759fc063938301419b8c874eabd866b41da911ff5fd9b6816c7976453cdc1f2d

Sharing

Copy URL Twitter E-mail

General

Target

759fc063938301419b8c874eabd866b41da911ff5fd9b6816c7976453cdc1f2d
Size

42KB
MD5

5ae3ac9dac20e7c4d15d0b6668f780c2
SHA1

813304ef33625b20e353c8f3f70dc7da5c020d21
SHA256

759fc063938301419b8c874eabd866b41da911ff5fd9b6816c7976453cdc1f2d
SHA512

15b59be61ed750f37be2f3f9a0aeefb99f3b517e8071007d5791f3e798c1efe5fcf851331db5845f68955f47eb15ab39f56a24dd5c0b5d52c44c7c97fd3f3422
SSDEEP

768:Du+EiVVoBMsNlpWFPQtW4azKxl3rvxCKjclUha78YN3N1Y:R7o6Kp+P/OT7fUQYNnY

Score

N/A

Malware Config

Signatures

Files

759fc063938301419b8c874eabd866b41da911ff5fd9b6816c7976453cdc1f2d
.exe windows x86

6039e410003a21a159878dc6dde58743

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrToIntA
StrCmpNIW
StrChrA
PathSetDlgItemPathA
SHQueryInfoKeyW
PathIsNetworkPathW
HashData
PathRelativePathToW
SHGetValueW
PathCanonicalizeA
StrChrNW
PathGetCharTypeW
SHRegQueryUSValueA
SHCreateThread
PathGetDriveNumberA
StrRChrIA
SHDeleteOrphanKeyW
StrFromTimeIntervalA
PathSkipRootA
wnsprintfA
SHRegCreateUSKeyW
StrRChrW
SHAutoComplete
PathRemoveArgsW
GetMenuPosFromID
SHSetThreadRef

olecli32

GenSaveToStream
PbQueryBounds
OleCreateInvisible
GenChangeData
ErrObjectConvert
OleQueryProtocol
OleSavedClientDoc
MfQueryBounds
ErrQueryOutOfDate
ErrActivate
ErrSetBounds
MfCallbackFunc
ErrSetData
LeDraw
DibDraw
ErrUpdate
OleUpdate
OleSetTargetDevice
OleRenameClientDoc
OleCreateFromTemplate
BmClone
BmCopy
PbCreateFromClip
LeRelease
DibCopy
WEP
LeShow
OleUnlockServer
OleCopyFromLink

kernel32

GetFileSizeEx
GetUserDefaultLCID
SetTimeZoneInformation
GetSystemTimeAsFileTime
GlobalSize
FlushViewOfFile
PeekConsoleInputA
GetFileType
InterlockedFlushSList
InitializeCriticalSection
GetProfileStringA
LoadLibraryW
EnumDateFormatsA
GlobalAlloc
AddLocalAlternateComputerNameW

imm32

ImmGetImeMenuItemsW
ImmIsUIMessageW
ImmProcessKey
ImmLockIMCC
ImmGetCompositionStringW
ImmEnumInputContext
ImmIsIME
ImmDestroyIMCC
ImmGetGuideLineW
ImmIMPQueryIMEA
ImmIsUIMessageA
ImmRequestMessageA
ImmGetIMEFileNameA
ImmSetCandidateWindow
ImmLockIMC
ImmGetConversionListW
ImmSetActiveContext

gdi32

FONTOBJ_cGetGlyphs
SetViewportExtEx
SetICMProfileA
GdiEntry14
BRUSHOBJ_hGetColorTransform
GetKerningPairsA
PATHOBJ_bEnum
GetColorAdjustment
StartDocA
PolyBezier
GetPixel
GetColorSpace
HT_Get8BPPFormatPalette
EngGradientFill
GetWindowOrgEx
OffsetRgn
GdiStartPageEMF
SetEnhMetaFileBits
StretchBlt
GdiSetServerAttr
GdiGetLocalDC
EngCreatePalette
CreateDCA

sqlunirl

_DispatchMessage_@4
_tfopen
_RemoveDirectory_@4
_CreateMDIWindow_@40
_OpenWindowStation_@12
_NDdeGetShareSecurity_@24
_GetCharacterPlacement_@24
_DialogBoxParam_@20
_CommConfigDialog_@12
_TranslateAccelerator@12

duser

BuildDropTarget
BuildInterpolation
SetGadgetParent
DUserDeleteGadget
DUserInstanceOf
DUserGetRectPRID
EnumGadgets
InitGadgetComponent
AutoTrace

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6039e410003a21a159878dc6dde58743

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

olecli32

kernel32

imm32

gdi32

sqlunirl

duser

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 3KB - Virtual size: 2KB