537c45fa8363b839612f8bed32ca423b8ff2f28c61d668d898461afbe178c404

Sharing

Copy URL Twitter E-mail

General

Target

537c45fa8363b839612f8bed32ca423b8ff2f28c61d668d898461afbe178c404
Size

352KB
MD5

4c27041b65b5ecbd9408c7abc157513b
SHA1

b6d04c310ff8e67fe2ff95015f8f51ff0e9af679
SHA256

537c45fa8363b839612f8bed32ca423b8ff2f28c61d668d898461afbe178c404
SHA512

67bb845c31a7416ee5924e4b199cd494430397e69ec711c8ebc45a6117dc49cba9c43465dd3e46b8a12aca40299633fbd889c1fdb9212cf9b8bae32ec0679dbf
SSDEEP

6144:slWSih+zxN4tPXHsgiXYTRf+mFvDVkY8q3OK26kor:ss3+z6PXMUR2IBkBK26kM

Score

N/A

Malware Config

Signatures

Files

537c45fa8363b839612f8bed32ca423b8ff2f28c61d668d898461afbe178c404
.exe windows x86

8a23982d9421b92ebb0ea41e4f9e4feb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetPathFromIDListW
SHGetDiskFreeSpaceA
RealShellExecuteExW
SHGetFileInfo

gdi32

GetBitmapDimensionEx
CreateDiscardableBitmap
SetPixelFormat
EnumFontsA
GetViewportExtEx
PlgBlt
Rectangle
SaveDC
CreateFontIndirectW
AddFontResourceA
GetGlyphOutline
GdiPlayJournal
GetBkMode
GetCharWidth32W
RestoreDC
SetMetaFileBitsEx
GetDIBits
PatBlt
MoveToEx
EnumFontFamiliesA
CreatePolygonRgn

kernel32

WideCharToMultiByte
IsValidCodePage
InterlockedIncrement
InterlockedDecrement
SetFilePointer
IsDebuggerPresent
TransmitCommChar
LoadLibraryA
HeapReAlloc
VirtualQuery
InitializeCriticalSection
GetACP
ExitProcess
CreateDirectoryA
HeapSize
LCMapStringW
Sleep
MultiByteToWideChar
GetUserDefaultLCID
GetDateFormatA
GetConsoleMode
FreeEnvironmentStringsA
LeaveCriticalSection
GetOEMCP
FreeEnvironmentStringsW
InterlockedExchange
VirtualFree
GetVersionExA
WriteConsoleW
GetTickCount
SetConsoleCtrlHandler
HeapCreate
FlushFileBuffers
GetEnvironmentStringsW
GetLocaleInfoA
SetStdHandle
HeapAlloc
TlsGetValue
GetStartupInfoA
ReadFile
GetProcessHeap
TerminateProcess
WriteConsoleA
GetCurrentThread
GetTimeFormatA
SetLastError
TlsAlloc
CloseHandle
EnumSystemLocalesW
GetProcAddress
GetCurrentProcessId
TlsSetValue
HeapDestroy
SetEnvironmentVariableA
VirtualAlloc
SetHandleCount
GetModuleHandleA
GetConsoleCP
GetEnvironmentStrings
GetTimeZoneInformation
GetCPInfo
HeapFree
GetDriveTypeA
GetCurrentThreadId
GetSystemTimeAsFileTime
GetLastError
FreeLibrary
WriteFile
GetLocaleInfoW
GetModuleHandleW
GetStringTypeA
LCMapStringA
GetModuleFileNameA
CreateMutexA
GetConsoleOutputCP
RtlUnwind
EnumSystemLocalesA
EnterCriticalSection
TlsFree
GetCurrentProcess
OpenMutexA
QueryPerformanceCounter
GetCommandLineA
GetFileType
DeleteCriticalSection
SetUnhandledExceptionFilter
GetStdHandle
CompareStringA
UnhandledExceptionFilter
IsValidLocale
InterlockedCompareExchange
GetStringTypeW
CompareStringW
lstrcpyn
CreateFileA

comctl32

ImageList_Duplicate
DestroyPropertySheetPage
MakeDragList
DrawStatusText
CreateMappedBitmap
ImageList_ReplaceIcon
CreatePropertySheetPage
DrawStatusTextA
ImageList_GetImageInfo
InitCommonControlsEx
DrawInsert
ImageList_DragEnter
CreateStatusWindowW
CreateToolbar
ImageList_SetImageCount
ImageList_LoadImageA
ImageList_DragMove
ImageList_GetImageCount
InitMUILanguage
CreateUpDownControl
CreateToolbarEx
ImageList_Draw
ImageList_BeginDrag
ImageList_LoadImageW

wininet

InternetLockRequestFile
IsUrlCacheEntryExpiredW
FtpRemoveDirectoryW
FindNextUrlCacheContainerW
FindNextUrlCacheContainerA

user32

SetRectEmpty
ShowWindow
EditWndProc
GetMessageW
DdeInitializeW
MapWindowPoints
SetMenuInfo
IsIconic
EnumDisplaySettingsW
DdeGetLastError
TileChildWindows
RegisterClassExA
CharLowerW
LoadImageW
LoadAcceleratorsW
GetWindowThreadProcessId
UnregisterHotKey
GetActiveWindow
MessageBoxA
CreateIconFromResourceEx
LoadStringW
SetWindowsHookA
FrameRect
RegisterClassA
ScrollWindow
GetShellWindow
EndMenu
AnimateWindow
GetWindowLongA
CharNextExA
SendMessageA
DestroyWindow
GetCaretPos
SetDoubleClickTime
LoadMenuIndirectW
SetTimer
GetMonitorInfoW
GetKeyNameTextW
FlashWindow
CallWindowProcA
CloseClipboard
WindowFromPoint
IsWindowVisible
MsgWaitForMultipleObjects
EnableMenuItem
EndTask
GetClassNameA
CopyRect
GrayStringA
CreateIconFromResource
CreateAcceleratorTableA
OffsetRect
DefWindowProcW
DdeFreeDataHandle
OpenWindowStationA
SendInput
MenuItemFromPoint
RegisterClipboardFormatW
CreateWindowExA
WaitMessage
DdeAddData

comdlg32

ChooseFontA
ReplaceTextA

Sections

.text
Size: 144KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a23982d9421b92ebb0ea41e4f9e4feb

Headers

File Characteristics

Imports

shell32

gdi32

kernel32

comctl32

wininet

user32

comdlg32

Sections

.text Size: 144KB - Virtual size: 141KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 96KB - Virtual size: 109KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 144KB - Virtual size: 141KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 96KB - Virtual size: 109KB

.rsrc
Size: 32KB - Virtual size: 31KB