4e995c4532cbe44e5167d3bf2e011e586bd6fa9e9378471a7d98d8f0029197a5

Sharing

Copy URL

Twitter E-mail

General

Target

4e995c4532cbe44e5167d3bf2e011e586bd6fa9e9378471a7d98d8f0029197a5
Size

201KB
MD5

7f6c14418f7e5dd9c105e2fe3c2ebe4f
SHA1

7064226b2316b30b76bbe9c91841600ba6ab3554
SHA256

4e995c4532cbe44e5167d3bf2e011e586bd6fa9e9378471a7d98d8f0029197a5
SHA512

a70d79a8cfd491f77b1e91efb0b3da009b5d4cc02ebf7ddaff57fa4af94db0c476b72ea5676271c5899f9571e9d7b94514dbe1c626fba24e0f6d271878ba5c48
SSDEEP

1536:WiUDdyis5BP3/Ijy0vt0hkSxDxHs0krH64Osn:Df/IjyBVHs9esn

Score

N/A

Malware Config

Signatures

Files

4e995c4532cbe44e5167d3bf2e011e586bd6fa9e9378471a7d98d8f0029197a5
.exe windows x86

99e2ddf6ed25a6df4d8635653627ae58

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
wvsprintfA
SetWindowPos
FindWindowA
RedrawWindow
GetWindowTextA
EnableWindow
GetSystemMetrics
IsWindow
CheckRadioButton
UnregisterClassA
SetCursor
GetSysColorBrush
DialogBoxParamA
DestroyAcceleratorTable
DispatchMessageA
TranslateMessage
LoadIconA
EmptyClipboard
SetClipboardData
SetFocus
CharUpperA
OpenClipboard
IsDialogMessageA
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RemoveMenu
InvalidateRect
ChildWindowFromPoint
PostMessageA
DestroyCursor
CreateDialogParamA
GetWindowRect
IsMenu
GetSubMenu
SetDlgItemInt
GetWindowPlacement
CharLowerBuffA
EnableMenuItem
CheckMenuRadioItem
GetSysColor
KillTimer
DestroyIcon
DestroyWindow
PostQuitMessage
GetClientRect
MoveWindow
GetSystemMenu
SetTimer
SetWindowPlacement
InsertMenuItemA
GetMenu
CheckMenuItem
SetMenuItemInfoA
SetActiveWindow
DefDlgProcA
RegisterClassA
EndDialog
SetDlgItemTextA
EnumClipboardFormats
GetClipboardData
CloseClipboard
GetClassInfoA
CallWindowProcA
SetWindowLongA
IsDlgButtonChecked
SetWindowTextA
CheckDlgButton
GetActiveWindow
MessageBoxA
wsprintfA
GetDlgItemTextA
SendMessageA
GetCursorPos
TrackPopupMenu
ClientToScreen
DestroyMenu
CreatePopupMenu
AppendMenuA
SendDlgItemMessageA
GetDlgItem
LoadCursorA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA
RegSetValueA
RegCreateKeyA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
RegDeleteKeyA

gdi32

SetTextColor
SetBkMode
DeleteObject
GetStockObject
SelectObject
CreateFontIndirectA
GetObjectA

dbghelp

ImageRvaToSection
ImageNtHeader
ImageRvaToVa

comctl32

ImageList_Destroy
CreateToolbarEx
ImageList_SetBkColor
ImageList_Remove
ImageList_Create
InitCommonControlsEx
ImageList_ReplaceIcon

kernel32

GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
DeleteCriticalSection
GetFileType
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
Sleep
GetModuleHandleW
LeaveCriticalSection
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
PrepareTape
InitAtomTable
GetCurrentThreadId
FlushViewOfFile
TransmitCommChar
ReleaseMutex
DecodeSystemPointer
CreateMemoryResourceNotification
GetCurrentProcessId
GetProcessId
SetSystemTimeAdjustment
GetPriorityClass
ConvertThreadToFiber
ResetWriteWatch
IsWow64Process
SetHandleCount
CreateFiberEx
UpdateResourceW
EnterCriticalSection
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetModuleFileNameA
GetStringTypeA
GetStringTypeW
IsDebuggerPresent
SetEndOfFile
CancelWaitableTimer
DecodePointer
GetCommMask
ConvertFiberToThread
SetProcessWorkingSetSize

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 34.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99e2ddf6ed25a6df4d8635653627ae58

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

advapi32

gdi32

dbghelp

comctl32

kernel32

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 99KB - Virtual size: 34.4MB

.rsrc Size: 21KB - Virtual size: 21KB

.reloc Size: 32KB - Virtual size: 31KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 99KB - Virtual size: 34.4MB

.rsrc
Size: 21KB - Virtual size: 21KB

.reloc
Size: 32KB - Virtual size: 31KB