357b5c013eade805e05921d9ce8d70768a3519647e1968cde55c9022b946e1cd

Sharing

Copy URL Twitter E-mail

General

Target

357b5c013eade805e05921d9ce8d70768a3519647e1968cde55c9022b946e1cd
Size

312KB
MD5

5d7a50e9b319b31c2222f68e90d216c0
SHA1

f7bfe652e416b974f5636a32a59c12673302be99
SHA256

357b5c013eade805e05921d9ce8d70768a3519647e1968cde55c9022b946e1cd
SHA512

f497addc9eda05f161434e391e6779c2a9892af7d077edc609dee0f12ff7eb842a4814c9c1ea975b83faafce5d65995e3186e605a7117d2c92b6b01c56d4d385
SSDEEP

6144:vmfXnURAJT3JeRxHnY0MbYUyP0e/gJ9i48:ef3URm+hEjA/J

Score

N/A

Malware Config

Signatures

Files

357b5c013eade805e05921d9ce8d70768a3519647e1968cde55c9022b946e1cd
.exe windows x86

721916bc45b46fe4478ae0dc638696d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
SetFileAttributesA
GetSystemInfo
GetProcessHeap
WaitNamedPipeA
ReadConsoleA
SetMailslotInfo
SetThreadPriorityBoost
PulseEvent
RemoveDirectoryW
ReadConsoleOutputA
ExitProcess
CreateDirectoryExA
VirtualFree
GetCurrentProcessId
PrepareTape
LocalReAlloc
RaiseException
SetCommMask
WriteConsoleOutputW
GetVersionExA
VirtualProtect
GetModuleHandleA
GetBinaryTypeA
FormatMessageA
QueryDosDeviceW
SetErrorMode
DuplicateHandle
LocalSize
GetFileAttributesExA
WritePrivateProfileSectionA
SetProcessShutdownParameters
GetACP
OpenMutexA
WriteProcessMemory
GetFileAttributesA
ScrollConsoleScreenBufferA
SizeofResource
GetVersion
SetConsoleOutputCP
IsDBCSLeadByteEx
GetShortPathNameW
AreFileApisANSI
WriteFile
FillConsoleOutputCharacterA
GlobalDeleteAtom
GetTimeZoneInformation
GetModuleFileNameW
SetConsoleTitleA
GetTempFileNameA
_llseek
GetNumberFormatW
LoadLibraryExA
lstrlenA
SetHandleCount
VirtualAlloc
GetStartupInfoA

user32

GetMenuDefaultItem
ShowWindow
OpenIcon
CharUpperBuffW
PostQuitMessage
GetDlgItemInt
GetMenuItemInfoW
DeferWindowPos
ValidateRect
WindowFromDC
DestroyCursor
EnumDisplaySettingsExA
BeginPaint
TileWindows
SetDlgItemTextW
SendDlgItemMessageW
SendMessageTimeoutA
IsWindow
MessageBoxExA
CheckDlgButton
EmptyClipboard
GetScrollPos
ChangeDisplaySettingsW
GetLastActivePopup
SetClassLongW
DialogBoxParamW
CreateIcon
WaitMessage
SetScrollInfo
CreateAcceleratorTableW
GrayStringA
IsCharUpperA
GetDlgItemTextW
DestroyCaret
EnumWindowStationsW
CreateDesktopA
OpenClipboard
mouse_event
GetUserObjectSecurity
OemToCharBuffW
WinHelpW

gdi32

CreateICW
SetMetaFileBitsEx
EndDoc
CreateEllipticRgn
CreatePenIndirect
PlayMetaFileRecord
GetTextFaceA
GetSystemPaletteEntries
FillPath
CopyMetaFileW
SetPolyFillMode
GetGlyphOutlineW
EnumFontsA
CopyMetaFileA
Arc
GetCharWidthW

comdlg32

CommDlgExtendedError
PageSetupDlgW

advapi32

GetTokenInformation
CryptVerifySignatureW
RegisterEventSourceA
ObjectCloseAuditAlarmW
AddAce
RegCloseKey
RegisterServiceCtrlHandlerW
ReadEventLogW
LogonUserA
StartServiceCtrlDispatcherA

shell32

SHFileOperationW
ExtractIconA
FindExecutableA
SHChangeNotify

ole32

OleConvertIStorageToOLESTREAM
CoImpersonateClient
OleSetClipboard
OleQueryLinkFromData
CoGetInterfaceAndReleaseStream
PropVariantCopy
IIDFromString
CoRegisterMallocSpy

oleaut32

SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayGetLBound
LoadTypeLibEx
VariantChangeType
QueryPathOfRegTypeLi
SafeArrayRedim
VariantCopy
SafeArrayCreate

comctl32

InitCommonControlsEx
ImageList_Create
DestroyPropertySheetPage
ImageList_Destroy

shlwapi

StrCmpLogicalW
StrCatBuffW
PathStripPathA
PathIsRootA
PathIsRelativeA
PathRemoveBackslashW
StrChrIA
wvnsprintfW
PathRenameExtensionW
SHStrDupW
StrCpyNW
StrFormatByteSizeA
StrFormatKBSizeW
SHRegQueryUSValueW

msvcrt

_controlfp
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_initterm

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 296KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

721916bc45b46fe4478ae0dc638696d4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

msvcrt

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 296KB - Virtual size: 292KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 296KB - Virtual size: 292KB