a3358b20b0c4d3d262efb056bea891699c740f34a354c233fb6050797cfdfd68

Sharing

Copy URL Twitter E-mail

General

Target

a3358b20b0c4d3d262efb056bea891699c740f34a354c233fb6050797cfdfd68
Size

270KB
MD5

a26d0eefb89bab08628354be91cb52f4
SHA1

0c98df97595e2609bf5b94648bc3d5fe10330a94
SHA256

a3358b20b0c4d3d262efb056bea891699c740f34a354c233fb6050797cfdfd68
SHA512

6cfe01192ceb1ef9cb87d25205377f4807a0dd70ea9df4b184fca7dfba420b536368d5626c7328486997650c9a7d430932cc5eff785fa4e04ac877d4018c7b2e
SSDEEP

3072:WKLgWzrd0i+WAbEErd99r4xzDUSsHeSC57RlmUppEapCXi3RqA0L8anC4AjcgbmW:3gWzLXOWUSsHeSaCaKaMa50jtAbNv

Score

N/A

Malware Config

Signatures

Files

a3358b20b0c4d3d262efb056bea891699c740f34a354c233fb6050797cfdfd68
.exe windows x86

334e8ff264f527c725daecb99b9a185c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysStringLen
VariantClear
SafeArrayGetLBound
SafeArrayGetUBound
DispCallFunc
SafeArrayCreate
VarBstrCmp
SafeArrayCopy
SafeArrayGetVartype
VariantCopyInd
SysAllocStringByteLen
VariantInit
SafeArrayLock
SafeArrayDestroy
LoadRegTypeLi
SafeArrayAccessData
SafeArrayRedim
SysFreeString
SafeArrayUnlock
SafeArrayUnaccessData
SysStringByteLen
LoadTypeLi
SysAllocString

user32

GetParent
SetDlgItemTextW
InflateRect
CallWindowProcW
GetWindowRect
SetClipboardData
MoveWindow
LoadCursorW
ShowWindow
PostMessageW
SetFocus
GetWindowThreadProcessId
GetDC
DrawFocusRect
CopyRect
GetActiveWindow
RedrawWindow
GetWindowPlacement
CallNextHookEx
SetWindowTextW
TabbedTextOutW
KillTimer
CloseClipboard
IsWindowEnabled
GetTopWindow
GetDlgItem
EmptyClipboard
GetWindow
GetDlgCtrlID
EndDialog
GetClientRect
SetWindowsHookExW
UnregisterClassA
PtInRect
InvalidateRect
GetCursorPos
LoadImageW
MessageBoxW
EndPaint
SetCursor
SetWindowPos
CreateWindowExW
MapWindowPoints
GetWindowDC
IsCharAlphaNumericW
BeginPaint
SetForegroundWindow
ReleaseCapture
GetSysColor
UnhookWindowsHookEx
GetWindowLongW
OffsetRect
SystemParametersInfoW
ReleaseDC
SendMessageW
DialogBoxParamW
SetRectEmpty
DrawIconEx
SetCapture
GetKeyState
OpenClipboard
GetWindowTextW
DestroyIcon
IsWindow
GetNextDlgTabItem
GetWindowTextLengthW
GetCapture
MapDialogRect
InsertMenuW
SetTimer
GetTabbedTextExtentW
GetGUIThreadInfo
IsRectEmpty
DefWindowProcW
ScreenToClient
DrawStateW
SetWindowPlacement
DestroyWindow
GetFocus
SetWindowLongW
GetClassNameW
GetSystemMetrics
DrawTextW
RegisterClipboardFormatW

kernel32

GetModuleHandleW
SetLastError
lstrcmpW
lstrlenW
EnterCriticalSection
OpenEventW
FlushInstructionCache
LeaveCriticalSection
FindFirstFileW
OutputDebugStringA
GetSystemTimeAsFileTime
DeleteCriticalSection
SetUnhandledExceptionFilter
GetACP
GetProcessHeap
FormatMessageW
VirtualAlloc
HeapDestroy
FindNextFileW
SizeofResource
LockResource
FatalAppExitW
GetThreadLocale
GetModuleHandleA
RaiseException
lstrcmpiW
GetLongPathNameW
GlobalUnlock
IsProcessorFeaturePresent
VirtualFree
WaitForSingleObject
FindClose
CloseHandle
LoadResource
FindResourceW
GlobalAlloc
HeapFree
FreeLibrary
GlobalFree
lstrcpyW
HeapAlloc
lstrcpynW
LocalFree
lstrcpynA
UnhandledExceptionFilter
HeapSize
FindResourceExW
DeleteFileW
GlobalLock
WideCharToMultiByte
CreateThread
IsDebuggerPresent
HeapReAlloc
LocalAlloc
GetCurrentThreadId
VirtualAllocEx

msimg32

GradientFill

shell32

DragQueryFileW
SHGetMalloc
ShellExecuteExW
SHGetFolderLocation
SHGetPathFromIDListW
SHGetDesktopFolder

userenv

UnloadUserProfile

gdi32

GetObjectW
Polygon
GetTextExtentPoint32W
CreatePen
BitBlt
SetBkColor
PtInRegion
ExtCreatePen
GetBkColor
SetBkMode
SetROP2
CreateRectRgnIndirect
SelectObject
GetClipRgn
DeleteDC
GetStockObject
CreateCompatibleDC
SetViewportOrgEx
SetTextAlign
ExtTextOutW
GetObjectType
CreateSolidBrush
CreateFontIndirectW
SetTextColor
TextOutW
GetTextExtentExPointW
DeleteObject
CreateCompatibleBitmap
CombineRgn
CreateRectRgn
SelectClipRgn
RoundRect
GetTextMetricsW

ole32

CreateStreamOnHGlobal
ReleaseStgMedium
CoGetObject
CoCreateInstance
StringFromGUID2
CoIsOle1Class
CoDisconnectObject
OleCreateEx
CoGetDefaultContext
CoInitialize

advapi32

InitializeSid
CopySid
GetSidSubAuthorityCount
GetLengthSid
RegDeleteKeyW
RevertToSelf
RegDeleteValueW
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
GetTokenInformation
GetSidLengthRequired
IsValidSid
RegOpenKeyExW
ImpersonateSelf
EqualSid
GetSidSubAuthority
OpenThreadToken

shlwapi

StrChrW
ColorAdjustLuma

kbdusl

KbdLayerDescriptor

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 234KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

334e8ff264f527c725daecb99b9a185c

Headers

File Characteristics

Imports

oleaut32

user32

kernel32

msimg32

shell32

userenv

gdi32

ole32

advapi32

shlwapi

kbdusl

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 234KB - Virtual size: 237KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 234KB - Virtual size: 237KB

.rsrc
Size: 13KB - Virtual size: 12KB