d8dd7c6402851d73d391b9a2a462e248ae0122c4d711647807b672068c1fb27c

Sharing

Copy URL

Twitter E-mail

General

Target

d8dd7c6402851d73d391b9a2a462e248ae0122c4d711647807b672068c1fb27c
Size

461KB
MD5

806b02fd7c90c9818e85e0ea98b4b600
SHA1

7c1dd73fbd289813ed874deb3a7c5f10a1000a1d
SHA256

d8dd7c6402851d73d391b9a2a462e248ae0122c4d711647807b672068c1fb27c
SHA512

eb885e729ca445dd2fe318b5aa680cd81d690e722245bec296987cb32b3ff35683e4c1983faa8c56f3629e93baf3aead4e2d12afe6ce8b5f57ed161978d9395c
SSDEEP

12288:NJ5rjaMYdn3TtWi/PV/eazc26yUJADsad+3m+X:NJAMkn3sindWyUeDsZ3m+

Score

N/A

Malware Config

Signatures

Files

d8dd7c6402851d73d391b9a2a462e248ae0122c4d711647807b672068c1fb27c
.exe windows x86

7bcb0d5af5371fb57ff7d390631f6d01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
IsDialogMessageA
SetWindowPos
SetWindowPlacement
OpenIcon
EndDeferWindowPos
EnumChildWindows
AdjustWindowRectEx

ole32

CLSIDFromProgID
OleCreateEmbeddingHelper
GetHGlobalFromStream
OleTranslateAccelerator
WriteClassStm
CoFreeAllLibraries
WriteClassStg
CoGetTreatAsClass

advapi32

RegCreateKeyA
DeregisterEventSource
ReportEventW
BackupEventLogA
AdjustTokenPrivileges
RegReplaceKeyA
RegNotifyChangeKeyValue
RegLoadKeyA
RegConnectRegistryA
RegCloseKey

urlmon

CreateFormatEnumerator
CreateAsyncBindCtx
IsAsyncMoniker

shlwapi

PathCompactPathExW
PathIsRootA
PathRemoveArgsW
SHRegDeleteUSValueA
StrCpyW
PathFileExistsA
PathParseIconLocationA
SHGetValueA
StrCSpnA

kernel32

WritePrivateProfileStructA
GetModuleHandleA
GetProcAddress
CreateSemaphoreA
SuspendThread
ResumeThread
TlsSetValue
VirtualAlloc
QueryPerformanceCounter
DeleteFileA
FreeEnvironmentStringsA
CloseHandle
HeapFree
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetLastError
ReadFile
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
HeapAlloc
HeapReAlloc
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
WideCharToMultiByte
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsAlloc
SetLastError
TlsGetValue
RtlUnwind
WriteFile
CreateFileA
SetStdHandle
SetFilePointer
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
FlushFileBuffers
SetEndOfFile
LCMapStringA
LCMapStringW

msvfw32

DrawDibTime
GetOpenFileNamePreviewA
DrawDibGetPalette

avifil32

AVISaveOptionsFree
AVIStreamGetFrameClose
AVIStreamInfoA

avicap32

capCreateCaptureWindowW

uxtheme

SetWindowTheme

wsnmp32

ord400

comdlg32

GetSaveFileNameA
PrintDlgA
ReplaceTextW
GetFileTitleW
FindTextW
GetOpenFileNameA
PageSetupDlgA
FindTextA
CommDlgExtendedError
ReplaceTextA

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 405KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7bcb0d5af5371fb57ff7d390631f6d01

Headers

File Characteristics

Imports

user32

ole32

advapi32

urlmon

shlwapi

kernel32

msvfw32

avifil32

avicap32

uxtheme

wsnmp32

comdlg32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 544KB

.rsrc Size: 405KB - Virtual size: 404KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 544KB

.rsrc
Size: 405KB - Virtual size: 404KB

.reloc
Size: 6KB - Virtual size: 6KB