0c6f54436ec331a616dde0814a7a96f44d1545c96ae7e33d182245c2b0af818b

Sharing

Copy URL

Twitter E-mail

General

Target

0c6f54436ec331a616dde0814a7a96f44d1545c96ae7e33d182245c2b0af818b
Size

260KB
MD5

7c937f7d86812e07c22a4f46b8e3725e
SHA1

a0a527f9d5cfc3b3da8644934e036de449cc729a
SHA256

0c6f54436ec331a616dde0814a7a96f44d1545c96ae7e33d182245c2b0af818b
SHA512

8783c9655ad1adb74a49381b3ce5abff9478e12f90be8a5503e9b012549ffbc9aca2075307e0ded336e7dfbe03b4056f7fa0f2dd85f3b24493d50280970c17a6
SSDEEP

6144:JZz3mBH5cDE7EX7FruyHevvHeauf5rPTvp7HmF07gV9L+k:bWBeDT7FruyHee5rPTRaKwi

Score

N/A

Malware Config

Signatures

Files

0c6f54436ec331a616dde0814a7a96f44d1545c96ae7e33d182245c2b0af818b
.exe windows x86

1336cc21127e018e3523feb243be2a06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
VarUI4FromStr
SysFreeString

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateGuid

comdlg32

CommDlgExtendedError
GetOpenFileNameW

kernel32

LeaveCriticalSection
FlushInstructionCache
LockResource
GetDateFormatW
LoadLibraryExW
GetSystemTime
GetModuleHandleW
CreateFileA
EnterCriticalSection
SystemTimeToTzSpecificLocalTime
GetFileSize
GetProcessHeap
GetLogicalDrives
SizeofResource
GetCurrentDirectoryW
FindNextFileW
HeapReAlloc
FindFirstFileW
HeapDestroy
DeleteFileW
GetSystemTimeAsFileTime
CloseHandle
VirtualFree
IsProcessorFeaturePresent
SetCurrentDirectoryW
SetEndOfFile
RemoveDirectoryW
LoadResource
lstrcmpiW
WideCharToMultiByte
DeleteCriticalSection
HeapSize
RaiseException
SetFilePointer
FormatMessageW
GetDriveTypeW
CreateFileW
IsDebuggerPresent
LocalAlloc
SystemTimeToFileTime
HeapFree
FindClose
FileTimeToSystemTime
LocalFree
SetUnhandledExceptionFilter
OutputDebugStringW
FreeLibrary
VirtualAlloc
lstrlenW
FindResourceExW
ReadFile
FindResourceW
GetTimeFormatW
HeapAlloc
UnhandledExceptionFilter
WriteFile
GetCurrentThreadId
LoadLibraryW
VirtualAllocEx

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
ImageList_LoadImageW
ImageList_Create

user32

FindWindowExW
GetWindowPlacement
FlashWindow
AttachThreadInput
CallWindowProcW
GetMessagePos
GetSystemMenu
GetClientRect
MonitorFromPoint
SetWindowTextW
TrackPopupMenuEx
DestroyIcon
EndDialog
SendMessageW
GetForegroundWindow
SetDlgItemTextW
CharNextW
ScreenToClient
IsRectEmpty
DialogBoxParamW
IsWindow
DestroyWindow
GetSystemMetrics
DefWindowProcW
GetDlgItem
GetActiveWindow
GetWindowThreadProcessId
IsIconic
GetParent
ShowWindow
CreateWindowExW
MapDialogRect
LoadCursorW
GetWindow
MonitorFromWindow
GetDesktopWindow
SetCursor
SetForegroundWindow
SetWindowPos
GetMonitorInfoW
MapWindowPoints
GetWindowRect
GetKeyboardType
GetWindowLongW
LoadImageW
SetWindowLongW
EnableWindow
RedrawWindow
ClientToScreen
MoveWindow
UnregisterClassA

esent

JetStopServiceInstance
JetRestore2
JetSetSessionContext
JetSetColumns
JetOpenTable
JetGetColumnInfo
JetIdle
JetResetCounter
JetTerm
JetIntersectIndexes
JetGetVersion
JetCreateDatabase2
JetBeginExternalBackup
JetAttachDatabase2

kbdkaz

KbdLayerDescriptor

Sections

.VYiNFJ
Size: 1KB - Virtual size: 17KB

IMAGE_SCN_MEM_READ

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.KSCJ
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JjhNn
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oamox
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.txjER
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ApTdENG
Size: 512B - Virtual size: 199B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.XPUnsHl
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lYUgV
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iwbPwgi
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aRtb
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.XpzjpM
Size: 1024B - Virtual size: 969B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1336cc21127e018e3523feb243be2a06

Headers

File Characteristics

Imports

oleaut32

ole32

comdlg32

kernel32

comctl32

user32

esent

kbdkaz

Sections

.VYiNFJ Size: 1KB - Virtual size: 17KB

.text Size: 17KB - Virtual size: 17KB

.KSCJ Size: 3KB - Virtual size: 2KB

.JjhNn Size: 1KB - Virtual size: 1KB

.oamox Size: 2KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 228KB

.txjER Size: 3KB - Virtual size: 2KB

.ApTdENG Size: 512B - Virtual size: 199B

.rdata Size: 209KB - Virtual size: 209KB

.XPUnsHl Size: 1KB - Virtual size: 1KB

.lYUgV Size: 1KB - Virtual size: 1KB

.iwbPwgi Size: 3KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 3KB

.aRtb Size: 1KB - Virtual size: 1KB

.XpzjpM Size: 1024B - Virtual size: 969B

.VYiNFJ
Size: 1KB - Virtual size: 17KB

.text
Size: 17KB - Virtual size: 17KB

.KSCJ
Size: 3KB - Virtual size: 2KB

.JjhNn
Size: 1KB - Virtual size: 1KB

.oamox
Size: 2KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 228KB

.txjER
Size: 3KB - Virtual size: 2KB

.ApTdENG
Size: 512B - Virtual size: 199B

.rdata
Size: 209KB - Virtual size: 209KB

.XPUnsHl
Size: 1KB - Virtual size: 1KB

.lYUgV
Size: 1KB - Virtual size: 1KB

.iwbPwgi
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 3KB

.aRtb
Size: 1KB - Virtual size: 1KB

.XpzjpM
Size: 1024B - Virtual size: 969B