0d18e36adafc39c88dfffbf219b9ef1b62bccfba4344e92f88a41a1523b59d83

Sharing

Copy URL Twitter E-mail

General

Target

0d18e36adafc39c88dfffbf219b9ef1b62bccfba4344e92f88a41a1523b59d83
Size

696KB
MD5

933a5a7380f499085ef11a602b881862
SHA1

bbf2f7f100cfc53efc8df55b9b6f698bbb9ef106
SHA256

0d18e36adafc39c88dfffbf219b9ef1b62bccfba4344e92f88a41a1523b59d83
SHA512

02d23a0cba021e6e210205ab88e1806e19effd8efe624ca561da1892b52799d4d2d5fa355f882c417e1f4a28a58c4052264fbdc2070f323a7dcc30a6161349ff
SSDEEP

12288:J5IaqVMfnns30my/Tsdn+q5ekrJwwN9vX2KZb5U/dszETashWoeiU5fb:J5IIfnnsty/u+5YhGwPgTteBf

Score

N/A

Malware Config

Signatures

Files

0d18e36adafc39c88dfffbf219b9ef1b62bccfba4344e92f88a41a1523b59d83
.exe windows x86

346a3d32acb13306366817fc1fc659d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Destroy
ImageList_DrawEx
ImageList_DragEnter
ImageList_LoadImage
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_GetBkColor
ImageList_GetIconSize
MakeDragList
ImageList_SetOverlayImage
ImageList_Replace
DestroyPropertySheetPage
CreateStatusWindow
ImageList_GetFlags
DrawStatusTextA
ImageList_AddMasked
ImageList_Copy
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_Add
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_Draw

gdi32

GetMapMode
EndPath
GetWinMetaFileBits
CreateFontIndirectW
EnumICMProfilesA
ResetDCW
IntersectClipRect
SelectClipPath

user32

GetWindow
LoadCursorFromFileA
CharNextExA
SendIMEMessageExW
SetWindowsHookA
MessageBoxA
DlgDirSelectComboBoxExW
CharPrevW
GetForegroundWindow
GetKeyboardLayout
OpenDesktopA
RegisterClassExA
DdeImpersonateClient
ScrollDC
GetMessagePos
SetMessageExtraInfo
GetMenuStringW
SetDeskWallpaper
EnumDisplayDevicesW
MapDialogRect
IsDialogMessageA
GetClipboardData
EmptyClipboard
RegisterDeviceNotificationA
SetRectEmpty
CallNextHookEx
CreateAcceleratorTableA
GetSystemMetrics
DispatchMessageA
RegisterClassA
BroadcastSystemMessageW
DdeCreateStringHandleW
MessageBoxExW
TrackMouseEvent
CharToOemBuffA
InvalidateRgn
IsZoomed
CreateAcceleratorTableW
GetAncestor
ToUnicodeEx
RegisterClassExW

advapi32

RegEnumKeyA
CryptDestroyHash
DuplicateToken
CryptDuplicateKey
CryptHashData
CryptGetDefaultProviderW
CryptEncrypt
CryptEnumProvidersA
RegCloseKey

comdlg32

ReplaceTextA
PageSetupDlgA
FindTextW

wininet

CreateUrlCacheEntryA

kernel32

CompareStringW
GetTempFileNameA
InitializeCriticalSection
FindNextFileA
LocalSize
WideCharToMultiByte
lstrcmpi
GetCommandLineA
GetModuleHandleA
SetConsoleMode
WriteFile
GetFullPathNameW
DeleteCriticalSection
TerminateProcess
RtlUnwind
CloseHandle
LCMapStringA
SetCriticalSectionSpinCount
GetLocalTime
GetStartupInfoW
GlobalGetAtomNameW
GetCurrentThread
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
OpenMutexA
InterlockedDecrement
GetStdHandle
GetStringTypeW
GetMailslotInfo
HeapLock
GetStringTypeA
GetProfileIntA
GetCurrentThreadId
ConnectNamedPipe
VirtualQuery
ExitProcess
LoadLibraryA
VirtualAlloc
SetLastError
MultiByteToWideChar
EnumCalendarInfoW
WaitForSingleObject
VirtualFree
CompareFileTime
DosDateTimeToFileTime
QueryPerformanceCounter
SetEnvironmentVariableA
GetEnvironmentStrings
SetStdHandle
HeapReAlloc
IsBadWritePtr
HeapDestroy
GetEnvironmentStringsW
GetSystemTime
InterlockedIncrement
TlsSetValue
TlsAlloc
GetStartupInfoA
GetCurrentProcess
OpenFileMappingA
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
GetTimeZoneInformation
GetCommandLineW
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetModuleFileNameW
GetCurrentProcessId
InterlockedExchange
GetCPInfo
LeaveCriticalSection
GetModuleFileNameA
OpenFile
CompareStringA
CreateMutexA
lstrcpyn
GlobalSize
LocalFlags
LCMapStringW
TlsGetValue
GetTickCount
GlobalUnfix
FileTimeToDosDateTime
GetModuleHandleW
GetLastError
GetVersion
ReadFile
TlsFree
SetHandleCount
HeapAlloc
GetFileType
HeapFree
FlushFileBuffers
HeapCreate
GetPrivateProfileSectionNamesA
SetFilePointer
GetProcAddress

Sections

.text
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 400KB - Virtual size: 398KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

346a3d32acb13306366817fc1fc659d6

Headers

File Characteristics

Imports

comctl32

gdi32

user32

advapi32

comdlg32

wininet

kernel32

Sections

.text Size: 136KB - Virtual size: 133KB

.rdata Size: 400KB - Virtual size: 398KB

.data Size: 136KB - Virtual size: 144KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 136KB - Virtual size: 133KB

.rdata
Size: 400KB - Virtual size: 398KB

.data
Size: 136KB - Virtual size: 144KB

.rsrc
Size: 20KB - Virtual size: 16KB