29ae9579012bc2bd223934a218fd6901abf3f3593eb2e26b4cbf06121ab59a74

Sharing

Copy URL

Twitter E-mail

General

Target

29ae9579012bc2bd223934a218fd6901abf3f3593eb2e26b4cbf06121ab59a74
Size

15KB
MD5

7652b5815e7f19d3af2ee52754fddaf0
SHA1

a4318b3c8b23331d342bf244d1ff660669f1c50b
SHA256

29ae9579012bc2bd223934a218fd6901abf3f3593eb2e26b4cbf06121ab59a74
SHA512

35a196a94a05590e2c5de7a1e979b0ed1a8d15e19f3f3639856a25c76dd48c2c4abf8223bce720001bed93e00293aeee12ad2755179a0d93a88e350c35e5360e
SSDEEP

384:N52ozRSLPSOXE9WvapZS2o/nvCcX/hXhfk:T2ozELS/4vn2o/n9p1k

Score

N/A

Malware Config

Signatures

Files

29ae9579012bc2bd223934a218fd6901abf3f3593eb2e26b4cbf06121ab59a74
.exe windows x86

ac49df16a7f0978001bca5ce09338167

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

DialogBoxParamA
LoadMenuA
DispatchMessageA
GetDlgItem
SendMessageA
MapWindowPoints
CreateDialogParamA
ShowWindow
RegisterClassExA
DestroyWindow
SetProcessDefaultLayout
HideCaret
GetSubMenu
CreateWindowExA
TranslateMessage
UpdateWindow
CheckMenuItem
DefWindowProcA
InvalidateRect
CheckMenuRadioItem
GetWindowLongA
GetMessageA
GetMenu
IsDialogMessageA
BeginPaint
SetWindowLongA

shell32

SHHelpShortcuts_RunDLLA
PifMgr_GetProperties
SheGetDirA
DragQueryFile
SHOpenFolderAndSelectItems
DuplicateIcon
SHDefExtractIconA
SHBrowseForFolderA
SHFileOperation
OpenAs_RunDLLA
FreeIconList
SHGetDataFromIDListA
PifMgr_OpenProperties
Shell_NotifyIconA
DragQueryFileA
SHChangeNotification_Unlock
SHCreateLocalServerRunDll
DriveType
IsNetDrive
DoEnvironmentSubstA
PathCleanupSpec
SHChangeNotifyDeregister
ShellExecuteExA
PathMakeUniqueName
SHMultiFileProperties
DllRegisterServer
SHInvokePrinterCommandA
WOWShellExecute
RestartDialogEx
SHChangeNotify
RestartDialog
ILFindChild
SHDoDragDrop
SHGetSettings
SHTestTokenMembership
Shell_GetImageLists
PrintersGetCommand_RunDLL
ILRemoveLastID
SHCreateShellFolderView
ShellExec_RunDLLA
SHGetImageList
SHFindFiles

kernel32

CreateMutexA
GetEnvironmentStringsA
SetFilePointer
GetStringTypeExA
WaitNamedPipeA
ReadFile
ReleaseMutex
GetLastError
VirtualAllocEx
CallNamedPipeA
ExpandEnvironmentStringsA
SystemTimeToFileTime
GetLocalTime
GetNamedPipeHandleStateA
GetSystemTimeAsFileTime
ConnectNamedPipe
GetFileAttributesExA
CloseHandle
ReadFileScatter
CreateMailslotA
GetCurrentProcessId
FreeEnvironmentStringsA
GetNamedPipeInfo
GetSystemTime
CreateFileA
SetFirmwareEnvironmentVariableA
OpenMutexA
GetVersion
TransactNamedPipe
GetProcessHeap

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac49df16a7f0978001bca5ce09338167

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

kernel32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 1024B - Virtual size: 796B

.rsrc Size: 5KB - Virtual size: 28KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 1024B - Virtual size: 796B

.rsrc
Size: 5KB - Virtual size: 28KB