document_Y265_Nov#22[.]iso

Sharing

Copy URL

Twitter E-mail

General

Target

document_Y265_Nov#22.iso
Size

1.2MB
MD5

d782ce153ee4ff3e2e923e59490f30d6
SHA1

1d91a7c75acd202ecf89bd001660885b99c37b98
SHA256

9f732f21cd6bea13a4dbabbf90aa687cafd5b4b530ec27066152479e37f4cec8
SHA512

eb3796e5030727b1859cd4bf949d45aa24cc6c2516a50ae1dc21e65c72bfaf7af77760d2fdaf0d7bf18766df88885c31e66b7987be1f085dc83f501c7ea9088b
SSDEEP

24576:vtE8Z3shoA9qB8DvUAZkl9iIDIQIFaOGYnknF6:e8vmqB8DUAZklKxnknF6

Score

N/A

Malware Config

Signatures

Files

document_Y265_Nov#22.iso
.iso .vbs
data.txt
document.vbs
.vbs
overhauled/dozens.gif
overhauled/honorary.temp
.dll windows x86

060ac25334ec9db348ade902cce3d445

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
CreateDirectoryW
CreateFileA
CreateFileW
FileTimeToLocalFileTime
FindFirstFileA
FindFirstFileW
FindNextChangeNotification
GetDriveTypeA
GetDriveTypeW
GetFileAttributesA
GetFileAttributesW
GetFileInformationByHandle
GetFullPathNameW
GetFullPathNameA
GetLogicalDriveStringsW
LocalFileTimeToFileTime
LockFile
SetFileAttributesA
SetFileAttributesW
SetUnhandledExceptionFilter
SetErrorMode
SetNamedPipeHandleState
TransactNamedPipe
WaitNamedPipeW
QueryPerformanceCounter
QueryPerformanceFrequency
DeviceIoControl
LeaveCriticalSection
ReleaseMutex
OpenMutexW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsFree
GetThreadContext
GetSystemInfo
GetLocalTime
GetVersion
SetLocalTime
GetTickCount
GetSystemDirectoryA
GetSystemDirectoryW
GetWindowsDirectoryA
GetWindowsDirectoryW
SetSystemTime
VirtualProtect
ReadProcessMemory
VirtualLock
VirtualUnlock
FindResourceExW
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
LoadResource
FindResourceW
LoadLibraryA
LoadLibraryW
GlobalAlloc
LocalAlloc
SetHandleCount
SetCommMask
SetCommState
SetCommTimeouts
MulDiv
lstrcmpA
lstrcmpiA
lstrlenA
lstrlenW
GlobalAddAtomA
WriteProfileStringW
GetPrivateProfileIntW
MoveFileA
CompareFileTime
IsBadWritePtr
IsBadCodePtr
IsBadStringPtrA
IsBadStringPtrW
SystemTimeToFileTime
GetConsoleCP
GetConsoleOutputCP
ReadConsoleInputA
ReadConsoleInputW
PeekConsoleInputA
ReadConsoleA
ReadConsoleW
WriteConsoleA
WriteConsoleW
SetConsoleCtrlHandler
GetConsoleScreenBufferInfo
SetFilePointerEx
GetConsoleMode
WriteFile
FlushFileBuffers
HeapReAlloc
HeapSize
GetStringTypeW
GetFileType
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCommandLineW
GetCPInfo
GetOEMCP
GetACP
CloseHandle
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
DecodePointer
MoveFileExW
LCMapStringW
MultiByteToWideChar
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleExW
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsSetValue
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
EncodePointer
SetLastError
GetLastError
InterlockedFlushSList
RtlUnwind
RaiseException
TerminateProcess
InitializeSListHead
GetSystemTimeAsFileTime
GetStartupInfoW
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
SetCurrentDirectoryW
SetCurrentDirectoryA
ExpandEnvironmentStringsW
SetEnvironmentVariableW
GetCommandLineA
SetStdHandle
GetStdHandle
VirtualAllocEx
VirtualAlloc
GetTickCount64
ExitThread
WaitForSingleObjectEx
CreateThread
MoveFileW
ExitProcess

user32

IsWindowVisible
SetForegroundWindow
DialogBoxParamA
SystemParametersInfoW
LoadIconW
LoadBitmapW
SetWindowsHookExW
GetWindow
GetWindowThreadProcessId
FindWindowW
GetDesktopWindow
GetSysColor
MapWindowPoints
ScreenToClient
GetCaretBlinkTime
GetCursor
GetCursorPos
MessageBoxExW
MessageBoxW
MessageBoxA
AdjustWindowRectEx
GetWindowTextLengthW
GetPropW
GetScrollPos
SetScrollPos
ValidateRect
GetDC
GetDlgItemTextW
SetActiveWindow
LoadMenuW
GetSystemMetrics
SetCapture
MapVirtualKeyW
GetKeyboardState
GetKeyState
GetFocus
CharUpperW
GetClipboardData
SetClipboardData
OpenClipboard
GetDlgCtrlID
CheckRadioButton
CheckDlgButton
SetWindowPlacement
FlashWindow
UnregisterClassA
AttachThreadInput
SendMessageCallbackW
SendNotifyMessageW
SendMessageTimeoutW
RegisterWindowMessageW
GetProcessWindowStation
GetThreadDesktop
GetKeyboardLayoutNameW
GetKeyboardLayoutNameA
ActivateKeyboardLayout
FindWindowA
SetTimer
EndDialog

gdi32

SetDIBitsToDevice
GetStockObject
GetRgnBox
GetRegionData
CreateSolidBrush
CreateRectRgn
CreateFontIndirectW
CreateDIBitmap
CreateDCW
CreateBitmap
CreatePolygonRgn

advapi32

RegNotifyChangeKeyValue
RegCloseKey

ole32

CoInitializeEx
CoCreateGuid

shlwapi

PathFileExistsA
PathGetDriveNumberA
PathFindSuffixArrayA
StrToIntA
ord155
PathFindExtensionA
PathFindOnPathA

Exports

Exports

DllUnregisterServer
DrawThemeIcon
barmskin
hemocyte
ilicaceae
inapostate
periodontologist
pigweed
postern
pugnaciousness
trichosanthes

Sections

.text
Size: 645KB - Virtual size: 644KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 418KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
overhauled/superlativeness.png
.png

Sharing

General

Malware Config

Signatures

Files

060ac25334ec9db348ade902cce3d445

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

shlwapi

Exports

Exports

Sections

.text Size: 645KB - Virtual size: 644KB

.data Size: 418KB - Virtual size: 417KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 52KB - Virtual size: 51KB

.text
Size: 645KB - Virtual size: 644KB

.data
Size: 418KB - Virtual size: 417KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 52KB - Virtual size: 51KB