3bc52b9799a6dfa196351cc5d03ed6bbf61fc38373b3997728dbb3260122c272

Sharing

Copy URL

Twitter E-mail

General

Target

3bc52b9799a6dfa196351cc5d03ed6bbf61fc38373b3997728dbb3260122c272
Size

382KB
MD5

12f1bde8c4bf664806871137bc4168e1
SHA1

790eb90be1e0345616c47e5a5373583279d58b33
SHA256

3bc52b9799a6dfa196351cc5d03ed6bbf61fc38373b3997728dbb3260122c272
SHA512

baa5f1d798e4b0f472917d2797f3d48b79247b2e074905288e63a435bcd0bf6e76df38e2acdbff5aa6589619e316bf659cfdd0f5dbce674383833fab72493604
SSDEEP

6144:4M53NgMvak91S/UuEy9ez7AXzBtf64RHvrJO+4NCcUIoZP9Nb5Ix:4MNmMyR/U6SAXzLf64RPrs/NCcg3b5a

Score

N/A

Malware Config

Signatures

Files

3bc52b9799a6dfa196351cc5d03ed6bbf61fc38373b3997728dbb3260122c272
.exe windows x86

25258eedff8ad8c5c13a331e2706f30e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DlgDirSelectExW
UnionRect
CreateCaret
LoadKeyboardLayoutA
SetUserObjectInformationA
SetWindowsHookExA
DialogBoxIndirectParamW
DestroyIcon
DefFrameProcA
FillRect
GetWindowLongA
LoadBitmapA
SetMenu
SetWindowLongA
GetClientRect
IsWindowVisible
GetWindowRect
ScreenToClient
WindowFromPoint
ClientToScreen
RegisterWindowMessageA
CopyRect
DrawTextExA
PtInRect
CheckMenuItem
OffsetRect
SetTimer
DefWindowProcA
PostMessageA
UpdateWindow
UnregisterClassA
SetWindowRgn
IsWindow
IsRectEmpty
wsprintfA
CreateWindowExA
RegisterClassA
SetRect
DrawIcon
GetIconInfo
SetWindowTextA
TranslateMessage
PeekMessageA
DispatchMessageA
TrackPopupMenu
GetCursorPos
ReleaseCapture
SetCapture
SetCursor
InvalidateRect
LoadCursorA
GetWindowDC
LoadCursorFromFileA
GetCursor
LoadIconA
GetDesktopWindow
GetDC
ReleaseDC
EnableWindow
MessageBoxA
SendMessageA
DestroyWindow
UnregisterHotKey
ShowWindow
RegisterHotKey
GetKeyboardType
RegisterClassExA
PostQuitMessage
MessageBeep
InsertMenuItemA
GetWindowTextLengthA
GetMessageA
DrawMenuBar
CreatePopupMenu
CreateMenu

shell32

ExtractIconExA
DuplicateIcon
ShellExecuteExA
DragQueryPoint
FindExecutableA
DragAcceptFiles
ShellExecuteA

ole32

CLSIDFromString
OleConvertIStorageToOLESTREAM
CoDosDateTimeToFileTime

advapi32

SetSecurityDescriptorGroup
RegOpenKeyExA
GetSidLengthRequired
GetUserNameW
GetUserNameA
ObjectDeleteAuditAlarmA
RegCloseKey
CreatePrivateObjectSecurity
OpenThreadToken
OpenBackupEventLogW
RegQueryValueExA

gdi32

CreateFontA
GetStockObject

ws2_32

sendto
getsockname
listen
getsockopt
gethostname
gethostbyname

mpr

WNetConnectionDialog1W
WNetConnectionDialog1A
WNetGetUserA
MultinetGetConnectionPerformanceW
WNetDisconnectDialog1A
WNetConnectionDialog
WNetDisconnectDialog

winmm

waveInOpen
mixerMessage
midiOutGetVolume
midiConnect
PlaySoundA
mciSendCommandW

kernel32

GetOEMCP
GetACP
GetCPInfo
SetLastError
TlsFree
TlsAlloc
GetModuleHandleW
HeapFree
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
DecodePointer
GetStartupInfoW
HeapSetInformation
GetSystemTimeAsFileTime
InterlockedIncrement
InterlockedDecrement
GetDateFormatA
GetTimeFormatA
DeviceIoControl
SetComputerNameW
DeleteTimerQueue
DisableThreadLibraryCalls
GetFileInformationByHandle
SystemTimeToTzSpecificLocalTime
WaitForSingleObject
WaitForMultipleObjects
GlobalUnlock
IsValidCodePage
GlobalLock
GlobalHandle
WinExec
OpenFile
GlobalAlloc
LoadLibraryA
GetWindowsDirectoryA
GetProcAddress
MulDiv
FreeLibrary
DeleteFileA
SetThreadPriority
CreateFileA
CopyFileA
Sleep
GetModuleFileNameA
lstrlenA
FindClose
FindFirstFileA
GetCurrentThreadId
GetVersionExA
GetModuleHandleA
GetStartupInfoA
GlobalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualFree
VirtualAlloc
LocalFree
LocalAlloc
SetEnvironmentVariableA
CompareStringW
CreateFileW
WriteConsoleW
WideCharToMultiByte
GetTimeZoneInformation
HeapAlloc
GetUserDefaultLCID
GetLocaleInfoW
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
MultiByteToWideChar
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
lstrcpyA
HeapSize
SetStdHandle
SetFilePointer
LCMapStringW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetTickCount
QueryPerformanceCounter
GetVersion
GetThreadLocale
GetLocaleInfoA
GetCommandLineA
ExitProcess
LoadLibraryW
HeapReAlloc
ReadFile
WriteFile
GetCurrentProcessId
CreateThread
GetLastError
CreateEventA
SetEvent
CloseHandle
TlsGetValue
TlsSetValue
GetStdHandle
RaiseException
RtlUnwind
UnhandledExceptionFilter

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 235.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 297KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25258eedff8ad8c5c13a331e2706f30e

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

ws2_32

mpr

winmm

kernel32

Sections

.text Size: 76KB - Virtual size: 75KB

.data Size: 8KB - Virtual size: 235.3MB

.rsrc Size: 297KB - Virtual size: 300KB

.text
Size: 76KB - Virtual size: 75KB

.data
Size: 8KB - Virtual size: 235.3MB

.rsrc
Size: 297KB - Virtual size: 300KB