e4add8fad5a3e91b82d281404905ca5960c234c6b83596d3555c41ea49e982c8

Sharing

Copy URL Twitter E-mail

General

Target

e4add8fad5a3e91b82d281404905ca5960c234c6b83596d3555c41ea49e982c8
Size

122KB
MD5

1397436f8ca8759c9c8e41ca4d353b47
SHA1

83d1f02360c9feceb331bde52081d5b0deb76aea
SHA256

e4add8fad5a3e91b82d281404905ca5960c234c6b83596d3555c41ea49e982c8
SHA512

edb90da4218e846ba53745dc6808ddbb92d3c9f6fd58314a647f6681f47c8c9fea850b94b2c69ace4abe35139bcc1cac3a873ef8e4f0c82cf22b9bb28fae03c2
SSDEEP

3072:rutKM/LhiUY659fCIEX/AzilId/pt2dgfbGO0:rw3/LKM9fCBPAzilIdBsgC

Score

N/A

Malware Config

Signatures

Files

e4add8fad5a3e91b82d281404905ca5960c234c6b83596d3555c41ea49e982c8
.exe windows x86

9a765f22b4b1c99933e44df350034d67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
CloseHandle
LockResource
SetFilePointer
InterlockedIncrement
MultiByteToWideChar
GetThreadPriority
InitializeCriticalSection
GetModuleFileNameA
lstrlenA
LocalFree
RemoveDirectoryA
GetSystemTime
SetEndOfFile
GetLastError
WritePrivateProfileStringA
FreeLibrary
MapViewOfFile
GetVersionExA
GetTickCount
GetCurrentThreadId
InterlockedExchange
GetSystemInfo
GetModuleHandleA
GetCurrentThread
CreateProcessA
HeapDestroy
lstrcatA
GlobalUnlock
SetThreadPriority
lstrcpyA
GetLocaleInfoA
lstrcmpA
GlobalMemoryStatus
SystemTimeToFileTime
InterlockedDecrement
CreateMutexA
LoadLibraryA
SetFileAttributesA
GlobalLock
GetVersion
LocalAlloc
ReadFile
WaitForSingleObject
GetComputerNameA
GetVolumeInformationA
CreateFileMappingA
ResumeThread
FormatMessageA
UnmapViewOfFile
GetDiskFreeSpaceA
IsBadReadPtr
GlobalFree
MoveFileA
DeleteCriticalSection
WideCharToMultiByte
lstrlenW
FindResourceA
Sleep
GetStartupInfoA
WriteFile
GetFileSize
SetFileTime
ExitProcess
HeapAlloc
HeapCreate
MulDiv
LoadLibraryExA
VirtualProtect
LoadResource
GetTempPathA
GetProcAddress
GetFileTime
GetFileAttributesA
FileTimeToSystemTime
GlobalAlloc
GetPrivateProfileStringA
CreateFileA

user32

InflateRect
GetSystemMenu
HideCaret
PeekMessageA
EnableMenuItem
UpdateWindow
ModifyMenuA
LoadCursorA
PostQuitMessage
LockWindowUpdate
IsWindow
InvalidateRect
MapWindowPoints
AdjustWindowRectEx
wvsprintfA
CreateWindowExA
SetCapture
LoadImageA
ScreenToClient
CreatePopupMenu
KillTimer
MapDialogRect
SetWindowContextHelpId
PostMessageA
DrawEdge
LoadMenuA
CreateCaret
GetMenuStringA
EqualRect
FillRect
GetWindowRect
GetClassLongA
SetRectEmpty
DeferWindowPos
GetDesktopWindow
IsZoomed
InsertMenuA
PostThreadMessageA
GetMenuItemID
DestroyCaret
FlashWindow
GetMenuItemInfoA
RemoveMenu
PtInRect
UnhookWindowsHookEx
LoadBitmapA
ReleaseDC
IsRectEmpty
DrawTextA
GetDC
DrawIconEx
SetParent
BeginDeferWindowPos
GetDlgCtrlID
SetMenuItemInfoA
DrawFrameControl
IsIconic
EnableWindow
AppendMenuA
SetTimer
IsMenu
RedrawWindow
DispatchMessageA
CopyRect
GetDCEx
ClientToScreen
UnionRect
GetMenuDefaultItem
SetCursor
GetCursorPos
GetMenuState
GetParent
GetWindow
GetSystemMetrics
GetCapture
SetRect
IntersectRect
OffsetRect
SystemParametersInfoA
GetKeyState
GetMenu
GetClientRect
MessageBoxA
SetForegroundWindow
EndDeferWindowPos
SetWindowsHookExA
SetMenuDefaultItem
GetNextDlgTabItem
ShowCaret
RegisterClipboardFormatA
RegisterWindowMessageA
SetCaretPos
GetMenuItemCount
GetWindowLongA
TrackPopupMenu
GetMessagePos
GetTopWindow
WindowFromPoint
GetMessageA
SetWindowPos
GetActiveWindow
WaitMessage
CheckMenuItem
GetSubMenu
IsWindowVisible
CallNextHookEx
GetSysColor
DeleteMenu
DestroyMenu
ReleaseCapture
SendMessageA
BringWindowToTop

shell32

SHGetMalloc
SHFileOperationA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA

ole32

StringFromCLSID
StringFromGUID2
CoGetClassObject
CoCreateGuid
CoTaskMemFree
CLSIDFromString

oleaut32

SysFreeString
VariantClear
SysAllocStringLen

comctl32

ord8
ImageList_DragEnter
ImageList_GetImageCount
ImageList_DragLeave
ImageList_EndDrag
ImageList_SetBkColor
ImageList_AddMasked
ImageList_BeginDrag

shlwapi

wnsprintfA

wininet

InternetAutodialHangup
InternetGetConnectedState

wsock32

accept
connect
WSAAsyncSelect
getpeername
inet_addr
htons
ioctlsocket
ntohs
getsockname
send
bind
shutdown
listen
WSASetLastError
WSAGetLastError
gethostbyname
recv
closesocket
socket

oledlg

ord7

msvcrt

_strdup
isalpha
_CIpow
_onexit
_XcptFilter
malloc
fseek
_open
_adjust_fdiv
??1type_info@@UAE@XZ
exit
__getmainargs
_setmbcp
_acmdln
_exit
__set_app_type
_initterm
_ftime
_mbschr
isalnum
__setusermatherr
ctime
localtime
_lseek
_chdir
_chdrive
__CxxFrameHandler
atoi
gmtime
atol
_mbsinc
free
clock
__p__fmode
strncpy
fclose
_fstat
fgets
__dllonexit
_endthread
_CxxThrowException
?terminate@@YAXXZ
sprintf
_itoa
time
strncat
longjmp
??8type_info@@QBEHABV0@@Z
wcslen
vsprintf
qsort
atof
_except_handler3
_close
floor
isdigit
_mbctoupper
memmove
_purecall
__RTDynamicCast
rand
_ftol
fprintf
_CIacos
fopen
wcscpy
_setjmp3

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a765f22b4b1c99933e44df350034d67

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

ole32

oleaut32

comctl32

shlwapi

wininet

wsock32

oledlg

msvcrt

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 58KB - Virtual size: 78KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 58KB - Virtual size: 78KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB