b8bddbc68ef11035d54bb0608460ed308ba11d3bddd3c9e7384dd6ce8975d27d

Sharing

Copy URL

Twitter E-mail

General

Target

b8bddbc68ef11035d54bb0608460ed308ba11d3bddd3c9e7384dd6ce8975d27d
Size

310KB
MD5

3ddc23586f0bf02a4acac08e8ee75d88
SHA1

b53045cbfdb6d7056703c9c9529c8737c6fed05c
SHA256

b8bddbc68ef11035d54bb0608460ed308ba11d3bddd3c9e7384dd6ce8975d27d
SHA512

e5c18a017b8930a64b107208ac01bb27d57dcf47b9b291ed0abc0c5bff214ba5a40b818b7111a8694b796f1faf3ea2d7b3b4d66c78540083f2e7c72f95424132
SSDEEP

6144:0oNxye8AIxNxeNDVOA3Sb2wJJFKjvXYrPwvQnsvEDYTqX6kGCpeTy:0gQetQYVOA3SngzYPwvrE8s6cMG

Score

N/A

Malware Config

Signatures

Files

b8bddbc68ef11035d54bb0608460ed308ba11d3bddd3c9e7384dd6ce8975d27d
.exe windows x86

65de36af80622a708c923c2c1a1ad97b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupIterateCabinetW

comdlg32

GetOpenFileNameW

shlwapi

PathRemoveFileSpecW
PathCombineW

msi

ord204
ord111
ord113
ord70
ord160
ord8
ord159
ord32
ord45
ord120
ord92
ord205

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps
GetLayout

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

shell32

SHGetFolderPathW
CommandLineToArgvW

ole32

StringFromCLSID
CLSIDFromString
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
CoTaskMemRealloc
StringFromGUID2
CLSIDFromProgID
CoCreateInstance
OleRun
CoRegisterClassObject
CoUninitialize
CoInitialize
CoLoadLibrary
CoInitializeEx

user32

MonitorFromWindow
SendMessageW
GetMessageA
SetWindowPlacement
ReleaseDC
ReleaseCapture
TranslateAcceleratorW
CharPrevW
GetWindowPlacement
CallWindowProcW
GetClientRect
UnregisterClassA
GetWindowLongW
EndPaint
IsWindowUnicode
PostMessageW
GetDlgItemTextW
RegisterClassExW
GetSystemMetrics
GetDesktopWindow
PeekMessageW
SetWindowLongW
IsWindow
CreateDialogParamW
GetWindowTextLengthW
BeginPaint
GetSystemMenu
SetForegroundWindow
GetParent
DispatchMessageA
DefWindowProcW
GetFocus
GetClassInfoExW
SetCursor
DispatchMessageW
SetWindowPos
DialogBoxParamW
MsgWaitForMultipleObjectsEx
SetCapture
SetWindowTextW
MsgWaitForMultipleObjects
SetDlgItemTextW
LoadStringW
EnableWindow
SetFocus
DestroyWindow
LoadIconW
GetWindowRect
PostThreadMessageW
GetDC
GetDlgItem
SystemParametersInfoW
LoadCursorW
GetWindowTextW
MessageBoxW
GetMessageW
CreateWindowExW
ShowWindow
MapWindowPoints
EnableMenuItem
CharNextW
EndDialog
GetWindow
GetMonitorInfoW
TranslateMessage
SetMenu
DestroyCursor
RegisterClassW
GetActiveWindow
LoadMenuIndirectW
CreateDialogParamA
LoadIconA
GetSysColorBrush
GetCaretPos
OpenClipboard
SetCursorPos
CreateAcceleratorTableW
TrackPopupMenuEx
GetMenuInfo
CreateDialogIndirectParamW
TrackPopupMenu
GetClassInfoA
GetMenuState
CopyRect
InvalidateRect

oleaut32

CreateErrorInfo
SetErrorInfo
VariantClear
SafeArrayGetDim
SysFreeString
SysAllocString
VarBstrCmp
GetErrorInfo
LoadTypeLi
SafeArrayDestroy
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
VariantInit
LoadRegTypeLi
SysStringLen
VarUI4FromStr
SysAllocStringLen

kernel32

WriteFile
GetACP
TlsFree
Process32NextW
FindFirstFileExW
SetHandleCount
FindClose
FindResourceW
lstrlenA
GetModuleHandleA
SetUnhandledExceptionFilter
GetFileInformationByHandle
IsValidLocale
FileTimeToSystemTime
GetSystemDefaultLCID
LeaveCriticalSection
CreateThread
SetErrorMode
InitializeCriticalSectionAndSpinCount
VirtualAlloc
FreeEnvironmentStringsW
HeapReAlloc
WaitForSingleObject
GetTempPathW
IsProcessorFeaturePresent
SizeofResource
GetConsoleCP
GetOEMCP
lstrcmpiW
CreateDirectoryW
LocalAlloc
DuplicateHandle
EnumUILanguagesW
IsDebuggerPresent
GetWindowsDirectoryW
RtlUnwind
HeapAlloc
TlsGetValue
GetCommandLineA
GetFileType
InterlockedPopEntrySList
RaiseException
GetTempFileNameW
EnumSystemLocalesA
GetCommandLineW
CreateToolhelp32Snapshot
EnterCriticalSection
WriteConsoleW
VirtualFree
LoadResource
CreateMutexW
GetStdHandle
GetDriveTypeW
FlushInstructionCache
GetTimeZoneInformation
SetLastError
FlushFileBuffers
CreateEventW
DeleteFileW
FreeLibrary
OutputDebugStringW
ReadFile
CloseHandle
SetEndOfFile
lstrcmpA
GetProcessHeap
GetSystemDirectoryW
TlsAlloc
GetShortPathNameW
GetLocalTime
CreateFileMappingW
GetPrivateProfileStringW
IsValidCodePage
FindFirstFileW
FindResourceExW
WideCharToMultiByte
MulDiv
LocalFree
GetSystemTimeAsFileTime
RemoveDirectoryW
GetCurrentDirectoryW
LockResource
SetStdHandle
IsWow64Process
SetFileAttributesW
GetUserDefaultLCID
TlsSetValue
FindNextFileW
GetSystemInfo
MapViewOfFile
LCMapStringW
FormatMessageW
HeapSize
lstrlenW
ResetEvent
GetCurrentThreadId
UnmapViewOfFile
SetEnvironmentVariableA
PeekNamedPipe
SetFilePointer
InterlockedPushEntrySList
DeleteCriticalSection
HeapDestroy
GetExitCodeThread
ReleaseMutex
UnhandledExceptionFilter
HeapFree
CreateFileW
GetPrivateProfileSectionW
CompareStringW
CreateProcessW
GetFullPathNameW
GetConsoleMode
GetModuleHandleW
Process32FirstW
LoadLibraryExW

docprop

DllGetClassObject

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 275KB - Virtual size: 845KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65de36af80622a708c923c2c1a1ad97b

Headers

File Characteristics

Imports

setupapi

comdlg32

shlwapi

msi

gdi32

version

shell32

ole32

user32

oleaut32

kernel32

docprop

Sections

.text Size: 18KB - Virtual size: 18KB

.data Size: 275KB - Virtual size: 845KB

.rdata Size: 7KB - Virtual size: 6KB

.rsrc Size: 8KB - Virtual size: 9KB

.text
Size: 18KB - Virtual size: 18KB

.data
Size: 275KB - Virtual size: 845KB

.rdata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 8KB - Virtual size: 9KB