385b05cd1269a10e6a18edcb678f978b2442d9b259aaf1b257eb1124a2d12896

Sharing

Copy URL Twitter E-mail

General

Target

385b05cd1269a10e6a18edcb678f978b2442d9b259aaf1b257eb1124a2d12896
Size

125KB
MD5

965391007435b701f8147fee1bb1d940
SHA1

bfe223d0ff8635f49652ba671d9fd68df8355201
SHA256

385b05cd1269a10e6a18edcb678f978b2442d9b259aaf1b257eb1124a2d12896
SHA512

73e9ccd3602dbc8ed842c8c0bc001187195bebc5b025a66d7819a39622836d3d4849d25b1b5f82b70ef839a808f447a9cfb273288e659fe2c7102873387252e8
SSDEEP

1536:0NfQG2/dMCGSvC+1r/HH+fGxaInZ1aknrty249LWPeaiq+1Q/Jtfws8vN:sfQG163ZLxjxps1WGaV+m/JRwFvN

Score

N/A

Malware Config

Signatures

Files

385b05cd1269a10e6a18edcb678f978b2442d9b259aaf1b257eb1124a2d12896
.exe windows x86

21f9549dca7fd89ac147511952bb79b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Imports

kernel32

HeapReAlloc
LoadLibraryW
FlushFileBuffers
SetStdHandle
WriteConsoleW
SetFilePointer
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsProcessorFeaturePresent
HeapSize
Sleep
GetSystemTimeAsFileTime
LCMapStringW
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
InterlockedDecrement
GetStdHandle
ExitProcess
GetConsoleMode
GetConsoleCP
WriteFile
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
SetLastError
GetModuleHandleW
GetStringTypeW
CreateFileW
RtlUnwind
EncodePointer
GetSystemTime
CloseHandle
GetModuleHandleA
GetProfileStringA
LoadLibraryA
GetProcAddress
GetLastError
ReadFile
GetProcessHeap
HeapCreate
GetCurrentProcessId
HeapFree
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
GetStartupInfoW
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSetInformation
GetCommandLineA
LocalFree
WideCharToMultiByte
HeapAlloc
GetFileSize
GetCurrentProcess
TerminateProcess
RaiseException
GetModuleFileNameW
CreateFileA
MultiByteToWideChar
DecodePointer

user32

LoadCursorA
DestroyMenu
EnableWindow
RegisterClassA
GetWindow
SetDlgItemTextA
EndPaint
DestroyWindow
CloseClipboard
GetWindowRect
PostQuitMessage
FillRect
DrawTextW
GetSubMenu
LoadStringA
LoadBitmapA
LoadMenuA
LoadIconA
DefFrameProcA
GetClientRect
GetWindowTextLengthA
SendMessageA
BeginPaint
InflateRect
OffsetRect
GetWindowTextA
InvalidateRect
GetWindowLongA
GetClipboardData
CreateWindowExA
GetDlgItem
DefWindowProcA
LoadAcceleratorsA
ShowWindow
SetMenu
GetSysColorBrush
FrameRect
IsDlgButtonChecked
CheckRadioButton
OpenClipboard
SetWindowTextA
UpdateWindow

gdi32

GetViewportOrgEx
FrameRgn
PatBlt
GetWindowExtEx
SetTextColor
DeleteDC
CreateDCA
SetBkMode
SelectObject
CreateCompatibleDC
DPtoLP
SetMapMode
CreateFontW
CreateRectRgn
SetViewportExtEx
GetViewportExtEx
GetStockObject
CreateSolidBrush
TextOutA
GetWindowOrgEx

comdlg32

GetOpenFileNameA

ole32

CoUninitialize
CoInitializeSecurity
CoInitialize
CoInitializeEx
CoSetProxyBlanket
CoCreateInstance

oleaut32

SysFreeString
VariantChangeType
VariantInit
VariantClear
SysAllocString

avicap32

capCreateCaptureWindowA

shlwapi

StrToIntA
StrChrA

comctl32

ord17

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21f9549dca7fd89ac147511952bb79b4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

oleaut32

avicap32

shlwapi

comctl32

Sections

.text Size: 64KB - Virtual size: 64KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 64KB - Virtual size: 64KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 19KB - Virtual size: 19KB