a0df15efa362a52c3665297d94baf4dae1eddf5d44a190badac181a362043124

Sharing

Copy URL Twitter E-mail

General

Target

a0df15efa362a52c3665297d94baf4dae1eddf5d44a190badac181a362043124
Size

447KB
MD5

61729d2ce7d76f47b115722faa4baf20
SHA1

7989c052a0924bfc0cd519f4aea7a34d97bb9666
SHA256

a0df15efa362a52c3665297d94baf4dae1eddf5d44a190badac181a362043124
SHA512

265a2fcf02834457f997e3d9756fbbc5f59ce3ba101971c8ca61876167a18e1d343fea67b0673600596f0d44e36cd65fbd7f83d2080b6e2e35355a895deb7832
SSDEEP

12288:Z6Hd4LmSDtSD45/pR0CIaOlkdancquA/:6dDsFpgQany6

Score

N/A

Malware Config

Signatures

Files

a0df15efa362a52c3665297d94baf4dae1eddf5d44a190badac181a362043124
.exe windows x86

09135d00b75752e95ef60f95feadb31a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ExitWindowsEx
WinHelpW
EnumPropsA
SetActiveWindow
DefWindowProcW
MessageBoxW
CharLowerW
PostThreadMessageW
GetWindowRect
GetClassInfoExA
SetWindowLongW
DialogBoxParamW
GetWindowThreadProcessId
DestroyWindow
EnumWindows
ReleaseDC
TranslateMessage
GetThreadDesktop
CharPrevW
wsprintfW
IsDlgButtonChecked
wsprintfA
GetParent
UpdateWindow
EndDialog
CharUpperW
ChildWindowFromPointEx
DispatchMessageW
SystemParametersInfoA
GetUserObjectInformationW
SetWindowPos
GetMessageW
LoadCursorW
MsgWaitForMultipleObjects
GetWindowLongW
CharNextW
ChildWindowFromPoint
MoveWindow
RegisterClassExW
SendMessageW
EnableMenuItem
LoadIconW
ShowWindow
CreateWindowExW
DeleteMenu
InvalidateRect
BeginPaint
LoadMenuW
IsWindowVisible
GetWindowTextA
PostMessageW
GetCursor
SetCursor
SetDlgItemTextW
UnregisterClassW
IsDialogMessageW
GetDlgItemTextW
FindWindowExW
GetDlgCtrlID
SetDlgItemInt
ShowWindowAsync
ShowCursor
IsWindowEnabled
RegisterWindowMessageW
LoadStringW
PeekMessageW
GetFocus
ScreenToClient
SendDlgItemMessageW
RegisterClassExA
SetDlgItemTextA
CallWindowProcW
SetWindowTextW
SendDlgItemMessageA
LoadImageW
EndPaint
SetFocus
GetClientRect
GetWindowTextW
GetDlgItem
SetTimer
LoadStringA
GetClassLongW
CreateDialogParamW
GetDlgItemInt
IsWindow
wvsprintfW
EnableWindow
MapWindowPoints
InsertMenuW
CheckDlgButton
SetForegroundWindow
MessageBoxExW
GetSystemMenu
PostQuitMessage
SendMessageA
KillTimer
GetDC

ole32

CoTaskMemFree
CoUninitialize
CoInitialize
CoCreateInstance

advpack

TranslateInfString
NeedReboot

kernel32

GetStartupInfoA
FreeEnvironmentStringsA
lstrcatW
InitializeCriticalSection
GetSystemTime
CopyFileW
GetProcessHeap
lstrlenW
CreateFileW
FindResourceExW
LoadLibraryA
EnterCriticalSection
SetLastError
InterlockedIncrement
SetFileTime
SetStdHandle
TerminateProcess
ReleaseMutex
SetEvent
GetLastError
WideCharToMultiByte
CreateEventW
HeapFree
InterlockedDecrement
HeapAlloc
GetFileAttributesW
GetVersionExW
TlsGetValue
CreateProcessW
GlobalAlloc
DisableThreadLibraryCalls
lstrcmpiA
SetUnhandledExceptionFilter
GlobalLock
LCMapStringA
GetCurrentProcess
VirtualAlloc
TlsAlloc
FindFirstFileW
WriteFile
GetSystemDirectoryW
VirtualQuery
GetStringTypeExW
CreateDirectoryA
GetFileTime
GetModuleFileNameW
FormatMessageW
SetFileAttributesW
CreateMutexW
GetVolumeInformationA
GetStdHandle
lstrcmpA
GetFileAttributesA

ntdll

RtlUnwind

shell32

SHFileOperationW

cmpbk32

PhoneBookGetCountryNameA
PhoneBookGetCountryNameW
PhoneBookGetRegionNameA
PhoneBookParseInfoA
PhoneBookFreeFilter
PhoneBookGetPhoneType
PhoneBookGetPhoneDispA
PhoneBookMatchFilter
PhoneBookGetPhoneCanonicalA
PhoneBookEnumNumbersWithRegionsZero
PhoneBookGetCountryId
PhoneBookGetPhoneNonCanonicalA
PhoneBookGetPhoneDescA
PhoneBookEnumRegions
PhoneBookLoad
PhoneBookGetCurrentCountryId
PhoneBookEnumNumbers
PhoneBookEnumCountries
PhoneBookGetPhoneDUNA
PhoneBookCopyFilter
PhoneBookUnload
PhoneBookHasPhoneType

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 370KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09135d00b75752e95ef60f95feadb31a

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advpack

kernel32

ntdll

shell32

cmpbk32

Sections

.text Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 28B

.data Size: 370KB - Virtual size: 1.8MB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 56KB - Virtual size: 56KB

.rdata Size: 13KB - Virtual size: 12KB

.text
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 28B

.data
Size: 370KB - Virtual size: 1.8MB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 56KB - Virtual size: 56KB

.rdata
Size: 13KB - Virtual size: 12KB