75bf5dac0feb9c021f0760fcb2e070c0f59ea0e9aab35b5459842330cebfacf3

Sharing

Copy URL Twitter E-mail

General

Target

75bf5dac0feb9c021f0760fcb2e070c0f59ea0e9aab35b5459842330cebfacf3
Size

141KB
MD5

c1f7f3e4bf88e8da89aee85e6d922ace
SHA1

35b649ea4e59ab07b931eaca0b1e157204270603
SHA256

75bf5dac0feb9c021f0760fcb2e070c0f59ea0e9aab35b5459842330cebfacf3
SHA512

e62bc266f9fb8b32ba2c6b06c382dadc48b3112104aa4dd3237f5abf7c733337784ce2a18a633ce5bcc4d8fba91ddfa3972c01842e79f47812294abd9d4a4cd8
SSDEEP

3072:O0jJkpGTIZ11yi3kuvxTDh5CCfiaUaBqhV1G+4TVjLhQYXdC9aDH:ZJKGTKd3ku1h5qzhVsxjLhvXdbDH

Score

N/A

Malware Config

Signatures

Files

75bf5dac0feb9c021f0760fcb2e070c0f59ea0e9aab35b5459842330cebfacf3
.exe windows x86

8a498ec1c470a825c70fb8dc816f78f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcsftime
_ismbblead
_ctype
_ismbbpunct
_osplatform
_cputws
feof
system
tan
__p__commode
__getmainargs
??_V@YAXPAX@Z
wcsspn
_lsearch
__set_app_type
exit
_adj_fptan
_mbsnbicmp
__pxcptinfoptrs
_lock
_mbctype

wshrm

WSHGetSockaddrType
WSHOpenSocket2
WSHSetSocketInformation
WSHGetBroadcastSockaddr
WSHNotify
WSHGetProviderGuid
WSHGetWSAProtocolInfo
WSHGetWinsockMapping
WSHStringToAddress
WSHOpenSocket
WSHJoinLeaf
WSHIoctl

kernel32

SetComputerNameExW
IsValidLanguageGroup
GetModuleHandleW
GetBinaryTypeW
lstrcatW
GetOverlappedResult
GetCurrentDirectoryW
EnumerateLocalComputerNamesA
TerminateJobObject
SetEvent
GetLocaleInfoA
LoadLibraryW
GetCurrentThread

shlwapi

StrRChrIA
PathCompactPathExA
SHRegEnumUSKeyA
PathIsRootW
StrNCatW
PathStripPathW
PathIsNetworkPathW
SHRegSetPathW
PathCommonPrefixW
SHOpenRegStream2A
StrTrimA

msacm32

acmStreamPrepareHeader
acmFilterTagDetailsW
acmGetVersion
acmFormatTagDetailsW
acmFormatTagEnumA
acmStreamMessage
acmFilterTagEnumW
acmFormatTagDetailsA
acmDriverClose
acmDriverDetailsA
acmDriverPriority
acmFormatChooseA
acmStreamSize
acmDriverID
acmDriverAddA
acmStreamReset
acmFilterTagEnumA
acmFormatDetailsA
acmDriverOpen
acmDriverDetailsW

hhsetup

?SetLanguage@CFolder@@QAEXG@Z
?SetId@CLocation@@QAEXPBG@Z
?AddTitle@CCollection@@QAEPAVCTitle@@PBD0000GIPAVCLocation@@PAKH0@Z
?HandleCollection@CCollection@@AAEKPAVCParseXML@@PAD@Z
?AddFolder@CCollection@@QAEPAVCFolder@@PBGKPAKG@Z
??0CPointerList@@QAE@XZ
?Dirty@CCollection@@QAEXXZ
?bIsVisable@CFolder@@QAEHXZ
?GetVisableRootFolder@CCollection@@QAEPAVCFolder@@XZ
?DeleteTitle@CCollection@@AAEKPAVCTitle@@@Z
?HandleLocation@CCollection@@AAEKPAVCParseXML@@PAD@Z
?SetLanguage@CTitle@@QAEXG@Z
?WriteFolders@CCollection@@AAEHPAPAVCFolder@@@Z
?GetSampleLocation@CCollection@@QAEPADXZ
?CheckTitleRef@CCollection@@AAEKPBGG@Z
??1CPointerList@@QAE@XZ
?SetId@CLocation@@QAEXPBD@Z
?SetFindMergedCHMS@CCollection@@QAEXH@Z
?Close@CCollection@@QAEKXZ
?GetTitleW@CLocation@@QAEPBGXZ
?GetLanguage@CFolder@@QAEGXZ
?SetVolume@CLocation@@QAEXPBG@Z
?NewLocationHistory@CTitle@@QAEPAULocationHistory@@XZ
?DeleteChildren@CCollection@@AAEXPAPAVCFolder@@@Z
?AddTail@CFIFOString@@QAEKPAD@Z
??0CFolder@@QAE@XZ
?GetIdW@CTitle@@QAEPBGXZ
??4CPointerList@@QAEAAV0@ABV0@@Z

msasn1

ASN1_CreateDecoderEx
ASN1CEREncEndBlk
ASN1BEREncRemoveZeroBits
ASN1char16string_cmp
ASN1BEREoid2DotVal
ASN1intx2int32
ASN1BERDecBitString
ASN1BERDecOpenType

user32

DialogBoxIndirectParamA
CallWindowProcA
UnregisterClassA
UnregisterHotKey
UserRegisterWowHandlers
GetMenuItemInfoA
CheckMenuRadioItem
DrawAnimatedRects
GetCursorInfo
GetClipboardOwner
ReuseDDElParam
DefWindowProcW
PostQuitMessage
DrawMenuBarTemp
SetForegroundWindow
GetUpdateRgn
DlgDirSelectExA
SetDlgItemTextA
IsCharAlphaNumericW
SubtractRect
MessageBoxTimeoutW
RegisterClassW
GetMenu
OpenDesktopA

Sections

.code
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a498ec1c470a825c70fb8dc816f78f8

Headers

File Characteristics

Imports

msvcrt

wshrm

kernel32

shlwapi

msacm32

hhsetup

msasn1

user32

Sections

.code Size: 83KB - Virtual size: 82KB

.rdata Size: 43KB - Virtual size: 43KB

.data Size: 5KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 7KB

.code
Size: 83KB - Virtual size: 82KB

.rdata
Size: 43KB - Virtual size: 43KB

.data
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 7KB