71b7f505b50b77404b7f2df0d0d6d0737810ace28f1323e9bdcb5d3edeeafe3c

Sharing

Copy URL Twitter E-mail

General

Target

71b7f505b50b77404b7f2df0d0d6d0737810ace28f1323e9bdcb5d3edeeafe3c
Size

352KB
MD5

80ff34f2168ffbf821ef5852cbc50c60
SHA1

d3f95c0f44a95a5e6d6056131f7871b018cdbbf6
SHA256

71b7f505b50b77404b7f2df0d0d6d0737810ace28f1323e9bdcb5d3edeeafe3c
SHA512

c3773bd47a32b714b7a2bd604d6662ef2fddc2cb829a79f6f1cf8d85bccc7adef0ef05f09ff6ed0ba8c2f202745c8ed8c4fb643c56a75d82e3a7afe744df6efe
SSDEEP

6144:cBDat0XzNWRTNqmoI20a3Kt5mvUDUMpacLbuD8I4diC50eIS/ArqFrbW2NKFPRZJ:GDaEzNYTNqmn20a3KtIvUDU8aU8CiG03

Score

N/A

Malware Config

Signatures

Files

71b7f505b50b77404b7f2df0d0d6d0737810ace28f1323e9bdcb5d3edeeafe3c
.exe windows x86

ae1bc2dca214afdfadbc653ecb47a3c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
GetCurrentThreadId
SetFileTime
SetFileAttributesA
SetFileAttributesW
FindFirstFileW
HeapDestroy
GlobalSize
GetTickCount
IsBadWritePtr
FindNextFileW
FindFirstFileA
FindNextFileA
FindClose
EnumSystemCodePagesW
SetFilePointer
GetFileSize
GetTimeFormatW
GetDateFormatW
GetTimeFormatA
GetDateFormatA
CreateProcessW
CreateProcessA
HeapFree
HeapAlloc
WriteFile
ReadFile
CreateFileW
CreateFileA
GetFullPathNameW
GetFullPathNameA
GetModuleFileNameW
GetModuleFileNameA
GetFileAttributesW
GetFileAttributesA
GetCommandLineW
GetCommandLineA
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
GetCurrentDirectoryW
GetCurrentDirectoryA
lstrcpyW
lstrcpyA
MultiByteToWideChar
lstrcmpW
lstrcmpA
GetProcessHeap
GetWindowsDirectoryW
GetACP
GetOEMCP
GetUserDefaultLangID
GetLocaleInfoA
GetModuleHandleA
WideCharToMultiByte
GetStartupInfoA
CreateMutexA
GetLastError
WaitForSingleObject
GetProcAddress
LoadLibraryA
GetLocaleInfoW
GetModuleHandleW
GetStartupInfoW
CreateMutexW
LoadLibraryW
FreeLibrary
ExitProcess
SearchPathW
SetCurrentDirectoryW
lstrcmpiW
MulDiv
SearchPathA
SetCurrentDirectoryA
ReleaseMutex
CloseHandle
lstrlenA
GlobalLock
GlobalUnlock
lstrlenW
Sleep
lstrcmpiA
lstrcatW
lstrcpynW
CompareFileTime
lstrcatA
lstrcpynA
GlobalFree
HeapCreate
GlobalAlloc

user32

InsertMenuW
FindWindowA
GetKeyNameTextA
MapVirtualKeyA
GetKeyNameTextW
MapVirtualKeyW
IsChild
MoveWindow
IsDialogMessageA
IsDialogMessageW
UnhookWindowsHookEx
GetWindowTextA
GetWindowTextW
EndDialog
SetDlgItemTextA
SetDlgItemTextW
MessageBeep
SetForegroundWindow
GetFocus
SetActiveWindow
GetActiveWindow
ReleaseDC
GetDC
GetDlgItem
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
LoadStringA
LoadStringW
CreateDialogParamA
CreateDialogParamW
DialogBoxParamA
DialogBoxParamW
EnumThreadWindows
WaitForInputIdle
EnableWindow
DrawTextA
DrawTextW
GetWindowTextLengthA
GetWindowTextLengthW
CloseClipboard
GetClipboardData
OpenClipboard
SetDlgItemInt
GetDlgItemTextA
GetDlgItemTextW
CharLowerBuffA
CharLowerBuffW
GetDlgItemInt
EndPaint
DrawFrameControl
BeginPaint
IsCharLowerA
CharLowerA
CharUpperBuffA
IsCharLowerW
CharLowerW
CharUpperBuffW
FrameRect
FillRect
SetWindowsHookExA
ShowCaret
HideCaret
FindWindowExA
FindWindowExW
IsClipboardFormatAvailable
SetCaretPos
CreateCaret
DestroyCaret
UnregisterClassA
UnregisterClassW
ModifyMenuW
EmptyClipboard
GetUpdateRect
ScrollWindow
GetKeyboardLayout
IsWindowUnicode
GetDoubleClickTime
GetMessageTime
SetTimer
KillTimer
SystemParametersInfoA
ShowScrollBar
RegisterClipboardFormatA
RegisterClipboardFormatW
LoadCursorW
LoadCursorA
RegisterClassA
GetMessageA
TranslateAcceleratorA
FindWindowW
RegisterClassW
GetMessageW
TranslateAcceleratorW
CreateWindowExW
GetClassLongW
SetClassLongW
GetMenuStringW
DefFrameProcW
CreateWindowExA
GetSubMenu
DeleteMenu
DrawMenuBar
GetClientRect
GetClassLongA
SetClassLongA
GetSystemMetrics
GetSysColor
CheckMenuRadioItem
GetKeyboardState
GetQueueStatus
CheckMenuItem
GetMenuStringA
DestroyCursor
DestroyIcon
DestroyAcceleratorTable
DestroyMenu
PostQuitMessage
DefFrameProcA
GetKeyState
DefWindowProcW
DefWindowProcA
PtInRect
ScreenToClient
GetSystemMenu
CallWindowProcW
CreateMDIWindowW
CallWindowProcA
CreateMDIWindowA
SetCursor
ReleaseCapture
SetCapture
SetWindowLongW
DefMDIChildProcW
SetWindowLongA
InvalidateRect
DefMDIChildProcA
GetWindowLongW
MessageBoxW
wsprintfW
SetWindowTextW
PeekMessageW
DispatchMessageW
SetFocus
SendMessageA
PostMessageA
GetWindowLongA
ClientToScreen
InsertMenuA
ModifyMenuA
SendMessageW
GetScrollInfo
SetScrollInfo
SetWindowPos
GetClassNameW
SetClipboardData
GetClassNameA
GetWindowRect
GetCursorPos
EnableMenuItem
TrackPopupMenu
MessageBoxA
wsprintfA
GetParent
SetWindowTextA
ShowWindow
PeekMessageA
TranslateMessage
DispatchMessageA
UpdateWindow
DestroyWindow
CharUpperW
CharUpperA
CallNextHookEx

gdi32

CreateEnhMetaFileA
CreateEnhMetaFileW
CreateDIBSection
LineTo
MoveToEx
CreatePen
GetTextExtentPoint32W
ExtTextOutW
CloseEnhMetaFile
TextOutW
SetBkMode
SetBkColor
SetTextColor
GetTextMetricsA
GetTextMetricsW
ExtTextOutA
CreateRectRgn
DeleteEnhMetaFile
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
PlayEnhMetaFile
BitBlt
StartDocW
StartDocA
GetDeviceCaps
StartPage
EndPage
EndDoc
CreateBitmap
CreatePatternBrush
SelectObject
PatBlt
DeleteObject
CreateFontIndirectW
CreateFontIndirectA
DeleteDC
CreateDCW
CreateDCA
GetObjectA
GetObjectW
GetBkMode
GetStockObject

advapi32

RegEnumValueW
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey
RegDeleteValueW
RegDeleteValueA
RegEnumValueA
RegOpenKeyExW
RegCreateKeyExW

shell32

SHChangeNotify
DragAcceptFiles
DragQueryFileW
DragQueryFileA
DragFinish
ShellExecuteW
ShellExecuteA
SHGetMalloc

comctl32

ImageList_Destroy
ImageList_SetBkColor
ImageList_Create
ord17
PropertySheetA
ImageList_ReplaceIcon
PropertySheetW

comdlg32

GetSaveFileNameA
GetSaveFileNameW
ChooseFontA
ChooseFontW
GetOpenFileNameA
PageSetupDlgW
PageSetupDlgA
ChooseColorW
ChooseColorA
PrintDlgW
PrintDlgA
GetOpenFileNameW

ole32

DoDragDrop
RegisterDragDrop
RevokeDragDrop
CoLockObjectExternal
ReleaseStgMedium
OleInitialize
OleUninitialize

imm32

ImmSetCompositionFontA
ImmSetCompositionFontW
ImmGetCompositionStringW
ImmEscapeW
ImmSetCandidateWindow
ImmGetContext
ImmSetCompositionWindow
ImmReleaseContext

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA

Sections

.text
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae1bc2dca214afdfadbc653ecb47a3c9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

comdlg32

ole32

imm32

version

Sections

.text Size: 285KB - Virtual size: 285KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 6KB - Virtual size: 57KB

.rsrc Size: 42KB - Virtual size: 41KB

.text
Size: 285KB - Virtual size: 285KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 6KB - Virtual size: 57KB

.rsrc
Size: 42KB - Virtual size: 41KB