect
SendDlgItemMessageA
GetDlgItem
DestroyWindow
BeginPaint
EnableWindow
SetWindowTextA
DrawIconEx
EndPaint
SetWindowPos
AdjustWindowRect
GetSystemMetrics
DialogBoxParamA
GetWindow
LoadMenuIndirectA
CreateDialogIndirectParamW
CreateDialogIndirectParamA
DialogBoxIndirectParamW
DialogBoxIndirectParamA
LoadImageA
DestroyIcon
GetClientRect
CreateWindowExA
DefDlgProcA
DefFrameProcA
DefMDIChildProcA
UpdateWindow
wsprintfW
SetWindowTextW
GetWindowTextW
EndDialog
DefWindowProcA
IsWindowUnicode
LoadIconA
MessageBoxA
CharNextA
GetFocus
SetFocus
CharPrevA
wsprintfA
GetDC
OffsetRect
ReleaseDC
GetDlgCtrlID
GetSysColor
CopyRect
FillRect
DrawFocusRect
SetRect
DrawFrameControl
DrawEdge
DrawTextA
InvalidateRect
CallWindowProcA
PostMessageA
GetParent
SetWindowLongA
PostThreadMessageA
WinHelpA

gdi32

GetTextMetricsA
CreateSolidBrush
SetBkColor
DeleteObject
SetTextColor
GetTextExtentPoint32W
SelectObject
CreateFontA
GetStockObject
SetBkMode
GetTextExtentPoint32A
LineTo
MoveToEx
CreatePen
CreateFontIndirectA
EnumFontFamiliesA
GetDeviceCaps
ExtTextOutW

comdlg32

GetOpenFileNameW
GetOpenFileNameA

advapi32

RegSetValueExA
RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
RegUnLoadKeyA
RegQueryInfoKeyA
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorA
GetSecurityDescriptorDacl
AllocateAndInitializeSid
IsValidSid
FreeSid
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
OpenProcessToken

ole32

CoUninitialize
CoInitialize
CoDisconnectObject

oleaut32

SysAllocString
LoadRegTypeLi
LoadTypeLi

comctl32

ord17
PropertySheetA
ImageList_GetImageCount
ImageList_Create
ImageList_ReplaceIcon

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

imm32

ImmAssociateContext

imjp81k

CheckFileType

Exports

Exports

?AutoCorrLbSubWndProc@@YGJPAUHWND__@@IIJ@Z

Sections

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

egternp
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

83c31f1af0bcabc16a6941a009b90391

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

comctl32

version

imm32

imjp81k

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 148KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 20KB - Virtual size: 51KB

.rsrc Size: 96KB - Virtual size: 96KB

egternp Size: - Virtual size: 4KB

.text
Size: 148KB - Virtual size: 148KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 20KB - Virtual size: 51KB

.rsrc
Size: 96KB - Virtual size: 96KB

egternp
Size: - Virtual size: 4KB