30fe1a4ac808dbec3e43c508cbb3bbc9458a65005b4538e8c95cae20750798a8

Sharing

Copy URL

Twitter E-mail

General

Target

30fe1a4ac808dbec3e43c508cbb3bbc9458a65005b4538e8c95cae20750798a8
Size

219KB
MD5

92007ae88daf3a6a44935cc09e8dde50
SHA1

9b91430b4b15742eb00327e1eacc039728773118
SHA256

30fe1a4ac808dbec3e43c508cbb3bbc9458a65005b4538e8c95cae20750798a8
SHA512

156142e6be975d48ececc81b2c51329aeeef4700b9795a35a770afc6ddb6965bf52864efbe8ab39d13ff4158947b21399fd88b1ef968124bcb518f7901adf1b6
SSDEEP

1536:eiUDdyis5BP3/Ijyvr+wV0aMAqpnNR6XPAjtmhH6Tym6rxKOsn:7f/IjyvZSa26XoWepslsn

Score

N/A

Malware Config

Signatures

Files

30fe1a4ac808dbec3e43c508cbb3bbc9458a65005b4538e8c95cae20750798a8
.exe windows x86

99e2ddf6ed25a6df4d8635653627ae58

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
wvsprintfA
SetWindowPos
FindWindowA
RedrawWindow
GetWindowTextA
EnableWindow
GetSystemMetrics
IsWindow
CheckRadioButton
UnregisterClassA
SetCursor
GetSysColorBrush
DialogBoxParamA
DestroyAcceleratorTable
DispatchMessageA
TranslateMessage
LoadIconA
EmptyClipboard
SetClipboardData
SetFocus
CharUpperA
OpenClipboard
IsDialogMessageA
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RemoveMenu
InvalidateRect
ChildWindowFromPoint
PostMessageA
DestroyCursor
CreateDialogParamA
GetWindowRect
IsMenu
GetSubMenu
SetDlgItemInt
GetWindowPlacement
CharLowerBuffA
EnableMenuItem
CheckMenuRadioItem
GetSysColor
KillTimer
DestroyIcon
DestroyWindow
PostQuitMessage
GetClientRect
MoveWindow
GetSystemMenu
SetTimer
SetWindowPlacement
InsertMenuItemA
GetMenu
CheckMenuItem
SetMenuItemInfoA
SetActiveWindow
DefDlgProcA
RegisterClassA
EndDialog
SetDlgItemTextA
EnumClipboardFormats
GetClipboardData
CloseClipboard
GetClassInfoA
CallWindowProcA
SetWindowLongA
IsDlgButtonChecked
SetWindowTextA
CheckDlgButton
GetActiveWindow
MessageBoxA
wsprintfA
GetDlgItemTextA
SendMessageA
GetCursorPos
TrackPopupMenu
ClientToScreen
DestroyMenu
CreatePopupMenu
AppendMenuA
SendDlgItemMessageA
GetDlgItem
LoadCursorA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA
RegSetValueA
RegCreateKeyA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
RegDeleteKeyA

gdi32

SetTextColor
SetBkMode
DeleteObject
GetStockObject
SelectObject
CreateFontIndirectA
GetObjectA

dbghelp

ImageRvaToSection
ImageNtHeader
ImageRvaToVa

comctl32

ImageList_Destroy
CreateToolbarEx
ImageList_SetBkColor
ImageList_Remove
ImageList_Create
InitCommonControlsEx
ImageList_ReplaceIcon

kernel32

GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
DeleteCriticalSection
GetFileType
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
Sleep
GetModuleHandleW
LeaveCriticalSection
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
PrepareTape
InitAtomTable
GetCurrentThreadId
FlushViewOfFile
TransmitCommChar
ReleaseMutex
DecodeSystemPointer
CreateMemoryResourceNotification
GetCurrentProcessId
GetProcessId
SetSystemTimeAdjustment
GetPriorityClass
ConvertThreadToFiber
ResetWriteWatch
IsWow64Process
SetHandleCount
CreateFiberEx
UpdateResourceW
EnterCriticalSection
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetModuleFileNameA
GetStringTypeA
GetStringTypeW
IsDebuggerPresent
SetEndOfFile
CancelWaitableTimer
DecodePointer
GetCommMask
ConvertFiberToThread
SetProcessWorkingSetSize

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 34.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99e2ddf6ed25a6df4d8635653627ae58

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

advapi32

gdi32

dbghelp

comctl32

kernel32

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 99KB - Virtual size: 34.4MB

.rsrc Size: 40KB - Virtual size: 39KB

.reloc Size: 32KB - Virtual size: 31KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 99KB - Virtual size: 34.4MB

.rsrc
Size: 40KB - Virtual size: 39KB

.reloc
Size: 32KB - Virtual size: 31KB