e0a3335d41a675145a98b64ac8bb53256cad0d9a33f1d1857202621f74eab775

Sharing

Copy URL Twitter E-mail

General

Target

e0a3335d41a675145a98b64ac8bb53256cad0d9a33f1d1857202621f74eab775
Size

768KB
MD5

bf0a1907a91d5ee6670b04d68a0603ab
SHA1

9b77bd4527b76de6bcd3a6978d3a44461c2c037e
SHA256

e0a3335d41a675145a98b64ac8bb53256cad0d9a33f1d1857202621f74eab775
SHA512

6b16d78d3ca93aa5a0620641a6426175d03ad8c9ced1e1f9a1a93e89a211b16204b112e6b9e4af39fba4ebbeb382a53452d888a6dc19240dff1307d0f1815dcf
SSDEEP

12288:VJgp64BdGh9y0NTWb5aFcOi/Kx2vT7gZQJe0qPOuAHFVkfU+3Z3+R19BKicRtsyc:VOp64BMh9y0NTWNaFc1ZvHg+e0vtHH4Q

Score

N/A

Malware Config

Signatures

Files

e0a3335d41a675145a98b64ac8bb53256cad0d9a33f1d1857202621f74eab775
.exe windows x86

61e4d47b2cfdb0e5d9de6c4ed087efca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation
SHBrowseForFolderA
ExtractAssociatedIconExA
SHGetNewLinkInfo

advapi32

RegSetValueW
CryptImportKey
CryptSetProviderW
GetUserNameW
CryptSetProviderExW
LookupPrivilegeValueW
CryptDecrypt
CryptSetProviderA
CryptVerifySignatureA
LookupAccountNameW
RegEnumValueW
RegSaveKeyA
RegConnectRegistryA
RegSetValueA
CryptGetDefaultProviderA
CryptGenRandom

kernel32

CreateMutexA
GetStartupInfoA
HeapReAlloc
GetUserDefaultLangID
GetProfileStringW
GlobalReAlloc
InterlockedDecrement
OpenWaitableTimerA
Sleep
GetStdHandle
WideCharToMultiByte
EnumSystemLocalesA
GetCommandLineA
ExitProcess
GetStringTypeA
WriteConsoleInputW
FindResourceExA
GetDateFormatA
GetModuleFileNameA
TransmitCommChar
GetEnvironmentStringsW
GetPrivateProfileSectionNamesW
SetLastError
OutputDebugStringA
TlsAlloc
SetFileTime
GetPriorityClass
VirtualAlloc
FindNextFileW
OpenFileMappingW
GetACP
CreateThread
GetLastError
WriteProfileSectionW
GetConsoleOutputCP
CompareStringA
CreateMutexW
FreeLibrary
RtlUnwind
InterlockedExchange
LockFile
CreateFileA
InitializeCriticalSection
UnhandledExceptionFilter
GetCurrentProcess
TlsSetValue
WriteConsoleA
SetThreadLocale
GetConsoleMode
SetFilePointer
FillConsoleOutputCharacterW
LeaveCriticalSection
lstrcmpW
WriteConsoleW
SetCurrentDirectoryA
ReleaseMutex
GetDiskFreeSpaceExA
GetTimeFormatA
CloseHandle
VirtualQuery
SetUnhandledExceptionFilter
GetNumberFormatW
FindFirstFileW
GetSystemTimeAsFileTime
SetStdHandle
GetFileType
GlobalFindAtomA
SetConsoleCtrlHandler
OpenFileMappingA
LCMapStringW
DeleteCriticalSection
IsValidLocale
SetHandleCount
GetTickCount
TlsFree
VirtualFree
GetStringTypeW
GetCurrentThreadId
SetConsoleActiveScreenBuffer
GetConsoleCP
GetTimeZoneInformation
GetProcAddress
FreeEnvironmentStringsW
SetConsoleCursorInfo
DeleteFiber
GetUserDefaultLCID
HeapFree
InterlockedIncrement
CreateDirectoryW
IsBadReadPtr
FreeEnvironmentStringsA
GetCPInfo
FlushFileBuffers
SetEnvironmentVariableA
GetProfileSectionA
ReadFile
WaitForSingleObjectEx
CompareStringW
ExpandEnvironmentStringsW
GetSystemDirectoryA
DeleteAtom
GetOEMCP
EnumSystemCodePagesA
EnterCriticalSection
GetLongPathNameW
HeapAlloc
EnumCalendarInfoExA
OpenMutexA
IsDebuggerPresent
GetNamedPipeHandleStateA
GetCurrentProcessId
GetModuleHandleA
GetCurrentThread
GetLocaleInfoA
WriteFile
LocalAlloc
GetVersionExA
OpenWaitableTimerW
HeapDestroy
LCMapStringA
WritePrivateProfileSectionA
TerminateProcess
HeapSize
MultiByteToWideChar
IsValidCodePage
GetFileTime
GetLocaleInfoW
LoadLibraryA
TlsGetValue
GetProcessHeap
DosDateTimeToFileTime
HeapCreate
QueryPerformanceCounter
ReadConsoleOutputW
GetEnvironmentStrings

comdlg32

ReplaceTextA
LoadAlterBitmap
PrintDlgW
ChooseFontA

comctl32

ImageList_GetIcon
ImageList_DragMove
ImageList_GetIconSize
DrawInsert
ImageList_GetBkColor
ImageList_Remove
ImageList_DrawIndirect
ImageList_Read
ImageList_Draw
CreatePropertySheetPage
ImageList_LoadImageA
ImageList_SetOverlayImage
ImageList_Merge
ImageList_EndDrag
ImageList_LoadImage
InitMUILanguage
CreatePropertySheetPageA
CreateMappedBitmap
ImageList_LoadImageW
GetEffectiveClientRect
ImageList_DragShowNolock
InitCommonControlsEx
CreateToolbarEx
ImageList_Replace

user32

SetWindowTextA
IsRectEmpty
RegisterClassA
LoadIconW
GetTabbedTextExtentA
CreateWindowStationA
SwapMouseButton
GetMessagePos
GetKeyboardState
InflateRect
DeferWindowPos
TrackPopupMenuEx
ShowWindow
SetWindowPos
OpenInputDesktop
CreateDesktopA
GetUpdateRgn
DdeInitializeW
GrayStringA
SetProcessDefaultLayout
DefWindowProcW
CharUpperBuffW
OemToCharW
GetLastActivePopup
GetMenuItemInfoW
GetParent
GetKeyboardLayoutList
DlgDirListComboBoxA
AdjustWindowRect
GetNextDlgTabItem
GetAncestor
SendMessageTimeoutW
DdeKeepStringHandle
CreateWindowExW
RegisterClassExA
EnumWindowStationsA
MessageBoxIndirectA
ArrangeIconicWindows
GetScrollPos
MessageBoxW
GetInputDesktop
SetWindowsHookW
LoadKeyboardLayoutA
AttachThreadInput
GetMenuItemInfoA
wvsprintfA
GetTabbedTextExtentW
SetCursorPos
SubtractRect
MenuItemFromPoint
GetWindowInfo
ChildWindowFromPoint
GetDoubleClickTime
MapVirtualKeyExW
ExitWindowsEx
GetClipboardOwner
DrawFrame
BeginDeferWindowPos
IsDlgButtonChecked
CheckMenuItem
CallMsgFilterA
MapWindowPoints
RegisterWindowMessageW
GetMessageTime
IsDialogMessageW
EndDeferWindowPos
SetTimer
GetListBoxInfo
DestroyWindow
SetScrollRange

Sections

.text
Size: 196KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 404KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61e4d47b2cfdb0e5d9de6c4ed087efca

Headers

File Characteristics

Imports

shell32

advapi32

kernel32

comdlg32

comctl32

user32

Sections

.text Size: 196KB - Virtual size: 194KB

.rdata Size: 404KB - Virtual size: 402KB

.data Size: 140KB - Virtual size: 147KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 196KB - Virtual size: 194KB

.rdata
Size: 404KB - Virtual size: 402KB

.data
Size: 140KB - Virtual size: 147KB

.rsrc
Size: 24KB - Virtual size: 21KB