3b3833e4899ac6487f7d3205fe4eb82a590337992c42947c64381f27e157ccaf

Sharing

Copy URL

Twitter E-mail

General

Target

3b3833e4899ac6487f7d3205fe4eb82a590337992c42947c64381f27e157ccaf
Size

569KB
MD5

a2b0dc97cc383452189aaa34f584d102
SHA1

651f1453d313de4fc290b3b9c58ba532c89a778b
SHA256

3b3833e4899ac6487f7d3205fe4eb82a590337992c42947c64381f27e157ccaf
SHA512

e9e69a2bb9164b1e8c9ca28b8cdbb459d4a9c3508105ba1de6920924c51e1663014e9620c2b8e067fc92ef03d299b82bd0a44fe55e9798a0a141e43a439f3d26
SSDEEP

12288:WRRguTlTBToWrA+LOYlvfGzbfwR/563lhPL9ZJdXzBeB/hlH6:MWuTXTo9/IGzThfTJhQBL

Score

N/A

Malware Config

Signatures

Files

3b3833e4899ac6487f7d3205fe4eb82a590337992c42947c64381f27e157ccaf
.exe windows x86

5152e14f3b74e63c7d1b33c0f2c9bd8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetEnhMetaFileDescriptionW

comctl32

ImageList_DragEnter
ImageList_Read
InitCommonControlsEx
CreatePropertySheetPage
CreatePropertySheetPageW
ImageList_DrawEx
GetEffectiveClientRect
ImageList_GetBkColor
ImageList_GetImageCount
CreateStatusWindowA
_TrackMouseEvent

kernel32

DeleteCriticalSection
GetTimeFormatA
IsValidCodePage
HeapAlloc
TerminateProcess
GetDiskFreeSpaceExA
CompareFileTime
FileTimeToDosDateTime
WriteProfileStringA
TransmitCommChar
GetPrivateProfileStringA
GlobalGetAtomNameW
FoldStringA
GetConsoleTitleW
EnterCriticalSection
GetEnvironmentStrings
TlsSetValue
RtlUnwind
ReadFile
GetUserDefaultLCID
GetCurrentProcess
FreeEnvironmentStringsA
GetCPInfo
RtlMoveMemory
CreateMutexA
LCMapStringW
OpenMutexA
WriteConsoleA
GetModuleFileNameW
GetOEMCP
FindFirstFileExW
HeapSize
GetStringTypeExA
SetStdHandle
CreateFileW
VirtualQuery
LoadLibraryA
GetCurrentThreadId
GetModuleFileNameA
ExitProcess
GetSystemTimeAsFileTime
HeapCreate
GetLastError
GetStartupInfoW
EnumSystemLocalesA
FillConsoleOutputAttribute
HeapReAlloc
GetFileType
GetLocaleInfoW
CreateProcessW
GetStartupInfoA
GetStdHandle
HeapFree
GetTimeZoneInformation
GetCurrentThread
GetStringTypeA
TerminateThread
GetProcAddress
SetFilePointer
InterlockedExchange
CompareStringW
LCMapStringA
GetCommandLineA
SetLastError
GetCommandLineW
GetLogicalDriveStringsW
ReadConsoleOutputCharacterW
LeaveCriticalSection
InitializeCriticalSection
UnhandledExceptionFilter
VirtualProtect
GetModuleHandleA
IsBadWritePtr
WriteFile
ContinueDebugEvent
QueryPerformanceCounter
SetEnvironmentVariableA
GetFileAttributesA
VirtualFree
WriteConsoleOutputW
WideCharToMultiByte
TlsFree
GetTickCount
CreateSemaphoreW
SetHandleCount
MultiByteToWideChar
VirtualAlloc
GetSystemInfo
GetStringTypeW
GetLocaleInfoA
FreeEnvironmentStringsW
TlsGetValue
GetNamedPipeHandleStateA
LocalAlloc
GetFileAttributesW
FindClose
ReadConsoleOutputCharacterA
GetVersionExA
GetACP
CompareStringA
GetEnvironmentStringsW
lstrcmpA
IsValidLocale
FlushFileBuffers
CloseHandle
GetCurrentProcessId
HeapDestroy
TlsAlloc
ResumeThread
CreateMutexW
GetDateFormatA

shell32

DragQueryFileAorW
SHFreeNameMappings
SHGetDataFromIDListA
SHBrowseForFolderW
ShellAboutW

wininet

GopherFindFirstFileW
ResumeSuspendedDownload
InternetUnlockRequestFile
InternetCheckConnectionA
FtpPutFileA
HttpEndRequestW

user32

CharToOemBuffA
DestroyWindow
CascadeWindows
ShowWindow
DialogBoxParamA
SetMenuDefaultItem
GetScrollRange
OemKeyScan
GetWindowRgn
CheckMenuRadioItem
CallMsgFilterW
WindowFromDC
MessageBoxA
GetClipboardFormatNameW
GetForegroundWindow
GetWindowWord
DlgDirSelectComboBoxExW
SetDoubleClickTime
InvertRect
DefFrameProcW
GetWindowThreadProcessId
MenuItemFromPoint
DialogBoxIndirectParamA
BeginDeferWindowPos
CreateWindowExA
GetTitleBarInfo
EnumDisplaySettingsExW
CharUpperBuffA
RegisterClassA
PaintDesktop
DefWindowProcW
SetRectEmpty
GetPropW
RegisterClassExA

comdlg32

GetFileTitleA
ReplaceTextA
PageSetupDlgW
ChooseFontA

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5152e14f3b74e63c7d1b33c0f2c9bd8a

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

shell32

wininet

user32

comdlg32

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 256KB - Virtual size: 256KB

.data Size: 109KB - Virtual size: 125KB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 256KB - Virtual size: 256KB

.data
Size: 109KB - Virtual size: 125KB

.rsrc
Size: 28KB - Virtual size: 28KB