b938ca4bb3ba8c81414b3e8db77b2a03e54c7674f163f0777d35aa8ef2c4c25c

Sharing

Copy URL Twitter E-mail

General

Target

b938ca4bb3ba8c81414b3e8db77b2a03e54c7674f163f0777d35aa8ef2c4c25c
Size

135KB
MD5

76c50fa848007847b577320a75f1c3d7
SHA1

2b9ff4e7776d8e95b5b338b653b47f303a4fe20e
SHA256

b938ca4bb3ba8c81414b3e8db77b2a03e54c7674f163f0777d35aa8ef2c4c25c
SHA512

1cb7da759187462193a8f73bb452898f4449f14a1c7e83ce2fb08495d105d3776807722c39b0008294749f9a92e584ebe0f3b64eeabdf10ee25bc2064694950f
SSDEEP

3072:zsJQzYuEEji0JRkyFK5LORx6Fpxu9TdayaFyMj/IK:eQHEEji00iaLORx6nI/aUMj

Score

N/A

Malware Config

Signatures

Files

b938ca4bb3ba8c81414b3e8db77b2a03e54c7674f163f0777d35aa8ef2c4c25c
.exe windows x86

f741493da49ede0bd0f90d166abf4459

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
SetLastError
LockResource
GetCurrentProcess
GetCurrentDirectoryW
VirtualProtect
GetSystemTimeAsFileTime
LoadLibraryW
GetCommandLineW
GetACP
VirtualQuery
HeapFree
GetStartupInfoA
GetModuleFileNameW
IsDBCSLeadByte
RemoveDirectoryA
LocalLock
GetCommandLineA
InterlockedIncrement
CompareStringW
MapViewOfFile
CloseHandle
GetSystemInfo
GetSystemDirectoryW
GetShortPathNameW
EnterCriticalSection
InterlockedExchange
OutputDebugStringA
GetEnvironmentStringsW
WaitForMultipleObjects
VirtualFree
InitializeCriticalSection
InterlockedCompareExchange
GetCurrentProcessId
OpenProcess
LocalUnlock
lstrcpynA
GetFileInformationByHandle
ReadFile
RtlUnwind
GetModuleHandleW
lstrcpyW
WideCharToMultiByte
TerminateProcess
lstrcatW
MulDiv
IsValidLocale
WaitForSingleObject
GlobalUnlock
MultiByteToWideChar
GetLocalTime
GetCurrentThreadId
DeleteCriticalSection
UnhandledExceptionFilter
GetTimeFormatW
GlobalLock
LocalFree
Sleep
HeapAlloc
GetEnvironmentStrings
lstrlenA
DeleteFileW
GetLastError
FindFirstFileA
GetSystemDefaultLangID
TlsGetValue
SetFilePointer
SetUnhandledExceptionFilter
GetProcAddress
GetVolumeInformationW
GetUserDefaultUILanguage
FormatMessageW
GetSystemDefaultLCID
GlobalFree
GetTickCount
SetEndOfFile
LoadLibraryA
FreeLibrary
InterlockedDecrement
GetLocaleInfoW
GetFileSize
lstrcmpW
SetHandleCount
WriteFile
GetDateFormatW
OpenMutexA
LocalAlloc
HeapCreate
FindFirstFileW
GetExitCodeProcess
CreateFileMappingW
LocalReAlloc
GetUserDefaultLCID
SetConsoleCtrlHandler
lstrcmpiW
CreateFileA
ExitProcess
IsDebuggerPresent
GetFileAttributesW
DuplicateHandle
GetFileType
lstrlenW
HeapReAlloc
GetCPInfo
QueryPerformanceCounter
LocalSize
GetWindowsDirectoryA
GetVersionExW
FoldStringW
FindClose
TlsFree
UnmapViewOfFile
GetThreadLocale
lstrcpynW
GetModuleHandleA
GetStringTypeW

user32

FindWindowW
GetWindowPlacement
CheckMenuItem
SetWindowPos
GetWindowTextLengthW
LoadImageW
CreateWindowExW
SetFocus
SetScrollPos
LoadIconW
FillRect
wsprintfW
IsDialogMessageW
ShowWindow
GetMessageW
CloseClipboard
SetWindowTextW
SetCursor
PostQuitMessage
TranslateAcceleratorW
SetWindowPlacement
GetDlgItemTextW
GetMenuState
GetForegroundWindow
PeekMessageA
ScreenToClient
DestroyMenu
SystemParametersInfoW
CharUpperW
DrawTextA
ReleaseDC
CallWindowProcA
GetDlgCtrlID
SetWindowsHookExW
LoadStringW
InvalidateRect
UnhookWinEvent
OpenClipboard
GetWindowLongA
TranslateMessage
RegisterWindowMessageA
SendDlgItemMessageA
SetActiveWindow
EnableMenuItem
GetParent
GetSubMenu
RegisterClassW
IsIconic
WinHelpW
MessageBoxW
DispatchMessageA
GetFocus
EnableWindow
LoadBitmapW
GetSysColorBrush
EndDialog
PeekMessageW
UpdateWindow
LoadAcceleratorsW
GetWindowTextW
GetClientRect
GetDC
MoveWindow
PostMessageW
SetDlgItemTextW
DrawTextW
IsDlgButtonChecked
DestroyWindow
DispatchMessageW
CreateDialogParamW
GetWindowLongW
GetKeyboardLayout
SetDlgItemTextA
DialogBoxParamW
GetDesktopWindow
SetWinEventHook
MessageBeep
CharLowerW
SendMessageW
IsWindow
RegisterWindowMessageW
GetMenu
GetSystemMetrics
GetDlgItem
LoadCursorW
ChildWindowFromPoint
SetWindowLongW
ClientToScreen
GetSystemMenu
GetIconInfo
DrawTextExW
RegisterClassExW
PostMessageA
GetClassInfoExW
wsprintfA
SendDlgItemMessageW
DefWindowProcW
DestroyIcon
GetCursorPos
IsClipboardFormatAvailable
CharNextW
DeleteMenu

advapi32

RegSetValueExW
RegCloseKey
RegQueryValueExW
IsTextUnicode
RegQueryValueExA
RegCreateKeyW
RegOpenKeyExA

msvcrt

_errno
__p__fmode
_controlfp
_XcptFilter
malloc
__p__commode
_purecall
memcpy
_adjust_fdiv
iswctype
??0exception@@QAE@ABV0@@Z
??2@YAPAXI@Z
_exit
_acmdln
wcsrchr
wcsncmp
wcsncpy
wcschr
_unlock
__set_app_type
_wtol
__setusermatherr
_CxxThrowException
time
_initterm
_snwprintf
exit
_amsg_exit
?what@exception@@UBEPBDXZ
memset
localtime
__getmainargs
_c_exit
??3@YAXPAX@Z
_lock
_onexit
__dllonexit
_cexit

gdi32

LPtoDP
GetTextFaceW
StartPage
EndPage
CreateFontIndirectW
GetTextExtentPoint32W
EndDoc
GetDeviceCaps
StartDocW
AbortDoc
GetStockObject
SetMapMode
SetBkMode
DeleteDC
TextOutW
GetTextMetricsW
DeleteObject
SelectObject
EnumFontsW
SetViewportExtEx
SetWindowExtEx
SetAbortProc
GetObjectW
CreateDCW

comdlg32

GetFileTitleW
FindTextW
PrintDlgExW
ChooseFontW
ReplaceTextW
GetSaveFileNameW
CommDlgExtendedError
PageSetupDlgW
GetOpenFileNameW

shell32

ShellAboutW
DragQueryFileW
DragFinish
DragAcceptFiles

winspool.drv

ClosePrinter
OpenPrinterW
GetPrinterDriverW

comctl32

CreateStatusWindowW

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 102KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f741493da49ede0bd0f90d166abf4459

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

gdi32

comdlg32

shell32

winspool.drv

comctl32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 19KB - Virtual size: 18KB

.idata Size: 102KB - Virtual size: 192KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 19KB - Virtual size: 18KB

.idata
Size: 102KB - Virtual size: 192KB

.rsrc
Size: 3KB - Virtual size: 3KB