dc4f3340ca8e623a5a77eb95411696fc25a7e6f5ef657ac9fd76eb4bc11c16b4

Sharing

Copy URL Twitter E-mail

General

Target

dc4f3340ca8e623a5a77eb95411696fc25a7e6f5ef657ac9fd76eb4bc11c16b4
Size

395KB
MD5

fa57f601402aab8168dea94c7c5f029f
SHA1

4f3ef46f2c661fc829c17e3c39d59dcc5e2c937e
SHA256

dc4f3340ca8e623a5a77eb95411696fc25a7e6f5ef657ac9fd76eb4bc11c16b4
SHA512

b582ea361fbd02d998b8fe2534f3bb60eb42630de119863aeb4604d4c0c0b10fd02c85ddfe2f0c37d370a6ce49c5043b56f910b08de8653a01b53cbf7847fab7
SSDEEP

6144:9Bd40J1xZwCQzEICgFKnAOCS8vEa2ZI46NsiLaTBvQeSrSMZ9gBQZ7cC/PZ:9A0J1xxIKnQETZf6CiwXSvZ9qQZ7cCZ

Score

N/A

Malware Config

Signatures

Files

dc4f3340ca8e623a5a77eb95411696fc25a7e6f5ef657ac9fd76eb4bc11c16b4
.exe windows x86

61060440d313ca0300e36b20caaeaeb0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetConsoleCP
SetFilePointer
HeapSize
Sleep
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
GetCPInfo
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
CreateProcessA
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
ExitProcess
GetModuleHandleW
GetProcAddress
GetCurrentProcess
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
MultiByteToWideChar
LCMapStringW
GetStringTypeW
CreateFileW
WaitForSingleObject
CloseHandle
WriteFile
GetLastError
GetFullPathNameA
InterlockedIncrement
lstrcpyA
GlobalLock
GlobalSize
GlobalUnlock
HeapCreate
GetModuleFileNameA
CompareStringA
HeapAlloc
CreateDirectoryA
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DecodePointer
EncodePointer
IsProcessorFeaturePresent
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapFree
GetFileType
RaiseException
FlushFileBuffers

user32

LoadImageA
GetWindowTextA
AppendMenuA
CheckDlgButton
CheckRadioButton
GetWindowRect
GetFocus
GetDC
GetDlgItem
GetSystemMenu
GetMenuItemInfoA
GetMenu
PostThreadMessageA
SendDlgItemMessageA
EndDialog
BeginPaint
DefWindowProcA
EndPaint
PostQuitMessage
IsWindow
MonitorFromWindow
SendMessageA
GetNextDlgTabItem
SetFocus
CharLowerBuffA
GetDlgCtrlID
MsgWaitForMultipleObjects
PeekMessageA
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
FillRect
ReleaseDC
SetScrollRange
SetScrollPos
InvalidateRect
UpdateWindow
OpenClipboard
EnumClipboardFormats
GetClipboardFormatNameA
GetClipboardData
CloseClipboard
IsDlgButtonChecked
LoadCursorA
RegisterClassA
CreateWindowExA
ShowWindow
SetWindowTextA
SetCursor
SetWindowPos
SetTimer
GetCursorPos
CreatePopupMenu
TrackPopupMenuEx

gdi32

GetObjectA
GetBitmapBits
CreatePenIndirect
SelectObject
Ellipse
CreatePen
Rectangle
SetTextColor
SetBkColor
GetStockObject
MoveToEx
LineTo
GetTextMetricsA
CreatePalette
CreateCompatibleDC
BitBlt
SetStretchBltMode
StretchBlt
GdiAlphaBlend
DeleteDC
PolyDraw
StartDocA
StartPage
EndPage
EndDoc
DeleteObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
ChooseFontA
PrintDlgA
PageSetupDlgA
FindTextA
ReplaceTextA

shell32

SHGetPathFromIDListA

ole32

CoSuspendClassObjects

version

GetFileVersionInfoW

shlwapi

wnsprintfA
PathFindFileNameA
StrChrA
PathFindExtensionA

comctl32

InitCommonControlsEx

wintrust

WinVerifyTrust

opengl32

glColor3f
glClear
glRectf

setupapi

SetupFindFirstLineA
SetupAddToSourceListA

wsnmp32

ord320

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 223KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61060440d313ca0300e36b20caaeaeb0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

version

shlwapi

comctl32

wintrust

opengl32

setupapi

wsnmp32

Sections

.text Size: 60KB - Virtual size: 60KB

.rdata Size: 223KB - Virtual size: 222KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 97KB - Virtual size: 96KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 60KB - Virtual size: 60KB

.rdata
Size: 223KB - Virtual size: 222KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 97KB - Virtual size: 96KB

.reloc
Size: 7KB - Virtual size: 7KB