c9c35621d911d80245e8f0d43cdfeb80da0301fac05faccacadab7a53e5b975e

Sharing

Copy URL

Twitter E-mail

General

Target

c9c35621d911d80245e8f0d43cdfeb80da0301fac05faccacadab7a53e5b975e
Size

281KB
MD5

c480f54f732054b056ab3f58b2ac8849
SHA1

7d6dcdd28f4d81accabdbf5b47b89b6466066404
SHA256

c9c35621d911d80245e8f0d43cdfeb80da0301fac05faccacadab7a53e5b975e
SHA512

3d179f7a16b172b3fd39bb1895880e94853805e7d36ca251539016e22f82877b1e0cfc780f73149c545422230fc4cce76242371afb7b0f9fff8855574c48e770
SSDEEP

6144:CAjYIKd4yigl6vffQGe1gGoSFInOl4Dtb73:C6XdffQaFVn+w3

Score

N/A

Malware Config

Signatures

Files

c9c35621d911d80245e8f0d43cdfeb80da0301fac05faccacadab7a53e5b975e
.exe windows x86

ddd41cabade267a857ad89d12239e73f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
SetCursor
GetMonitorInfoW
MonitorFromWindow
UnhookWindowsHookEx
DestroyWindow
SetWindowContextHelpId
GetWindowTextW
MapDialogRect
IsWindowEnabled
SetWindowPos
ShowWindow
GetWindowTextLengthW
EndPaint
MessageBoxExW
SetFocus
SendMessageA
GetKeyState
EqualRect
CharToOemBuffA
IsWindow
IntersectRect
IsChild
GetClientRect
LoadCursorW
InvalidateRect
GetFocus
SendMessageW
AdjustWindowRectEx
MapWindowPoints
PostMessageW
GetWindow
GetClassInfoExW
ReleaseDC
SetWindowTextW
BeginPaint
DefWindowProcW
GetWindowRect
OffsetRect
UnionRect
CallWindowProcW
RegisterClassExW
SetWindowRgn
UnregisterClassA
CreateWindowExW
GetDC
EndDialog
GetParent
PtInRect
SetWindowLongW
GetMenu
GetWindowLongW
CallNextHookEx
GetClassNameW
SetWindowsHookExW
CharNextW

ole32

ProgIDFromCLSID
StringFromGUID2
CoCreateGuid
StringFromCLSID
OleRegEnumVerbs
OleRegGetUserType
CLSIDFromString
CreateOleAdviseHolder
CoCreateInstance
CreateStreamOnHGlobal
CreateDataAdviseHolder
CLSIDFromProgID
OleRegGetMiscStatus
CoTaskMemAlloc
IIDFromString
CoTaskMemFree

gdi32

DeleteDC
DeleteMetaFile
GetDeviceCaps
CloseMetaFile
RestoreDC
SetWindowOrgEx
CreateMetaFileW
TextOutW
SaveDC
CreateFontIndirectW
SetViewportOrgEx
SetTextAlign
SetMapMode
SetWindowExtEx
CreateRectRgnIndirect
DeleteObject
LPtoDP

shlwapi

PathFindFileNameW
PathIsRootW
PathCanonicalizeW
PathStripPathW
PathIsRelativeW
PathRemoveExtensionW
PathStripToRootW
PathFileExistsW
PathIsURLW

kernel32

GlobalUnlock
GetFileSize
MapViewOfFile
GetSystemDefaultLCID
SetFileAttributesA
CreateDirectoryW
FindNextFileW
HeapAlloc
EnumResourceNamesW
UnmapViewOfFile
CreateFileMappingW
GetSystemTimeAsFileTime
HeapDestroy
GetFullPathNameW
CloseHandle
MulDiv
HeapReAlloc
IsValidCodePage
ReadFile
GetShortPathNameW
InterlockedPopEntrySList
GetModuleHandleW
SetUnhandledExceptionFilter
GlobalLock
FreeLibrary
GetProcessHeap
FindFirstFileW
CreateEventW
SwitchToThread
FlushInstructionCache
LocalAlloc
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
SetFileAttributesW
FindClose
GetComputerNameW
UnhandledExceptionFilter
SizeofResource
InitializeCriticalSectionAndSpinCount
WaitForSingleObject
RemoveDirectoryW
SetLastError
VirtualFree
CreateFileA
CopyFileW
ExpandEnvironmentStringsW
TlsAlloc
lstrlenA
IsProcessorFeaturePresent
HeapSize
lstrcmpW
SetThreadPriority
HeapFree
GetACP
OutputDebugStringW
GlobalAlloc
DeleteCriticalSection
TlsGetValue
CopyFileA
InterlockedPushEntrySList
GetCurrentDirectoryW
WideCharToMultiByte
FindResourceW
VirtualAlloc
IsDebuggerPresent
LoadResource
EnterCriticalSection
RaiseException
CreateFileW
FindResourceExW
TlsFree
lstrlenW
CreateThread
LockResource
GetVersion
VirtualAllocEx

advapi32

RegEnumKeyExW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW

oleaut32

SysFreeString
SafeArrayCopy
SafeArrayGetUBound
SafeArrayCreate
VarBstrCmp
SafeArrayLock
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayGetVartype
OleCreatePropertyFrame
VariantClear
UnRegisterTypeLi
SafeArrayGetLBound
DispCallFunc
LoadTypeLi
SysAllocString
SysAllocStringLen
GetErrorInfo
VariantInit
SysStringByteLen
SafeArrayAccessData
VariantCopy
SafeArrayDestroy
VariantChangeType
VarBstrCat
SafeArrayUnlock
SysStringLen
RegisterTypeLi
SysAllocStringByteLen
LoadRegTypeLi

userenv

GetProfileType
UnloadUserProfile
FreeGPOListA
ExpandEnvironmentStringsForUserA
DllRegisterServer
GetGPOListW
GetAllUsersProfileDirectoryW

compstui

CommonPropertySheetUIA
CommonPropertySheetUIW
SetCPSUIUserData

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 229KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddd41cabade267a857ad89d12239e73f

Headers

File Characteristics

Imports

user32

ole32

gdi32

shlwapi

kernel32

advapi32

oleaut32

userenv

compstui

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 229KB - Virtual size: 232KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 229KB - Virtual size: 232KB

.rsrc
Size: 28KB - Virtual size: 27KB