b184c4ad59a1f6becddda7deb7acb6cc079e593040f98fc8b49620b8b282bc01

Sharing

Copy URL Twitter E-mail

General

Target

b184c4ad59a1f6becddda7deb7acb6cc079e593040f98fc8b49620b8b282bc01
Size

141KB
MD5

463170c4b3c0396fa618e4e0b86bd98b
SHA1

d501a7c627df768cdbd62bdb814174c385afe3fc
SHA256

b184c4ad59a1f6becddda7deb7acb6cc079e593040f98fc8b49620b8b282bc01
SHA512

2226bd53e0af7c5d17565d24f10339d535ea2ebdac696624f6f5a81d3a3ddfc7669b8b5a63ac5c90814bcab0feaa6286b3033f290531d12bc6cddb14dc3fdb84
SSDEEP

3072:7v+jT1DYo9lkTRnNiianS55V+YrZKh+H6qmCLH5S/3:2hDY+ls1MLzhtqmIG

Score

N/A

Malware Config

Signatures

Files

b184c4ad59a1f6becddda7deb7acb6cc079e593040f98fc8b49620b8b282bc01
.exe windows x86

3510655314b86c163ff2a65262d4d5eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

mbstowcs
putc
_controlfp
getenv
iswxdigit
calloc
perror
ungetc
gets
__set_app_type
wcspbrk
iswdigit
strncpy
fputc
strcoll
isspace
wcscspn
wcscat
wcscpy
__p__fmode
islower
qsort
atoi
mktime
__p__commode
exit
iswprint
strspn
gmtime
_amsg_exit
_initterm
wcstod
fflush
free
_ismbblead
_XcptFilter
setlocale
strcspn
toupper
_exit
wcstombs
_cexit
swscanf
__setusermatherr
wcstol
srand
__getmainargs

user32

InSendMessage
IsRectEmpty
DrawTextA
IsWindowEnabled
GetSysColor
DeleteMenu
MapVirtualKeyW
GetKeyboardLayout
KillTimer
MonitorFromRect
UnloadKeyboardLayout
TrackPopupMenu
DeferWindowPos
DestroyCaret
CopyAcceleratorTableW
CheckMenuItem
SetPropW
IsZoomed
CheckMenuRadioItem
SetWindowPos
GetWindowLongW
DrawIcon
ValidateRect
GetLastActivePopup
SendInput
HideCaret
DestroyAcceleratorTable
AttachThreadInput
MessageBoxA
DrawTextExW
SetMenuDefaultItem
SetClassLongW
CreateDialogIndirectParamW
ScreenToClient
GetSysColorBrush
CopyRect
GetWindow
MessageBoxExA
CreateCaret
LoadStringA
ShowWindowAsync
CreateMenu
MapDialogRect
GetCursorPos
DialogBoxParamA
IsCharAlphaA
MapVirtualKeyA
WaitForInputIdle
FindWindowW
GetKeyboardLayoutNameW
CharUpperW
EndDialog
GetMenuState
FindWindowExA
RegisterClassW
LoadMenuW
GetMenu
GetShellWindow
GetDCEx
SendNotifyMessageW
CreateCursor
GetClassInfoExW
SetScrollRange
ExitWindowsEx
GetWindowRect
GetMenuItemRect
LoadImageW
LoadCursorA
IsCharAlphaW
DestroyCursor
DispatchMessageW
GetCaretPos
OffsetRect
GetMessagePos
GetClassLongA
LoadAcceleratorsA
GetKeyState
GetWindowPlacement
GetMenuCheckMarkDimensions
SetRectEmpty
GetClipCursor
PeekMessageA
GetMonitorInfoW
GetDlgCtrlID
GetUserObjectInformationA
IsCharAlphaNumericW
GetKeyboardType
DispatchMessageA
EnableScrollBar
EnumThreadWindows
VkKeyScanW
GetIconInfo
CreateIconFromResource
HiliteMenuItem
DrawEdge
GetClassLongW
GetDlgItemTextW
wsprintfW
ShowCursor
GetScrollPos
GetDialogBaseUnits
BeginDeferWindowPos
SendMessageTimeoutW
EnableMenuItem
CharToOemW
CreateWindowExA
GetSubMenu
SetLastErrorEx
TrackPopupMenuEx
CopyImage
ToUnicodeEx
LoadBitmapA
SetCaretPos
SetMenuItemInfoW
SetDlgItemTextW
GetDlgItem
ChangeMenuW
GetWindowTextW
GetMenuItemID

comctl32

ImageList_LoadImageW
PropertySheetW
CreateStatusWindowW
ImageList_Create
ImageList_GetImageCount
DestroyPropertySheetPage

kernel32

CompareStringA
SetNamedPipeHandleState
GetFullPathNameW
FindNextChangeNotification
GetThreadContext
GetBinaryTypeA
IsDBCSLeadByte
TerminateThread
CreateDirectoryW
WaitCommEvent
FlushViewOfFile
GlobalFree
RaiseException
LCMapStringW
lstrcmpiA
RegisterWaitForSingleObject
PulseEvent
SetHandleCount
EnumResourceNamesA
EscapeCommFunction
GlobalCompact
SetThreadAffinityMask
GetLastError
CreateFileW
VirtualProtect
WaitForMultipleObjects
VerSetConditionMask
GetModuleHandleA
LocalReAlloc
lstrcmpiW
GlobalDeleteAtom
FormatMessageW
GetTempFileNameA
CreateThread
LockFile
GetSystemDirectoryA
OpenEventW
CompareStringW
HeapWalk
ResetEvent
GlobalFindAtomW
DeleteAtom
CreateNamedPipeW
EnumResourceTypesA
RemoveDirectoryW
FindResourceExA
CreateRemoteThread
SetMailslotInfo
SetCurrentDirectoryW
GetWindowsDirectoryW
GetFileTime
EnumSystemLocalesA
GetComputerNameExW
GetModuleFileNameA
GetCommModemStatus
SetLastError
SizeofResource

shlwapi

UrlGetPartA

Exports

Exports

?RedirectOutputMsg@@YGKPBDDKPAX:O

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cexp
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.regs
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.citab
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$dbug
Size: 512B - Virtual size: 97B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lime
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdat
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3510655314b86c163ff2a65262d4d5eb

Headers

File Characteristics

Imports

msvcrt

user32

comctl32

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.cexp Size: 512B - Virtual size: 95B

.regs Size: 1KB - Virtual size: 1KB

.citab Size: 6KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 124KB

.$dbug Size: 512B - Virtual size: 97B

.lime Size: 1024B - Virtual size: 612B

.tdat Size: 1024B - Virtual size: 704B

.rsrc Size: 105KB - Virtual size: 105KB

.text
Size: 22KB - Virtual size: 21KB

.cexp
Size: 512B - Virtual size: 95B

.regs
Size: 1KB - Virtual size: 1KB

.citab
Size: 6KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 124KB

.$dbug
Size: 512B - Virtual size: 97B

.lime
Size: 1024B - Virtual size: 612B

.tdat
Size: 1024B - Virtual size: 704B

.rsrc
Size: 105KB - Virtual size: 105KB