d1d76a3e06fd285a371773b149e7e7fe815d2f263f02e8ca43bb4f479d8f1c8b

Sharing

Copy URL Twitter E-mail

General

Target

d1d76a3e06fd285a371773b149e7e7fe815d2f263f02e8ca43bb4f479d8f1c8b
Size

310KB
MD5

4e1ec6b3fcafd91f5b26194962f91240
SHA1

54ce42c97803cc1cf25f89a3c191a5dc41c519a9
SHA256

d1d76a3e06fd285a371773b149e7e7fe815d2f263f02e8ca43bb4f479d8f1c8b
SHA512

56f69f2e9bf7f3f3be422eb2bcebe5686b8e19d166d753ef8a54d5ffe679630e7f8ea4331a28d4dfe5e01bda731c609002475bd25ae420671ff361c5f11afcca
SSDEEP

6144:21pbfH68w+1lBNfSrVZHL9boFoS+bqwVp9e7i1SY+VcC3K8b0o+:EbfdzHBp2jRbZbzVjeewY+Vldb0x

Score

N/A

Malware Config

Signatures

Files

d1d76a3e06fd285a371773b149e7e7fe815d2f263f02e8ca43bb4f479d8f1c8b
.exe windows x86

62657e627e536e0ea2c7452695defda3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ord64
ord129
SHGetSpecialFolderPathW
SHSetUnreadMailCountW
ExtractAssociatedIconW
ord9
ord88
ord137
SHGetMalloc
SHGetFileInfoW
ExtractIconExA
ShellExecuteExW
ord164
ord688

comctl32

DestroyPropertySheetPage
ImageList_Draw
InitCommonControlsEx
ImageList_GetIcon
PropertySheetA

ntdll

VerSetConditionMask

kernel32

lstrcatW
GetModuleHandleA
WriteProfileStringA
FindFirstVolumeMountPointA
GetWindowsDirectoryW
GetCurrentProcessId
SetFileAttributesW
GetVolumeInformationW
WaitForDebugEvent
SetProcessWorkingSetSize
WriteConsoleA
ExitProcess
DosDateTimeToFileTime
FindFirstFileW
FreeResource
UnmapViewOfFile
GetDriveTypeW
MoveFileExA
lstrcpynA
CreateProcessW
HeapAlloc
DeleteVolumeMountPointA
LoadLibraryExW
SetConsoleTextAttribute
GetSystemWindowsDirectoryW
GetTickCount
SetFileTime
GetVolumePathNameW
GetPrivateProfileIntA
TerminateThread
EnumSystemCodePagesA
SetConsoleMode
ReadFile
GetEnvironmentVariableA
ExitThread
WritePrivateProfileStringW
GlobalUnlock
SetCurrentDirectoryA
FindFirstFileA
CreateSemaphoreW

user32

ValidateRect
SetWindowTextW
DialogBoxIndirectParamA
SendMessageW
SetDlgItemTextW
RegisterClipboardFormatW
MessageBoxW
InsertMenuW
GetMenuItemCount
FreeDDElParam
SetWindowPos
DefWindowProcA
GetKeyboardLayoutList
SystemParametersInfoW
UnregisterClassA
BringWindowToTop
InvalidateRect
CheckMenuRadioItem
RegisterWindowMessageA
GetMenuItemInfoW
FindWindowW
DdeKeepStringHandle
EnumDisplaySettingsA
DdeInitializeA
MessageBeep
UnregisterClassW
LoadImageW
wvsprintfW
SendDlgItemMessageA
CreateDialogParamA
RemovePropW
CloseClipboard
GetWindow
GetClassLongA
GetKeyboardLayoutNameA
TranslateAcceleratorA

gdi32

DeleteMetaFile
PlayMetaFile
MoveToEx
EnumFontFamiliesExW

Exports

Exports

?sesmic@@YGKPA_K@Z

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.closer
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cpp
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.artp
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dctp
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gktp
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdtp
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iftp
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdat1
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat2
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat3
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat4
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62657e627e536e0ea2c7452695defda3

Headers

DLL Characteristics

File Characteristics

Imports

shell32

comctl32

ntdll

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 43KB - Virtual size: 42KB

.closer Size: 61KB - Virtual size: 60KB

.cpp Size: 2KB - Virtual size: 1KB

.artp Size: 1KB - Virtual size: 1KB

.dctp Size: 2KB - Virtual size: 1KB

.gktp Size: 1024B - Virtual size: 820B

.cdtp Size: 1024B - Virtual size: 668B

.iftp Size: 512B - Virtual size: 412B

.data Size: 14KB - Virtual size: 14KB

.rdat1 Size: 55KB - Virtual size: 54KB

.rdat2 Size: 44KB - Virtual size: 43KB

.rdat3 Size: 44KB - Virtual size: 43KB

.rdat4 Size: 33KB - Virtual size: 32KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 43KB - Virtual size: 42KB

.closer
Size: 61KB - Virtual size: 60KB

.cpp
Size: 2KB - Virtual size: 1KB

.artp
Size: 1KB - Virtual size: 1KB

.dctp
Size: 2KB - Virtual size: 1KB

.gktp
Size: 1024B - Virtual size: 820B

.cdtp
Size: 1024B - Virtual size: 668B

.iftp
Size: 512B - Virtual size: 412B

.data
Size: 14KB - Virtual size: 14KB

.rdat1
Size: 55KB - Virtual size: 54KB

.rdat2
Size: 44KB - Virtual size: 43KB

.rdat3
Size: 44KB - Virtual size: 43KB

.rdat4
Size: 33KB - Virtual size: 32KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 5KB - Virtual size: 4KB