352079c5b2df148be1a1d7546d7c535320c141843ea2aee9b22ed48f78797625

Sharing

Copy URL Twitter E-mail

General

Target

352079c5b2df148be1a1d7546d7c535320c141843ea2aee9b22ed48f78797625
Size

310KB
MD5

740af23276c38b78f166cd245588a400
SHA1

4b5d98d58850ea3aef275b65f1d21c54ee13d81e
SHA256

352079c5b2df148be1a1d7546d7c535320c141843ea2aee9b22ed48f78797625
SHA512

82098da5ad7722853946b8423eb6d4c60b93c2a28a896a1e08e793b7ddcc8592c139170867b4ec873c72b9755cfc8db708018ac8f58a55f7224785c7743d5653
SSDEEP

6144:51pbfH6qIPlscPeqRZZBSfnx/5XvdG/a9zlqnMgeQr1dT94IthXxPVGW:JbfIKc2qRcx/5XvdflqnnRHTVXxNGW

Score

N/A

Malware Config

Signatures

Files

352079c5b2df148be1a1d7546d7c535320c141843ea2aee9b22ed48f78797625
.exe windows x86

62657e627e536e0ea2c7452695defda3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ord64
ord129
SHGetSpecialFolderPathW
SHSetUnreadMailCountW
ExtractAssociatedIconW
ord9
ord88
ord137
SHGetMalloc
SHGetFileInfoW
ExtractIconExA
ShellExecuteExW
ord164
ord688

comctl32

DestroyPropertySheetPage
ImageList_Draw
InitCommonControlsEx
ImageList_GetIcon
PropertySheetA

ntdll

VerSetConditionMask

kernel32

lstrcatW
GetModuleHandleA
WriteProfileStringA
FindFirstVolumeMountPointA
GetWindowsDirectoryW
GetCurrentProcessId
SetFileAttributesW
GetVolumeInformationW
WaitForDebugEvent
SetProcessWorkingSetSize
WriteConsoleA
ExitProcess
DosDateTimeToFileTime
FindFirstFileW
FreeResource
UnmapViewOfFile
GetDriveTypeW
MoveFileExA
lstrcpynA
CreateProcessW
HeapAlloc
DeleteVolumeMountPointA
LoadLibraryExW
SetConsoleTextAttribute
GetSystemWindowsDirectoryW
GetTickCount
SetFileTime
GetVolumePathNameW
GetPrivateProfileIntA
TerminateThread
EnumSystemCodePagesA
SetConsoleMode
ReadFile
GetEnvironmentVariableA
ExitThread
WritePrivateProfileStringW
GlobalUnlock
SetCurrentDirectoryA
FindFirstFileA
CreateSemaphoreW

user32

ValidateRect
SetWindowTextW
DialogBoxIndirectParamA
SendMessageW
SetDlgItemTextW
RegisterClipboardFormatW
MessageBoxW
InsertMenuW
GetMenuItemCount
FreeDDElParam
SetWindowPos
DefWindowProcA
GetKeyboardLayoutList
SystemParametersInfoW
UnregisterClassA
BringWindowToTop
InvalidateRect
CheckMenuRadioItem
RegisterWindowMessageA
GetMenuItemInfoW
FindWindowW
DdeKeepStringHandle
EnumDisplaySettingsA
DdeInitializeA
MessageBeep
UnregisterClassW
LoadImageW
wvsprintfW
SendDlgItemMessageA
CreateDialogParamA
RemovePropW
CloseClipboard
GetWindow
GetClassLongA
GetKeyboardLayoutNameA
TranslateAcceleratorA

gdi32

DeleteMetaFile
PlayMetaFile
MoveToEx
EnumFontFamiliesExW

Exports

Exports

?sesmic@@YGKPA_K@Z

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.closer
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cpp
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.artp
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dctp
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gktp
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdtp
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iftp
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdat1
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat2
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat3
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat4
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62657e627e536e0ea2c7452695defda3

Headers

DLL Characteristics

File Characteristics

Imports

shell32

comctl32

ntdll

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 43KB - Virtual size: 42KB

.closer Size: 61KB - Virtual size: 60KB

.cpp Size: 2KB - Virtual size: 1KB

.artp Size: 1KB - Virtual size: 1KB

.dctp Size: 2KB - Virtual size: 1KB

.gktp Size: 1024B - Virtual size: 820B

.cdtp Size: 1024B - Virtual size: 668B

.iftp Size: 512B - Virtual size: 412B

.data Size: 14KB - Virtual size: 14KB

.rdat1 Size: 55KB - Virtual size: 54KB

.rdat2 Size: 44KB - Virtual size: 43KB

.rdat3 Size: 44KB - Virtual size: 43KB

.rdat4 Size: 33KB - Virtual size: 32KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 43KB - Virtual size: 42KB

.closer
Size: 61KB - Virtual size: 60KB

.cpp
Size: 2KB - Virtual size: 1KB

.artp
Size: 1KB - Virtual size: 1KB

.dctp
Size: 2KB - Virtual size: 1KB

.gktp
Size: 1024B - Virtual size: 820B

.cdtp
Size: 1024B - Virtual size: 668B

.iftp
Size: 512B - Virtual size: 412B

.data
Size: 14KB - Virtual size: 14KB

.rdat1
Size: 55KB - Virtual size: 54KB

.rdat2
Size: 44KB - Virtual size: 43KB

.rdat3
Size: 44KB - Virtual size: 43KB

.rdat4
Size: 33KB - Virtual size: 32KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 5KB - Virtual size: 4KB