b1bc43ea6a032e9e8b396cf7d08c3045b7a7400f197f33013f543e4fdf13b877

Sharing

Copy URL Twitter E-mail

General

Target

b1bc43ea6a032e9e8b396cf7d08c3045b7a7400f197f33013f543e4fdf13b877
Size

79KB
MD5

3f03582ad6beebe18491092f92384676
SHA1

0c63960818486b10003d39b5a6741354846c2658
SHA256

b1bc43ea6a032e9e8b396cf7d08c3045b7a7400f197f33013f543e4fdf13b877
SHA512

da9c6724d1cd6b1545a33d1c2be9a651cecc432dc819c83c1a3c5f6c7dec19b3a97cce62ecaad4725e8ce264a1ccf19c9d545b1780a90db1da948b7e0bd4597f
SSDEEP

1536:5Wfv0FVSsfl3J8KK1QMRmUD+dhbt6otInWozJw8nbs99d5Nyjw4J/Yp:FVhflLKTDOtrlcr4p5NyjPJ4

Score

N/A

Malware Config

Signatures

Files

b1bc43ea6a032e9e8b396cf7d08c3045b7a7400f197f33013f543e4fdf13b877
.zip
label_08122014_23.pdf.scr
.exe windows x86

dfba30b52c7804fec28ea9f951888472

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Imports

kernel32

GetCurrentThreadId
GetVersionExA
CloseHandle
GetCurrentProcessId
DeleteFileA
lstrcpyA
SetEnvironmentVariableA
CompareStringW
CreateFileW
HeapSize
WriteConsoleW
SetStdHandle
FlushFileBuffers
HeapReAlloc
LoadLibraryW
LCMapStringW
IsProcessorFeaturePresent
GetConsoleMode
GetConsoleCP
SetFilePointer
Sleep
RtlUnwind
GetStringTypeW
GetTickCount
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetTimeZoneInformation
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
EncodePointer
DecodePointer
LocalAlloc
FindClose
GetLastError
FindFirstFileA
MultiByteToWideChar
CreateFileA
LocalReAlloc
HeapCreate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineA
ExpandEnvironmentStringsA
HeapFree
GetSystemTimeAsFileTime
GetCurrentProcess
HeapAlloc
GetNativeSystemInfo
DeleteCriticalSection
RaiseException

user32

MessageBoxA
MoveWindow
GetWindow
RegisterClassA
ValidateRect
SetDlgItemTextA
EndPaint
DestroyWindow
SetTimer
ScreenToClient
IsMenu
InsertMenuItemA
PostQuitMessage
GetKeyNameTextA
KillTimer
DrawTextA
LoadBitmapA
IsClipboardFormatAvailable
GetParent
LoadIconA
DefFrameProcA
wsprintfA
GetClientRect
SetFocus
GetMenuCheckMarkDimensions
SendMessageA
BeginPaint
PtInRect
GetMonitorInfoA
ChangeDisplaySettingsA
SetWindowLongA
GetMenu
InvalidateRect
GetWindowLongA
CreateWindowExA
EnableMenuItem
GetDlgItem
EndDialog
DefWindowProcA
GetSysColor
GetCursorPos
GetMenuItemInfoA
EnumChildWindows
EnumDesktopsA
DrawMenuBar
GetMenuItemCount
IsWindow
DefMDIChildProcA
SetWindowTextA
CallWindowProcA
FindWindowA
SetMenuItemInfoA
LoadCursorA
GetDlgItemTextA
SetWindowTextW

gdi32

SetTextColor
SetBkColor
SetBkMode
DeleteObject
SelectObject
TextOutA

advapi32

AllocateAndInitializeSid

ole32

OleInitialize
StgCreateDocfile
CoGetMalloc
CoCreateInstance

avifil32

AVIFileOpenA
AVIFileInit

shlwapi

StrPBrkA

comctl32

ord17
ImageList_Add
ImageList_Create

dbghelp

MiniDumpWriteDump

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfba30b52c7804fec28ea9f951888472

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

avifil32

shlwapi

comctl32

dbghelp

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 30KB - Virtual size: 30KB

.data Size: 17KB - Virtual size: 25KB

.rsrc Size: 23KB - Virtual size: 23KB

.reloc Size: 6KB - Virtual size: 301KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 30KB - Virtual size: 30KB

.data
Size: 17KB - Virtual size: 25KB

.rsrc
Size: 23KB - Virtual size: 23KB

.reloc
Size: 6KB - Virtual size: 301KB