ae13b1c3cf71b696139349fae4e78f228a9171292bbab0b0632b1c796d8e9e50

Sharing

Copy URL

Twitter E-mail

General

Target

ae13b1c3cf71b696139349fae4e78f228a9171292bbab0b0632b1c796d8e9e50
Size

144KB
MD5

a131e8ff8b27379d9699dcb3ed7f5529
SHA1

c61f31bc37d7fb77135fe1ee16d22774286c58a6
SHA256

ae13b1c3cf71b696139349fae4e78f228a9171292bbab0b0632b1c796d8e9e50
SHA512

8626f993232b4025d524d5abb64b69cf569b4f46bc4eeb0b4b3595b183a4f68fe201052ad16b2190f84b9d9df741699b4a89d663e4e002deeb582da306f2ca73
SSDEEP

3072:7Cy78PAbUjItjPL3SlNaT3uj/vniSPAw72jEy4TEMchBHM/Fk+QgBfDq3i2c:7C88PAIktjP7uNjzBY590ERvqk+Hl8c

Score

N/A

Malware Config

Signatures

Files

ae13b1c3cf71b696139349fae4e78f228a9171292bbab0b0632b1c796d8e9e50
.zip
volksbank_de_transaktions_id_000023928001_2014_11_0000390382755_00003997550002.exe
.exe windows x86

27027499f12f6e6fcabda322e717ace2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
LoadCursorA
LoadMenuW
GetSystemMetrics
GetMenu
GetWindowTextW
GetForegroundWindow
LoadBitmapA
GetWindowRect
IsChild
GetClientRect
LoadBitmapW
LoadAcceleratorsA
GetDC
GetWindowTextA
LoadMenuA
LoadIconA
GetProcessDefaultLayout
FindWindowW
FindWindowA

gdi32

SelectObject
HT_Get8BPPFormatPalette
GetClipBox
TextOutW
CreateBrushIndirect
DeleteObject
GetStockObject
CreatePalette
CreatePenIndirect
ExtSelectClipRgn
EqualRgn
CreatePen

iasrad

?radiusToIAS@VSAFilter@@QBEJPAUIAttributesRaw@@@Z
?initialize@VSAFilter@@QAEJXZ
DllGetClassObject
DllCanUnloadNow
DllRegisterServer
?shutdown@VSAFilter@@QAEJXZ
DllUnregisterServer

rastapi

PortGetIOHandle
AddPorts
DeviceGetInfo
PortGetPortState
PortSetInfo
DeviceEnum
PortClearStatistics
DeviceDone
PortGetStatistics
PortDisconnect
UnloadRastapiDll
PortTestSignalState
SetCommSettings
PortChangeCallback
RastapiGetCalledID
DeviceWork

kernel32

VirtualAlloc
Module32NextW
EnumResourceTypesA
GetConsoleInputExeNameA
GetProfileStringA
FindClose
LocalFileTimeToFileTime
GetConsoleAliasExesLengthA
OpenFile
FindFirstFileA
OpenFileMappingA
GlobalUnfix
SetConsoleDisplayMode
CreateFileA
GetConsoleKeyboardLayoutNameA

comctl32

PropertySheet
InitCommonControls
FlatSB_ShowScrollBar
ImageList_Create
ImageList_GetDragImage
ImageList_SetImageCount
ImageList_GetBkColor
FlatSB_SetScrollRange
InitializeFlatSB
ImageList_Replace
ImageList_SetFilter
ImageList_AddIcon
InitCommonControlsEx
ImageList_AddMasked
CreateStatusWindowW
ImageList_Copy
PropertySheetA
ImageList_Read

cmutil

WzToSz
?GPPS@CIniW@@QBEPAGPBG00@Z
?LoadEntry@CIniA@@IBEPADPBD@Z
CmStrCpyAllocA
?LoadEntry@CIniW@@IBEPAGPBG@Z
?GetHInst@CIniA@@QBEPAUHINSTANCE__@@XZ
?CIni_SetFile@CIniW@@KGXPAPAGPBG@Z
?GPPS@CIniA@@QBEPADPBD00@Z
CmStrchrA

wshext

PutSignedDataMsg
VerifyIndirectData
RemoveSignedDataMsg
CreateIndirectData
DllRegisterServer
DllCanUnloadNow
GetSignedDataMsg
DllGetClassObject
IsFileSupportedName
DllUnregisterServer

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27027499f12f6e6fcabda322e717ace2

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

iasrad

rastapi

kernel32

comctl32

cmutil

wshext

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 6KB - Virtual size: 22KB

.CRT Size: 512B - Virtual size: 216B

.rsrc Size: 170KB - Virtual size: 169KB

.reloc Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 3KB

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 6KB - Virtual size: 22KB

.CRT
Size: 512B - Virtual size: 216B

.rsrc
Size: 170KB - Virtual size: 169KB

.reloc
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB