633f26cb91791e39e883ad7e236ce401be54192759797665aaf1e73c9f2944c4

Sharing

Copy URL

Twitter E-mail

General

Target

633f26cb91791e39e883ad7e236ce401be54192759797665aaf1e73c9f2944c4
Size

301KB
MD5

44f24f30b8120e3ae6e24fedb56d3020
SHA1

623253b6e3c247d6b6fa7c80aac1978ad62d3e8e
SHA256

633f26cb91791e39e883ad7e236ce401be54192759797665aaf1e73c9f2944c4
SHA512

bb0b114d9c578e8a75af0244f54333661dd12477a7a95b04c9e3b663cfbce824151de05442c820ed63582d206358c06ba2cc06ded0c5bf4c7eca4d4c386b9319
SSDEEP

6144:Yb4JXj7ipduZ3MmXrwmnS6jcEsZZRvZOUp9jb8CgpsLl4sRSBdl68+xuL:/E/u9cpT9sCgpb4S68+Y

Score

N/A

Malware Config

Signatures

Files

633f26cb91791e39e883ad7e236ce401be54192759797665aaf1e73c9f2944c4
.dll windows x86

3956816f30a4f26c3fcffe941d5aa382

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rscnpb22

ord72
ord207
ord67
ord206
ord180
ord208
ord179
ord148
ord64
ord150
ord149
ord162
ord91
ord142
ord166
ord163
ord160
ord58
ord159
ord92
ord93
ord88
ord167
ord186
ord176
ord175
ord68
ord177
ord164
ord178
ord153
ord171
ord57
ord98
ord97
ord169
ord71
ord104
ord10
ord143
ord65
ord16
ord9

kernel32

SetStdHandle
GetCurrentDirectoryA
GetCurrentDirectoryW
FlushFileBuffers
RaiseException
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetOEMCP
GetCPInfo
FreeEnvironmentStringsA
lstrlenW
HeapAlloc
GetProcessHeap
HeapFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
HeapReAlloc
LeaveCriticalSection
EnterCriticalSection
GetStringTypeW
GetStringTypeA
FreeLibrary
GlobalFree
GetProcAddress
InitializeCriticalSection
DeleteCriticalSection
SetErrorMode
GetLastError
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
SetFileTime
SystemTimeToFileTime
UnlockFile
LockFile
ReadFile
WriteFile
CloseHandle
SetFilePointer
GetLogicalDrives
IsDBCSLeadByte
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
GetPrivateProfileStringA
GetPrivateProfileStringW
GetProfileStringA
GetProfileStringW
WritePrivateProfileStringA
WritePrivateProfileStringW
WriteProfileStringA
WriteProfileStringW
GlobalAddAtomA
GlobalAddAtomW
SetFileAttributesA
SetFileAttributesW
FindResourceA
FindResourceW
LoadLibraryA
LoadLibraryW
GetSystemDirectoryW
GetSystemDirectoryA
SetCurrentDirectoryA
SetCurrentDirectoryW
GetDiskFreeSpaceA
GetDiskFreeSpaceW
CreateDirectoryA
CreateDirectoryW
RemoveDirectoryA
RemoveDirectoryW
DeleteFileA
DeleteFileW
MoveFileA
MoveFileW
CreateFileA
CreateFileW
GetModuleFileNameA
GetModuleFileNameW
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
GetFullPathNameA
GetFullPathNameW
CreateProcessA
SetLastError
CreateProcessW
CopyFileA
CopyFileW
GetStdHandle
GetStartupInfoA
GetVolumeInformationA
GetVolumeInformationW
CreateEventA
CreateEventW
GetWindowsDirectoryA
GetWindowsDirectoryW
GetVersion
FreeResource
LockResource
LoadResource
GetACP
VirtualFree
VirtualAlloc
GetCommandLineA
GetModuleHandleA
RtlUnwind
ExitProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
HeapCreate
HeapDestroy
SetHandleCount
GetFileType

user32

IsRectEmpty
IntersectRect
EqualRect
GetKeyState
GetFocus
ScrollWindow
SetTimer
SetScrollRange
SetScrollPos
SetCaretPos
CreateCaret
DestroyCaret
KillTimer
GetCursorPos
ShowWindow
EndDialog
MoveWindow
HideCaret
ShowCaret
PtInRect
LoadStringA
GetCapture
PostMessageW
GetWindow
SetWindowPos
TabbedTextOutA
TabbedTextOutW
SetWindowsHookExA
SetWindowsHookExW
WinHelpA
WinHelpW
CharUpperBuffA
CharUpperBuffW
CharLowerBuffA
CharLowerBuffW
GetTabbedTextExtentA
GetTabbedTextExtentW
LoadStringW
MessageBoxA
MessageBoxW
RegisterWindowMessageA
GetPropA
GetPropW
RemovePropA
RemovePropW
SetPropA
SetPropW
PostMessageA
SendMessageA
PeekMessageA
GetSysColor
SendMessageW
SetFocus
CreateDialogIndirectParamA
CreateDialogIndirectParamW
SetWindowLongA
SetWindowLongW
GetWindowLongA
GetWindowLongW
CallWindowProcA
CallWindowProcW
DefWindowProcA
DefWindowProcW
SetWindowTextA
SetWindowTextW
GetWindowTextA
GetWindowTextLengthA
GetWindowTextLengthW
GetWindowTextW
DispatchMessageA
DispatchMessageW
GetMessageA
GetMessageW
RegisterClassA
RegisterClassW
UnregisterClassA
UnregisterClassW
LoadBitmapA
LoadBitmapW
LoadIconA
LoadIconW
LoadCursorA
LoadCursorW
CreateWindowExA
DialogBoxParamA
DialogBoxParamW
GetClassNameA
GetClassNameW
LoadMenuA
LoadMenuW
ModifyMenuA
ModifyMenuW
AppendMenuA
AppendMenuW
InsertMenuA
InsertMenuW
FindWindowA
FindWindowW
DestroyWindow
IsWindow
IsWindowVisible
GetActiveWindow
IsCharAlphaA
IsCharAlphaNumericA
GetDlgItem
SetClipboardData
CreateWindowExW
EmptyClipboard
OpenClipboard
GetClipboardData
CloseClipboard
ReleaseCapture
SetCursor
DestroyCursor
ScreenToClient
TranslateMessage
ClientToScreen
UpdateWindow
SetCapture
BeginPaint
InvalidateRect
IsDialogMessageW
GetParent
GetWindowRect
GetSystemMetrics
MessageBeep
GetDC
ReleaseDC
PeekMessageW
IsDialogMessageA
GetClientRect
EndPaint
IsWindowUnicode

gdi32

GetTextExtentPointW
SetBkMode
CreateCompatibleBitmap
StretchDIBits
BitBlt
CreateCompatibleDC
DeleteDC
ExtTextOutW
ExtTextOutA
TextOutW
TextOutA
GetCharWidthW
GetCharWidthA
SelectObject
GetTextMetricsW
GetStockObject
IntersectClipRect
GetObjectW
GetTextExtentPointA
GetObjectA
GetTextMetricsA
CreateSolidBrush
GetDeviceCaps
CreateFontIndirectA
SetTextColor
SetBkColor
PatBlt
DeleteObject

comdlg32

GetOpenFileNameA
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW

Exports

Exports

ebCreateDebuggerA
ebCreateDebuggerW

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 909B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3956816f30a4f26c3fcffe941d5aa382

Headers

File Characteristics

Imports

rscnpb22

kernel32

user32

gdi32

comdlg32

Exports

Exports

Sections

.text Size: 184KB - Virtual size: 183KB

.rdata Size: 1024B - Virtual size: 909B

.data Size: 25KB - Virtual size: 32KB

.idata Size: 8KB - Virtual size: 7KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 9KB - Virtual size: 8KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 184KB - Virtual size: 183KB

.rdata
Size: 1024B - Virtual size: 909B

.data
Size: 25KB - Virtual size: 32KB

.idata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 9KB - Virtual size: 8KB

.rmnet
Size: 56KB - Virtual size: 60KB