c555877f3d351ca77954ab0608119ea6b860b3304cdc8158245a31e6031807d8

Sharing

Copy URL Twitter E-mail

General

Target

c555877f3d351ca77954ab0608119ea6b860b3304cdc8158245a31e6031807d8
Size

44KB
MD5

4859614af137d7ea78a6e17551ec9dd0
SHA1

6cd9c98c7cef9ae059e42c621ee486c386e3f499
SHA256

c555877f3d351ca77954ab0608119ea6b860b3304cdc8158245a31e6031807d8
SHA512

7aab18788274ad7552987ed57d9a357514c92d633b4863c7f1d8b4b933e2ee1b6ac3b614a3d65c141b28a72d58d14a61ea9e4984076020f6d35908dbe96bd25c
SSDEEP

768:LJ3YAWWOLzUNNksHsXxDx+OqHNMQzPMQzz3Fd7rp2SthO1RsbpS6U/0Qprv9NU:LGAWWOvUN64sXxDx+OqHlrf3vv3E2bEW

Score

N/A

Malware Config

Signatures

Files

c555877f3d351ca77954ab0608119ea6b860b3304cdc8158245a31e6031807d8
.exe windows x86

e442e86dc41e637c4d3b1c218776b62c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlGetPartA

kernel32

GetThreadLocale
HeapSize
GetCurrentDirectoryW
QueryPerformanceCounter
CompareStringA
GetACP
SetCurrentDirectoryW
GetCommModemStatus
FindFirstFileW
GlobalGetAtomNameA
ConvertDefaultLocale
GetOEMCP
EnumResourceNamesW
CancelIo
GetModuleHandleA
IsBadStringPtrW
OpenSemaphoreW
GetSystemDefaultUILanguage
QueryDosDeviceW
SetFileAttributesW
GetDateFormatW
lstrcmpW
FindNextFileW
CreateRemoteThread
LCMapStringA
LoadLibraryA
GetLocaleInfoA
SetEvent
SetFileTime
GetStringTypeExW
SetCommMask
OpenEventA
LoadLibraryExA
GlobalMemoryStatus
IsBadWritePtr
TlsGetValue
GlobalAddAtomA
FindResourceW
GetCommandLineW
GlobalMemoryStatusEx
GetSystemTimeAsFileTime
WaitForSingleObject
GetModuleFileNameA
CompareStringW
CreateMailslotW
GetCompressedFileSizeW
lstrcpynW
GetLocaleInfoW
GetVersionExW
GetLongPathNameW
GlobalAlloc
UnlockFile
ClearCommError
lstrcmpA
SetTimerQueueTimer
GetComputerNameW
GetUserDefaultLangID

msvcrt

iswdigit
strcoll
_controlfp
srand
wcsncpy
wcschr
isspace
__set_app_type
puts
fwrite
vswprintf
sscanf
__p__fmode
__p__commode
putc
isupper
swprintf
wcstol
fclose
ungetc
iswalpha
_amsg_exit
_initterm
_ismbblead
wcscmp
isalpha
wcscpy
strstr
strspn
_XcptFilter
system
_exit
clock
swscanf
perror
_cexit
free
fprintf
wcstombs
__setusermatherr
realloc
getenv
towlower
wcslen
__getmainargs
fflush
wcstod

user32

CheckMenuRadioItem
SendDlgItemMessageA
DestroyMenu
IsWindow
GetShellWindow
SetWindowLongW
CreatePopupMenu
ToUnicodeEx
GetDlgItem
DestroyWindow
LoadStringW
GetCaretPos
CharUpperW
PostMessageA
ReplyMessage
DefFrameProcA
GetMenu
InvertRect
GetClassInfoW
wvsprintfW
GetDCEx
GetTopWindow
IsDialogMessageW
FindWindowA
GetFocus
IsCharAlphaA
DestroyAcceleratorTable
IsIconic
AppendMenuW
SetWindowTextW
InsertMenuW
CharToOemBuffA
SendDlgItemMessageW
TrackPopupMenu
EqualRect
ShowWindowAsync
SetParent
DrawIcon
GetMessageA
wsprintfA
SetMenuItemInfoW
GetWindowPlacement
GetParent
IsZoomed
DestroyCursor
RemovePropW
SystemParametersInfoA
InvalidateRgn
LockWindowUpdate
CopyAcceleratorTableW
CharToOemW
WindowFromPoint
FillRect
OpenDesktopW
SetCaretPos
CreateIconFromResource
EndPaint
TrackPopupMenuEx
GetMenuItemCount
ShowCursor
GetSysColorBrush
DefDlgProcA
GetUserObjectInformationW
SetForegroundWindow
GetClassLongW
RegisterClassExW
GetMenuItemID
CallWindowProcW
EnumChildWindows
MessageBoxW
GetDialogBaseUnits
GetCursorPos
DrawIconEx
GetWindowTextLengthW
MonitorFromPoint
CreateWindowExA
OemToCharBuffA
GetUpdateRgn
SetScrollInfo
GetWindowTextA
LoadAcceleratorsA
GetScrollInfo
CharToOemA
InsertMenuA
RemoveMenu
SystemParametersInfoW
MessageBoxA
GetMessagePos
SendMessageA
CharPrevW
GetMenuItemInfoW
DrawStateW
PostMessageW
PeekMessageA
GetDlgCtrlID
CharUpperBuffA
LoadMenuW
TranslateAcceleratorW
SwitchToThisWindow
GetMenuStringA
MessageBoxExW
GetClassInfoA
BeginPaint
SetScrollPos
SetWindowTextA
GetMenuState
LoadAcceleratorsW
CloseDesktop
SetDlgItemTextA
ChildWindowFromPoint
DispatchMessageA
LookupIconIdFromDirectory
CheckMenuItem
ScrollWindowEx
SendInput
wsprintfW
ExitWindowsEx
GetMenuStringW
CharNextW
GetKeyboardLayoutList
DeferWindowPos
DrawTextA
SetActiveWindow
CopyRect

Exports

Exports

?HistoryLoggingOn@@YGKDKPAX:O

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cexp
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.regs
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.citab
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$dbug
Size: 512B - Virtual size: 98B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lime
Size: 512B - Virtual size: 286B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdat
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e442e86dc41e637c4d3b1c218776b62c

Headers

File Characteristics

Imports

shlwapi

kernel32

msvcrt

user32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.cexp Size: 512B - Virtual size: 91B

.regs Size: 1KB - Virtual size: 1KB

.citab Size: 6KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 1KB

.$dbug Size: 512B - Virtual size: 98B

.lime Size: 512B - Virtual size: 286B

.tdat Size: 512B - Virtual size: 192B

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 24KB - Virtual size: 23KB

.cexp
Size: 512B - Virtual size: 91B

.regs
Size: 1KB - Virtual size: 1KB

.citab
Size: 6KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 1KB

.$dbug
Size: 512B - Virtual size: 98B

.lime
Size: 512B - Virtual size: 286B

.tdat
Size: 512B - Virtual size: 192B

.rsrc
Size: 8KB - Virtual size: 7KB