80281f8837f9d2922117c31c46778267fccd63b4692a777d264a00ddcc60076a

Sharing

Copy URL

Twitter E-mail

General

Target

80281f8837f9d2922117c31c46778267fccd63b4692a777d264a00ddcc60076a
Size

417KB
MD5

1b3bc791aca1fdb0b5b1a70dc040542f
SHA1

172dfc7281ba8e7a72e1438745cf04c6f8f2f2b3
SHA256

80281f8837f9d2922117c31c46778267fccd63b4692a777d264a00ddcc60076a
SHA512

f8db46e9650f3cefe46a9f7d128121c09d48140e6e49307f225bbead3f900b9dea4d8007d31f97f1d1d4fd3db9d2491fad9b161e4a53c6d02015bd777b2cc133
SSDEEP

12288:YzshZyWVJ6BV+rLxr4XVM/WO+7ZqbTGNZHHZ7XOoe9Z:UsrycA6l8V6Wz7ZEmZH57XOoe

Score

N/A

Malware Config

Signatures

Files

80281f8837f9d2922117c31c46778267fccd63b4692a777d264a00ddcc60076a
.exe windows x86

b5bf74bb8542feb9870a7cf9357dfe6c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DPtoLP
SetWindowOrgEx
SetViewportOrgEx
ModifyWorldTransform
SetGraphicsMode
SaveDC
BitBlt
CreateSolidBrush
CreateCompatibleBitmap
CreateFontIndirectW
GetStockObject
SetTextColor
SetBkMode
GetObjectA
GetObjectW
DeleteDC
SetLayout
CreateBitmap
SelectObject
GetTextMetricsW
DeleteObject
GetDeviceCaps
RestoreDC
CreateCompatibleDC

user32

UnregisterClassA
GetFocus
GetKeyState
DrawIcon
EnableWindow
IsWindowVisible
SendNotifyMessageW
SetScrollInfo
GetScrollInfo
SetScrollPos
ScrollWindowEx
ScrollWindow
GetScrollPos
SetFocus
DestroyWindow
SetRect
GetDlgItem
TrackMouseEvent
IsWindowEnabled
GetParent
ScreenToClient
DrawTextW
InvalidateRect
MoveWindow
GetWindowTextLengthW
GetWindowTextW
BeginPaint
EndPaint
IsIconic
GetLastActivePopup
GetAncestor
GetWindowRect
MapWindowPoints
FillRect
SystemParametersInfoW
GetSysColor
GetSystemMetrics
LoadImageW
PeekMessageW
MsgWaitForMultipleObjectsEx
KillTimer
GetCursorPos
CreatePopupMenu
AppendMenuW
SetMenuItemInfoW
SetMenuDefaultItem
TrackPopupMenu
DestroyMenu
BringWindowToTop
GetDC
ReleaseDC
LoadStringW
CharNextW
SetTimer
DestroyIcon
SetForegroundWindow
LoadIconW
RegisterWindowMessageW
GetMessageW
TranslateMessage
DispatchMessageW
FindWindowExW
IsWindow
GetClientRect
PostQuitMessage
PostMessageW
GetWindowLongW
CallWindowProcW
CreateWindowExW
RegisterClassExW
DefWindowProcW
LoadCursorW
GetClassInfoExW
ShowWindow
UpdateWindow
SetWindowTextW
SetWindowLongW
SendMessageW

msvcrt

_CxxThrowException
swprintf_s
__CxxFrameHandler3
_purecall
free
memmove_s
memcpy_s
_onexit
_lock
__dllonexit
_unlock
_except_handler4_common
_errno
realloc
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
_initterm
_wcmdln
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_callnewh
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
?what@exception@@UBEPBDXZ
??0exception@@QAE@XZ
_vsnwprintf
_resetstkoflw
wcscat_s
towupper
wcschr
wcsstr
iswspace
wcstol
_wtof
_ftol2_sse
wcscpy_s
wcsncpy_s
vswprintf_s
_vscwprintf
memset
malloc
_controlfp

ntdll

EtwGetTraceEnableLevel
EtwGetTraceLoggerHandle
EtwRegisterTraceGuidsW
EtwUnregisterTraceGuids
EtwGetTraceEnableFlags
EtwTraceMessage

api-ms-win-security-base-l1-1-0

CheckTokenMembership
AllocateAndInitializeSid
FreeSid

gdiplus

GdipDrawPath
GdipDrawImageRectI
GdipFillPath
GdipCreateLineBrushFromRectWithAngleI
GdipCreateSolidFill
GdipCreateBitmapFromHICON
GdipDeletePath
GdipCreatePath
GdipDeletePen
GdipCreatePen1
GdipCloneImage
GdipCloneBrush
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDrawImageRectRectI
GdipMeasureString
GdipFillRectangleI
GdipSetSmoothingMode
GdipCreateFromHDC
GdipCreateLineBrushFromRectI
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipLoadImageFromFile
GdipDeleteFont
GdipDeleteGraphics
GdipDeleteStringFormat
GdipCreateStringFormat
GdipAlloc
GdipFree
GdipDeleteBrush
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdiplusStartup
GdiplusShutdown

comctl32

ord344

kernel32

GetCurrentThreadId
SetLastError
lstrlenW
GetModuleFileNameW
HeapFree
RaiseException
GetProcessHeap
GetUserDefaultUILanguage
SizeofResource
LockResource
LoadResource
FindResourceW
DeleteCriticalSection
InitializeCriticalSection
GetLastError
HeapSetInformation
CloseHandle
CreateMutexW
CreateProcessW
FormatMessageW
InterlockedExchange
GlobalFree
GetCommandLineW
SetEvent
WaitForSingleObject
FindResourceExW
CreateThread
CreateEventW
FreeLibrary
InterlockedIncrement
InterlockedDecrement
LoadLibraryW
GetProcAddress
GetModuleHandleW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
HeapAlloc
RegSetValueExW
lstrcmpiW
RegQueryInfoKeyW
RegEnumKeyExW
MultiByteToWideChar
LoadLibraryExW
RegQueryValueExW
GetLocaleInfoW
SetProcessWorkingSetSize
GetUserPreferredUILanguages
CheckElevationEnabled
GetTimeFormatW
GetDateFormatW
FileTimeToSystemTime
FileTimeToLocalFileTime
DeleteFileW
MoveFileExW
WriteFile
CreateFileW
GetTempFileNameW
GetTempPathW
GetSystemDefaultLangID
LocalFree
GetSystemTimeAsFileTime
DelayLoadFailureHook
InterlockedCompareExchange
LoadLibraryExA
GetVersionExA
HeapDestroy
HeapReAlloc
HeapSize
GetCurrentProcess
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
GetStartupInfoW
Sleep
VirtualAlloc
VirtualFree
LoadLibraryA

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

PACK
Size: 144KB - Virtual size: 380KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b5bf74bb8542feb9870a7cf9357dfe6c

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

msvcrt

ntdll

api-ms-win-security-base-l1-1-0

gdiplus

comctl32

kernel32

Sections

.text Size: 119KB - Virtual size: 119KB

.data Size: 6KB - Virtual size: 6KB

.rsrc Size: 139KB - Virtual size: 139KB

.reloc Size: 7KB - Virtual size: 6KB

PACK Size: 144KB - Virtual size: 380KB

.text
Size: 119KB - Virtual size: 119KB

.data
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 139KB - Virtual size: 139KB

.reloc
Size: 7KB - Virtual size: 6KB

PACK
Size: 144KB - Virtual size: 380KB