3b5ddcfb31269254d94f5b5cb6985affc025dd3d4d8c8a4160b5103f8f91b6bc

Sharing

Copy URL Twitter E-mail

General

Target

3b5ddcfb31269254d94f5b5cb6985affc025dd3d4d8c8a4160b5103f8f91b6bc
Size

520KB
MD5

719f016f72136eea6c173ee6e2daf484
SHA1

c6bb3cd351015a7c95aac46af06b9ab422f1b313
SHA256

3b5ddcfb31269254d94f5b5cb6985affc025dd3d4d8c8a4160b5103f8f91b6bc
SHA512

9ef8f1e06c8b8d63ec00c2f2b72c5f324804d8a4e9af700bd7a90a58ae3346c65ecd0e096d1974a97e86cdb9e481b335df30b3101019faf1b44c6bfd799abf54
SSDEEP

6144:9bVK7vbvDrjxJYsNK9TFaoihk907yEOBwO7uJBUbMkkS1//cs4fZHpPk3:9I7vrDPbY19U/kWGwOgBUbMkT6hM3

Score

N/A

Malware Config

Signatures

Files

3b5ddcfb31269254d94f5b5cb6985affc025dd3d4d8c8a4160b5103f8f91b6bc
.exe windows x86

157eb3486508ea6e00e7df115036b719

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationA
DragQueryFileA
SHGetPathFromIDListA
SHBrowseForFolderA

kernel32

CreateMutexW
HeapAlloc
RaiseException
WideCharToMultiByte
GetCurrentProcessId
CloseHandle
GetStartupInfoA
HeapFree
GetTickCount
GetVersionExA
ReadFile
GetCommandLineW
SetStdHandle
LCMapStringA
GetModuleFileNameA
LeaveCriticalSection
GetCurrentProcess
GetCurrentThreadId
WriteConsoleA
GetStringTypeW
GetProcessHeap
CompareStringA
GetFileType
GetDateFormatA
InterlockedExchange
CreateFileA
VirtualQuery
Sleep
CompareStringW
InitializeCriticalSection
GetModuleHandleW
GetStringTypeA
QueryPerformanceCounter
SetEnvironmentVariableA
DeleteCriticalSection
GetModuleFileNameW
ExitProcess
IsDebuggerPresent
SetLastError
GetLastError
WriteFile
HeapCreate
RtlUnwind
TlsGetValue
VirtualFree
GetEnvironmentStringsW
TlsAlloc
TlsFree
GetStdHandle
UnhandledExceptionFilter
GetCPInfo
InterlockedDecrement
GetLocaleInfoA
FreeEnvironmentStringsW
GetStartupInfoW
FreeEnvironmentStringsA
GetOEMCP
GetProcAddress
FlushFileBuffers
LoadLibraryW
TlsSetValue
HeapDestroy
TerminateProcess
GetModuleHandleA
IsValidCodePage
GetTimeFormatA
VirtualAlloc
GetCommandLineA
SetHandleCount
HeapReAlloc
GetACP
LCMapStringW
MultiByteToWideChar
InterlockedIncrement
WriteConsoleW
GetConsoleMode
GetConsoleCP
SetFilePointer
GetTimeZoneInformation
GetSystemTimeAsFileTime
HeapSize
GetConsoleOutputCP
EnterCriticalSection
GetEnvironmentStrings
SetUnhandledExceptionFilter
LoadLibraryA

gdi32

CombineRgn
BitBlt
SetBkMode
SelectObject
SelectClipRgn
SetPolyFillMode
CreateCompatibleDC
DeleteObject
EnumFontFamiliesExW
RealizePalette
SaveDC
TextOutW
CreateFontIndirectW
CreatePen
LineTo
ExcludeClipRect
SetWindowExtEx
GetTextMetricsW
RoundRect
GetClipBox
CreatePatternBrush
GetTextCharsetInfo
SetViewportOrgEx
GetTextColor
GetBkColor
Ellipse
IntersectClipRect
GetPixel
CreateRectRgn
ExtTextOutW
CreateSolidBrush
Rectangle
GetRgnBox
GetDeviceCaps
RectVisible
DeleteDC
CreateDCW
CreateFontW
GetObjectW
GetStockObject
Escape
GetTextExtentPoint32W
MoveToEx
SetBkColor
SetTextColor
SetPixel
CopyMetaFileW
OffsetRgn
RestoreDC
StretchDIBits
CreateDIBSection
Polyline
SetStretchBltMode
SetTextAlign

shlwapi

PathRemoveFileSpecA
PathUnquoteSpacesA
PathIsDirectoryA
PathAddBackslashA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

comctl32

CreatePropertySheetPageA
InitCommonControlsEx
ImageList_DragShowNolock
ImageList_Draw
ImageList_Remove
ImageList_ReplaceIcon
ord17
ImageList_GetIcon
DestroyPropertySheetPage
PropertySheetA
ImageList_Destroy
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_Add
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_AddMasked
ImageList_DrawEx
ImageList_LoadImageA
ImageList_DragEnter
ImageList_Create

user32

DefWindowProcW
ReleaseCapture
SetForegroundWindow
InvalidateRect
SetWindowLongW
LoadImageW
DestroyIcon
CallWindowProcW
MessageBeep
GetDlgCtrlID
SetActiveWindow
ShowWindow
BringWindowToTop
LoadBitmapW
MessageBoxW
LockWindowUpdate
DestroyMenu
GetClientRect
IsRectEmpty
LoadStringW
DestroyWindow
EnableWindow
CreateWindowExW
TranslateMessage
CreateMenu
GetWindowLongW
WindowFromPoint
SetFocus
GetSubMenu
LoadAcceleratorsW
MapWindowPoints
IsWindowEnabled
GetDesktopWindow
RegisterClassW
DrawIconEx
IsWindowVisible
SetWindowPos
OffsetRect
DragDetect
RegisterClassExW
IsZoomed
ModifyMenuW
DrawFrameControl
SetTimer
LoadIconW
PostMessageW
IsMenu
DrawEdge
RedrawWindow
GetDC
EndDialog

ole32

StgOpenStorageOnILockBytes
CLSIDFromProgID
CoTaskMemAlloc
CoCreateInstance
CoFreeUnusedLibraries
OleUninitialize
CoTaskMemRealloc
OleDuplicateData
StringFromGUID2
DoDragDrop
RevokeDragDrop
StgCreateDocfile
OleRegGetUserType
CoInitialize
CreateStreamOnHGlobal
CoGetClassObject
CoRegisterClassObject
ReleaseStgMedium
CoRevokeClassObject
CoTaskMemFree
CLSIDFromString
CoUninitialize
GetHGlobalFromILockBytes
OleInitialize

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

157eb3486508ea6e00e7df115036b719

Headers

File Characteristics

Imports

shell32

kernel32

gdi32

shlwapi

comdlg32

comctl32

user32

ole32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 264KB - Virtual size: 263KB

.data Size: 80KB - Virtual size: 94KB

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 264KB - Virtual size: 263KB

.data
Size: 80KB - Virtual size: 94KB

.rsrc
Size: 60KB - Virtual size: 59KB