df38b20c527ecb5a49cf03fece22785feeb09f42e6ee92cca12f8d63d1ecb4cb

Sharing

Copy URL Twitter E-mail

General

Target

df38b20c527ecb5a49cf03fece22785feeb09f42e6ee92cca12f8d63d1ecb4cb
Size

316KB
MD5

7773b5eacff26d2f00f3b49553d156c0
SHA1

6237b97aa95f266838c2a3dd0515d6fc152e4b26
SHA256

df38b20c527ecb5a49cf03fece22785feeb09f42e6ee92cca12f8d63d1ecb4cb
SHA512

68aeb8ab4bf301364603f5a8adead50f2e07df40f8d257b7ae1d98f2e88eb8858ef9dc6032259758a30dfeb46f722a8da53b81a88fe9e2a8d53a008406ba5338
SSDEEP

6144:F90REvI1Gth1CsTYX2hKEQmEC36sEsKFRwdLL99fsiKV6xhiUJq2Tcbo1W3ge:EyO0h1+X24nmxEsKFGRL95YVvIqiwV

Score

N/A

Malware Config

Signatures

Files

df38b20c527ecb5a49cf03fece22785feeb09f42e6ee92cca12f8d63d1ecb4cb
.exe windows x86

697b74ea3832a87cec4235ee0d3ba6be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemTextW
CopyRect
SendDlgItemMessageW
MapWindowPoints
CreateDialogParamW
GetWindow
MessageBoxW
GetWindowRect
GetClientRect
EnableWindow
SetWindowPos
SetFocus
LoadStringW
DrawTextW
SetDlgItemTextW
GetDialogBaseUnits
SystemParametersInfoW
DestroyWindow
GetDlgItem
LoadImageW
ShowWindow
SetWindowTextW
GetSystemMetrics
SendMessageW
DialogBoxParamW
SetWindowLongW
CharNextW
EndDialog
GetParent
GetWindowLongW

kernel32

QueryPerformanceCounter
GetProcessHeap
EnterCriticalSection
InterlockedDecrement
GetCurrentProcessId
MultiByteToWideChar
HeapAlloc
GetSystemTimeAsFileTime
LoadResource
FormatMessageW
OutputDebugStringA
lstrcatW
lstrcpynW
lstrlenW
GetLastError
GetCurrentProcess
FindResourceW
SizeofResource
lstrcmpiW
RemoveDirectoryA
GetModuleFileNameW
InterlockedIncrement
LoadLibraryA
VirtualFree
LoadLibraryExW
GetProcAddress
LeaveCriticalSection
lstrlenA
HeapFree
GetEnvironmentStringsA
LocalFree
DeleteCriticalSection
FreeLibrary
lstrcpyW
FlushInstructionCache
HeapDestroy
GetSystemInfo
GetUserDefaultLCID
SetLastError
GetTickCount
SetUnhandledExceptionFilter

untfs

Chkdsk
Recover
Extend
FormatEx
ChkdskEx
Format

advapi32

RegCreateKeyExW
GetTraceLoggerHandle
RegEnumKeyExW
GetTraceEnableLevel
RegCloseKey
RegQueryValueExW
TraceMessage
RegisterTraceGuidsW
RegDeleteValueW
RegOpenKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegSetValueExW
GetTraceEnableFlags
UnregisterTraceGuids

msvcrt

realloc
free
wcscat
wcsncpy
_except_handler3
malloc
wcscmp
??3@YAXPAX@Z
__CxxFrameHandler
_adjust_fdiv
_initterm
?terminate@@YAXXZ
swprintf
??1type_info@@UAE@XZ
wcslen
??2@YAPAXI@Z

rpcrt4

NdrDllRegisterProxy
NdrDllGetClassObject
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_AddRef
CStdStubBuffer_Invoke
CStdStubBuffer_CountRefs
CStdStubBuffer_Connect
NdrDllUnregisterProxy
CStdStubBuffer_Disconnect
CStdStubBuffer_DebugServerQueryInterface
NdrOleFree
NdrDllCanUnloadNow
CStdStubBuffer_QueryInterface
NdrOleAllocate
NdrCStdStubBuffer_Release

shell32

SHGetFolderPathW
ShellExecuteW

Sections

text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

697b74ea3832a87cec4235ee0d3ba6be

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

untfs

advapi32

msvcrt

rpcrt4

shell32

Sections

text Size: 112KB - Virtual size: 112KB

.rdata Size: 171KB - Virtual size: 170KB

.rsrc Size: 31KB - Virtual size: 30KB

text
Size: 112KB - Virtual size: 112KB

.rdata
Size: 171KB - Virtual size: 170KB

.rsrc
Size: 31KB - Virtual size: 30KB