ec964b891d4e2240dc1f8362a37ef0d0fc3a84abf32345fa4e57ab09cde55a3d

Sharing

Copy URL Twitter E-mail

General

Target

ec964b891d4e2240dc1f8362a37ef0d0fc3a84abf32345fa4e57ab09cde55a3d
Size

259KB
MD5

a04b99f5d9523abc98778d53a830b9b0
SHA1

6b9359d3d5bf67c994c6d54e57debc8bd834f1ad
SHA256

ec964b891d4e2240dc1f8362a37ef0d0fc3a84abf32345fa4e57ab09cde55a3d
SHA512

349b215f40b4e5b7fe541b4236398cdb72544b9b3e86f22a89a47f50c4ec7824a98ed0918c64c4a5e33b81566d8db9676083e4414854da574382c7687fd7a8b0
SSDEEP

6144:IMcez+qXmDa30ENq9eRnrSf/6bhJGTFST:IrK2fHK

Score

N/A

Malware Config

Signatures

Files

ec964b891d4e2240dc1f8362a37ef0d0fc3a84abf32345fa4e57ab09cde55a3d
.exe windows x86

83c31f1af0bcabc16a6941a009b90391

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
GetSystemDefaultLCID
lstrcmpA
lstrcpynA
SetConsoleCtrlHandler
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetVersionExA
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
HeapCreate
HeapDestroy
HeapSize
TerminateProcess
HeapReAlloc
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
RtlUnwind
GetCurrentThreadId
WaitForSingleObject
CreateFileMappingA
MapViewOfFile
CreateMutexA
UnmapViewOfFile
ReleaseMutex
GetEnvironmentVariableA
SetLastError
GetCurrentProcess
LocalAlloc
GetModuleFileNameA
GetBinaryTypeA
LocalFree
VirtualFree
Sleep
FindResourceExA
LoadResource
LockResource
lstrcpyW
GetFileAttributesW
GetFileAttributesA
WideCharToMultiByte
CreateThread
GetDriveTypeA
lstrcatW
Beep
GetTempFileNameA
GlobalLock
GetLastError
CreateFileA
CloseHandle
DeleteFileA
lstrcmpiA
FindFirstFileA
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
CompareStringA
SetErrorMode
LoadLibraryExA
FreeLibrary
lstrlenW
lstrcatA
lstrcpyA
lstrlenA
MultiByteToWideChar
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
UnhandledExceptionFilter
InterlockedExchange

user32

EqualRect
MoveWindow
ShowWindow
ScreenToClient
IsWindowVisible
SendMessageA
GetWindowLongA
GetWindowTextA
IsWindowEnabled
GetCursorPos
GetKeyState
SendMessageW
EnumWindows
GetClassNameA
SendMessageTimeoutA
PtInRect
GetWindowRect
SendDlgItemMessageA
GetDlgItem
DestroyWindow
BeginPaint
EnableWindow
SetWindowTextA
DrawIconEx
EndPaint
SetWindowPos
AdjustWindowRect
GetSystemMetrics
DialogBoxParamA
GetWindow
LoadMenuIndirectA
CreateDialogIndirectParamW
CreateDialogIndirectParamA
DialogBoxIndirectParamW
DialogBoxIndirectParamA
LoadImageA
DestroyIcon
GetClientRect
CreateWindowExA
DefDlgProcA
DefFrameProcA
DefMDIChildProcA
UpdateWindow
wsprintfW
SetWindowTextW
GetWindowTextW
EndDialog
DefWindowProcA
IsWindowUnicode
LoadIconA
MessageBoxA
CharNextA
GetFocus
SetFocus
CharPrevA
wsprintfA
GetDC
OffsetRect
ReleaseDC
GetDlgCtrlID
GetSysColor
CopyRect
FillRect
DrawFocusRect
SetRect
DrawFrameControl
DrawEdge
DrawTextA
InvalidateRect
CallWindowProcA
PostMessageA
GetParent
SetWindowLongA
PostThreadMessageA
WinHelpA

gdi32

GetTextMetricsA
CreateSolidBrush
SetBkColor
DeleteObject
SetTextColor
GetTextExtentPoint32W
SelectObject
CreateFontA
GetStockObject
SetBkMode
GetTextExtentPoint32A
LineTo
MoveToEx
CreatePen
CreateFontIndirectA
EnumFontFamiliesA
GetDeviceCaps
ExtTextOutW

comdlg32

GetOpenFileNameW
GetOpenFileNameA

advapi32

RegSetValueExA
RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
RegUnLoadKeyA
RegQueryInfoKeyA
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorA
GetSecurityDescriptorDacl
AllocateAndInitializeSid
IsValidSid
FreeSid
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
OpenProcessToken

ole32

CoUninitialize
CoInitialize
CoDisconnectObject

oleaut32

SysAllocString
LoadRegTypeLi
LoadTypeLi

comctl32

ord17
PropertySheetA
ImageList_GetImageCount
ImageList_Create
ImageList_ReplaceIcon

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

imm32

ImmAssociateContext

imjp81k

CheckFileType

Exports

Exports

?AutoCorrLbSubWndProc@@YGJPAUHWND__@@IIJ@Z

Sections

.text
Size: 148KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

83c31f1af0bcabc16a6941a009b90391

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

comctl32

version

imm32

imjp81k

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 146KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 20KB - Virtual size: 51KB

.rsrc Size: 71KB - Virtual size: 71KB

.text
Size: 148KB - Virtual size: 146KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 20KB - Virtual size: 51KB

.rsrc
Size: 71KB - Virtual size: 71KB