3b01ce6bb73dacc88423b13753814dbb162cf61d38f38a1eaf232a5205236ea5

Sharing

Copy URL Twitter E-mail

General

Target

3b01ce6bb73dacc88423b13753814dbb162cf61d38f38a1eaf232a5205236ea5
Size

416KB
MD5

3af6e813363636d51502010b1a85e1e9
SHA1

caeaa9502092678c0c56c1e6e5c65ab26f7fb887
SHA256

3b01ce6bb73dacc88423b13753814dbb162cf61d38f38a1eaf232a5205236ea5
SHA512

65ec5bd9f7ac297c89d38179f85a3540d0c5a5a101acd2206ffd9d4e6d412086ffc70b190d4816a1aded1fd712875587b7805669309177956f8e64b7009450ce
SSDEEP

6144:JxYXnsv6nIMErbnda+n7FGoqcc2ROYsSiS5Qqn3e8+76IWTE/kt/ZE:nIsvUITjMApxRZZK63+7d6kgh

Score

N/A

Malware Config

Signatures

Files

3b01ce6bb73dacc88423b13753814dbb162cf61d38f38a1eaf232a5205236ea5
.exe windows x86

1a2689cb401b3fd65382007f05ccda18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DestroyPropertySheetPage
ImageList_GetFlags
CreateStatusWindowW
ImageList_DragShowNolock
ImageList_BeginDrag
DrawInsert
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_Destroy
CreateStatusWindowA
ImageList_AddMasked
ImageList_DrawIndirect
CreateUpDownControl
ImageList_SetImageCount
CreatePropertySheetPage
ImageList_GetImageCount
InitCommonControlsEx
GetEffectiveClientRect
ImageList_ReplaceIcon
ImageList_Read
ImageList_GetIconSize

advapi32

CryptGetDefaultProviderA
CryptDestroyKey
CryptEnumProviderTypesW
CryptAcquireContextA
RegQueryValueA
CryptDecrypt
LookupPrivilegeValueW
RegReplaceKeyW
CryptHashData
RegCreateKeyExA
RegOpenKeyA
LookupAccountNameA
RegOpenKeyExA
CryptSetProvParam
StartServiceW
CryptSignHashW
RegFlushKey
RegLoadKeyW
RegSaveKeyA
LookupSecurityDescriptorPartsA
AbortSystemShutdownA
CryptVerifySignatureA

kernel32

GetStartupInfoA
SetUnhandledExceptionFilter
HeapFree
ReadFile
LCMapStringA
InitializeCriticalSection
TlsSetValue
HeapAlloc
GetDateFormatA
InterlockedDecrement
TlsGetValue
CreateMailslotA
VirtualFree
GetCPInfo
LCMapStringW
FreeEnvironmentStringsA
GetProcessHeap
GetCurrentThreadId
WriteConsoleA
GetConsoleCP
CloseHandle
GetSystemTimeAsFileTime
OpenMutexA
IsValidCodePage
GetModuleHandleA
IsValidLocale
FindClose
GetEnvironmentStrings
SetFilePointer
GetLogicalDrives
GetCurrentProcessId
GetTimeFormatA
QueryPerformanceCounter
GetTickCount
WideCharToMultiByte
GetStdHandle
EnumSystemLocalesA
GetCurrentThread
GetOEMCP
TlsFree
TerminateProcess
GetLogicalDriveStringsW
GetStringTypeA
GetCommandLineA
GetLocaleInfoA
FlushFileBuffers
RtlZeroMemory
CreateFileA
GetStartupInfoW
FormatMessageA
IsDebuggerPresent
HeapCreate
ExitProcess
VirtualAlloc
GetConsoleMode
WriteFile
GetSystemDirectoryA
InterlockedIncrement
LoadLibraryA
GetModuleFileNameW
CreateSemaphoreA
ReadConsoleOutputCharacterA
LeaveCriticalSection
FreeLibrary
InterlockedExchange
HeapReAlloc
GetStringTypeW
SetConsoleCtrlHandler
EnumSystemCodePagesA
EnterCriticalSection
GetProcAddress
HeapSize
CreateMutexA
EnumTimeFormatsA
MultiByteToWideChar
CompareStringW
SetStdHandle
RtlUnwind
GetLastError
WriteConsoleW
GetFileType
GetModuleFileNameA
GetACP
DeleteCriticalSection
GetVersionExA
SetHandleCount
SetLastError
CompareStringA
VirtualQuery
FreeEnvironmentStringsW
GetCurrentProcess
GetTimeZoneInformation
GetEnvironmentStringsW
Sleep
SetEnvironmentVariableA
WritePrivateProfileStructW
GetUserDefaultLCID
HeapDestroy
GetCommandLineW
GetTempPathW
UnhandledExceptionFilter
GetLocaleInfoW
GetConsoleOutputCP
OpenSemaphoreA
TlsAlloc

user32

RegisterClassExA
ShowWindow
wvsprintfW
TranslateMessage
OemKeyScan
SetRectEmpty
DefWindowProcW
SubtractRect
wsprintfW
ScrollWindow
SetMenuItemInfoW
OpenDesktopW
UnionRect
CreateWindowExW
FlashWindow
GetClipCursor
ToAscii
ToAsciiEx
DrawFrame
SetMenuContextHelpId
DdeAccessData
RegisterClassA
SetCapture
DialogBoxIndirectParamW
MapDialogRect
SetWindowsHookA
UnpackDDElParam
ChangeMenuW
ClientToScreen
DdeAddData
DdeDisconnect
DdeCreateStringHandleA
GetPriorityClipboardFormat
ToUnicode
LoadCursorFromFileW
MessageBoxW
wsprintfA
EndMenu
DestroyWindow
DestroyCaret
SetScrollRange
DispatchMessageA
MonitorFromPoint
PostQuitMessage
IsCharAlphaA
FreeDDElParam
WindowFromDC
BroadcastSystemMessage
CreateCaret
GetAsyncKeyState
SetPropA
DestroyAcceleratorTable
GetKeyboardState
GetGuiResources

comdlg32

GetSaveFileNameW
GetOpenFileNameA

shell32

SHFormatDrive
SHFreeNameMappings
SheChangeDirExW
SHEmptyRecycleBinA
CheckEscapesW

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a2689cb401b3fd65382007f05ccda18

Headers

File Characteristics

Imports

comctl32

advapi32

kernel32

user32

comdlg32

shell32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 92KB - Virtual size: 113KB

.rsrc Size: 60KB - Virtual size: 58KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 92KB - Virtual size: 113KB

.rsrc
Size: 60KB - Virtual size: 58KB