32969f4676fc16aed3dff471d9eba8306e4c49cfd7510848ddbde2d6e075ab01

Sharing

Copy URL

Twitter E-mail

General

Target

32969f4676fc16aed3dff471d9eba8306e4c49cfd7510848ddbde2d6e075ab01
Size

311KB
MD5

d68818fc1d7d5789d412a085844d602a
SHA1

dca676d8ccbaeefc8bd01f65a43252ab144359ea
SHA256

32969f4676fc16aed3dff471d9eba8306e4c49cfd7510848ddbde2d6e075ab01
SHA512

e51271013b02c1fced7f3f6a6b55026fdc32aeb0e42912947eb7de071392b743775b95dadc0f4f987538417791d01d90e3ba18ddce0b18f2a213a54117041c9b
SSDEEP

6144:1BeryOjPmxonkwbeP/b3ER912H+J/+sHvTjhgoxZqoyxbr+EvK:1BeryOjPmxon5bwz80QXHv3hPxZqoYan

Score

N/A

Malware Config

Signatures

Files

32969f4676fc16aed3dff471d9eba8306e4c49cfd7510848ddbde2d6e075ab01
.exe windows x86

5e0b56bc4ddbcaef258a0f2825e58165

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CompareStringW
HeapSize
ReadFile
GetProcessHeap
SetEndOfFile
CreateFileW
GetStringTypeW
LCMapStringW
LoadLibraryW
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
SetStdHandle
SetFilePointer
MultiByteToWideChar
WriteConsoleW
GetCPInfo
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
ExitProcess
IsProcessorFeaturePresent
GetProcAddress
_lclose
InterlockedDecrement
GetCurrentThreadId
SetLastError
GetModuleHandleW
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
Sleep
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
EnterCriticalSection
SystemTimeToFileTime
LocalFileTimeToFileTime
GetVersion
CreateFileA
SetFileTime
CloseHandle
GetCurrentProcess
GetTimeZoneInformation
SetTimeZoneInformation
GetSystemTime
GetLastError
HeapCreate
HeapAlloc
GetUserDefaultLCID
_lopen
LocalLock
GetTickCount
_lwrite
LocalUnlock
GetConsoleWindow
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenA
GetVolumeNameForVolumeMountPointW
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
WideCharToMultiByte
TerminateProcess
DecodePointer
EncodePointer
GetProfileIntA
WriteProfileStringA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapFree
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetSystemTimeAsFileTime
GetProfileStringA
LoadLibraryA

user32

SetMenu
CreatePopupMenu
AppendMenuA
SetMenuItemBitmaps
CheckMenuItem
CreateMenu
PostQuitMessage
EndDialog
DestroyWindow
GetKeyNameTextA
wsprintfA
EndPaint
BeginPaint
SetCursor
SendDlgItemMessageA
GetDlgItemTextA
SetClipboardViewer
MessageBoxA
DrawTextA
DestroyMenu
GetKeyState
GetKeyboardState
ToAsciiEx
CallNextHookEx
GetMonitorInfoA
GetDlgItem
GetClientRect
GetWindowTextLengthA
SendMessageA
UpdateWindow
SetFocus
GetSystemMenu
DeleteMenu
DrawMenuBar
GetDC
ReleaseDC
InvalidateRect
LoadBitmapA
CreateWindowExA
DefWindowProcA
SetRectEmpty
PtInRect
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
FindWindowA
FindWindowExA
IsWindowVisible
GetWindowTextA
SetWindowTextA

gdi32

SetTextColor
CreateSolidBrush
SelectObject
GetTextExtentPointA
DeleteObject
CreateCompatibleDC
GetMapMode
SetMapMode
GetObjectA
DPtoLP
BitBlt
DeleteDC
TextOutA
SetBkColor
GetStockObject
MoveToEx
LineTo
SetBkMode

advapi32

OpenProcessToken
RegSetValueExA
RegCreateKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey

shell32

SHGetFolderPathW

ole32

OleInitialize
CLSIDFromProgID
CoCreateInstance
OleUninitialize
CoInitialize
CLSIDFromString

oleaut32

VariantInit
OleTranslateColor

avicap32

capCreateCaptureWindowW

msacm32

acmDriverOpen
acmDriverDetailsA
acmFormatTagDetailsA
acmDriverClose
acmMetrics
acmFormatChooseA

shlwapi

PathRemoveFileSpecW
PathAddBackslashW
PathRemoveBackslashW
StrDupA

comctl32

ImageList_Create
ord17
ImageList_Add

gdiplus

GdipAlloc
GdipDeleteGraphics
GdipLoadImageFromFile
GdipDisposeImage
GdipCloneImage
GdipFree
GdipCreateFromHWND

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 209KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e0b56bc4ddbcaef258a0f2825e58165

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

avicap32

msacm32

shlwapi

comctl32

gdiplus

Sections

.text Size: 66KB - Virtual size: 65KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 209KB - Virtual size: 217KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 7KB - Virtual size: 78KB

.text
Size: 66KB - Virtual size: 65KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 209KB - Virtual size: 217KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 7KB - Virtual size: 78KB