8a9f08d95349f58bf75d75b232c71cc06607c82ef85bd19815ab17aadc67861b

Sharing

Copy URL Twitter E-mail

General

Target

8a9f08d95349f58bf75d75b232c71cc06607c82ef85bd19815ab17aadc67861b
Size

55KB
MD5

de3d1f1053c0198f56ee1eb99c8f779b
SHA1

2ea9480f10282c2c06645836c43d15ba8bfe3cd6
SHA256

8a9f08d95349f58bf75d75b232c71cc06607c82ef85bd19815ab17aadc67861b
SHA512

cbac7c7b943efa7ce192c201cc57127e4d32549837e25ed5fb6f37b5b97fad8f3f6a196574f98858dcd7e4122daaea8ba3b603f520e7efc94ac6121341db8859
SSDEEP

768:2G0dQoS6SQAaIvRexhlm2+0sprqSw/ZHOBFoSEWbDI41HGku0qkcrG+:2G89SQTyqmp0YWSw/ZHOBFCoDIkHyG+

Score

N/A

Malware Config

Signatures

Files

8a9f08d95349f58bf75d75b232c71cc06607c82ef85bd19815ab17aadc67861b
.exe windows x86

0a743d3c1825fd612ed080adaf723734

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageW
GetACP
GetCPInfo
GetCommandLineW
GetDateFormatW
GetLocalTime
GetLocaleInfoW
GetStartupInfoA
GetTimeFormatW
GetUserDefaultLCID
GetUserDefaultLangID
GlobalFree
GlobalLock
GlobalUnlock
IsDBCSLeadByte
LocalAlloc
LocalFree
FoldStringW
LocalReAlloc
LocalSize
LocalUnlock
MapViewOfFile
MulDiv
MultiByteToWideChar
SetEndOfFile
UnmapViewOfFile
WideCharToMultiByte
WriteFile
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
CreateFileMappingW
CompareStringW
CloseHandle
GetModuleHandleA
GetProcessHeap
GetProcAddress
LocalLock
LoadLibraryA

user32

ChildWindowFromPointEx
ChildWindowFromPoint
CharLowerW
CharNextW
CharUpperW
CheckMenuItem
CreateDialogParamW
CreateWindowExW
DefWindowProcW
DestroyWindow
ClientToScreen
DispatchMessageW
DrawTextExW
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItemTextW
GetFocus
GetForegroundWindow
GetKeyboardLayout
GetMenu
GetMenuState
GetMessageW
GetSubMenu
GetSystemMenu
GetSystemMetrics
GetWindowLongW
GetWindowPlacement
GetWindowTextW
InvalidateRect
IsClipboardFormatAvailable
IsDialogMessageW
IsIconic
LoadAcceleratorsW
LoadCursorW
LoadIconW
LoadImageW
LoadStringW
MessageBeep
MessageBoxW
MoveWindow
OpenClipboard
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassExW
RegisterWindowMessageW
ReleaseDC
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCursor
SetDlgItemTextW
SetFocus
SetScrollPos
SetWindowLongW
SetWindowPlacement
SetWindowTextW
ShowWindow
TranslateAcceleratorW
TranslateMessage
UpdateWindow
WinHelpW
wsprintfW
ClipCursor
CloseClipboard
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndDialog
EndMenu
EndPaint
EnumChildWindows
DialogBoxParamW

comdlg32

FindTextW
GetFileTitleW
GetOpenFileNameW
CommDlgExtendedError
PageSetupDlgW
PrintDlgExW
ReplaceTextW
GetSaveFileNameW
ChooseFontW

advapi32

RegOpenKeyA

msvcrt

memcpy
memset

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 942B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a743d3c1825fd612ed080adaf723734

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

msvcrt

Sections

.text Size: 47KB - Virtual size: 47KB

.data Size: 512B - Virtual size: 220B

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 1024B - Virtual size: 942B

.text
Size: 47KB - Virtual size: 47KB

.data
Size: 512B - Virtual size: 220B

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 1024B - Virtual size: 942B