935d226f91449e4d243d56a373884a5faf919da723297ff232b1fe2eeb9b679c

Sharing

Copy URL

Twitter E-mail

General

Target

935d226f91449e4d243d56a373884a5faf919da723297ff232b1fe2eeb9b679c
Size

400KB
MD5

abf9b15567a215088c8f20a0ce75b0fb
SHA1

887d606c6b569e2e914c44978920da6ed39eb050
SHA256

935d226f91449e4d243d56a373884a5faf919da723297ff232b1fe2eeb9b679c
SHA512

aacdbb0b69d56b935e11ef161b7af6f2d1e58e3876ebf03d0dbd79e4d8829d115a446d4f28052292e283ae5d2a1b410bfe99f4883af30b8939d88f0164472ac9
SSDEEP

12288:kSvkHGOfU0+BaSNaeP24r676z7vMuTZbJNMUZ0jtKsz:kz/IvM6ZbJNMUZ0jg

Score

N/A

Malware Config

Signatures

Files

935d226f91449e4d243d56a373884a5faf919da723297ff232b1fe2eeb9b679c
.exe windows x86

91cfdc059315d36a5ffbbda130f8db36

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
CreateProcessA
EnterCriticalSection
GetLastError
GetCurrentThreadId
GetExitCodeThread
Sleep
SuspendThread
ResumeThread
lstrcmpiA
SetFilePointer
ReadFile
_lread
IsBadWritePtr
IsBadReadPtr
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
LocalFree
FormatMessageA
GetModuleHandleA
LockResource
FindResourceA
LoadResource
GetFileSize
GetCurrentDirectoryA
GetDiskFreeSpaceA
GetTempPathA
DeleteFileA
GetWindowsDirectoryA
GetUserDefaultLCID
GetLocaleInfoA
SetFileAttributesA
GetModuleFileNameA
DeviceIoControl
CreateFileA
SetErrorMode
SizeofResource
GetExitCodeProcess
SetLastError
CopyFileA
GetTempFileNameA
RemoveDirectoryA
CreateDirectoryA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
VerLanguageNameA
WritePrivateProfileStringA
SetEvent
lstrcatA
CreateThread
SetPriorityClass
GetCurrentThread
SetThreadPriority
GetEnvironmentVariableA
FlushFileBuffers
WriteFile
GlobalMemoryStatus
GetSystemInfo
IsDBCSLeadByte
GetPrivateProfileStringA
GetThreadPriority
QueryPerformanceFrequency
QueryPerformanceCounter
ExitThread
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
TlsSetValue
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
HeapFree
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
HeapReAlloc
GetFileType
MoveFileA
TlsAlloc
TlsGetValue
TerminateProcess
UnhandledExceptionFilter
RtlUnwind
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
HeapSize
VirtualAlloc
CloseHandle
SetStdHandle
SetEndOfFile
IsBadCodePtr
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrcmpA
GetDriveTypeA
FindClose
CreateEventA
FindNextFileA
FindFirstFileA
FindNextChangeNotification
FindCloseChangeNotification
ResetEvent
WaitForSingleObject
WaitForMultipleObjects
FindFirstChangeNotificationA
OutputDebugStringA
FreeLibrary
GetSystemDirectoryA
lstrcpynA
GetTickCount
lstrlenA
CreateMutexA
GetVersionExA
GetShortPathNameA
GetFileAttributesA
LoadLibraryA
MoveFileExA
GetProcAddress
GetCurrentProcess
SetCurrentDirectoryA
GetFullPathNameA

user32

GetParent
OffsetRect
InvalidateRect
GetNextDlgTabItem
GetAsyncKeyState
GetFocus
GetClassInfoA
CharUpperA
CharNextA
CharLowerA
CharToOemA
GetKeyState
CreateDialogParamA
DrawTextExA
EndDialog
MessageBeep
GrayStringA
GetClassNameA
LoadIconA
PostQuitMessage
ExitWindowsEx
EnableMenuItem
FillRect
GetWindowPlacement
SystemParametersInfoA
EqualRect
wvsprintfA
PeekMessageA
DrawTextA
CallWindowProcA
GetKeyboardType
WaitForInputIdle
GetDesktopWindow
CharPrevA
EnumWindows
EnumDisplaySettingsA
UnregisterClassA
CreateDialogIndirectParamA
DialogBoxIndirectParamA
LoadImageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyCursor
GetPropA
SetActiveWindow
BeginPaint
EndPaint
GetUpdateRect
RedrawWindow
ReleaseCapture
DefWindowProcA
IsWindow
GetDC
ReleaseDC
UnionRect
LoadCursorA
RegisterClassA
SetPropA
IsWindowVisible
IsRectEmpty
IntersectRect
CopyRect
SetWindowTextA
RemovePropA
SetCapture
IsWindowEnabled
MessageBoxA
LoadStringA
FindWindowA
EnableWindow
GetCapture
IsIconic
SetForegroundWindow
wsprintfA
SetFocus
SetWindowLongA
GetMessagePos
MapWindowPoints
CreateWindowExA
DestroyWindow
GetWindowRect
GetSystemMetrics
SetWindowPos
FindWindowExA
SendMessageA
SetRectEmpty
ScreenToClient
GetMessageA
SetCursor
GetWindowLongA
PostMessageA
MsgWaitForMultipleObjects
ShowWindow

gdi32

GetNearestPaletteIndex
CreateBrushIndirect
SetBkColor
SelectPalette
GetTextMetricsA
SelectObject
SetTextColor
SetBkMode
DeleteDC
GetStockObject
EndPage
StartPage
EndDoc
GetDeviceCaps
SetMapMode
StartDocA
GetSystemPaletteEntries
CreatePalette
GetTextExtentPoint32A
GetObjectA
CreateDIBSection
CreateCompatibleDC
FillRgn
BitBlt
CreatePolygonRgn
SetDIBColorTable
CombineRgn
RemoveFontResourceA
AddFontResourceA
DeleteObject
CreateFontA
RealizePalette
GetPaletteEntries

shell32

SHChangeNotify
SHGetPathFromIDListA
ShellExecuteExA
ShellExecuteA
SHGetSpecialFolderLocation

winmm

mmioInstallIOProcA
waveOutGetDevCapsA
waveOutGetNumDevs
timeGetTime
mciSendStringA
joyGetNumDevs
PlaySoundA

comdlg32

PrintDlgA

advapi32

LookupPrivilegeValueA
CloseServiceHandle
OpenSCManagerA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
AdjustTokenPrivileges
RegEnumKeyExA
OpenProcessToken
RegDeleteValueA
RegDeleteKeyA
RegQueryInfoKeyA

ole32

CoInitialize
CoCreateInstance
CoUninitialize
OleInitialize
OleUninitialize

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

lz32

LZCopy
LZOpenFileA
LZClose

comctl32

ImageList_Destroy
ImageList_LoadImageA

Exports

Exports

?DialogProc@CAppAlert@@SGHPAUHWND__@@IIJ@Z
?DialogProc@CAppMessage@@SGHPAUHWND__@@IIJ@Z
?DialogProc@CDirBrowser@@SGHPAUHWND__@@IIJ@Z
?MasterCallback@@YG?AW4EBURETCODE@@PAX@Z

Sections

.text
Size: 240KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

91cfdc059315d36a5ffbbda130f8db36

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

winmm

comdlg32

advapi32

ole32

version

lz32

comctl32

Exports

Exports

Sections

.text Size: 240KB - Virtual size: 238KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 28KB - Virtual size: 52KB

.rsrc Size: 112KB - Virtual size: 112KB

.text
Size: 240KB - Virtual size: 238KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 28KB - Virtual size: 52KB

.rsrc
Size: 112KB - Virtual size: 112KB