d8412da3d3002c0b60db17f259af0cdccab1e54cf0f5b3246490752d10bf1a7b

Sharing

Copy URL Twitter E-mail

General

Target

d8412da3d3002c0b60db17f259af0cdccab1e54cf0f5b3246490752d10bf1a7b
Size

204KB
MD5

cb5949d1caa68fd661c780e846ce991c
SHA1

74bb0e428340e07b676855b820b8047d57e2cfb9
SHA256

d8412da3d3002c0b60db17f259af0cdccab1e54cf0f5b3246490752d10bf1a7b
SHA512

b84bc9a6666e5ee2a2d8d89017c055795e55dfbfd79d5c8638b7087626166cf17d5e25cf1836579f0ec96c0b90b05f1e0dc1d5b1af0220b66402023d583faa90
SSDEEP

3072:XdoCZuxnbd+BOXUnCWd0UirrEkZwXH9XXVhn8okhvxG73FJ2Zh7filsFVc4GE:XLsbeWOtd0jjZIZFaTwjF+f0sI2

Score

N/A

Malware Config

Signatures

Files

d8412da3d3002c0b60db17f259af0cdccab1e54cf0f5b3246490752d10bf1a7b
.exe windows x86

00edddd1963b11f431e352e6d4a049d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
lstrlen
GetACP
GetUserDefaultLCID
ExitThread
CompareFileTime
CreateFileMappingA
SetCurrentDirectoryW
GlobalGetAtomNameW
WriteFile
CreateThread
AddAtomW
SetCalendarInfoW
EnumCalendarInfoA
CreateMailslotW
GetModuleFileNameA
GlobalFindAtomA
ReadDirectoryChangesW
InitializeCriticalSection
GetModuleHandleW
GetEnvironmentStringsW
FindAtomW
GetFullPathNameW
EnumCalendarInfoW
ExpandEnvironmentStringsA
DeleteAtom
DosDateTimeToFileTime
CompareStringW
GetThreadPriority
CreateFileA
lstrcmpW
EndUpdateResourceW
GetProcessHeap
LocalAlloc
GetLastError
MoveFileW
LoadResource
GetStartupInfoA
GetCurrentThread
OpenWaitableTimerA
SearchPathW
IsValidLocale
lstrcatW
GetCurrentProcess
GetProcAddress
GetWindowsDirectoryW
GetExpandedNameA
FindResourceW
IsValidCodePage
GetLongPathNameA
GetModuleHandleA
FindResourceA
SleepEx
OpenWaitableTimerW
EnumTimeFormatsA
lstrcmpi
SetComputerNameW
lstrcpy
GetDateFormatW

user32

CharUpperA
GetScrollPos
OpenClipboard
GetMenuStringA
GetMenuItemID
FindWindowW
LoadImageW
DialogBoxParamW
GetClientRect
CreateWindowExA
InsertMenuItemA
GetKeyboardType
GetMenuItemInfoW
CreateDesktopW
PeekMessageW
IsWindowEnabled
CharLowerA
LoadCursorA
IsWindow
DrawTextW
DeleteMenu
EnumWindows
CopyImage
SetMenu
GetDC
SetCapture
IsIconic
PostMessageW
GetCursorPos
SetWindowLongW
MoveWindow
GetMenuInfo
CharNextW
wsprintfA
CreateAcceleratorTableW
GetClassNameW
DestroyCursor
UpdateWindow
DefDlgProcA
GetDlgItemInt

gdi32

RemoveFontResourceExA
ModifyWorldTransform
PtInRegion
SetMapperFlags
GetOutlineTextMetricsW
EnumFontsW
CreateSolidBrush
DeleteColorSpace
GetTextMetricsA
GetGlyphIndicesA
SetPaletteEntries
GetCharacterPlacementW
StartDocA
DeleteEnhMetaFile
CreateRoundRectRgn
GetTextAlign
SetTextJustification
GetPath
GetBitmapBits

advapi32

RegSaveKeyW
RegEnumValueW
RegDeleteKeyA
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW

oleaut32

SafeArrayAllocData
VarI2FromI4
LHashValOfNameSysA

sqlunirl

_MessageBoxEx_@20
_GetServiceKeyName_@16
_CreateDC_@16
_RegDeleteValue_@8
_GetClassLong_@8
_OpenDesktop_@16
_CopyFile_@12
_CharUpperBuff_@8
_RegQueryMultipleValues_@20
_RegSetValueEx_@24
_GetDiskFreeSpace_@20
_GetClassInfo@12
_lstrcpy_@8
_CreateSemaphore_@16
_EnumFontFamilies_@16
_SendDlgItemMessage@20
_OutputDebugString_@4

crypt32

CertSetCRLContextProperty
CertIsValidCRLForCertificate
CertStrToNameW
CryptFindOIDInfo
CertGetSubjectCertificateFromStore
CertControlStore
CryptGetAsyncParam
CertAddCertificateLinkToStore
RegCreateHKCUKeyExU
CryptSetKeyIdentifierProperty
CryptVerifyMessageSignatureWithKey
CertEnumSystemStore
CryptSignAndEncryptMessage
CertFreeCRLContext
CertEnumCTLContextProperties
CertCreateCertificateChainEngine
I_CryptAddSmartCardCertToStore

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.HhRRLQ
Size: 1KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DMRcnN
Size: 1024B - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Se
Size: 1024B - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.KOKs
Size: 1024B - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cxunIg
Size: 5KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Ovg
Size: 1024B - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Lssq
Size: 1024B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.V
Size: 1024B - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Avc
Size: 1024B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tAui
Size: 2KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00edddd1963b11f431e352e6d4a049d2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

oleaut32

sqlunirl

crypt32

Sections

.text Size: 11KB - Virtual size: 11KB

.HhRRLQ Size: 1KB - Virtual size: 46KB

.DMRcnN Size: 1024B - Virtual size: 19KB

.Se Size: 1024B - Virtual size: 39KB

.KOKs Size: 1024B - Virtual size: 45KB

.cxunIg Size: 5KB - Virtual size: 29KB

.Ovg Size: 1024B - Virtual size: 33KB

.Lssq Size: 1024B - Virtual size: 24KB

.data Size: 6KB - Virtual size: 6KB

.V Size: 1024B - Virtual size: 17KB

.Avc Size: 1024B - Virtual size: 34KB

.tAui Size: 2KB - Virtual size: 97KB

.rsrc Size: 169KB - Virtual size: 168KB

.reloc Size: 1024B - Virtual size: 956B

.text
Size: 11KB - Virtual size: 11KB

.HhRRLQ
Size: 1KB - Virtual size: 46KB

.DMRcnN
Size: 1024B - Virtual size: 19KB

.Se
Size: 1024B - Virtual size: 39KB

.KOKs
Size: 1024B - Virtual size: 45KB

.cxunIg
Size: 5KB - Virtual size: 29KB

.Ovg
Size: 1024B - Virtual size: 33KB

.Lssq
Size: 1024B - Virtual size: 24KB

.data
Size: 6KB - Virtual size: 6KB

.V
Size: 1024B - Virtual size: 17KB

.Avc
Size: 1024B - Virtual size: 34KB

.tAui
Size: 2KB - Virtual size: 97KB

.rsrc
Size: 169KB - Virtual size: 168KB

.reloc
Size: 1024B - Virtual size: 956B