d8fa3e972a0284cc284453fd65c1ee90f84658b47e949d4cdc9a3d4601a5ed37

Sharing

Copy URL

Twitter E-mail

General

Target

d8fa3e972a0284cc284453fd65c1ee90f84658b47e949d4cdc9a3d4601a5ed37
Size

324KB
MD5

3b0c3f18254eaeec3468ce7c58b47290
SHA1

5ac7f9c0a15ec4e037c0ad811dfaa124525abc8b
SHA256

d8fa3e972a0284cc284453fd65c1ee90f84658b47e949d4cdc9a3d4601a5ed37
SHA512

346f86c96b73200f6e7c399e387c49c5deacd7c0c4f429a8d46a8d05e280a3443ce6ac65da8620b4fe52b196c0be71873acf8aa5244ce1d5f088508898a062ed
SSDEEP

6144:9IFuuuhmYBPLYgYfk1JMZwiigFX2uZVa9pXga7WdJFokrqr:9IQDlLYgYfWRgFX2Dga7WdJDrqr

Score

N/A

Malware Config

Signatures

Files

d8fa3e972a0284cc284453fd65c1ee90f84658b47e949d4cdc9a3d4601a5ed37
.exe windows x86

62915dfb23e90980bfc5aa414bb20ab9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

untfs

Format
Extend
Chkdsk
FormatEx
Recover
ChkdskEx

msvcrt

malloc
_initterm
free
??1type_info@@UAE@XZ
swprintf
_adjust_fdiv
??3@YAXPAX@Z
wcsncpy
wcscat
wcslen
realloc
_except_handler3
??2@YAPAXI@Z
wcscmp
__CxxFrameHandler
?terminate@@YAXXZ

kernel32

LocalFree
MultiByteToWideChar
VirtualFree
lstrlenA
GetProcAddress
OutputDebugStringA
RemoveDirectoryA
LeaveCriticalSection
HeapDestroy
SetLastError
HeapAlloc
lstrcpyW
GetEnvironmentStringsA
SetUnhandledExceptionFilter
FindResourceW
GetLastError
EnterCriticalSection
GetProcessHeap
lstrcatW
lstrcmpiW
HeapFree
GetSystemInfo
LoadLibraryA
InterlockedIncrement
GetTickCount
InterlockedDecrement
GetSystemTimeAsFileTime
lstrlenW
GetModuleFileNameW
FormatMessageW
lstrcpynW
GetUserDefaultLCID
GetCurrentProcessId
LoadLibraryExW
SizeofResource
DeleteCriticalSection
FreeLibrary
LoadResource
GetCurrentProcess
QueryPerformanceCounter
FlushInstructionCache

user32

DrawTextW
GetClientRect
GetSystemMetrics
GetParent
SendMessageW
SendDlgItemMessageW
GetWindow
SystemParametersInfoW
MapWindowPoints
DestroyWindow
CharNextW
DialogBoxParamW
GetWindowRect
SetWindowLongW
CreateDialogParamW
GetWindowLongW
GetDlgItemTextW
ShowWindow
MessageBoxW
LoadImageW
EnableWindow
SetWindowPos
CopyRect
SetDlgItemTextW
SetFocus
GetDialogBaseUnits
GetDlgItem
EndDialog
LoadStringW
SetWindowTextW

rpcrt4

NdrDllRegisterProxy
NdrCStdStubBuffer_Release
CStdStubBuffer_QueryInterface
CStdStubBuffer_Invoke
NdrOleAllocate
CStdStubBuffer_AddRef
NdrDllGetClassObject
CStdStubBuffer_Disconnect
CStdStubBuffer_Connect
NdrDllCanUnloadNow
CStdStubBuffer_CountRefs
NdrDllUnregisterProxy
NdrOleFree
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_IsIIDSupported

advapi32

RegQueryInfoKeyW
RegCloseKey
RegDeleteKeyW
TraceMessage
GetTraceEnableLevel
RegisterTraceGuidsW
GetTraceLoggerHandle
RegCreateKeyExW
RegSetValueExW
UnregisterTraceGuids
RegDeleteValueW
GetTraceEnableFlags
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetFolderPathW
ShellExecuteW

Sections

text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62915dfb23e90980bfc5aa414bb20ab9

Headers

DLL Characteristics

File Characteristics

Imports

untfs

msvcrt

kernel32

user32

rpcrt4

advapi32

shell32

Sections

text Size: 117KB - Virtual size: 117KB

.rdata Size: 174KB - Virtual size: 174KB

.rsrc Size: 30KB - Virtual size: 30KB

text
Size: 117KB - Virtual size: 117KB

.rdata
Size: 174KB - Virtual size: 174KB

.rsrc
Size: 30KB - Virtual size: 30KB