d19d07b909d4027e52e0e58176097d530d00f35f2debee3a90b2a390b0de46ce

Sharing

Copy URL Twitter E-mail

General

Target

d19d07b909d4027e52e0e58176097d530d00f35f2debee3a90b2a390b0de46ce
Size

144KB
MD5

c73e33f75a1f8e6fe7021db490adc1c6
SHA1

8b3089db7383bdc821c5d4d449a51e4eb0be184b
SHA256

d19d07b909d4027e52e0e58176097d530d00f35f2debee3a90b2a390b0de46ce
SHA512

44398facf729a7b614fbfb50ba9374d26b6320a909d101d2749ad68a46b7950571c494e6d05062b2ddbad9ed250fe6ecffcb47d5db88e652a6bbd434e153ba40
SSDEEP

3072:BVb2RMfah5/tSP7oUhELlDaDKmxg34jJ+VfG:Hb2m7PTwuDbAVfG

Score

N/A

Malware Config

Signatures

Files

d19d07b909d4027e52e0e58176097d530d00f35f2debee3a90b2a390b0de46ce
.exe windows x86

8f9222e4b429785e1da48bd5e764fc8a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

setlocale
_controlfp
isalpha
mbstowcs
__set_app_type
realloc
ftell
__p__fmode
getenv
system
wcsncmp
wcslen
putc
__p__commode
_amsg_exit
_initterm
rand
_ismbblead
fputs
fprintf
malloc
_XcptFilter
_exit
iswxdigit
wcsstr
iswalpha
islower
strpbrk
qsort
isspace
strcpy
fread
fclose
_cexit
__setusermatherr
localtime
__getmainargs
fflush
wcschr
fgets
memset
iswspace
sscanf
bsearch
perror
wcscmp
strstr
strncpy

shlwapi

StrToIntW

kernel32

DuplicateHandle
GetProcessHeap
GetSystemTimeAdjustment
EnumSystemLocalesA
SetSystemTime
VirtualProtect
LeaveCriticalSection
EnumResourceNamesA
TransactNamedPipe
EnterCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
GetLastError
CreateMailslotW
GetUserDefaultUILanguage
LoadResource
OpenSemaphoreW
GlobalGetAtomNameW
SetEvent
lstrcmpiA
GetAtomNameA
SetTimerQueueTimer
HeapFree
FreeResource
GetUserDefaultLangID
OpenFileMappingA
GetBinaryTypeA
GlobalHandle
WaitForSingleObject
GlobalFindAtomW
GlobalFlags
GetFileTime
CreateEventA
SetErrorMode
SetThreadLocale
FindResourceExA
GetCurrentThreadId
CompareStringW
GetCommConfig
SetThreadContext
VerSetConditionMask
GetCommProperties
InitializeCriticalSection
IsBadWritePtr
FreeLibrary
TerminateThread
SetPriorityClass
SetThreadAffinityMask
WaitForMultipleObjects
GetVersion
MoveFileW
GetAtomNameW
CreateSemaphoreA
HeapAlloc
CreateFileMappingA
ReadFile
GetModuleFileNameW
GetModuleFileNameA

comdlg32

ChooseFontW
GetFileTitleW
PageSetupDlgW
GetSaveFileNameW

user32

CharUpperBuffA
ShowOwnedPopups
ShowCaret
IsRectEmpty
GetWindowTextA
SetPropW
SetDlgItemTextA
GetDlgItemTextW
EnumWindows
LoadIconW
GetKeyboardType
GetUpdateRgn
SetWindowPlacement
DestroyMenu
GetMenuStringA
GetDlgItemInt
GetFocus
GetDCEx
LoadImageA
ScreenToClient
RegisterWindowMessageA
CharLowerW
GetWindowRect
ArrangeIconicWindows
SetCursor
SystemParametersInfoA
GetClientRect
DrawAnimatedRects
ReplyMessage
SetScrollPos
IsChild
BeginPaint
RegisterClassExA
EndPaint
CreateCursor
GetDlgCtrlID
LoadIconA
ScrollWindow
DestroyCursor
AdjustWindowRectEx
InSendMessageEx
GetDlgItemTextA
InsertMenuW
GetNextDlgTabItem
SendNotifyMessageW
InvalidateRect
DrawEdge
DefDlgProcA
HiliteMenuItem
GetUserObjectInformationA
ShowScrollBar
ScrollWindowEx
DrawFrameControl
PostThreadMessageA
FindWindowExW
InflateRect
UpdateWindow
UnloadKeyboardLayout
KillTimer
IsDlgButtonChecked
GetMessagePos
GetLastActivePopup
mouse_event
GetKeyboardLayout
ShowWindow
DefFrameProcA
GetParent
SetCaretPos
GetScrollRange
RegisterClassExW
EnumThreadWindows
GetCaretBlinkTime
OpenIcon
GetMessageA
CreateCaret
DispatchMessageW
LoadMenuA
GetClassInfoExA
GetMessageW
OpenDesktopW
PeekMessageA
wsprintfA
SetScrollRange
CascadeWindows
SetUserObjectInformationW
CharToOemBuffA
RegisterClassW
SetForegroundWindow
LoadBitmapA
GetPropW
GetTopWindow
CreateWindowExA
MessageBoxW
EndDialog
MoveWindow
TabbedTextOutW
CharNextA
IsCharAlphaNumericW
CallWindowProcW
MonitorFromPoint
CloseDesktop
SetTimer
wvsprintfA
GetSysColor
AllowSetForegroundWindow
GetMenuItemID
PostQuitMessage
CharLowerBuffW
SetRect
GetGUIThreadInfo
SendDlgItemMessageA
MapVirtualKeyExW
CreateAcceleratorTableW
FindWindowW
SetActiveWindow
WindowFromPoint
LoadBitmapW
ShowCursor
GetWindowModuleFileNameW
WaitMessage
CopyImage
GetCaretPos
IsDialogMessageA
RegisterHotKey

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f9222e4b429785e1da48bd5e764fc8a

Headers

File Characteristics

Imports

msvcrt

shlwapi

kernel32

comdlg32

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 145KB

.rsrc Size: 111KB - Virtual size: 111KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 145KB

.rsrc
Size: 111KB - Virtual size: 111KB

.reloc
Size: 2KB - Virtual size: 1KB