068a91ae31e848c364804692288394b9161ca6de899d0f5ca2f94189cf4c8c44

Sharing

Copy URL Twitter E-mail

General

Target

068a91ae31e848c364804692288394b9161ca6de899d0f5ca2f94189cf4c8c44
Size

753KB
MD5

22a2ce923ed92a5be430943047ddf2f0
SHA1

db2aa836edb4f71ab536d85cb2ea5a1e230ab010
SHA256

068a91ae31e848c364804692288394b9161ca6de899d0f5ca2f94189cf4c8c44
SHA512

8b34c3182ea73058645af45e215d8aad9506e7308a5ef10526a3f48c9a3169f562b25a55fe8995686fa9c9aa7b70a312b1c8e45c7ee7af3589c7680a5ae2bd30
SSDEEP

12288:RTEj9PIwZQlce+KR9pCPV6N5uso9ED0zm0xi+np8hZxW5QM6wGklN59oCI+aYc:RgZPIwGlz5QP8S9q0xi+p80DP4CI1Y

Score

N/A

Malware Config

Signatures

Files

068a91ae31e848c364804692288394b9161ca6de899d0f5ca2f94189cf4c8c44
.dll windows x86

e562a86d0ced6b47863c99de29a81abe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcstombs
fflush
wcsstr
_controlfp
gets
wcscspn
__set_app_type
iswalpha
getc
iswspace
__p__fmode
wcscoll
isupper
__p__commode
wcstok
system
mbstowcs
strncpy
towlower
mktime
vswprintf
_amsg_exit
_initterm
_ismbblead
malloc
wcscat
_XcptFilter
putc
fseek
remove
tolower
_exit
strcspn
clearerr
sscanf
memset
swprintf
fwrite
strchr
swscanf
_cexit
__setusermatherr
fputc
strspn
__getmainargs
wcsncpy
islower
strtol

user32

EnableScrollBar
FindWindowExW
CharLowerW
MonitorFromPoint
DestroyIcon
CheckDlgButton
GetClassInfoExA
HiliteMenuItem
SetWindowPos
InsertMenuA
CheckMenuRadioItem
GetWindowTextA
EnableMenuItem
GetDCEx
CreatePopupMenu
SetCaretPos
LookupIconIdFromDirectory
mouse_event
GetFocus
GetDlgItemTextA
CharToOemA
LoadAcceleratorsA
IntersectRect
ClipCursor
ChildWindowFromPointEx
InternalGetWindowText
SetDlgItemTextW
CreateWindowExW
SetWindowRgn
RegisterClassExA
CharUpperBuffA
LoadStringW
DrawStateA
SetScrollPos
GetPropW
GetDlgItemTextW
IsCharAlphaW
RegisterHotKey
GetClassLongW
GetShellWindow
EnumWindows
GetMenuItemRect
CharToOemW
SetCursorPos
AdjustWindowRectEx
OpenIcon
MapVirtualKeyW
MapVirtualKeyA
BringWindowToTop
LoadCursorA
IsDialogMessageA
DestroyCaret
ArrangeIconicWindows
keybd_event
SendDlgItemMessageA
CreateAcceleratorTableW
GetWindow
AppendMenuA
DestroyAcceleratorTable
LoadCursorW
DialogBoxIndirectParamW
GetWindowLongA
GetWindowLongW
GetWindowRect
ScrollWindow
GetMessagePos
TrackPopupMenu
GetMessageTime
GetGUIThreadInfo
WaitMessage
EqualRect
SetCursor
CreateMenu
GetCaretBlinkTime
ClientToScreen
CharNextExA
GetWindowModuleFileNameW
SetScrollRange
OemToCharA
GetNextDlgTabItem
VkKeyScanW
GetSystemMetrics
TranslateAcceleratorA
CreateDialogIndirectParamW
GetForegroundWindow
FrameRect
SetTimer
WaitForInputIdle
GetWindowPlacement
CascadeWindows
SendMessageA
SetRectEmpty
GetClassInfoW
CharUpperW
GetClassInfoExW
GetClientRect
SendDlgItemMessageW
GetUserObjectInformationW
CreateWindowExA
WindowFromPoint
GetUpdateRect
BeginDeferWindowPos
GetCursorPos
MessageBoxW
AttachThreadInput
IsCharLowerA
GetDialogBaseUnits
ScrollWindowEx
EnableWindow
CreateDialogParamA
GetScrollPos
InflateRect
GetMenuStringW
DefWindowProcA
MapDialogRect
DestroyMenu
GetMenuState
CallWindowProcA
LoadImageW
MapVirtualKeyExW
GetDlgItem

shlwapi

StrToIntW

kernel32

GetModuleHandleW
LocalFree
CreateDirectoryW
GetTempFileNameW
GlobalMemoryStatusEx
ConnectNamedPipe
GetTimeFormatA
OpenEventA
GetDateFormatW
GetUserDefaultLCID
SetWaitableTimer
DeleteFileA
CreateWaitableTimerW
GetVersionExA
CompareFileTime
OpenFile
HeapFree
CompareStringA
ExitThread
OpenEventW
SetThreadExecutionState
FindResourceA
GetFileAttributesA
GetModuleHandleA
LCMapStringW
GlobalAddAtomW
GlobalLock
OpenFileMappingW
SetThreadLocale
UnhandledExceptionFilter
lstrlenA
GetWindowsDirectoryW
GlobalGetAtomNameA
CreateMutexA
EnumResourceLanguagesA
GetFullPathNameW
GetHandleInformation
FlushViewOfFile
WaitForSingleObject
GetCurrentThreadId
FindCloseChangeNotification
GetProcessHeap
GetShortPathNameW
CreateFileA
TlsGetValue
GetUserDefaultUILanguage
DeleteCriticalSection
SetNamedPipeHandleState
DeleteAtom
GetCommandLineW
GetStringTypeExW
SuspendThread
GetVersion
HeapAlloc
GlobalAlloc
lstrcmpiW
lstrlenW

comctl32

ImageList_ReplaceIcon
ImageList_Remove
DestroyPropertySheetPage
ImageList_GetIcon
ImageList_Read
ImageList_AddMasked

Exports

Exports

showtit[D
?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 501KB - Virtual size: 501KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e562a86d0ced6b47863c99de29a81abe

Headers

File Characteristics

Imports

msvcrt

user32

shlwapi

kernel32

comctl32

Exports

Exports

Sections

.text Size: 234KB - Virtual size: 234KB

.data Size: 14KB - Virtual size: 1.1MB

.rsrc Size: 501KB - Virtual size: 501KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 234KB - Virtual size: 234KB

.data
Size: 14KB - Virtual size: 1.1MB

.rsrc
Size: 501KB - Virtual size: 501KB

.reloc
Size: 2KB - Virtual size: 1KB