1f3b5053ea186085044a1b9b3f8bb0a7df36645fa947e76316143373cdd35ff5

Sharing

Copy URL Twitter E-mail

General

Target

1f3b5053ea186085044a1b9b3f8bb0a7df36645fa947e76316143373cdd35ff5
Size

604KB
MD5

a5dba3a2e50a2f605b0f90a30ef0eeaf
SHA1

cdb3ca2c0cd052dc6ff2469a212681d47a613c4d
SHA256

1f3b5053ea186085044a1b9b3f8bb0a7df36645fa947e76316143373cdd35ff5
SHA512

f9186498d52bde082ac3aea0611b1606a3fbd969f94f6cb7c15335a743543b7ee9f113ff6ce16bf9303ce1018cc96850514e39230a9fc37b27e7f88a9ff918c4
SSDEEP

12288:XGAv8eywL5hw7JRG/FsuvCn7sQ3c82AFmbx9nY3SydmDDzfL7jO+:23eyE4RG3vCPc821bx9noEDz7jH

Score

N/A

Malware Config

Signatures

Files

1f3b5053ea186085044a1b9b3f8bb0a7df36645fa947e76316143373cdd35ff5
.exe windows x86

114f35897c747cbca88dc60d3f14417c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA
FindTextA
FindTextW

shell32

SHBrowseForFolderW
DragQueryFile

comctl32

ImageList_DragEnter
ImageList_Copy
InitCommonControlsEx
ImageList_Add
ImageList_LoadImageW
ImageList_GetFlags
ImageList_ReplaceIcon
ImageList_Replace
DrawStatusText
ImageList_LoadImage
ImageList_DragLeave
ImageList_BeginDrag
ImageList_Duplicate
ImageList_Create

user32

GetDlgItemInt
DispatchMessageW
RegisterClassExA
SetCursor
DefDlgProcA
EndDialog
GetClipCursor
MessageBoxW
EditWndProc
WinHelpA
IsCharUpperW
GetThreadDesktop
GetUpdateRgn
MessageBeep
ScreenToClient
MapVirtualKeyExA
GetMenuStringW
ValidateRgn
MenuItemFromPoint
DefWindowProcA
GetWindowLongA
DdeCreateDataHandle
SystemParametersInfoW
PeekMessageA
EnumDesktopsW
FlashWindowEx
GetDoubleClickTime
OpenIcon
SystemParametersInfoA
CreateWindowExA
CharLowerBuffW
WinHelpW
VkKeyScanExW
SendIMEMessageExA
GetClassInfoExA
GetWindowPlacement
ShowWindow
MessageBoxIndirectA
GetPropA
DestroyMenu
IsDialogMessageW
CascadeChildWindows
UnloadKeyboardLayout
DestroyWindow
DdeNameService
CreateIconFromResource
RedrawWindow
EnumPropsW
LoadImageW
ChangeDisplaySettingsExW
RemovePropA
EnumPropsA
GetMenuCheckMarkDimensions
MonitorFromWindow
GetIconInfo
RegisterDeviceNotificationW
RegisterClassA
EnableMenuItem
InternalGetWindowText
DdeDisconnect

kernel32

VirtualLock
SetFilePointer
CompareStringA
TlsGetValue
FlushInstructionCache
SetStdHandle
WriteConsoleW
GetModuleHandleA
lstrlenA
HeapAlloc
RaiseException
SetConsoleCtrlHandler
GetLocaleInfoW
WriteProfileStringW
LeaveCriticalSection
GetConsoleMode
SetConsoleOutputCP
GetAtomNameA
CommConfigDialogW
MultiByteToWideChar
GetProfileSectionA
RtlFillMemory
GetPrivateProfileStringA
WaitForSingleObject
GetCurrentThread
OpenMutexA
GetCurrentThreadId
VirtualFreeEx
GetConsoleOutputCP
OutputDebugStringW
HeapCreate
FreeEnvironmentStringsA
GetModuleHandleW
GetConsoleCP
GetConsoleCursorInfo
HeapFree
GetSystemTimeAsFileTime
GetProcAddress
GetConsoleTitleA
CloseHandle
SetLastError
WritePrivateProfileStructA
GetDateFormatW
VirtualQuery
FreeEnvironmentStringsW
CreateProcessA
TlsSetValue
GetCommandLineA
InterlockedExchange
GetStartupInfoA
GetPriorityClass
VirtualFree
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
OutputDebugStringA
TerminateProcess
WritePrivateProfileSectionW
GetModuleFileNameA
Sleep
EnterCriticalSection
HeapReAlloc
GetACP
GetTimeFormatA
FlushFileBuffers
GetVolumeInformationW
FindFirstFileW
GetTickCount
HeapDestroy
GetStdHandle
GetLastError
SetHandleCount
WriteConsoleA
IsValidLocale
GetStringTypeW
WriteFile
IsDebuggerPresent
FindFirstFileExA
GetModuleFileNameW
CreateFileA
TlsAlloc
DeleteCriticalSection
IsBadReadPtr
GetEnvironmentStringsW
GetCurrentProcessId
LoadLibraryA
SetEvent
GetFileType
SetEnvironmentVariableA
EnumResourceNamesW
InterlockedDecrement
GlobalFix
SetLocaleInfoW
InterlockedIncrement
IsValidCodePage
PulseEvent
CreateMutexW
FreeLibrary
GetDiskFreeSpaceExA
DebugBreak
CompareStringW
SetComputerNameW
CreateThread
TransmitCommChar
CreateMutexA
CreateFileW
GetDateFormatA
LocalSize
OpenSemaphoreW
GetCPInfo
SetConsoleCursorInfo
GetOEMCP
GetProcessHeap
ReadFile
ReadConsoleOutputCharacterA
RtlUnwind
SetUnhandledExceptionFilter
SetFileAttributesA
GetFileAttributesExW
WideCharToMultiByte
GetEnvironmentStrings
HeapSize
EnumSystemLocalesA
SetConsoleCursorPosition
GetUserDefaultLCID
LCMapStringA
ExitProcess
GetThreadTimes
QueryPerformanceCounter
HeapValidate
lstrcpyA
LoadLibraryW
SetEndOfFile
UnhandledExceptionFilter
GetStringTypeA
VirtualAlloc
GetLocaleInfoA
GetCurrentProcess
TlsFree

Sections

.text
Size: 308KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

114f35897c747cbca88dc60d3f14417c

Headers

File Characteristics

Imports

comdlg32

shell32

comctl32

user32

kernel32

Sections

.text Size: 308KB - Virtual size: 304KB

.rdata Size: 136KB - Virtual size: 134KB

.data Size: 96KB - Virtual size: 120KB

.rsrc Size: 60KB - Virtual size: 56KB

.text
Size: 308KB - Virtual size: 304KB

.rdata
Size: 136KB - Virtual size: 134KB

.data
Size: 96KB - Virtual size: 120KB

.rsrc
Size: 60KB - Virtual size: 56KB