45f84d6a3825d313d008519f676ab02923c7ce395cb280501e2746875e7bae30

Sharing

Copy URL Twitter E-mail

General

Target

45f84d6a3825d313d008519f676ab02923c7ce395cb280501e2746875e7bae30
Size

442KB
MD5

3490a1fe8ca64aa3ea9ae71c0ddc5227
SHA1

5e285742f7a49453b189b9329b9f64f640272ac5
SHA256

45f84d6a3825d313d008519f676ab02923c7ce395cb280501e2746875e7bae30
SHA512

91e756984677adf8b055c5f2afb27e1fc5d67933fa2b157e34bdf70a97d707f7eaf303862513f1eabac84a95a35dec1fd3a6210c44bc336f128876427f6f6626
SSDEEP

6144:rgVzXf9lHORehdFM08U44l04kWTsYM5c2AOnkaIZbM76L:rgFXf9lHOgh3/4527M59iaIVM7Q

Score

N/A

Malware Config

Signatures

Files

45f84d6a3825d313d008519f676ab02923c7ce395cb280501e2746875e7bae30
.exe windows x86

9b3b2977ae78fc9b2e3c54e1a0b82d7f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

_TrackMouseEvent
ord17

kernel32

lstrcmpA
GetModuleHandleA
VirtualAlloc
UnmapViewOfFile
CloseHandle
MapViewOfFileEx
CreateFileMappingA
OpenFileMappingA
MapViewOfFile
CreateFileA
SearchPathA
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetConsoleMode
GetConsoleCP
WriteFile
ExitProcess
HeapCreate
VirtualFree
GetFileType
GetStdHandle
SetHandleCount
ReadFile
LCMapStringW
LCMapStringA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
lstrlenA
lstrcmpiA
EnterCriticalSection
LeaveCriticalSection
lstrcpynA
DeleteCriticalSection
InitializeCriticalSection
GetLocalTime
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetShortPathNameA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
MulDiv
GetCommandLineA
GetSystemInfo
GlobalMemoryStatus
GetVersion
GetComputerNameA
GetWindowsDirectoryA
GetSystemDirectoryA
WinExec
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
LoadLibraryA
GetProcAddress
Sleep
GetTickCount
GetModuleFileNameA
SetFilePointer
GetStartupInfoA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
CreateDirectoryA
GetFullPathNameA
GetDriveTypeA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapReAlloc
RtlUnwind
RaiseException
HeapFree
GetLastError
HeapAlloc

user32

CreateWindowExA
ShowWindow
SendMessageA
SetCursorPos
ShowCursor
GetCursorPos
GetAsyncKeyState
SetWindowPos
SetActiveWindow
EnumDisplaySettingsA
ChangeDisplaySettingsA
GetDC
GetSystemMetrics
ReleaseDC
DestroyWindow
FillRect
TabbedTextOutA
GetSysColor
MoveWindow
AdjustWindowRectEx
LoadIconA
LoadCursorA
RegisterClassA
GetActiveWindow
UnregisterClassA
InvalidateRect
DefWindowProcA
BeginPaint
EndPaint
GetDlgItemTextA
GetDlgCtrlID
IsDlgButtonChecked
SetWindowTextA
GetClassLongA
SetClassLongA
GetClientRect
InflateRect
DrawFocusRect
DrawTextA
PostMessageA
SetWindowLongA
IsWindowEnabled
EnableWindow
SetFocus
GetFocus
GetWindowLongA
CallWindowProcA
FindWindowA
TranslateMessage
DispatchMessageA
MapVirtualKeyA
PeekMessageA
GetMessageA
MsgWaitForMultipleObjects
GetWindowRect
MessageBoxA

gdi32

SetStretchBltMode
StretchBlt
Ellipse
MoveToEx
LineTo
SetPixel
GetPixel
GetTextExtentPoint32A
SetDIBColorTable
CreatePalette
CreateSolidBrush
CreatePen
GetTextMetricsA
Rectangle
CreateDIBSection
CreateCompatibleDC
DeleteDC
SelectPalette
RealizePalette
BitBlt
SelectObject
SetBkMode
SetTextColor
GetStockObject
CreateFontIndirectA
DeleteObject
GetDeviceCaps

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA

advapi32

GetUserNameA

shell32

SHGetSpecialFolderPathA
ShellExecuteExA
ShellExecuteA

ole32

CoCreateInstance
OleUninitialize
CoUninitialize
OleInitialize
IIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal
CoInitializeEx

oleaut32

VariantCopyInd
VariantCopy
SysAllocString
SafeArrayGetUBound
SafeArrayGetLBound
VariantChangeType
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
OleLoadPicture
SysAllocStringByteLen
SafeArrayGetVartype
SafeArrayUnaccessData
SafeArrayCreate
SysFreeString
VariantInit
VariantClear
SafeArrayAccessData
SafeArrayGetDim

msimg32

GradientFill

winmm

timeBeginPeriod
timeGetDevCaps
timeEndPeriod
mciSendStringA
sndPlaySoundA
timeGetTime

Exports

Exports

AddDLLReference
FreeDLL
GetDLLFileName
GetDLLHandle
GetDLLProcAddress
InitializeDLLLoad
KillDLLLoad
LoadDLL
LoadDLLEx
LoadDLLFromImage
MapDLLFromImage
PrepareDLLImage
ProtectDLLImage
RemoveDLLReference

Sections

.text
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b3b2977ae78fc9b2e3c54e1a0b82d7f

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

msimg32

winmm

Exports

Exports

Sections

.text Size: 267KB - Virtual size: 267KB

.rdata Size: 47KB - Virtual size: 47KB

.data Size: 9KB - Virtual size: 18KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 267KB - Virtual size: 267KB

.rdata
Size: 47KB - Virtual size: 47KB

.data
Size: 9KB - Virtual size: 18KB

.rsrc
Size: 10KB - Virtual size: 10KB