3e1e69a04e8116e6fc78c8e8eecec6e2b1804eb2a9d6cbcf99d961d16f4731f3

Sharing

Copy URL Twitter E-mail

General

Target

3e1e69a04e8116e6fc78c8e8eecec6e2b1804eb2a9d6cbcf99d961d16f4731f3
Size

445KB
MD5

a11be0c91aa83e99b53f01e8d3515266
SHA1

f10f51d85adab61924507699b581518576078709
SHA256

3e1e69a04e8116e6fc78c8e8eecec6e2b1804eb2a9d6cbcf99d961d16f4731f3
SHA512

101ff85c197ddbb709c9605c5dcbe36ed42122b4d125501997ea7b16232bc29624bfdbb8e58334241eb6876f7acb89221c624208d7547d30fb01007eccb3bafb
SSDEEP

12288:5Wp8gq5HmaO0j+HldcQp+QE5W4Ch5DYuxTyJAP:5Wp8r5o0KHliQp5Dhdse

Score

N/A

Malware Config

Signatures

Files

3e1e69a04e8116e6fc78c8e8eecec6e2b1804eb2a9d6cbcf99d961d16f4731f3
.exe windows x86

74c41f97258cd2e22af6080a00ef581c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Imports

kernel32

GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
SetLastError
TlsFree
GetStdHandle
TlsGetValue
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
IsProcessorFeaturePresent
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapFree
DecodePointer
GetModuleHandleW
RtlUnwind
RaiseException
GetModuleFileNameW
HeapCreate
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringW
MultiByteToWideChar
GetStringTypeW
Sleep
HeapSize
SetFilePointer
GetConsoleCP
GetConsoleMode
HeapReAlloc
ReadFile
SetStdHandle
WriteConsoleW
CreateFileW
SetConsoleTitleA
lstrlenA
lstrcpyA
lstrcpynA
CreateFileA
LoadLibraryA
CloseHandle
WriteFile
GetProcAddress
HeapAlloc
FindResourceA
LoadResource
LockResource
SizeofResource
lstrlenW
WideCharToMultiByte
MulDiv
GetProcessHeap
SetEnvironmentVariableA
GetLastError
ExitProcess
GetEnvironmentVariableW
TlsSetValue
FlushFileBuffers

user32

LoadAcceleratorsA
UpdateWindow
ShowWindow
GetDialogBaseUnits
IsDialogMessageW
TranslateAcceleratorA
GetWindowRect
GetDlgItem
LoadIconA
SetWindowPos
GetMessagePos
SendMessageA
LoadBitmapW
GetDC
SetScrollRange
CheckRadioButton
RegisterClassExA
wsprintfA
FindWindowExA
GetSystemMenu
DeleteMenu
ReleaseDC
DestroyIcon
DefWindowProcA
InvalidateRect
BeginPaint
GetClientRect
SetRect
FillRect
EndPaint
PostQuitMessage
EndDialog
DrawFrameControl
GetWindowLongA
SetWindowLongA
DrawTextA
CopyRect
LoadCursorA
SetWindowTextA
GetWindowTextA
DestroyWindow
CreateWindowExA
SetFocus
DrawMenuBar
DefMDIChildProcA
GetMenu
SetMenuItemInfoA
IsClipboardFormatAvailable
GetWindow
DefFrameProcA
GetWindowTextLengthA
MessageBoxA
DialogBoxParamA
LoadImageA
GetFocus
OffsetRect
MessageBoxW
CreateDialogParamA
GetParent
LoadBitmapA
LoadStringA
SendDlgItemMessageA
MoveWindow
EnumDesktopsA
SetDlgItemInt
SetTimer
GetScrollPos
SetScrollPos
GetSystemMetrics

gdi32

GetDeviceCaps
CreateBitmap
SelectPalette
RealizePalette
StretchDIBits
DeleteObject
GetSystemPaletteEntries
CreatePalette
SetViewportOrgEx
CreateSolidBrush
CreateCompatibleBitmap
DeleteDC
CreateCompatibleDC
SetTextColor
SetBkMode
TextOutA
Rectangle
SetMapMode
SetWindowExtEx
SetViewportExtEx
SetTextAlign
MoveToEx
LineTo
Polyline
CreatePen
GetStockObject
BitBlt
ExtTextOutA
FrameRgn
SelectClipRgn
CreateEllipticRgn
CreateRectRgn
CombineRgn
GetTextMetricsA
GetTextColor
SelectObject
CreateHatchBrush
SetBkColor
SetStretchBltMode

comdlg32

ChooseFontA
GetOpenFileNameA
FindTextW

shell32

DragAcceptFiles
SHGetFileInfoA
Shell_NotifyIconA
SHGetMalloc
SHGetFolderPathW
SHGetSpecialFolderLocation
SHGetPathFromIDListA
DragFinish
DragQueryFileA

ole32

CoInitialize
CoGetClassObject
OleInitialize
CLSIDFromProgID
CoCreateInstance
OleUninitialize

oleaut32

SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
VariantInit
SysAllocStringByteLen

winmm

timeGetTime
timeBeginPeriod
timeEndPeriod

shlwapi

StrCmpNIA
StrChrA

comctl32

ord17
ord412
ImageList_ReplaceIcon
ord413
InitCommonControlsEx
ImageList_AddMasked

activeds

ord3
ord14

wintrust

IsCatalogFile

uxtheme

CloseThemeData
OpenThemeData

powrprof

SetSuspendState

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ldata
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.relok
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74c41f97258cd2e22af6080a00ef581c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

oleaut32

winmm

shlwapi

comctl32

activeds

wintrust

uxtheme

powrprof

Sections

.text Size: 86KB - Virtual size: 85KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 12KB - Virtual size: 19KB

.ldata Size: 50KB - Virtual size: 50KB

.relok Size: 164KB - Virtual size: 164KB

.rsrc Size: 98KB - Virtual size: 98KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 86KB - Virtual size: 85KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 12KB - Virtual size: 19KB

.ldata
Size: 50KB - Virtual size: 50KB

.relok
Size: 164KB - Virtual size: 164KB

.rsrc
Size: 98KB - Virtual size: 98KB

.reloc
Size: 11KB - Virtual size: 11KB