347e2ea292612068ae62aa7248250d235c5b4f970a80dd424fcbc3b524fbc385

Sharing

Copy URL

Twitter E-mail

General

Target

347e2ea292612068ae62aa7248250d235c5b4f970a80dd424fcbc3b524fbc385
Size

317KB
MD5

fc30452762b48cf9cf507ab5c61246dc
SHA1

1260dbaf5a60cc2b5c5d80472a49ba3c21f22c14
SHA256

347e2ea292612068ae62aa7248250d235c5b4f970a80dd424fcbc3b524fbc385
SHA512

866558966472add38acbb5a50b172513051eb523250de0445c4012bdc0d86052395de165fb5f88741790c42eec8755fecb398b548300c8c56f71d0699ba9e557
SSDEEP

6144:w44LdmDldnMTnuYzVrxEB4oNefMb0E6MHii3uDT9lZHS/ar18o+qxsV:w4Am5+KCMB4uebELb3wTD5Si/Lu

Score

N/A

Malware Config

Signatures

Files

347e2ea292612068ae62aa7248250d235c5b4f970a80dd424fcbc3b524fbc385
.exe windows x86

e24e5dfeb6c01e7da1f79e7119b760da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA

comdlg32

CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameA

shlwapi

StrChrW
StrRetToStrW
PathRenameExtensionW

ole32

CoRevokeClassObject
CoTaskMemAlloc
CoUninitialize
OleSetMenuDescriptor
CoTaskMemFree
OleIsRunning
OleQueryLinkFromData
OleSave
OleGetIconOfClass
GetRunningObjectTable

advapi32

InitializeSid
CryptGenRandom
GetSidLengthRequired
RegEnumKeyExA
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetNamedSecurityInfoW
CryptGetHashParam
QueryServiceStatus
OpenServiceA
SetFileSecurityA
SetNamedSecurityInfoW

kernel32

PulseEvent
GetACP
FindNextFileA
_lopen
WinExec
GetFullPathNameA
VirtualFree
GetFileSizeEx
GetThreadPriority
SetThreadPriority
SetErrorMode
WriteProfileStringA
lstrcpynA
DeviceIoControl
FreeResource
IsBadReadPtr
LoadResource
SearchPathA
TlsAlloc
FileTimeToDosDateTime
CreateSemaphoreA
GetUserGeoID
CreateMutexW
GetCurrentProcessId
GetDriveTypeW
MulDiv
FlushFileBuffers
UnhandledExceptionFilter
CreateTimerQueue
GetUserDefaultLCID
CreateFileMappingW
GetDateFormatA
Process32NextW
lstrcmpA
OpenFileMappingW
QueryPerformanceFrequency
CreateFileA
GlobalMemoryStatus
LockResource
WritePrivateProfileStringA
GetComputerNameA
ReleaseSemaphore
WaitForMultipleObjects
FormatMessageW
GetFileAttributesExW
GetUserDefaultLangID
CreateIoCompletionPort
GetPrivateProfileIntW
GetTempPathA
Beep
GetTempPathW
GetProcessAffinityMask
FindResourceExW
SetUnhandledExceptionFilter
GetStartupInfoW
GetTimeZoneInformation
SwitchToThread
OpenMutexA
RaiseException
GetDiskFreeSpaceA
GetVolumeInformationW
HeapSetInformation
WideCharToMultiByte
InterlockedExchange
lstrcmpiA
FileTimeToLocalFileTime
DosDateTimeToFileTime
GlobalGetAtomNameA
OutputDebugStringW
GetSystemTime
MoveFileExA
LocalReAlloc
GetCommandLineA
GetDiskFreeSpaceW
CreateToolhelp32Snapshot
GetDriveTypeA
MoveFileA
SetStdHandle
GetFileInformationByHandle
GetOverlappedResult
_lread
GetSystemWindowsDirectoryW
CloseHandle
LockFile
ResetEvent
GetDateFormatW
GetComputerNameW
WriteFile
GetCurrentThreadId
GetLogicalDrives
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
RtlUnwind
HeapFree
HeapCreate
HeapDestroy
GetVersionExA
GetLastError
TlsGetValue
SetLastError
TlsSetValue
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetCurrentProcess
TerminateProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
VerifyVersionInfoW
IsDBCSLeadByteEx
GlobalGetAtomNameW
CreateFileW
GetWindowsDirectoryA
GetEnvironmentVariableA
LoadLibraryW
GetPrivateProfileSectionA
GetOEMCP
GlobalDeleteAtom
DeleteFileA
VirtualAlloc
lstrlenA
HeapAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
ExitProcess
GlobalAddAtomW

comctl32

ImageList_SetDragCursorImage
_TrackMouseEvent
ImageList_DragEnter
ImageList_Write
InitCommonControlsEx

oleaut32

RegisterTypeLi

shell32

SHGetDesktopFolder

user32

FillRect
GetIconInfo
TrackPopupMenuEx
DefWindowProcW
SendNotifyMessageA
SendMessageW
IsCharAlphaA
SetCursorPos
TabbedTextOutA
SetCursor
GetDlgCtrlID
ModifyMenuA
GetClassNameA
GetMenuItemInfoW
FindWindowA
wsprintfW
ExcludeUpdateRgn
SetScrollInfo
ModifyMenuW
LoadAcceleratorsA
SetForegroundWindow
UnregisterClassW
GetActiveWindow
ClientToScreen
GetDlgItem
SetMenu
GetMenuItemID
GetMenuItemInfoA
TranslateMessage
OffsetRect
SetFocus
LoadBitmapW
CreateIcon
MapVirtualKeyW
BeginPaint

gdi32

IntersectClipRect
FillRgn
GetClipRgn
CreatePalette
TextOutW
GetSystemPaletteEntries
SetPixel
ExtTextOutW
ScaleWindowExtEx
GetCurrentPositionEx
CreateBitmap
GetViewportExtEx
SetTextColor
SetViewportOrgEx
SelectPalette
DPtoLP
FrameRgn
Arc
Polyline
GetNearestColor
GetViewportOrgEx
GetBrushOrgEx
GetStockObject
GetBitmapBits
CreateSolidBrush
EnumMetaFile
GetBkColor
CreateCompatibleDC
GetCharWidthA
SetLayout
StretchDIBits
PatBlt
GetSystemPaletteUse
PlayMetaFile

Sections

.text
Size: 258KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e24e5dfeb6c01e7da1f79e7119b760da

Headers

File Characteristics

Imports

version

comdlg32

shlwapi

ole32

advapi32

kernel32

comctl32

oleaut32

shell32

user32

gdi32

Sections

.text Size: 258KB - Virtual size: 257KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 18KB - Virtual size: 19KB

.rsrc Size: 1024B - Virtual size: 648B

.text
Size: 258KB - Virtual size: 257KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 18KB - Virtual size: 19KB

.rsrc
Size: 1024B - Virtual size: 648B