c36c7eeb6ee984a354831ef44f6bf5bfa35e07a310f1305740e7d10b6559290d

Sharing

Copy URL Twitter E-mail

General

Target

c36c7eeb6ee984a354831ef44f6bf5bfa35e07a310f1305740e7d10b6559290d
Size

508KB
MD5

3ade23488bb8a102234b7d7d032ebbeb
SHA1

d7e001ce1d3f443bc697373c000c51852635222d
SHA256

c36c7eeb6ee984a354831ef44f6bf5bfa35e07a310f1305740e7d10b6559290d
SHA512

93979c322665c699a2b8b461395e81cdccf4a73288ea69d6cd09d673b23b4c2c8dcea806c3edeb9628a2085705ba5a3320cc1e3d5517b2f27a6f29c5e8c125b7
SSDEEP

12288:nMrn0ArK7McS6MWpHV7HbiyjSVm+nEFvbcT+z4hceP1:nMr0ArK7tpx9Ioc5z

Score

N/A

Malware Config

Signatures

Files

c36c7eeb6ee984a354831ef44f6bf5bfa35e07a310f1305740e7d10b6559290d
.exe windows x86

e95fdda874641aaa4bfaa0cc37ddd0e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_EndDrag
ImageList_SetBkColor
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Destroy
ImageList_DragMove
ImageList_Merge
ImageList_LoadImageA
DestroyPropertySheetPage
ord17
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_GetDragImage
ImageList_Draw

user32

GetMenuStringA
SetMenuItemBitmaps
GetClipboardData
IsDlgButtonChecked
CallWindowProcA
ScreenToClient
DrawIcon
GetClassInfoExA
GetWindowTextLengthA
GetMenuState
MapDialogRect
DrawIconEx
GetMessageTime
LoadBitmapA
SetCaretPos
GetDlgCtrlID
CharNextA
GetClientRect
RemoveMenu
MoveWindow
WindowFromPoint
CopyImage
DrawTextA
DrawFocusRect
GetNextDlgTabItem
DeferWindowPos
keybd_event
DestroyWindow
TabbedTextOutA
InsertMenuA
ClientToScreen
GetSysColorBrush
SetMenu
PostQuitMessage
LoadAcceleratorsA
SetScrollRange
MsgWaitForMultipleObjects
mouse_event
ReleaseCapture
TranslateMessage
CloseClipboard
MapVirtualKeyA
MapWindowPoints
AppendMenuA
SendMessageA
GetMenuItemInfoA
SetRect
GetIconInfo
IsWindow
GetWindowLongA
SetTimer
IsWindowEnabled
EndDeferWindowPos
DestroyCursor
IsZoomed
RedrawWindow
GetMessagePos
IsDialogMessageA
ValidateRect
TrackPopupMenu
RegisterClassA
BeginPaint
SetClipboardData
SetActiveWindow
GetDCEx
GetMenuCheckMarkDimensions
DrawFrameControl
EndPaint
GetActiveWindow
DeleteMenu
CharUpperA
GetWindowTextA
UnhookWindowsHookEx
TranslateAcceleratorA
FrameRect
CopyAcceleratorTableA
SetDlgItemTextA
DefWindowProcA
ModifyMenuA
SetParent
SetMenuDefaultItem
CreateDialogIndirectParamA
SetScrollInfo
GetMenuItemCount
ReleaseDC
GetCursorPos
LoadMenuA
IsIconic
GrayStringA
IsMenu
RegisterWindowMessageA
wsprintfA
ShowWindow
InflateRect
FindWindowA
WaitMessage
SystemParametersInfoA
GetWindowThreadProcessId
PostThreadMessageA
GetSystemMetrics
EnableWindow
GetDesktopWindow
CopyIcon
EmptyClipboard
MessageBeep
SetForegroundWindow
GetScrollPos
ShowScrollBar
IntersectRect
GetDlgItem
GetSysColor
BeginDeferWindowPos
EnumChildWindows
DrawStateA
IsChild
DrawEdge
CharUpperBuffA
LoadImageA
CreateWindowExA
GetClassNameA
UnpackDDElParam
OffsetRect
SetCursor
GetMenuItemID
PostMessageA
SetWindowPos
UpdateWindow
PeekMessageA
KillTimer
UnregisterClassA
GetClassInfoA
MessageBoxA
CreateMenu
GetClassLongA
GetTopWindow
RegisterClipboardFormatA
CheckMenuItem
SetRectEmpty
CallNextHookEx
GetSubMenu
InvalidateRgn
GetSystemMenu
GetScrollInfo
OpenClipboard
ScrollWindow
SetFocus
UnionRect
DestroyMenu
CreateAcceleratorTableA
GetWindowRect
RegisterClassExA
AdjustWindowRectEx
GetFocus
DispatchMessageA
ToAsciiEx
GetForegroundWindow
InvalidateRect
GetParent
SetWindowLongA
SetClassLongA
PtInRect
CreatePopupMenu
DrawTextExA

kernel32

GetSystemInfo
GlobalHandle
FileTimeToSystemTime
HeapReAlloc
GetCurrentThreadId
LeaveCriticalSection
MulDiv
GetVersion
HeapAlloc
Sleep
TlsSetValue
GetModuleFileNameA
IsDebuggerPresent
VirtualProtect
GetEnvironmentVariableA
GetLocalTime
LCMapStringA
FreeResource
CreateFileW
GetStringTypeA
SetFileTime
LocalFree
UnmapViewOfFile
GetShortPathNameA
GetUserDefaultLCID
lstrcpyA
FreeEnvironmentStringsA
GetProcAddress
DeleteCriticalSection
IsBadReadPtr
SizeofResource
SetUnhandledExceptionFilter
HeapDestroy
SetCurrentDirectoryA
GetCurrentProcessId
GetStringTypeExA
FindNextFileA
IsBadCodePtr
lstrcmpiA
ConvertDefaultLocale
GetModuleFileNameW
GlobalUnlock
GetEnvironmentStringsW
UnhandledExceptionFilter
GetCPInfo
ResumeThread
InterlockedIncrement
GetPrivateProfileStringA
GetProcessHeap
GetVersionExA
LockResource
LocalFileTimeToFileTime
MapViewOfFile
SetEnvironmentVariableA
CreateProcessA
ReadFile
RaiseException
GetTickCount
SetEvent
GlobalLock
GetModuleHandleA
LCMapStringW
GetStartupInfoA
RtlUnwind
GetDriveTypeA
GetPrivateProfileIntA
GetEnvironmentStrings
VirtualFree
GetFileSize
GlobalGetAtomNameA
GetSystemDirectoryA
GetDateFormatA
TlsGetValue
CreateFileA
FreeEnvironmentStringsW
ExitThread
IsValidLocale
LoadResource
SetHandleCount
IsValidCodePage
LocalAlloc
EnumSystemLocalesA
SuspendThread
WriteFile
GlobalReAlloc
WideCharToMultiByte
GlobalDeleteAtom
CopyFileA
InterlockedExchange
CompareStringA
MultiByteToWideChar
SetConsoleCtrlHandler
GetStdHandle
GetCurrentThread
SetThreadPriority
GlobalFindAtomA
GetFileAttributesA
FreeLibrary
MoveFileA
GetTimeFormatA
GetOEMCP
EnterCriticalSection
GetTempFileNameA
CreateDirectoryA
GetDiskFreeSpaceExA
IsBadWritePtr
GetFileTime
FindResourceExA
LockFile
GlobalMemoryStatus
DuplicateHandle
GlobalSize
CompareStringW
GetSystemTime
FindResourceA
GlobalAlloc
EnumResourceLanguagesA
WritePrivateProfileStringA
GetSystemTimeAsFileTime
SetStdHandle
CloseHandle
GetFileType
OutputDebugStringA
FormatMessageA
FlushFileBuffers
SetFilePointer
CreateMutexA
CreateThread
QueryPerformanceCounter
lstrlenA
SetFileAttributesA
FindClose
SetEndOfFile
TerminateProcess
SystemTimeToFileTime
lstrcmpW
GetCurrentProcess
GetLastError
GetCommandLineA
HeapCreate
WaitForSingleObject
FileTimeToLocalFileTime
GetTimeZoneInformation
LoadLibraryA
lstrcmpA
lstrlenW
GetWindowsDirectoryA
GetFullPathNameA
GetVolumeInformationA
HeapSize
WriteConsoleA
SetLastError
InterlockedDecrement
GlobalAddAtomA
DeleteFileA
VirtualQuery
GetLocaleInfoW
GetStringTypeW
GetExitCodeProcess
TlsAlloc
GlobalFree
UnlockFile
HeapFree
VirtualAlloc
lstrcpyW
FindFirstFileA
SetErrorMode
GetACP
GetCurrentDirectoryA
TlsFree
GetLocaleInfoA
ExitProcess
FatalAppExitA
lstrcpynA
InitializeCriticalSection

advapi32

RegOpenKeyExA
RegCreateKeyExA

ole32

StringFromCLSID
GetRunningObjectTable
ReleaseStgMedium
OleCreateFromFile
OleCreateLinkToFile
OleRegGetMiscStatus
CoRevokeClassObject
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
OleLoad
CoTaskMemFree
OleRegEnumVerbs
CreateILockBytesOnHGlobal
WriteClassStg
OleGetClipboard
RevokeDragDrop
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleLockRunning
CreateItemMoniker
StringFromGUID2
OleIsCurrentClipboard
OleInitialize
OleRegGetUserType
OleSetClipboard
CoTaskMemAlloc
CoDisconnectObject
CreateOleAdviseHolder
OleCreateLinkFromData
OleSetMenuDescriptor
OleGetIconOfClass
OleSaveToStream
OleCreate
CreateBindCtx
CLSIDFromString
OleUninitialize
OleSave

Sections

.text
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e95fdda874641aaa4bfaa0cc37ddd0e3

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

ole32

Sections

.text Size: 68KB - Virtual size: 64KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 64KB - Virtual size: 87KB

.rsrc Size: 112KB - Virtual size: 108KB

.text
Size: 68KB - Virtual size: 64KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 64KB - Virtual size: 87KB

.rsrc
Size: 112KB - Virtual size: 108KB