75763128c567a16503aaed1597c89944942f303c056deb31fa59685bddb64b43

Sharing

Copy URL Twitter E-mail

General

Target

75763128c567a16503aaed1597c89944942f303c056deb31fa59685bddb64b43
Size

831KB
MD5

c41b6b5b90e02439aa4e491322c4f262
SHA1

4be7685ade82c03c50116a6c074b58bda2db6482
SHA256

75763128c567a16503aaed1597c89944942f303c056deb31fa59685bddb64b43
SHA512

44df2225fbb9855e4f84de2c4bb1f4fd7652a27fcfccd687b5518eeea4a9e443e774e4639abe6f6b261f4f1f5f965dd6ade14173b1690a1cc0ce1b53c793195f
SSDEEP

24576:oFbXdG8GDdN0evk2/JejTMM/TiWyyWNH+MdE+:MX48GXPT/4jTp/TWyWxhC

Score

N/A

Malware Config

Signatures

Files

75763128c567a16503aaed1597c89944942f303c056deb31fa59685bddb64b43
.exe windows x86

35e957acd78709d0407b0f7e5604dab1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
FreeLibrary
ExitProcess
LoadLibraryExW
lstrcatW
GetVersion
CreateProcessW
lstrcmpiW
GetFullPathNameW
lstrcpyW
Sleep
SearchPathW
GetSystemDirectoryW
WriteFile
GetPrivateProfileStringW
ExpandEnvironmentStringsW
GetProcAddress
WaitForSingleObject
CopyFileW
CreateDirectoryW
lstrcpynA
GetTempFileNameW
GlobalLock
GetShortPathNameW
lstrcmpW
GetTickCount
lstrcpynW
CreateThread
CreateFileW
ReadFile
MoveFileW
LoadLibraryA
SetErrorMode
WideCharToMultiByte
GetCommandLineW
SetCurrentDirectoryW
FindClose
GetModuleHandleW
HeapAlloc
HeapCreate
GetModuleHandleA
GetTempPathW
CloseHandle
lstrcpyA
GlobalUnlock
RemoveDirectoryW
OpenProcess
SetFilePointer
CompareFileTime
GlobalAlloc
MultiByteToWideChar
LoadLibraryW
WritePrivateProfileStringW
DeleteFileW
SetFileTime
GetVersionExW
SetFileAttributesW
GetFileAttributesW
GetExitCodeProcess
GlobalFree
GetDiskFreeSpaceW
lstrcmpiA
GetWindowsDirectoryW
GetLastError
MulDiv
GetModuleFileNameW
FindNextFileW
GetCurrentProcess
GetFileSize
FindFirstFileW
lstrlenA

user32

DefWindowProcW
CharNextW
GetMessagePos
LoadCursorW
LoadBitmapW
IsWindowVisible
GetSystemMetrics
IsWindow
CloseClipboard
CheckDlgButton
PostQuitMessage
OpenClipboard
SystemParametersInfoW
PeekMessageW
GetSysColor
DispatchMessageW
CharPrevW
EndDialog
ExitWindowsEx
AppendMenuW
TrackPopupMenu
SetWindowTextW
IsWindowEnabled
GetClassInfoW
GetSystemMenu
SetDlgItemTextW
wsprintfA
GetDlgItemTextW
GetWindowRect
SetClassLongW
LoadImageW
MessageBoxIndirectW
SetWindowPos
CharNextA
CharUpperW
DestroyWindow
EmptyClipboard
SendMessageW
CallWindowProcW
ScreenToClient
EndPaint
CreateDialogParamW
GetWindowLongW
SetWindowLongW
FindWindowExW
ShowWindow
wsprintfW
EnableMenuItem
DialogBoxParamW
SetTimer
RegisterClassW
GetDC
CreateWindowExW
FillRect
SendMessageTimeoutW
EnableWindow
SetClipboardData
SetForegroundWindow
InvalidateRect
BeginPaint
CreatePopupMenu
GetClientRect
DrawTextW
SetCursor
GetDlgItem

gdi32

CreateFontIndirectW
SetBkColor
SelectObject
SetBkMode
GetDeviceCaps
CreateBrushIndirect
DeleteObject
SetTextColor

advapi32

RegEnumValueW
RegDeleteValueW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyW
RegCloseKey
RegDeleteKeyW
RegQueryValueExW

shell32

ShellExecuteW
SHGetFileInfoW
SHGetPathFromIDListW
SHFileOperationW
SHBrowseForFolderW
SHGetSpecialFolderLocation

ole32

OleUninitialize
CoCreateInstance
CoTaskMemFree
OleInitialize

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

secur32

QuerySecurityPackageInfoA

wldap32

ord13

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xyue
Size: 512B - Virtual size: 297B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 612KB - Virtual size: 611KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35e957acd78709d0407b0f7e5604dab1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

version

secur32

wldap32

Sections

.text Size: 97KB - Virtual size: 97KB

.xyue Size: 512B - Virtual size: 297B

.rdata Size: 612KB - Virtual size: 611KB

.data Size: 100KB - Virtual size: 5.9MB

.CRT Size: 512B - Virtual size: 8B

.tls Size: 512B - Virtual size: 57B

.rsrc Size: 13KB - Virtual size: 13KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 97KB - Virtual size: 97KB

.xyue
Size: 512B - Virtual size: 297B

.rdata
Size: 612KB - Virtual size: 611KB

.data
Size: 100KB - Virtual size: 5.9MB

.CRT
Size: 512B - Virtual size: 8B

.tls
Size: 512B - Virtual size: 57B

.rsrc
Size: 13KB - Virtual size: 13KB

.reloc
Size: 5KB - Virtual size: 5KB