d7173c24ffa6c008bbc40d6566a89d7ec7caac0d7bd3c06c5a1f7e633fbe9caf

Sharing

Copy URL

Twitter E-mail

General

Target

d7173c24ffa6c008bbc40d6566a89d7ec7caac0d7bd3c06c5a1f7e633fbe9caf
Size

259KB
MD5

a1dabdeaf9c6bf1def7c84a34092fc10
SHA1

7fbe0cf880e8b2d043b7f9b71bfde3357bb7046e
SHA256

d7173c24ffa6c008bbc40d6566a89d7ec7caac0d7bd3c06c5a1f7e633fbe9caf
SHA512

416eeb5d421eb7689ae7c49bcae131697d227d9659840f24e4bfaf30157b7dd7244be6103ca84847ce9ae560a4e56fd76f83407a108712615b650596de085344
SSDEEP

6144:IMcez+qXmDa30ENq9eRnrSf/6bhJGTFSDeE:IrK2fHep

Score

N/A

Malware Config

Signatures

Files

d7173c24ffa6c008bbc40d6566a89d7ec7caac0d7bd3c06c5a1f7e633fbe9caf
.exe windows x86

83c31f1af0bcabc16a6941a009b90391

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
GetSystemDefaultLCID
lstrcmpA
lstrcpynA
SetConsoleCtrlHandler
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetVersionExA
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
HeapCreate
HeapDestroy
HeapSize
TerminateProcess
HeapReAlloc
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
RtlUnwind
GetCurrentThreadId
WaitForSingleObject
CreateFileMappingA
MapViewOfFile
CreateMutexA
UnmapViewOfFile
ReleaseMutex
GetEnvironmentVariableA
SetLastError
GetCurrentProcess
LocalAlloc
GetModuleFileNameA
GetBinaryTypeA
LocalFree
VirtualFree
Sleep
FindResourceExA
LoadResource
LockResource
lstrcpyW
GetFileAttributesW
GetFileAttributesA
WideCharToMultiByte
CreateThread
GetDriveTypeA
lstrcatW
Beep
GetTempFileNameA
GlobalLock
GetLastError
CreateFileA
CloseHandle
DeleteFileA
lstrcmpiA
FindFirstFileA
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
CompareStringA
SetErrorMode
LoadLibraryExA
FreeLibrary
lstrlenW
lstrcatA
lstrcpyA
lstrlenA
MultiByteToWideChar
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
UnhandledExceptionFilter
InterlockedExchange

user32

EqualRect
MoveWindow
ShowWindow
ScreenToClient
IsWindowVisible
SendMessageA
GetWindowLongA
GetWindowTextA
IsWindowEnabled
GetCursorPos
GetKeyState
SendMessageW
EnumWindows
GetClassNameA
SendMessageTimeoutA
PtInRect
GetWindowRect
SendDlgItemMessageA
GetDlgItem
DestroyWindow
BeginPaint
EnableWindow
SetWindowTextA
DrawIconEx
EndPaint
SetWindowPos
AdjustWindowRect
GetSystemMetrics
DialogBoxParamA
GetWindow
LoadMenuIndirectA
CreateDialogIndirectParamW
CreateDialogIndirectParamA
DialogBoxIndirectParamW
DialogBoxIndirectParamA
LoadImageA
DestroyIcon
GetClientRect
CreateWindowExA
DefDlgProcA
DefFrameProcA
DefMDIChildProcA
UpdateWindow
wsprintfW
SetWindowTextW
GetWindowTextW
EndDialog
DefWindowProcA
IsWindowUnicode
LoadIconA
MessageBoxA
CharNextA
GetFocus
SetFocus
CharPrevA
wsprintfA
GetDC
OffsetRect
ReleaseDC
GetDlgCtrlID
GetSysColor
CopyRect
FillRect
DrawFocusRect
SetRect
DrawFrameControl
DrawEdge
DrawTextA
InvalidateRect
CallWindowProcA
PostMessageA
GetParent
SetWindowLongA
PostThreadMessageA
WinHelpA

gdi32

GetTextMetricsA
CreateSolidBrush
SetBkColor
DeleteObject
SetTextColor
GetTextExtentPoint32W
SelectObject
CreateFontA
GetStockObject
SetBkMode
GetTextExtentPoint32A
LineTo
MoveToEx
CreatePen
CreateFontIndirectA
EnumFontFamiliesA
GetDeviceCaps
ExtTextOutW

comdlg32

GetOpenFileNameW
GetOpenFileNameA

advapi32

RegSetValueExA
RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
RegUnLoadKeyA
RegQueryInfoKeyA
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorA
GetSecurityDescriptorDacl
AllocateAndInitializeSid
IsValidSid
FreeSid
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
OpenProcessToken

ole32

CoUninitialize
CoInitialize
CoDisconnectObject

oleaut32

SysAllocString
LoadRegTypeLi
LoadTypeLi

comctl32

ord17
PropertySheetA
ImageList_GetImageCount
ImageList_Create
ImageList_ReplaceIcon

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

imm32

ImmAssociateContext

imjp81k

CheckFileType

Exports

Exports

?AutoCorrLbSubWndProc@@YGJPAUHWND__@@IIJ@Z

Sections

.text
Size: 148KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

83c31f1af0bcabc16a6941a009b90391

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

comctl32

version

imm32

imjp81k

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 146KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 20KB - Virtual size: 51KB

.rsrc Size: 71KB - Virtual size: 71KB

.text
Size: 148KB - Virtual size: 146KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 20KB - Virtual size: 51KB

.rsrc
Size: 71KB - Virtual size: 71KB