7f3d9e0ec0c215e8e2c8009c51975c74094850ce0bf25f4c64e95ea4c52b8b46

Sharing

Copy URL Twitter E-mail

General

Target

7f3d9e0ec0c215e8e2c8009c51975c74094850ce0bf25f4c64e95ea4c52b8b46
Size

260KB
MD5

33220488a30a7ff9a842df01f70ee8dc
SHA1

e02cea001447a9569edf4c3dc25b290f75982a95
SHA256

7f3d9e0ec0c215e8e2c8009c51975c74094850ce0bf25f4c64e95ea4c52b8b46
SHA512

d8da3f28bd5b46b06392a7dcc61adc4f89aec354edbd10e019954a58eaf900e8004d77a1069eee03a2f223425372768145c3090c74fe61c8d0fdf0784dd078ff
SSDEEP

6144:YZz3mBH5cDE7EX7FruyHevvHeauf5rPTvp7HmF07gV9L+k:kWBeDT7FruyHee5rPTRaKwi

Score

N/A

Malware Config

Signatures

Files

7f3d9e0ec0c215e8e2c8009c51975c74094850ce0bf25f4c64e95ea4c52b8b46
.exe windows x86

1336cc21127e018e3523feb243be2a06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
VarUI4FromStr
SysFreeString

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateGuid

comdlg32

CommDlgExtendedError
GetOpenFileNameW

kernel32

LeaveCriticalSection
FlushInstructionCache
LockResource
GetDateFormatW
LoadLibraryExW
GetSystemTime
GetModuleHandleW
CreateFileA
EnterCriticalSection
SystemTimeToTzSpecificLocalTime
GetFileSize
GetProcessHeap
GetLogicalDrives
SizeofResource
GetCurrentDirectoryW
FindNextFileW
HeapReAlloc
FindFirstFileW
HeapDestroy
DeleteFileW
GetSystemTimeAsFileTime
CloseHandle
VirtualFree
IsProcessorFeaturePresent
SetCurrentDirectoryW
SetEndOfFile
RemoveDirectoryW
LoadResource
lstrcmpiW
WideCharToMultiByte
DeleteCriticalSection
HeapSize
RaiseException
SetFilePointer
FormatMessageW
GetDriveTypeW
CreateFileW
IsDebuggerPresent
LocalAlloc
SystemTimeToFileTime
HeapFree
FindClose
FileTimeToSystemTime
LocalFree
SetUnhandledExceptionFilter
OutputDebugStringW
FreeLibrary
VirtualAlloc
lstrlenW
FindResourceExW
ReadFile
FindResourceW
GetTimeFormatW
HeapAlloc
UnhandledExceptionFilter
WriteFile
GetCurrentThreadId
LoadLibraryW
VirtualAllocEx

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
ImageList_LoadImageW
ImageList_Create

user32

FindWindowExW
GetWindowPlacement
FlashWindow
AttachThreadInput
CallWindowProcW
GetMessagePos
GetSystemMenu
GetClientRect
MonitorFromPoint
SetWindowTextW
TrackPopupMenuEx
DestroyIcon
EndDialog
SendMessageW
GetForegroundWindow
SetDlgItemTextW
CharNextW
ScreenToClient
IsRectEmpty
DialogBoxParamW
IsWindow
DestroyWindow
GetSystemMetrics
DefWindowProcW
GetDlgItem
GetActiveWindow
GetWindowThreadProcessId
IsIconic
GetParent
ShowWindow
CreateWindowExW
MapDialogRect
LoadCursorW
GetWindow
MonitorFromWindow
GetDesktopWindow
SetCursor
SetForegroundWindow
SetWindowPos
GetMonitorInfoW
MapWindowPoints
GetWindowRect
GetKeyboardType
GetWindowLongW
LoadImageW
SetWindowLongW
EnableWindow
RedrawWindow
ClientToScreen
MoveWindow
UnregisterClassA

esent

JetStopServiceInstance
JetRestore2
JetSetSessionContext
JetSetColumns
JetOpenTable
JetGetColumnInfo
JetIdle
JetResetCounter
JetTerm
JetIntersectIndexes
JetGetVersion
JetCreateDatabase2
JetBeginExternalBackup
JetAttachDatabase2

kbdkaz

KbdLayerDescriptor

Sections

.VYiNFJ
Size: 1KB - Virtual size: 17KB

IMAGE_SCN_MEM_READ

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.KSCJ
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JjhNn
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oamox
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.txjER
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ApTdENG
Size: 512B - Virtual size: 199B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.XPUnsHl
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lYUgV
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iwbPwgi
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aRtb
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.XpzjpM
Size: 1024B - Virtual size: 969B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1336cc21127e018e3523feb243be2a06

Headers

File Characteristics

Imports

oleaut32

ole32

comdlg32

kernel32

comctl32

user32

esent

kbdkaz

Sections

.VYiNFJ Size: 1KB - Virtual size: 17KB

.text Size: 17KB - Virtual size: 17KB

.KSCJ Size: 3KB - Virtual size: 2KB

.JjhNn Size: 1KB - Virtual size: 1KB

.oamox Size: 2KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 228KB

.txjER Size: 3KB - Virtual size: 2KB

.ApTdENG Size: 512B - Virtual size: 199B

.rdata Size: 209KB - Virtual size: 209KB

.XPUnsHl Size: 1KB - Virtual size: 1KB

.lYUgV Size: 1KB - Virtual size: 1KB

.iwbPwgi Size: 3KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 3KB

.aRtb Size: 1KB - Virtual size: 1KB

.XpzjpM Size: 1024B - Virtual size: 969B

.VYiNFJ
Size: 1KB - Virtual size: 17KB

.text
Size: 17KB - Virtual size: 17KB

.KSCJ
Size: 3KB - Virtual size: 2KB

.JjhNn
Size: 1KB - Virtual size: 1KB

.oamox
Size: 2KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 228KB

.txjER
Size: 3KB - Virtual size: 2KB

.ApTdENG
Size: 512B - Virtual size: 199B

.rdata
Size: 209KB - Virtual size: 209KB

.XPUnsHl
Size: 1KB - Virtual size: 1KB

.lYUgV
Size: 1KB - Virtual size: 1KB

.iwbPwgi
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 3KB

.aRtb
Size: 1KB - Virtual size: 1KB

.XpzjpM
Size: 1024B - Virtual size: 969B