75f7afd0ef93af388e8bb601368ae824574684509fbeb265d7a7691018bd342a

Sharing

Copy URL Twitter E-mail

General

Target

75f7afd0ef93af388e8bb601368ae824574684509fbeb265d7a7691018bd342a
Size

272KB
MD5

68f6e3aaf4ed641ce8b292b72ca7c3b0
SHA1

39b2e0fb13124d20fcff828841936605a52b006d
SHA256

75f7afd0ef93af388e8bb601368ae824574684509fbeb265d7a7691018bd342a
SHA512

546b97c614283430ac04325adc390b9f776777bef9953959afa40e1858bd1d2399c2f22c00ea8cb344ab310ab657b13d8a5f9fd7fc77cbda7e25c19a5e61adbc
SSDEEP

6144:f/lAK1uwQU8erbFFC9vjx+9g8wW5ivgb/Tu:lAK1JQZCRuduZjTu

Score

N/A

Malware Config

Signatures

Files

75f7afd0ef93af388e8bb601368ae824574684509fbeb265d7a7691018bd342a
.exe windows x86

a1a6a72877dde9aa75606e49b5c3f5b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HWND_UserMarshal
HWND_UserSize
HWND_UserUnmarshal
HWND_UserFree

rpcrt4

NdrOleFree
CStdStubBuffer_Invoke
CStdStubBuffer_Connect
CStdStubBuffer_CountRefs
IUnknown_QueryInterface_Proxy
CStdStubBuffer_QueryInterface
NdrDllCanUnloadNow
NdrOleAllocate
NdrCStdStubBuffer_Release
NdrClientCall2
NdrStubCall2
CStdStubBuffer_Disconnect
NdrDllRegisterProxy
IUnknown_Release_Proxy
NdrDllGetClassObject
CStdStubBuffer_AddRef
IUnknown_AddRef_Proxy
CStdStubBuffer_IsIIDSupported
NdrStubForwardingFunction
CStdStubBuffer_DebugServerRelease
NdrDllUnregisterProxy
NdrCStdStubBuffer2_Release
CStdStubBuffer_DebugServerQueryInterface

kernel32

GetModuleHandleW
WriteFile
GetOEMCP
HeapFree
LeaveCriticalSection
UnhandledExceptionFilter
HeapAlloc
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
TlsFree
FreeEnvironmentStringsW
GetCommandLineA
SetUnhandledExceptionFilter
TlsGetValue
IsProcessorFeaturePresent
TlsAlloc
GetSystemTimeAsFileTime
IsValidCodePage
DeleteCriticalSection
HeapSize
TlsSetValue
SetLastError
LCMapStringW
EnterCriticalSection
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
GetCurrentThreadId
RtlUnwind
WideCharToMultiByte
GetACP
SetErrorMode
VirtualAllocEx

oleaut32

BSTR_UserMarshal
VARIANT_UserSize
BSTR_UserSize
VARIANT_UserUnmarshal
VARIANT_UserMarshal
BSTR_UserFree
BSTR_UserUnmarshal
VARIANT_UserFree

user32

GetKeyboardLayout
GetDlgItemTextW
mouse_event
CharNextW
GetClassInfoW
GetAsyncKeyState
CheckMenuItem
CreateWindowExA
InsertMenuItemA
SetActiveWindow
RemoveMenu
SetCursorPos
CreateAcceleratorTableW
wvsprintfA
GetDesktopWindow
ShowWindow
GetKeyState
GetFocus
RegisterClassExA
GetMenuInfo
IsChild
SetFocus
MonitorFromWindow
ShowCursor
WaitMessage
DialogBoxParamW
SetTimer

actxprxy

DllGetClassObject
GetProxyDllInfo
DllCanUnloadNow

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 237KB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1a6a72877dde9aa75606e49b5c3f5b0

Headers

File Characteristics

Imports

ole32

rpcrt4

kernel32

oleaut32

user32

actxprxy

Sections

.text Size: 17KB - Virtual size: 17KB

.data Size: 237KB - Virtual size: 5.9MB

.rdata Size: 3KB - Virtual size: 45KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 17KB - Virtual size: 17KB

.data
Size: 237KB - Virtual size: 5.9MB

.rdata
Size: 3KB - Virtual size: 45KB

.rsrc
Size: 13KB - Virtual size: 12KB