10329fd6f2a84e8b3326f4f655aec9d503a8bb221257dbd4130424766047caf7

Sharing

Copy URL Twitter E-mail

General

Target

10329fd6f2a84e8b3326f4f655aec9d503a8bb221257dbd4130424766047caf7
Size

193KB
MD5

0031dd09115685e6b4e2c5c0df32a601
SHA1

46285c787386ff78dacf042a4e7c287a2a31a3fa
SHA256

10329fd6f2a84e8b3326f4f655aec9d503a8bb221257dbd4130424766047caf7
SHA512

c27f8f1e8d782d7e7f58fd79b750ee4b889d7dd4196f752e1794456d7249c2e4f8df6d7e266c1b7f0dc237e2a65b09509c29721a64bfda5caef98478148bc2e5
SSDEEP

3072:Rj9e6BDyS9KwH2wVoyXyok1goPK+6gvRGLsMw:Rj86kwH2wDCoEftRgLw

Score

N/A

Malware Config

Signatures

Files

10329fd6f2a84e8b3326f4f655aec9d503a8bb221257dbd4130424766047caf7
.exe windows x86

2e650615292b7c62d0fa36588ea284d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDialogMessageW
GetWindowContextHelpId
ToUnicode
SetTimer
CallMsgFilterW
IsCharAlphaNumericA
EnumThreadWindows
DrawTextA
FindWindowExA
IsWindow
EnableWindow
GetDlgItem
MessageBoxW
ShowWindow
FindWindowExW
GetParent
MapWindowPoints
CreateWindowExW
UpdateWindow
LoadCursorW
RegisterClassExW
DefWindowProcW
DestroyWindow
CopyRect
CharUpperW
CharToOemA
OemToCharA
OemToCharBuffA
LoadIconW
LoadBitmapW
PostMessageW
GetSysColor
SetForegroundWindow
WaitForInputIdle
IsWindowVisible
DialogBoxParamW
DestroyIcon
SetFocus
GetClassNameW
SendDlgItemMessageW
EndDialog
GetDlgItemTextW
SetDlgItemTextW
wvsprintfW
SendMessageW
GetDC
ReleaseDC
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
LoadStringW
GetWindowRect
GetClientRect
SetWindowPos
GetWindowTextW
SetWindowTextW
GetSystemMetrics
GetWindow
GetWindowLongW
SetWindowLongW
DrawStateW

shell32

SHGetMalloc
ShellExecuteW
ExtractAssociatedIconA
ExtractIconA
DragQueryFileA
ExtractAssociatedIconW
ExtractIconW
FindExecutableA
ShellExecuteExW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
SHBrowseForFolderW
ExtractIconExA
SHChangeNotify
SHFileOperationW

ole32

CoSetProxyBlanket
OleInitialize
CoMarshalInterface
OleCreateLinkToFile
CreateStreamOnHGlobal
OleUninitialize
CoCreateInstance
CLSIDFromString
CreateFileMoniker

advapi32

RegRestoreKeyA
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
ObjectOpenAuditAlarmW
RevertToSelf
GetServiceKeyNameW
GetSidSubAuthority
RegQueryMultipleValuesA
LookupPrivilegeNameW

gdi32

CreateCompatibleDC
GetObjectW
CreateCompatibleBitmap
SelectObject
StretchBlt
DeleteDC
DeleteObject
CopyEnhMetaFileA
BitBlt
CreateDIBitmap
CancelDC
AddFontResourceExA
ColorCorrectPalette
AngleArc
CreateBitmapIndirect
AnimatePalette
GetDeviceCaps

comctl32

InitCommonControlsEx

shlwapi

SHAutoComplete

kernel32

GetNumberFormatW
ExpandEnvironmentStringsW
WaitForSingleObject
GetDateFormatW
GetTimeFormatW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetExitCodeProcess
GetTempPathW
MoveFileExW
Sleep
UnmapViewOfFile
MapViewOfFile
GetCommandLineW
CreateFileMappingW
GetTickCount
SetEnvironmentVariableW
OpenFileMappingW
WideCharToMultiByte
MultiByteToWideChar
CompareStringW
GetCPInfo
GlobalAlloc
SetCurrentDirectoryW
WriteConsoleW
GetConsoleOutputCP
SetStdHandle
GetLocaleInfoA
GetStringTypeA
LoadLibraryA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetModuleFileNameA
ExitProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
TlsFree
TlsSetValue
TlsAlloc
GetModuleHandleA
GetTimeZoneInformation
CompareStringA
SetEnvironmentVariableA
LoadLibraryW
GetProcAddress
FreeLibrary
GetModuleHandleW
FindResourceW
GetModuleFileNameW
GetFullPathNameW
FindFirstFileW
FindNextFileW
FindClose
CreateDirectoryW
DeleteFileW
MoveFileW
SetFileAttributesW
GetFileAttributesW
InterlockedIncrement
QueryPerformanceCounter
InterlockedDecrement
GetStringTypeW
IsValidLanguageGroup
TlsGetValue
VirtualAlloc
VirtualAllocEx
OpenProcess
GetCurrentProcessId
IsDBCSLeadByte
DeleteAtom
WritePrivateProfileSectionW
CallNamedPipeW
InitializeCriticalSection
ChangeTimerQueueTimer
BackupSeek
HeapFree
RtlUnwind
RaiseException
HeapReAlloc
HeapAlloc
GetSystemTimeAsFileTime
WriteConsoleA
CreateFileA
GetCurrentDirectoryW
GetLastError
SetLastError
DosDateTimeToFileTime
LocalFileTimeToFileTime
CreateFileW
CloseHandle
WriteFile
FlushFileBuffers
GetStdHandle
SetFilePointer
SetEndOfFile
GetFileType
ReadFile
SetFileTime
GetCommandLineA
GetStartupInfoA
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e650615292b7c62d0fa36588ea284d7

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

comctl32

shlwapi

kernel32

Sections

.text Size: 115KB - Virtual size: 115KB

.rdata Size: 46KB - Virtual size: 46KB

.data Size: 5KB - Virtual size: 29KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 115KB - Virtual size: 115KB

.rdata
Size: 46KB - Virtual size: 46KB

.data
Size: 5KB - Virtual size: 29KB

.rsrc
Size: 24KB - Virtual size: 24KB