41f4ae1e52ca9e664bd3b1879a0912cf0b27fbea6c1093c71f4259843c21990e

Sharing

Copy URL Twitter E-mail

General

Target

41f4ae1e52ca9e664bd3b1879a0912cf0b27fbea6c1093c71f4259843c21990e
Size

288KB
MD5

6f05977a93b3747ff5b677150297b560
SHA1

e772113d1a497a18277addafc1b9715e948113cb
SHA256

41f4ae1e52ca9e664bd3b1879a0912cf0b27fbea6c1093c71f4259843c21990e
SHA512

faf6cf76ea694588cfe1b8256b036b75ed6276c2d17f713ab97576e3cb7478ff4745c984fcda016f77074e77a6aab96b12ccba2e696de02008e612fca8a1803f
SSDEEP

3072:466cYB9sW9mc6CMlkUDYyBUxs4IHJb1kiNFE+6Z00gjmXTZ9EeJavDf8R1TpzC2S:4FcYXIcHUD1Ucb19CZ4QZKesv7KTpzRS

Score

N/A

Malware Config

Signatures

Files

41f4ae1e52ca9e664bd3b1879a0912cf0b27fbea6c1093c71f4259843c21990e
.exe windows x86

1d3acb3eb775369d4396f8d28b20b400

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
SetWindowTextA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
SetWindowLongA
LoadImageA
SendMessageA
DefWindowProcA
DrawTextA
CharPrevW
DispatchMessageW
PeekMessageW
wsprintfA
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
ExitWindowsEx
FindWindowExW
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
CharUpperW
GetClassInfoW
ScrollWindow
IsCharAlphaW
DestroyMenu
DdeCreateStringHandleW
CreateMDIWindowA
DestroyWindow
EnumThreadWindows
SetWindowPos
RegisterShellHookWindow
SetSysColors
IsWindowVisible
IsWindow

gdi32

GetDeviceCaps
DeleteObject
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject
AddFontMemResourceEx
AbortPath
Arc
CreateBitmap
AddFontResourceA
CreateColorSpaceA
CloseEnhMetaFile
CreateBrushIndirect
ColorMatchToTarget
AngleArc
SetBkColor

kernel32

LCMapStringW
LCMapStringA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
RtlUnwind
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
GetStringTypeA
TlsAlloc
TlsGetValue
GetStdHandle
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
HeapFree
DeleteCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoA
GetSystemTimeAsFileTime
HeapAlloc
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
GetStringTypeW
GetLocaleInfoA
RaiseException
HeapSize
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringW
SetEnvironmentVariableA
TlsSetValue
RemoveDirectoryW
EnumCalendarInfoExW
HeapCompact
GetTapeParameters
CompareStringA
DuplicateHandle
GetModuleHandleA
lstrlenW
DeleteFileW
FindFirstFileW
FindNextFileW
FindClose
SetFilePointer
MultiByteToWideChar
ReadFile
WriteFile
lstrlenA
MulDiv
WideCharToMultiByte
GetPrivateProfileStringW
WritePrivateProfileStringW
FreeLibrary
LoadLibraryExW
GetModuleHandleW
GlobalFree
GetExitCodeProcess
WaitForSingleObject
GlobalAlloc
ExpandEnvironmentStringsW
lstrcmpW
lstrcmpiW
lstrcpyA
GetVersion
GetSystemDirectoryW
GetVersionExW
lstrcpyW
OpenProcess
LoadLibraryA
GetProcAddress
lstrcatW
GetTempFileNameW
CreateFileW
lstrcmpiA
CreateProcessW
LoadLibraryW
GetWindowsDirectoryA
DeleteFileA
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
LoadLibraryExA
ExpandEnvironmentStringsA
lstrcmpA
CloseHandle
GetSystemDirectoryA
lstrcatA
GetTempFileNameA
RemoveDirectoryA
CreateProcessA
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceA
lstrcpynA
SetErrorMode
GetCommandLineA
GetTempPathA
SetFileTime
ExitProcess
CopyFileA
GetCurrentProcess
GetModuleFileNameA
GetFileSize
CreateFileA
GetTickCount
Sleep
SetFileAttributesA

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d3acb3eb775369d4396f8d28b20b400

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 139KB - Virtual size: 138KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 52KB - Virtual size: 76KB

.rsrc Size: 78KB - Virtual size: 77KB

.text
Size: 139KB - Virtual size: 138KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 52KB - Virtual size: 76KB

.rsrc
Size: 78KB - Virtual size: 77KB