3995f0310b02e35f4ebaf9f68d75c4a286ab4e082907c6fb20be573a65846fcd

Sharing

Copy URL Twitter E-mail

General

Target

3995f0310b02e35f4ebaf9f68d75c4a286ab4e082907c6fb20be573a65846fcd
Size

812KB
MD5

94a5584e7c66678ec29326d70d58e0da
SHA1

6811c2b723ba7bd012f387d3d7eac075cb50e937
SHA256

3995f0310b02e35f4ebaf9f68d75c4a286ab4e082907c6fb20be573a65846fcd
SHA512

9032fb1c4b54b295325c55a93ae6a48864fc3c4af17c1f2ff5b4cbde2ad65e9ee4cc46d6dbbaed7c2af97009e65ae54e22dc4e592a1d9801a4ce399c850a2a2d
SSDEEP

24576:nWImtAMhQ4gkGYPIZ8NjUGth8UdLLr+TIzRCQ8SgPM5f2BK:WI6Q4gkGYPIZ8NjUG8SN9

Score

N/A

Malware Config

Signatures

Files

3995f0310b02e35f4ebaf9f68d75c4a286ab4e082907c6fb20be573a65846fcd
.dll windows x86

f11b7d0611d4ba0edd606f0f6b639674

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryA
PathFileExistsA
PathRemoveFileSpecA
PathAddBackslashA
PathFindExtensionA
PathGetDriveNumberA
PathIsRootA
PathFindFileNameA
PathRemoveExtensionA

kernel32

ReadFile
CreateFileA
GetDriveTypeA
GetLogicalDriveStringsA
GetFileSize
GetVolumeInformationA
Sleep
DeviceIoControl
CopyFileA
GetSystemTime
MultiByteToWideChar
DeleteFileA
WriteFile
SetFilePointer
FileTimeToSystemTime
GetFileTime
GetDiskFreeSpaceA
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileStringA
LeaveCriticalSection
SuspendThread
EnterCriticalSection
GetCurrentThreadId
ExitThread
InitializeCriticalSection
CreateThread
ResumeThread
DeleteCriticalSection
TerminateThread
FindClose
FindNextFileA
GetLastError
FindFirstFileA
SetCurrentDirectoryA
Process32Next
Process32First
CloseHandle
GetVersionExA
GetModuleHandleA
GetProcAddress
LoadLibraryA
MulDiv
VirtualProtect
VirtualAlloc
VirtualFree
GetSystemInfo
VirtualQuery
GetOEMCP
GetACP
FlushFileBuffers
SetStdHandle
LCMapStringW
GetCPInfo
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
GetStringTypeW
GetEnvironmentVariableA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
CreateToolhelp32Snapshot
InterlockedExchange
GetStringTypeA
HeapCreate
RtlUnwind
RaiseException
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetUnhandledExceptionFilter
WideCharToMultiByte
LCMapStringA
HeapDestroy

user32

GetWindowRect
MessageBoxA
FillRect
DialogBoxParamA
KillTimer
GetDC
DrawTextA
GetWindowLongA
AdjustWindowRect
SetWindowPos
GetDlgItem
ReleaseDC
SetDlgItemTextA
ShowWindow
LoadIconA
SendMessageA
SetWindowTextA
EndDialog
MessageBeep
SetTimer
IsDlgButtonChecked
GetActiveWindow

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
SetBkMode
SetTextColor
GetDIBits
DeleteDC
CreateFontA
SelectObject
DeleteObject
GetDeviceCaps

ole32

CoCreateInstance

Exports

Exports

_KS_ConnectPackage4@4

Sections

.text
Size: 660KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 507KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f11b7d0611d4ba0edd606f0f6b639674

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 660KB - Virtual size: 659KB

.rodata Size: 12KB - Virtual size: 10KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 40KB - Virtual size: 507KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 36KB - Virtual size: 32KB

.text
Size: 660KB - Virtual size: 659KB

.rodata
Size: 12KB - Virtual size: 10KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 40KB - Virtual size: 507KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 36KB - Virtual size: 32KB