897f835a4b2427b6324490c23a774b3a3af6ad135f47a07cb0d6bab9fc9eb4ab

Sharing

Copy URL

Twitter E-mail

General

Target

897f835a4b2427b6324490c23a774b3a3af6ad135f47a07cb0d6bab9fc9eb4ab
Size

319KB
MD5

9917ed44d474df5aeb29e6a10f69a3d2
SHA1

4dcbbe6f3614c02ee2948e067b1019e7e7f24f12
SHA256

897f835a4b2427b6324490c23a774b3a3af6ad135f47a07cb0d6bab9fc9eb4ab
SHA512

f2d23599105f626c4c7f7ac5186297ccd749b4fc79bb4ddbd72bf5d08298a3bffbb85d8a1246cf57a68d190632b63076084167498a2685872f9d960140212da5
SSDEEP

6144:znHLl3y9ZKFwROyGZrOactJCcPyX20RYlAoJh+77o1w:znrliQyGZatIcaXFboJUXo

Score

N/A

Malware Config

Signatures

Files

897f835a4b2427b6324490c23a774b3a3af6ad135f47a07cb0d6bab9fc9eb4ab
.exe windows x86

d007a9e3e837ca7c11624643d6723da4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFileW
ShellExecuteExW

ole32

CLSIDFromProgID
CLSIDFromString
CoGetMalloc
StringFromCLSID
OleDuplicateData
OleGetClipboard
ReadClassStm
CoGetClassObject
CoTaskMemFree
OleUninitialize
CoTaskMemAlloc
OleSetClipboard
GetHGlobalFromStream
CreateStreamOnHGlobal
CoTaskMemRealloc
CoCreateInstance
OleLockRunning
CreateDataAdviseHolder
OleInitialize
ReleaseStgMedium
StringFromGUID2

kernel32

OpenFile
HeapFree
lstrlenA
SetFileTime
GetCurrentThreadId
GetFileTime
HeapSize
HeapAlloc
SetLastError
FormatMessageW
FreeLibrary
VirtualAlloc
MulDiv
LockResource
ReadFile
CloseHandle
IsValidCodePage
MoveFileW
lstrcmpW
FileTimeToSystemTime
GetFileSize
GetUserDefaultLCID
lstrlenW
LocalFree
SetFilePointer
IsDebuggerPresent
LeaveCriticalSection
GetProcessHeap
GlobalReAlloc
FindResourceW
FindFirstFileW
UnhandledExceptionFilter
HeapReAlloc
TlsAlloc
UnmapViewOfFile
IsDBCSLeadByte
RaiseException
GetComputerNameW
GetModuleHandleW
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
LoadResource
HeapDestroy
DeleteFileW
InterlockedPopEntrySList
DeleteCriticalSection
MapViewOfFile
SetFileAttributesW
GlobalFree
FindClose
CopyFileW
GlobalAlloc
CreateDirectoryW
GetSystemTimeAsFileTime
SetEndOfFile
VirtualFree
TlsGetValue
CompareStringW
lstrcmpiW
FindResourceExW
EnterCriticalSection
SizeofResource
FindNextFileW
GetACP
SetUnhandledExceptionFilter
CreateFileMappingA
GlobalUnlock
LoadLibraryExW
TlsFree
CreateFileW
GetTempFileNameW
GetFileType
InterlockedPushEntrySList
TlsSetValue
GlobalSize
CreateFileA
RemoveDirectoryW
GetLocalTime
GetFullPathNameW
GlobalLock
FlushInstructionCache
FlushFileBuffers
WriteFile
IsProcessorFeaturePresent
LocalAlloc
VirtualAllocEx

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
ImageList_AddMasked
ImageList_Create
ImageList_GetImageCount
CreateStatusWindow
FlatSB_SetScrollRange
ImageList_SetOverlayImage
DllGetVersion
DestroyPropertySheetPage
ImageList_EndDrag

advapi32

RegEnumValueW
RegOpenKeyExW
RegCreateKeyExW
RegQueryInfoKeyW
RegSetValueExW
CryptDestroyKey
CryptReleaseContext
RegCloseKey
RegQueryValueExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW

user32

GetClientRect
CallWindowProcW
CharLowerBuffW
LoadBitmapW
MoveWindow
RedrawWindow
CharNextA
PeekMessageW
ReleaseCapture
GetKeyState
DestroyWindow
LoadStringA
GetMonitorInfoW
DialogBoxIndirectParamW
GetDlgItem
GetDC
IsWindow
GetClassNameW
GetCursorPos
GetWindowRect
MonitorFromWindow
DispatchMessageW
EnableWindow
IsDlgButtonChecked
GetWindow
IsChild
GetWindowLongW
InvalidateRect
LoadImageW
SetFocus
GetDlgItemInt
CreateDialogIndirectParamW
LoadStringW
SetCursor
GetDlgItemTextW
GetSysColor
DrawTextExW
GetParent
TranslateMessage
CreateDialogParamW
SetDlgItemInt
RegisterClassExW
ReleaseDC
DialogBoxParamW
BeginPaint
ScreenToClient
SetCapture
IsClipboardFormatAvailable
ShowWindow
EndPaint
SetWindowTextW
GetWindowTextW
LoadCursorW
LoadIconW
RegisterClipboardFormatW
CreateAcceleratorTableW
SetWindowLongW
DefWindowProcW
DestroyAcceleratorTable
CheckDlgButton
SetWindowPos
EmptyClipboard
InvalidateRgn
MessageBoxW
OpenClipboard
GetWindowTextLengthW
CreateWindowExW
GetDialogBaseUnits
SetDlgItemTextW
GetClassInfoExW
ClientToScreen
GetDesktopWindow
EndDialog
MapWindowPoints
SendMessageW
PostMessageW
UnregisterClassA
IsCharAlphaNumericW
GetActiveWindow
SendDlgItemMessageW
GetFocus
IsDialogMessageW
CharNextW
FillRect
DrawFocusRect
IsWindowEnabled
RegisterWindowMessageW
GetNextDlgTabItem
UpdateWindow

crypt32

CryptProtectData
CryptUnprotectData

oleaut32

UnRegisterTypeLi
VarUI4FromStr
VariantCopyInd
SafeArrayAccessData
SafeArrayUnlock
VarBstrCmp
RegisterTypeLi
SysAllocStringLen
SetErrorInfo
SysFreeString
VariantInit
SysAllocStringByteLen
SafeArrayRedim
VariantChangeTypeEx
VariantClear
SafeArrayUnaccessData
OleCreateFontIndirect
SafeArrayDestroy
LoadTypeLi
VariantCopy
VarBstrFromDate
SafeArrayGetLBound
VariantChangeType
SafeArrayCreate
SysStringByteLen
SafeArrayLock
LoadRegTypeLi
SafeArrayGetUBound
SysAllocString
GetErrorInfo
VarBstrCat
LoadTypeLibEx
SysStringLen
SafeArrayGetVartype

gdi32

SetBkColor
BitBlt
DeleteObject
CreateSolidBrush
CreateFontIndirectW
SetTextColor
CreateCompatibleDC
CopyMetaFileW
SelectObject
GetDeviceCaps
GetTextExtentPointW
GetStockObject
GetObjectW
CreateBitmap
CreateCompatibleBitmap
GetTextExtentPoint32W
GetTextMetricsW
ExtTextOutW
DeleteDC

mssign32

DllRegisterServer
SignerAddTimeStampResponseEx
SignerAddTimeStampResponse

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 38KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 177KB - Virtual size: 803KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d007a9e3e837ca7c11624643d6723da4

Headers

File Characteristics

Imports

shell32

ole32

kernel32

comctl32

advapi32

user32

crypt32

oleaut32

gdi32

mssign32

Sections

.text Size: 21KB - Virtual size: 21KB

.bss Size: 38KB - Virtual size: 229KB

.reloc Size: 177KB - Virtual size: 803KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 64KB - Virtual size: 1.0MB

.rsrc Size: 10KB - Virtual size: 79KB

.text
Size: 21KB - Virtual size: 21KB

.bss
Size: 38KB - Virtual size: 229KB

.reloc
Size: 177KB - Virtual size: 803KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 64KB - Virtual size: 1.0MB

.rsrc
Size: 10KB - Virtual size: 79KB