ec5e3f008465a4b4df1e7e5c5c333ea09b3f8d199c6a197f8e98d1b3540f7232

Sharing

Copy URL Twitter E-mail

General

Target

ec5e3f008465a4b4df1e7e5c5c333ea09b3f8d199c6a197f8e98d1b3540f7232
Size

700KB
MD5

0bb2824857f87cf88aa1629d13822920
SHA1

494e35e75c1a8b91bb8cb577bd905907a52d26fb
SHA256

ec5e3f008465a4b4df1e7e5c5c333ea09b3f8d199c6a197f8e98d1b3540f7232
SHA512

1942a422aea1b27a49d7f33cac5e715bd8e8f0f19bb3f3b86af557d7fdb1325990f5106d53e15ed269c58f024451d4ca7b14bf2f341fb50869359ec754642551
SSDEEP

6144:j7BaL14HQd1N0gA9EL+Nq464GWh4WVS0yQgmMBgeEt6:j7ad1N0XuLl464G+LS0ylmvE

Score

N/A

Malware Config

Signatures

Files

ec5e3f008465a4b4df1e7e5c5c333ea09b3f8d199c6a197f8e98d1b3540f7232
.dll windows x86

5a64fb358f7689b441bcc012650e7167

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
ExitProcess
LeaveCriticalSection
HeapCreate
DeleteCriticalSection
InitializeCriticalSection
GetLastError
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapAlloc
RaiseException
HeapFree
GetModuleHandleA
GetVersion
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
RtlUnwind
LoadLibraryA
GetProcAddress
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetFilePointer
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
lstrcpyA
GetACP
GetOEMCP
SetStdHandle
FlushFileBuffers
CloseHandle
WritePrivateProfileStringA
GetPrivateProfileStringA
FindResourceA
LoadResource
LockResource
FreeResource
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
EnterCriticalSection

user32

SendDlgItemMessageA
SetTimer
GetDlgItem
EndDialog
LoadImageA
SetPropA
LoadMenuA
EnableMenuItem
GetMessagePos
GetPropA
RemovePropA
GetSystemMetrics
LoadIconA
DialogBoxParamA
GetSubMenu
GetMenuItemCount
GetMenuStringA
ShowCaret
HideCaret
CallWindowProcA
PostMessageA
GetWindowTextA
GetMessageTime
SetCursor
GetCursorPos
GetDesktopWindow
SetCursorPos
IsWindow
FillRect
BeginPaint
EndPaint
SetCapture
ReleaseCapture
PeekMessageA
IsWindowEnabled
InflateRect
DrawTextA
ScreenToClient
CopyRect
OffsetRect
SetWindowPos
GetParent
GetWindowLongA
GetClientRect
KillTimer
GetDlgItemTextA
CreatePopupMenu
InsertMenuA
GetWindowRect
CheckMenuRadioItem
TrackPopupMenu
DestroyMenu
GetFocus
SetFocus
GetDlgCtrlID
DefWindowProcA
MessageBoxA
EnableWindow
InvalidateRect
UpdateWindow
SetDlgItemTextA
wsprintfA
DestroyWindow
UnregisterClassA
LoadCursorA
GetSysColorBrush
RegisterClassA
CreateWindowExA
SetWindowLongA
SendMessageA
SetWindowTextA
SetRect
GetDC
ReleaseDC
LoadBitmapA

gdi32

SetBkMode
GetDIBits
SetDIBitsToDevice
CreateCompatibleBitmap
DeleteDC
SelectPalette
RealizePalette
Rectangle
CreatePalette
MoveToEx
LineTo
SetTextColor
SetBkColor
GetTextExtentPoint32A
CreateCompatibleDC
SelectObject
BitBlt
DeleteObject
CreateFontIndirectA
GetStockObject
GetDeviceCaps
CreateSolidBrush
CreateDIBitmap
CreatePen

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

comctl32

ord17
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Create

Exports

Exports

main

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 496KB - Virtual size: 493KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5a64fb358f7689b441bcc012650e7167

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

comctl32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 20KB - Virtual size: 23KB

.rsrc Size: 496KB - Virtual size: 493KB

.reloc Size: 12KB - Virtual size: 9KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 20KB - Virtual size: 23KB

.rsrc
Size: 496KB - Virtual size: 493KB

.reloc
Size: 12KB - Virtual size: 9KB

.rmnet
Size: 60KB - Virtual size: 60KB