8a7317424ab453f70d52896aeef0ba8823964d30b673baa6d36eb5e382a6cea1

Sharing

Copy URL Twitter E-mail

General

Target

8a7317424ab453f70d52896aeef0ba8823964d30b673baa6d36eb5e382a6cea1
Size

25KB
MD5

284e01d13852cf996816e55a45cd965a
SHA1

5129b2276a5c031b399f9de77bee2e5b7b476f6a
SHA256

8a7317424ab453f70d52896aeef0ba8823964d30b673baa6d36eb5e382a6cea1
SHA512

b8701f1aa1f0e476060ccf05bdafe0cdf890398447c5141db0943582c848d899122206f10570b2aedbdaea962e1bf008be8551026c557892ac1ab313577d4f5d
SSDEEP

768:zSFxnbnLTmv3+A/p7f1fcNvpp/7Vp0uza8z:zmxnbe3+Ap7dfUvpp/77za8z

Score

N/A

Malware Config

Signatures

Files

8a7317424ab453f70d52896aeef0ba8823964d30b673baa6d36eb5e382a6cea1
.exe windows x86

e93aec73a95d6745e536340798c2872e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
malloc
_initterm
free
_vsnprintf
wcslen
qsort
_except_handler3
_vsnwprintf

user32

EndDeferWindowPos
GetUpdateRect
GetSysColorBrush
SendDlgItemMessageW
ClientToScreen
GetCursorPos
SetParent
GetDC
CreateIconIndirect
GetIconInfo
LoadImageW
CopyImage
InflateRect
GetWindow
LoadStringA
GetWindowTextA
LoadIconW
SetDlgItemTextW
GetDlgItemTextW
GetSysColor
FillRect
DrawFocusRect
CreatePopupMenu
AppendMenuW
TrackPopupMenu
DestroyMenu
ChildWindowFromPointEx
GetFocus
LoadCursorW
SetCursor
EndDialog
GetWindowDC
ReleaseDC
InvalidateRect
GetClientRect
DeferWindowPos
CheckDlgButton
EnableWindow
ShowWindow
SetWindowTextW
GetWindowTextW
MessageBeep
GetWindowTextLengthW
SetWindowPos
GetSystemMetrics
SetPropW
SendMessageW
PostMessageW
GetParent
RemovePropW
CallWindowProcW
GetPropW
SetFocus
GetDlgCtrlID
GetWindowRect
MapWindowPoints
EnumChildWindows
GetDlgItem
SetWindowLongW
DestroyIcon
LoadStringW
ScreenToClient
GetWindowLongW
SetWindowContextHelpId
WinHelpW
DestroyWindow
BeginDeferWindowPos
MessageBoxA
DialogBoxParamW
DialogBoxIndirectParamW
ReleaseCapture
GetCapture
CheckRadioButton
CreateWindowExW

gdi32

SetTextColor
DeleteObject
SetBkMode
DeleteDC
CreateCompatibleDC
TextOutW
SelectObject
GetTextMetricsW
CreateSolidBrush
StretchDIBits
CreateCompatibleBitmap
Rectangle
GetStockObject
BitBlt
SetStretchBltMode
GetObjectW
GetBitmapBits
StretchBlt
CreateBitmap
SetDIBitsToDevice
MoveToEx
SetTextAlign
SetBkColor
IntersectClipRect
CreateFontIndirectW
GetTextExtentPointW

kernel32

CreateMutexW
ReleaseActCtx
ReleaseMutex
WaitForSingleObject
GetCurrentThreadId
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
CloseHandle
LoadResource
LockResource
FreeResource
MultiByteToWideChar
GetModuleFileNameW
LoadLibraryW
GetProcAddress
FreeLibrary
lstrcmpA
lstrcmpW
LocalFree
LocalAlloc
lstrlenA
lstrlenW
IsBadWritePtr
GetModuleFileNameA
DeactivateActCtx
ActivateActCtx
SetLastError
GetLastError
AddRefActCtx
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
CreateActCtxW
GetWindowsDirectoryW
lstrcpynW
SearchPathW
FindClose
FindFirstFileW
FindResourceW

advapi32

RegQueryValueExW
RegCloseKey
RegSetValueExW
RegCreateKeyW

msimg32

TransparentBlt

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shlwapi

wnsprintfW
ord215
ord346

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9e3c
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1o2p
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.16as
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aeas
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.k1kl
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ps1i
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.t3ta
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ksi1
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.12i1
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.123f
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eaa
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ze
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1teaX
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.134
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.724
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.182
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.381
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.832
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ii32
Size: 512B - Virtual size: 238B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.i832
Size: 512B - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.i833
Size: 512B - Virtual size: 218B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.i803
Size: 512B - Virtual size: 222B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.i804
Size: 512B - Virtual size: 246B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1928
Size: 512B - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1hgh
Size: 512B - Virtual size: 222B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.10gh
Size: 512B - Virtual size: 226B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9102
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e93aec73a95d6745e536340798c2872e

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

gdi32

kernel32

advapi32

msimg32

version

shlwapi

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 2KB

.9e3c Size: 199KB - Virtual size: 198KB

.1o2p Size: 199KB - Virtual size: 198KB

.16as Size: 512B - Virtual size: 216B

.aeas Size: 512B - Virtual size: 216B

.k1kl Size: 512B - Virtual size: 216B

.ps1i Size: 512B - Virtual size: 216B

.t3ta Size: 512B - Virtual size: 216B

.ksi1 Size: 512B - Virtual size: 216B

.12i1 Size: 512B - Virtual size: 216B

.123f Size: 512B - Virtual size: 216B

.eaa Size: 512B - Virtual size: 216B

.ze Size: 512B - Virtual size: 216B

.1teaX Size: 512B - Virtual size: 216B

.134 Size: 512B - Virtual size: 216B

.724 Size: 512B - Virtual size: 216B

.182 Size: 512B - Virtual size: 216B

.381 Size: 512B - Virtual size: 216B

.832 Size: 512B - Virtual size: 216B

.ii32 Size: 512B - Virtual size: 238B

.i832 Size: 512B - Virtual size: 202B

.i833 Size: 512B - Virtual size: 218B

.i803 Size: 512B - Virtual size: 222B

.i804 Size: 512B - Virtual size: 246B

.1928 Size: 512B - Virtual size: 202B

.1hgh Size: 512B - Virtual size: 222B

.10gh Size: 512B - Virtual size: 226B

.9102 Size: 512B - Virtual size: 262B

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 512B - Virtual size: 312B

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 2KB

.9e3c
Size: 199KB - Virtual size: 198KB

.1o2p
Size: 199KB - Virtual size: 198KB

.16as
Size: 512B - Virtual size: 216B

.aeas
Size: 512B - Virtual size: 216B

.k1kl
Size: 512B - Virtual size: 216B

.ps1i
Size: 512B - Virtual size: 216B

.t3ta
Size: 512B - Virtual size: 216B

.ksi1
Size: 512B - Virtual size: 216B

.12i1
Size: 512B - Virtual size: 216B

.123f
Size: 512B - Virtual size: 216B

.eaa
Size: 512B - Virtual size: 216B

.ze
Size: 512B - Virtual size: 216B

.1teaX
Size: 512B - Virtual size: 216B

.134
Size: 512B - Virtual size: 216B

.724
Size: 512B - Virtual size: 216B

.182
Size: 512B - Virtual size: 216B

.381
Size: 512B - Virtual size: 216B

.832
Size: 512B - Virtual size: 216B

.ii32
Size: 512B - Virtual size: 238B

.i832
Size: 512B - Virtual size: 202B

.i833
Size: 512B - Virtual size: 218B

.i803
Size: 512B - Virtual size: 222B

.i804
Size: 512B - Virtual size: 246B

.1928
Size: 512B - Virtual size: 202B

.1hgh
Size: 512B - Virtual size: 222B

.10gh
Size: 512B - Virtual size: 226B

.9102
Size: 512B - Virtual size: 262B

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 512B - Virtual size: 312B