a073446c09aabd1d96100faabfa7ce2d24e5472bdb9ff4d5af3cccc7f25893b4

Sharing

Copy URL Twitter E-mail

General

Target

a073446c09aabd1d96100faabfa7ce2d24e5472bdb9ff4d5af3cccc7f25893b4
Size

91KB
MD5

17733d68a5264d2847c546514967c97b
SHA1

30ec37bc79b900ee2a9f76e6189df2e8c84a9dd2
SHA256

a073446c09aabd1d96100faabfa7ce2d24e5472bdb9ff4d5af3cccc7f25893b4
SHA512

1136830169d687bcf78a7364356aef840b66fa52778007c68517fbfd658f4e7a085ebaa8d1279a5ec41288a33e9a29fe0c40ae75fe8b9852c5f8d4439df92ea0
SSDEEP

1536:uliUjemdjaslwqCLRWKJ3GqQAbhtQzxiI5vPCkXHe1tZpKGRiC7iBaUbQg2uAu4O:uliXKplwqaRWgTjQkI5vzXutzKsXiQU9

Score

N/A

Malware Config

Signatures

Files

a073446c09aabd1d96100faabfa7ce2d24e5472bdb9ff4d5af3cccc7f25893b4
.rar
noMeiryoUI_v2.35 系统字体更改/ChineseSimplified.lng
noMeiryoUI_v2.35 系统字体更改/default.chm
.chm
noMeiryoUI_v2.35 系统字体更改/default.lng
noMeiryoUI_v2.35 系统字体更改/default11.lng
noMeiryoUI_v2.35 系统字体更改/noMeiryoUI.exe
.exe windows x86

59a0ae69d5adf80850433a11e6a6c142

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

kernel32

GetLastError
CloseHandle
GetVersion
GetPrivateProfileIntW
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetProcessHeap
SetEndOfFile
SetStdHandle
FlushFileBuffers
GetLocaleInfoW
FindFirstFileW
GetConsoleMode
GetConsoleCP
WritePrivateProfileStringW
ReadFile
CreateFileW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetVersionExW
Sleep
TerminateThread
GetPrivateProfileStringW
WaitForSingleObject
SetFilePointer
CreateProcessW
MultiByteToWideChar
MulDiv
WriteFile
IsValidLocale
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
ExitThread
GetCurrentThreadId
CreateThread
GetStartupInfoW
RaiseException
RtlUnwind
HeapAlloc
HeapFree
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapSize
ExitProcess
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
GetModuleHandleA

user32

MessageBoxW
SetWindowPos
GetMenuItemInfoW
GetMenu
SetMenuItemInfoW
DestroyWindow
DialogBoxParamW
SetWindowTextW
DefWindowProcW
EnumDisplayMonitors
LoadImageW
EnumWindows
GetCursorInfo
SystemParametersInfoW
EndDialog
LoadStringW
SendMessageTimeoutW
IsWindow
IsWindowVisible
GetDlgItemTextW
SetDlgItemTextW
SendMessageW
GetWindowThreadProcessId
GetWindowRect
GetDC
ReleaseDC
GetDlgItem
GetDesktopWindow

gdi32

CreateFontIndirectW
SelectObject
GetDeviceCaps
DeleteObject
CreateFontW
EnumFontFamiliesExW
GetTextMetricsW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

ole32

CoInitialize

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59a0ae69d5adf80850433a11e6a6c142

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

advapi32

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 5KB - Virtual size: 13KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 5KB - Virtual size: 13KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 9KB - Virtual size: 9KB