12e0d7defbd55c0822ed0d8a7ebc454c12f0dde56a04fbf8d0f17e76536eea06

Sharing

Copy URL Twitter E-mail

General

Target

12e0d7defbd55c0822ed0d8a7ebc454c12f0dde56a04fbf8d0f17e76536eea06
Size

172KB
MD5

4cbc9a6d78fe6d73d15c1a74cbac0f50
SHA1

360cba2b7b84d265c3fad84a3390bd22750a3167
SHA256

12e0d7defbd55c0822ed0d8a7ebc454c12f0dde56a04fbf8d0f17e76536eea06
SHA512

6b3c5a9272b6489d1d56eda7db51bba679eba897f7e4086692111057903799b06d3c91bdf88595678fc8838e980409fb846fb5f3b0f71da5bb5575234618fa98
SSDEEP

3072:2ag5dJw+MRDZQhi3sOeCLRpgBlpGeEu+rQQ3Y8XO+nI6A0LZB:wM+CLtuq1o8XlHAyD

Score

N/A

Malware Config

Signatures

Files

12e0d7defbd55c0822ed0d8a7ebc454c12f0dde56a04fbf8d0f17e76536eea06
.dll windows x86

5e393456f238e21fec62943a05b57043

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
InterlockedExchange
lstrcpyW
lstrcpynW
WaitForSingleObject
GetCurrentProcessId
DuplicateHandle
WritePrivateProfileStringA
SetEvent
GetTickCount
Sleep
OpenProcess
GetModuleHandleA
lstrcmpA
GetWindowsDirectoryA
lstrcatA
lstrcpyA
CreateProcessA
LoadLibraryExA
GetCurrentProcess
GetLastError
GetCurrentThreadId
GetProcAddress
FreeLibrary
CreateProcessW
CloseHandle
lstrlenW
FreeEnvironmentStringsA
GlobalSize
CreateEventW
CreateFileMappingW
CreateMutexW
DeleteFileW
FindResourceExW
GetDateFormatW
GetFileAttributesW
GetModuleFileNameW
GetModuleHandleW
GetPrivateProfileIntW
GetPrivateProfileStringW
GetStringTypeExW
GetTempFileNameW
GetTempPathW
GetTimeFormatW
GetVersionExW
LoadLibraryExW
OpenEventW
OpenFileMappingW
SearchPathW
WritePrivateProfileStringW
InterlockedIncrement
GetVolumeInformationA
InterlockedDecrement
lstrcmpiW
UnmapViewOfFile
CompareStringW
GetFileType
FlushFileBuffers
GetSystemInfo
VirtualProtect
SetStdHandle
LCMapStringW
LCMapStringA
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalReAlloc
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
ExitProcess
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
DeleteCriticalSection
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualQuery
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
SetFilePointer
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WideCharToMultiByte
GetFileAttributesA
lstrlenA
Beep
CreateFileW
LoadLibraryW
MulDiv
CompareFileTime
GetFileTime
SetFileTime
SystemTimeToFileTime
GetSystemTime
ExpandEnvironmentStringsW
LocalFree
FormatMessageW
CreateDirectoryW
SetCurrentDirectoryW
FindNextFileW
FindClose
FindFirstFileW
SetFileAttributesW
CopyFileW
IsBadReadPtr
DisableThreadLibraryCalls
GetPrivateProfileSectionW
GetSystemDirectoryW
GetCurrentThread
lstrcatW
ReleaseMutex
MultiByteToWideChar
lstrcmpW
LocalAlloc
LoadLibraryA
OutputDebugStringW
GetPrivateProfileStringA
CreateThread
lstrcpynA
GlobalHandle
GetStartupInfoA
GetCurrentDirectoryW
MapViewOfFile
ExitThread

user32

IsDlgButtonChecked
MessageBoxW
SetDlgItemInt
GetDlgItemInt
ReleaseDC
GetDC
InvalidateRect
SendDlgItemMessageA
CharNextW
PostQuitMessage
DestroyWindow
SetActiveWindow
GetDlgCtrlID
ChildWindowFromPointEx
SendMessageA
SendMessageW
GetWindowTextA
ShowWindowAsync
EnumWindows
LoadStringA
RegisterClassExA
GetClassInfoExA
wvsprintfW
WinHelpW
UnregisterClassW
SetWindowTextW
SetWindowLongW
RegisterWindowMessageW
RegisterClassExW
PostThreadMessageW
PeekMessageW
LoadStringW
LoadMenuW
LoadImageW
LoadIconW
LoadCursorW
IsDialogMessageW
InsertMenuW
GetWindowTextLengthW
GetWindowTextW
GetWindowLongW
GetMessageW
GetClassLongW
FindWindowExW
DispatchMessageW
DialogBoxParamW
DefWindowProcW
CreateWindowExW
BeginPaint
CharUpperW
CharPrevW
CharLowerW
CallWindowProcW
ExitWindowsEx
MapWindowPoints
SetWindowPos
GetClientRect
IsWindowEnabled
ChildWindowFromPoint
SetDlgItemTextA
SetForegroundWindow
SystemParametersInfoA
GetSystemMenu
DeleteMenu
EnableMenuItem
SetTimer
KillTimer
IsWindow
GetWindowThreadProcessId
GetWindowRect
ScreenToClient
MoveWindow
SendDlgItemMessageW
GetDlgItemTextW
SetDlgItemTextW
CheckDlgButton
wsprintfA
PostMessageW
ShowCursor
TranslateMessage
GetCursor
SetCursor
UpdateWindow
IsWindowVisible
ShowWindow
GetDlgItem
EndDialog
MessageBoxExW
MsgWaitForMultipleObjects
GetThreadDesktop
GetParent
EnableWindow
GetFocus
SetFocus
wsprintfW
GetUserObjectInformationW
CreateDialogParamW
EndPaint

gdi32

DeleteObject
GetDeviceCaps
GetDIBits
GetObjectA
CreatePalette
CreateDIBitmap
RealizePalette
SelectPalette
DeleteDC
StretchBlt
SetStretchBltMode
SelectObject
CreateCompatibleDC
UnrealizeObject
GetStockObject

advapi32

RegDeleteValueW
CreateProcessAsUserW
LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
FreeSid
AllocateAndInitializeSid
OpenThreadToken
RegSetValueExA
RegQueryValueExW
RegOpenKeyExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AdjustTokenPrivileges
GetLengthSid
RegCreateKeyExA
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
GetUserNameW
InitializeAcl
AddAccessAllowedAce

shell32

SHFileOperationW

ole32

CoTaskMemAlloc
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree

msvcrt

toupper

Exports

Exports

DoInstancesThe
DoYourYouASeparate
MustServerTo
NotLicensedNotThe
TheAccessConsidered
UserSoftwareAnyInstancesBlade

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e393456f238e21fec62943a05b57043

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.idata Size: 12KB - Virtual size: 9KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 56KB - Virtual size: 132KB

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 60KB - Virtual size: 59KB

.idata
Size: 12KB - Virtual size: 9KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 56KB - Virtual size: 132KB

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 4KB - Virtual size: 1KB