355b08fa065295b4d7f0d974cb3f84feac9206902b29f8756fafab075ca3b8ef

Sharing

Copy URL Twitter E-mail

General

Target

355b08fa065295b4d7f0d974cb3f84feac9206902b29f8756fafab075ca3b8ef
Size

276KB
MD5

00ec25af1201474cb7149cacad82e6b0
SHA1

34591d595ff72601193a58c78d49622ae809a437
SHA256

355b08fa065295b4d7f0d974cb3f84feac9206902b29f8756fafab075ca3b8ef
SHA512

70c4e6d894d18e85e1161322ffb4b781c7bd1af5dc778fc2c9ec8a8f3976094a7e65738fa0a48e2b274657d19e05c237a8bfae2cb5ed6a1b2016d751681f8745
SSDEEP

6144:DnhzeotIJts323vawJ5SSUkjlqSFstJX/MbSVL3YMLRv28UN7uUej:Dnzt2mOfZUYlqSWRDQBAj

Score

N/A

Malware Config

Signatures

Files

355b08fa065295b4d7f0d974cb3f84feac9206902b29f8756fafab075ca3b8ef
.exe windows x86

63e5d15092d654de0179c3ca85d5a104

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageW
EndDialog
GetClientRect
MapWindowPoints
SetFocus
SetDlgItemTextW
GetDialogBaseUnits
DialogBoxParamW
MessageBoxW
GetSystemMetrics
GetWindowRect
DestroyWindow
SystemParametersInfoW
GetDlgItem
SetWindowLongW
SetWindowTextW
GetDlgItemTextW
SetWindowPos
CreateDialogParamW
GetParent
CharNextW
GetWindowLongW
CopyRect
ShowWindow
EnableWindow
LoadImageW
SendDlgItemMessageW
DrawTextW
GetWindow
LoadStringW

rpcrt4

CStdStubBuffer_Invoke
NdrOleAllocate
CStdStubBuffer_AddRef
IUnknown_AddRef_Proxy
NdrCStdStubBuffer_Release
CStdStubBuffer_IsIIDSupported
IUnknown_QueryInterface_Proxy
NdrDllCanUnloadNow
IUnknown_Release_Proxy
NdrDllGetClassObject
CStdStubBuffer_Connect
CStdStubBuffer_QueryInterface
CStdStubBuffer_Disconnect
NdrDllUnregisterProxy
CStdStubBuffer_DebugServerQueryInterface
NdrOleFree
NdrDllRegisterProxy
CStdStubBuffer_CountRefs

msvcrt

_initterm
??3@YAXPAX@Z
_adjust_fdiv
swprintf
__CxxFrameHandler
??1type_info@@UAE@XZ
wcscat
realloc
??2@YAPAXI@Z
free
wcslen
?terminate@@YAXXZ
malloc
wcscmp
wcsncpy
_except_handler3

kernel32

HeapAlloc
SetUnhandledExceptionFilter
GetModuleFileNameW
GetLastError
InterlockedDecrement
GetProcAddress
GetTickCount
LoadResource
lstrlenW
MultiByteToWideChar
GetEnvironmentStringsA
GetCurrentProcessId
EnterCriticalSection
HeapFree
lstrlenA
HeapDestroy
lstrcmpiW
DeleteCriticalSection
lstrcpyW
LoadLibraryA
FormatMessageW
FlushInstructionCache
OutputDebugStringA
FindResourceW
LeaveCriticalSection
lstrcatW
SizeofResource
InterlockedIncrement
FreeLibrary
SetLastError
GetSystemTimeAsFileTime
GetCurrentProcess
QueryPerformanceCounter
GetProcessHeap
GetSystemInfo
lstrcpynW
LocalFree
GetUserDefaultLCID
VirtualFree

ole32

CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoSetProxyBlanket
CoCreateInstance

advapi32

RegEnumKeyExW
TraceMessage
GetTraceLoggerHandle
RegisterTraceGuidsW
RegCloseKey
RegCreateKeyExW
RegQueryInfoKeyW
GetTraceEnableLevel
RegOpenKeyExW
UnregisterTraceGuids
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
GetTraceEnableFlags

irprops.cpl

BluetoothFindNextService
BluetoothFindNextClassId
BluetoothSelectDevicesFree
BluetoothFindFirstService
BluetoothRegisterForAuthentication
BluetoothFindFirstClassId
BluetoothMapClassOfDeviceToImageIndex
BluetoothFindServiceClose
BluetoothFindFirstDevice
BluetoothFindNextDevice
BluetoothFindDeviceClose
BluetoothUnregisterAuthentication
BluetoothSelectDevices
BluetoothFindClassIdClose
BluetoothRemoveDevice
BluetoothAuthenticateDevice

netshell

HrGetIconFromMediaType

gdi32

SetBkMode

shell32

SHGetFolderPathW
ShellExecuteW

Sections

text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63e5d15092d654de0179c3ca85d5a104

Headers

DLL Characteristics

File Characteristics

Imports

user32

rpcrt4

msvcrt

kernel32

ole32

advapi32

irprops.cpl

netshell

gdi32

shell32

Sections

text Size: 86KB - Virtual size: 86KB

.rdata Size: 187KB - Virtual size: 186KB

.rsrc Size: 1024B - Virtual size: 644B

text
Size: 86KB - Virtual size: 86KB

.rdata
Size: 187KB - Virtual size: 186KB

.rsrc
Size: 1024B - Virtual size: 644B