3be68dfe7b8fb0cefc038ec6194d52a0b2f37d763d89f701675e57786afccb07

Sharing

Copy URL Twitter E-mail

General

Target

3be68dfe7b8fb0cefc038ec6194d52a0b2f37d763d89f701675e57786afccb07
Size

557KB
MD5

8bb9a616fafce4225fe660702003be34
SHA1

5c7b18dff3591b0cbc1591bfa50e1df7e5464107
SHA256

3be68dfe7b8fb0cefc038ec6194d52a0b2f37d763d89f701675e57786afccb07
SHA512

59cb3827809f6889f602361eefa95af2f93bc8d61aaa69da79aca468bffeccc50451a49bf8add967fab4f231629b25ce6695bafe7f989503dfef293e2a152db0
SSDEEP

12288:qyQ3M5U0cM9/d8q5IS7CgYzkE6J137jLvw3SfAYr1YLme8UYsYRz:NQ3MU0ck8gVYAE6L3MJYBYaOYh

Score

N/A

Malware Config

Signatures

Files

3be68dfe7b8fb0cefc038ec6194d52a0b2f37d763d89f701675e57786afccb07
.exe windows x86

a021491b1b5718a9d1b91b280d029e3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddIcon
CreateStatusWindowW
ImageList_GetImageCount
ImageList_Read
MakeDragList
ImageList_GetIcon
ImageList_SetDragCursorImage
ImageList_SetOverlayImage
ImageList_DragLeave
InitCommonControlsEx
ImageList_Merge
_TrackMouseEvent
ImageList_Replace
ImageList_GetIconSize
CreateToolbar

gdi32

ExtEscape
RemoveFontResourceW
CreateSolidBrush
SetEnhMetaFileBits
PlayMetaFile
ArcTo
GdiPlayScript
SetLayout
GetCurrentObject
GetEnhMetaFileHeader
WidenPath
IntersectClipRect
GetDeviceCaps
SetMapperFlags
CopyMetaFileA
GetCharWidth32A
CreatePen
DeleteDC
CreateDCA
GetBitmapBits
GetObjectW
CreateMetaFileA
CreateDCW
OffsetClipRgn
PlgBlt
GetMetaFileW
CreateRoundRectRgn
RectInRegion

wininet

SetUrlCacheEntryInfoW
InternetAutodial
FtpGetCurrentDirectoryA
SetUrlCacheConfigInfoW
FtpCommandW
InternetGetCertByURL

kernel32

GetSystemInfo
FreeEnvironmentStringsW
GetModuleHandleA
InterlockedExchange
IsValidCodePage
FreeEnvironmentStringsA
WritePrivateProfileSectionW
IsValidLocale
SetEnvironmentVariableA
GetACP
CreateMutexA
GlobalFix
GetModuleFileNameW
TerminateProcess
HeapReAlloc
GetLocaleInfoW
TlsFree
OpenMutexA
LCMapStringW
HeapAlloc
ResumeThread
WideCharToMultiByte
FlushFileBuffers
LCMapStringA
GetCurrentThread
GetStartupInfoA
QueryPerformanceCounter
GetCurrentThreadId
VirtualProtect
SetFileTime
SetStdHandle
GetStringTypeA
TlsGetValue
ExitProcess
UnhandledExceptionFilter
EnumSystemLocalesA
GetStdHandle
GetOEMCP
CloseHandle
GetProcAddress
GetCurrentProcessId
GetTimeFormatA
DeleteCriticalSection
GetFileType
GetConsoleTitleW
GetStringTypeW
GetPrivateProfileSectionNamesA
VirtualQuery
HeapSize
HeapCreate
GetVersionExA
HeapFree
SetTimeZoneInformation
CompareStringW
SetThreadContext
SetLastError
GetStartupInfoW
CompareStringA
CreateMailslotW
InitializeCriticalSection
ReadFile
GetCurrentProcess
RtlUnwind
GetEnvironmentStringsW
GetPrivateProfileIntW
SetHandleCount
EnterCriticalSection
TlsSetValue
GetCommandLineW
GetTimeZoneInformation
VirtualFree
GetModuleFileNameA
GetCommandLineA
HeapDestroy
GetCompressedFileSizeA
TlsAlloc
GetTickCount
SetConsoleWindowInfo
WriteFile
LoadLibraryA
GetEnvironmentStrings
GetLocaleInfoA
GetUserDefaultLCID
GetLastError
GetSystemTimeAsFileTime
GetCPInfo
IsBadWritePtr
GetDateFormatA
SetFilePointer
LeaveCriticalSection
MultiByteToWideChar
VirtualAlloc

shell32

SHGetMalloc
SHFormatDrive
SHGetSpecialFolderPathW
SHAppBarMessage
SHGetSettings

user32

SystemParametersInfoA
DlgDirSelectComboBoxExA
CreateWindowExA
DefWindowProcA
RegisterClassExA
GetProcessWindowStation
wsprintfA
ShowWindow
OpenWindowStationW
DestroyWindow
DdeQueryStringA
EnumWindowStationsW
IsChild
UnregisterClassW
SetMenuItemBitmaps
IsCharAlphaW
DefMDIChildProcW
GetWindowPlacement
MessageBoxW
IsCharLowerA
DefDlgProcW
FindWindowExW
RegisterClassA

comdlg32

GetOpenFileNameA
ReplaceTextA
PrintDlgA

Sections

.text
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 254KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a021491b1b5718a9d1b91b280d029e3e

Headers

File Characteristics

Imports

comctl32

gdi32

wininet

kernel32

shell32

user32

comdlg32

Sections

.text Size: 151KB - Virtual size: 151KB

.rdata Size: 254KB - Virtual size: 258KB

.data Size: 115KB - Virtual size: 115KB

.rsrc Size: 35KB - Virtual size: 35KB

.text
Size: 151KB - Virtual size: 151KB

.rdata
Size: 254KB - Virtual size: 258KB

.data
Size: 115KB - Virtual size: 115KB

.rsrc
Size: 35KB - Virtual size: 35KB