15c423502d58f3a457d275feb4fdd00864d12711c6273b4dcf2e3d3a6b1eca07

Sharing

Copy URL Twitter E-mail

General

Target

15c423502d58f3a457d275feb4fdd00864d12711c6273b4dcf2e3d3a6b1eca07
Size

171KB
MD5

a225c519f8e16719857d5a58d24eca70
SHA1

0bfeb686e723f45bcb9a32cffc863ff884dba965
SHA256

15c423502d58f3a457d275feb4fdd00864d12711c6273b4dcf2e3d3a6b1eca07
SHA512

7bce715369e87a096e28e7a3af06494d657f0d90fff1f8f2bfe97dbd48872ee73c8b5c607194b86f76d774b5ae0c3f05a6f48fb65e0fbee1592f20a4ab4c9f7e
SSDEEP

3072:pxtnz9ULCGqKloSSr8ouxKON70S/eCLeGBL1p5YBYjsdrOJtf1l:pxtnz9cqvrYwOjaGBRpvse

Score

N/A

Malware Config

Signatures

Files

15c423502d58f3a457d275feb4fdd00864d12711c6273b4dcf2e3d3a6b1eca07
.exe windows x86

28f21963600da08b4fae6af1849851c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetCurrentThreadId
SetLastError
TlsFree
GetCurrentProcessId
TlsGetValue
TlsAlloc
CloseHandle
GetOEMCP
IsProcessorFeaturePresent
InterlockedDecrement
InterlockedIncrement
GetCPInfo
EncodePointer
GetModuleFileNameW
GetStdHandle
WriteFile
DecodePointer
ExitProcess
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
RtlUnwind
TlsSetValue
HeapSize
HeapReAlloc
GetModuleHandleA
GetSystemInfo
LocalAlloc
GetModuleHandleW
GetProcAddress
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetACP
LocalFree
GetLastError
HeapCreate
Sleep
HeapAlloc
IsValidCodePage
CreateFileA
GetCurrentProcess
TerminateProcess
HeapFree
GetStartupInfoW
GetCommandLineA
HeapSetInformation

user32

GetWindow
LoadCursorA
SetMenuItemInfoA
DestroyWindow
keybd_event
ScreenToClient
GetWindowRect
InsertMenuItemA
SendInput
GetMenuItemID
GetSubMenu
SetForegroundWindow
wsprintfA
FindWindowExA
MenuItemFromPoint
SendMessageA
GetDC
FindWindowA
GetMenu
OffsetRect
GetMenuItemRect
TrackPopupMenuEx
ReleaseDC
EnableMenuItem
GetMenuState
GetDlgItem
DefWindowProcA
GetDesktopWindow
GetCursorPos
GetMenuItemInfoA
GetMenuStringA
ShowWindow
GetMenuItemCount
IsWindow
GetSystemMetrics
SendMessageW
RegisterClassA

gdi32

DeleteDC
SelectObject
CreateCompatibleDC
CreateBitmapIndirect
SetTextJustification
GetStockObject
BitBlt

comdlg32

FindTextW

advapi32

RegCloseKey
RegSetValueExW
RegCreateKeyExW

ole32

CoDosDateTimeToFileTime
CoInitialize

oleaut32

OleCreatePictureIndirect

crypt32

CertGetNameStringA

comctl32

ord17
ord16

rpcrt4

UuidFromStringA

oledlg

ord9

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28f21963600da08b4fae6af1849851c0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

crypt32

comctl32

rpcrt4

oledlg

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 79KB - Virtual size: 78KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 79KB - Virtual size: 78KB