8b9b40731ed51d93fa0cf292abda503ad33b608f461a8bfaa2a6ddda3d8840f1

Sharing

Copy URL Twitter E-mail

General

Target

8b9b40731ed51d93fa0cf292abda503ad33b608f461a8bfaa2a6ddda3d8840f1
Size

743KB
MD5

523a0c822e7305ee0c99d214a77aa368
SHA1

589340abe34daaabdca22119c77e763a9c55aee3
SHA256

8b9b40731ed51d93fa0cf292abda503ad33b608f461a8bfaa2a6ddda3d8840f1
SHA512

2ffa89630bfe9254a74d700c696ac1223741716bb447119f8a66a8204da9761c7d27ec1ef0a077f24631619fb9e18dbac53b6122a3a74e6fb4190d470affa84f
SSDEEP

12288:3N/hIq8gKq/bp5H4TV12LYCt+/UuZwCMpVVdGWn5FQcxB0a0k8D:3N/hInvWcWl+/DMpZxn5fl0DD

Score

N/A

Malware Config

Signatures

Files

8b9b40731ed51d93fa0cf292abda503ad33b608f461a8bfaa2a6ddda3d8840f1
.dll windows x86

72f69c87a68d299251bbe67d124f7e13

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

vswprintf
islower
clock
isupper
free
isalnum
wcscmp
_controlfp
realloc
strpbrk
__set_app_type
puts
strtok
wcspbrk
gets
__p__fmode
__p__commode
wcscpy
fputc
strspn
_amsg_exit
towupper
floor
fgetc
_initterm
iswxdigit
_ismbblead
gmtime
fread
setvbuf
_XcptFilter
wcstol
wcscoll
getc
wcslen
atol
iswprint
_exit
strrchr
bsearch
wcscspn
_cexit
__setusermatherr
exit
__getmainargs
remove
wcschr

user32

LoadIconA
GetFocus
DialogBoxParamA
IsDialogMessageA
GetShellWindow
GetWindowDC
ValidateRect
GetWindowRect
GetForegroundWindow
CloseDesktop
DrawTextA
GetKeyboardLayoutNameW
GetUpdateRect
MapVirtualKeyExW
RegisterClassA
CharNextA
EndDialog
GetMessageExtraInfo
DestroyCaret
RemovePropW
GetUserObjectInformationW
TrackPopupMenuEx
GetWindowTextA
CopyImage
CharPrevA
GetMenuItemCount
DrawFocusRect
FrameRect
DrawTextExW
ClientToScreen
ToUnicodeEx
ChildWindowFromPoint
AdjustWindowRectEx
SetActiveWindow
SetWindowTextW
InSendMessage
LoadMenuW
IsWindowEnabled
WaitMessage
IsChild
GetNextDlgTabItem
EnableWindow
MessageBoxExA
IsWindow
DefDlgProcA
CreateIconIndirect
ArrangeIconicWindows
DefFrameProcW
DefWindowProcA
wvsprintfW
IsWindowUnicode
GetParent
HideCaret
CharUpperBuffA
LoadAcceleratorsW
InsertMenuA
SendMessageTimeoutW
LoadAcceleratorsA
VkKeyScanW
CreateCursor
LoadCursorW
WindowFromPoint
SendDlgItemMessageW
SetWindowLongW
IsRectEmpty
GetWindowTextW
GetAltTabInfoA
RegisterClassExW
ModifyMenuW
GetScrollRange
GetPropW
GetDlgItem
DestroyCursor
SetScrollInfo
SetDlgItemTextA
GetMenuState
IsCharAlphaW
TranslateAcceleratorA
GetSysColorBrush
DefWindowProcW
CreateIconFromResource
GetDlgItemTextW
MessageBoxA
CharNextExA
DispatchMessageW
RegisterHotKey
OemToCharBuffA
GetSystemMenu
SetWindowRgn
ScrollWindow
CreateCaret
InsertMenuW
CreateAcceleratorTableW
InvertRect
DestroyIcon
IsCharLowerA
TabbedTextOutW
GetScrollPos
SendMessageTimeoutA
DrawIcon
CheckMenuRadioItem
CallWindowProcA
SetTimer
SetParent
SetCursorPos
SetPropW
ReplyMessage
UpdateWindow
wsprintfA
MapVirtualKeyW
SetDlgItemTextW
GetMenuItemInfoW
RegisterClassW
CharNextW
FindWindowExA
GetMenuItemID
GetWindowPlacement
GetClipCursor
GetDlgItemInt
ShowCursor
CascadeWindows
AllowSetForegroundWindow

comdlg32

ChooseFontW
PageSetupDlgW
PrintDlgExW
CommDlgExtendedError
GetSaveFileNameA

kernel32

GetTickCount
SetThreadPriority
GetStartupInfoW
SetEvent
GetThreadContext
HeapSize
FindFirstChangeNotificationW
SetLastError
ConnectNamedPipe
GlobalGetAtomNameA
TlsSetValue
CallNamedPipeW
DeleteAtom
GlobalReAlloc
FindResourceExW
CreateSemaphoreW
WaitCommEvent
CreateThread
GetUserDefaultUILanguage
FlushFileBuffers
HeapAlloc
Sleep
lstrcmpA
GetSystemWindowsDirectoryW
ReadFile
CreateDirectoryW
GetSystemDirectoryA
RemoveDirectoryA
WaitForSingleObject
ConvertDefaultLocale
GetTempFileNameA
GetCurrentDirectoryW
HeapFree
GetVersionExA
GlobalGetAtomNameW
lstrcpyA
EnumResourceNamesW
HeapLock
EnumSystemLocalesA
DeviceIoControl
GlobalLock
GetProcessHeap
GetComputerNameA
EnterCriticalSection
QueryPerformanceCounter
GetCommandLineA
SetPriorityClass
GetModuleFileNameA
TransactNamedPipe
CreateNamedPipeA
GetModuleHandleW
GetProcAddress
ReleaseSemaphore
LockResource
GetExitCodeThread
WinExec
GetStartupInfoA
GetFileSize

shlwapi

UrlIsA

Exports

Exports

showtit[D
?BinaryRedirectNetDYuyhDBH@@YGKGE[D

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 710KB - Virtual size: 710KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72f69c87a68d299251bbe67d124f7e13

Headers

File Characteristics

Imports

msvcrt

user32

comdlg32

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 9KB - Virtual size: 1.3MB

.rsrc Size: 710KB - Virtual size: 710KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 9KB - Virtual size: 1.3MB

.rsrc
Size: 710KB - Virtual size: 710KB

.reloc
Size: 1KB - Virtual size: 1KB