f94283d2b88abe41555eeaa700655dbf784d4b4a1f7d9b1c255e3f3d372692d1

Sharing

Copy URL Twitter E-mail

General

Target

f94283d2b88abe41555eeaa700655dbf784d4b4a1f7d9b1c255e3f3d372692d1
Size

236KB
MD5

ffda86ed2f20f645e9a8ff4646d21a99
SHA1

66c93fc1c09b8724fb411fb62df9ed3e4e00d939
SHA256

f94283d2b88abe41555eeaa700655dbf784d4b4a1f7d9b1c255e3f3d372692d1
SHA512

edd78c0a5d99f226722974c20f4bff5cb76364632aa99064276cdfcff66d922ad2af77dfd10e4d040746eee1723bfc0a130b734e7a04ee2830c2ee48c594c970
SSDEEP

3072:XybwvDsXvLGy8HxmMAW+HP7rC1ZQIOVL8trPBg+bvG:ibwvD6jGySLGv7rkZN2SrPBg+zG

Score

N/A

Malware Config

Signatures

Files

f94283d2b88abe41555eeaa700655dbf784d4b4a1f7d9b1c255e3f3d372692d1
.exe windows x86

3cb3d35fa9c0d90dcb5730c76e9f5ca2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
LoadLibraryW
CloseHandle
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetLocaleInfoW
GetUserDefaultLCID
DeleteCriticalSection
GetSystemTimeAsFileTime
SetLastError
TlsFree
TlsSetValue
TlsGetValue
CreateFileA
SetFilePointer
SetStdHandle
WriteConsoleW
FlushFileBuffers
LCMapStringW
HeapReAlloc
HeapSize
SetEndOfFile
GetProcessHeap
CreateFileW
CompareStringW
GetCurrentProcessId
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetLastError
SetConsoleTitleA
HeapCreate
Sleep
GlobalAlloc
GetConsoleMode
GetConsoleCP
ReadFile
MultiByteToWideChar
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
SetEnvironmentVariableA
GetConsoleTitleA
GetCurrentThread
GetTickCount
GetCurrentProcess
HeapAlloc
GetCurrentThreadId
lstrcmpA
GetModuleFileNameW
GetStdHandle
WriteFile
HeapFree
GetTimeZoneInformation
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
EncodePointer

user32

FindWindowA
DestroyMenu
SystemParametersInfoA
ShowWindow
EnumWindowStationsW
EnumChildWindows
EndDialog
GetDlgItem
GetClassNameW
GetWindowLongA
SetCursorPos
SetRect
MapVirtualKeyA
ScreenToClient
GetWindowRect
SendDlgItemMessageA
TrackPopupMenu
FillRect
GetKeyNameTextA
GetKeyState
GetSubMenu
LoadBitmapA
GetParent
LoadMenuA
CallNextHookEx
wsprintfA
GetClientRect
GetWindowTextLengthA
SendMessageA
PtInRect
GetDC
ChildWindowFromPoint
GetForegroundWindow
GetWindowTextA

gdi32

CreateSolidBrush
CreateCompatibleDC
ChoosePixelFormat
SetPixelFormat
SelectClipRgn
DeleteObject
SetDCBrushColor
ExcludeClipRect

advapi32

GetOldestEventLogRecord
OpenThreadToken
OpenEventLogW
GetTokenInformation
ReadEventLogA
OpenProcessToken

ole32

CoCreateGuid
CoInitialize
StringFromGUID2
CoUninitialize

comctl32

ImageList_GetImageCount
ImageList_Create
ImageList_AddMasked
ImageList_GetImageInfo

gdiplus

GdipGetDpiY
GdipCreateFromHWND
GdipGetImageWidth
GdipGetDC
GdipGetImageHeight
GdipDeleteGraphics
GdipDrawImageRectI
GdipGetDpiX

imm32

ImmReleaseContext
ImmGetCompositionStringA
ImmSetOpenStatus
ImmGetDefaultIMEWnd
ImmGetContext
ImmGetOpenStatus

setupapi

SetupDiOpenDeviceInfoW
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cb3d35fa9c0d90dcb5730c76e9f5ca2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

comctl32

gdiplus

imm32

setupapi

Sections

.text Size: 131KB - Virtual size: 130KB

.rdata Size: 22KB - Virtual size: 22KB

.data Size: 25KB - Virtual size: 32KB

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 131KB - Virtual size: 130KB

.rdata
Size: 22KB - Virtual size: 22KB

.data
Size: 25KB - Virtual size: 32KB

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 10KB - Virtual size: 10KB