df8833d2bfa22f165013310c56895601a39706a079bcc962e0a235e764590d42

Sharing

Copy URL Twitter E-mail

General

Target

df8833d2bfa22f165013310c56895601a39706a079bcc962e0a235e764590d42
Size

140KB
MD5

8730b08da91c32546aaf9ecb6c2b0bdd
SHA1

133129c7c35fd4a049248cdc71df213b86826770
SHA256

df8833d2bfa22f165013310c56895601a39706a079bcc962e0a235e764590d42
SHA512

fc8d006370719465ec28faa557043c9ef67e3389530842a810fe4a4d5dbfa3288d0383641d3455af94b537759ec3912a536d938c80dcd4a0b527d8fdb733fa00
SSDEEP

3072:xXHmGOPT81ruQ1JIpoaPgu94bacWTjt3bEOz75gJwjTTYmLL6:kxb6HGxL94GrTjt3t5rjTTYN

Score

N/A

Malware Config

Signatures

Files

df8833d2bfa22f165013310c56895601a39706a079bcc962e0a235e764590d42
.exe windows x86

16cdfe59914ee7a3c96176e6cef80bdc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strtol
remove
_controlfp
strerror
fgetc
vswprintf
free
calloc
bsearch
__set_app_type
strcpy
malloc
__p__fmode
isspace
memset
wcstod
wcstoul
tolower
strncpy
getenv
__p__commode
fclose
iswctype
_amsg_exit
qsort
strpbrk
iswdigit
_initterm
gets
clock
_ismbblead
islower
wcsncmp
setlocale
iswalpha
strchr
strcspn
wcschr
iswspace
swscanf
wcslen
system
_XcptFilter
_exit
_cexit
__setusermatherr
atoi
isalnum
__getmainargs
isupper

user32

IsCharAlphaW
SetWindowLongW
DrawMenuBar
CreateWindowExA
DestroyAcceleratorTable
CreateMenu
PostMessageW
WaitMessage
FindWindowA
LoadBitmapA
GetClassInfoExA
GetSystemMetrics
CheckMenuItem
GetKeyboardLayoutNameW
DefWindowProcW
PeekMessageA
InsertMenuA
CreateDialogParamA
InflateRect
ScreenToClient
SetScrollInfo
CharNextA
SetFocus
ReleaseDC
GetDlgItem
CreatePopupMenu
SetClassLongW
SendMessageTimeoutA
BeginDeferWindowPos
GetDlgItemTextA
WindowFromPoint
DrawIcon
DefWindowProcA
DrawTextW
SendMessageW
DestroyCaret
DestroyWindow
InternalGetWindowText
CharUpperBuffA
GetClassLongA
OemToCharBuffA
CreateAcceleratorTableW
OpenDesktopW
CheckDlgButton
SetMenuItemBitmaps
RegisterClassA
wsprintfW
GetSysColorBrush
EndPaint
OffsetRect
GetKeyNameTextW
LoadImageA
GetUpdateRect
SetSysColors
LoadCursorW
EnableScrollBar
ShowWindowAsync
CascadeWindows
GetMenuStringA
GetWindowRect
PostThreadMessageA
AttachThreadInput
SendNotifyMessageW
EnumWindows
FrameRect
CreateDialogParamW
ArrangeIconicWindows
CharUpperW
GetMenuItemInfoW
SetWindowLongA
CreateIconIndirect
CallWindowProcW
CallWindowProcA
GetScrollPos
RegisterClassExW
DefDlgProcW
DialogBoxParamA
GetDCEx
CreateCursor
PostQuitMessage
GetWindowDC
SetRect
ShowCaret
FindWindowW
LoadMenuA
GetMenuItemID
LoadImageW
DrawEdge
GetClassLongW
GetPropW
CheckRadioButton
GetClassNameW
DeferWindowPos
SetCursor
OemToCharA
SetPropW
GetClipCursor
GetFocus
LoadBitmapW
LookupIconIdFromDirectory
EndDialog
GetParent
KillTimer
DispatchMessageW
SetDlgItemInt
CharToOemA
GetMessageTime
CharUpperA
GetKeyboardLayoutList
GetMenuItemRect
SetWindowPlacement
GetMessagePos
GetClassInfoExW
UnionRect
GetDlgItemTextW
DrawFocusRect
GetDoubleClickTime
DrawIconEx
EnableMenuItem
GetCursorPos
CharPrevA
CharToOemW

kernel32

LockResource
GetProcAddress
GetThreadContext
QueryDosDeviceW
GetThreadPriority
lstrcmpiW
GetVersion
GetCommProperties
HeapLock
GetBinaryTypeW
GlobalSize
SetEndOfFile
lstrcmpA
SetCommBreak
CancelIo
CreateWaitableTimerA
FileTimeToDosDateTime
GetUserDefaultLangID
lstrlenW
LocalSize
GetCommandLineA
GlobalFindAtomW
GetCompressedFileSizeW
WinExec
GlobalMemoryStatus
CopyFileA
SetFileAttributesA
DeleteCriticalSection
GlobalGetAtomNameW
SetWaitableTimer
SetMailslotInfo
lstrcpyA
SuspendThread
GetModuleHandleA
CreateDirectoryA
TryEnterCriticalSection
SetHandleCount
SetUnhandledExceptionFilter
GlobalAddAtomA
FlushFileBuffers
GlobalLock
CreateEventW
CopyFileW
FindNextFileW
CompareStringA
FormatMessageA
GetThreadTimes
LoadLibraryExW
LCMapStringA
GetACP
GetTempFileNameA
HeapCreate
AreFileApisANSI
SearchPathA

shlwapi

PathIsUNCA

comdlg32

ReplaceTextW
ChooseColorW
GetOpenFileNameA
GetOpenFileNameW
ChooseFontW
GetSaveFileNameA

Exports

Exports

?ForwardControlItem@@YGK_KK:O

Sections

.itext
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ips1
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ips2
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.read
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ips3
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ips4
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16cdfe59914ee7a3c96176e6cef80bdc

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

shlwapi

comdlg32

Exports

Exports

Sections

.itext Size: 21KB - Virtual size: 21KB

.ips1 Size: 6KB - Virtual size: 5KB

.ips2 Size: 512B - Virtual size: 88B

.read Size: 1024B - Virtual size: 124KB

.ips3 Size: 1024B - Virtual size: 704B

.data Size: 3KB - Virtual size: 2KB

.ips4 Size: 31KB - Virtual size: 31KB

.rsrc Size: 73KB - Virtual size: 72KB

.reloc Size: 2KB - Virtual size: 1KB

.itext
Size: 21KB - Virtual size: 21KB

.ips1
Size: 6KB - Virtual size: 5KB

.ips2
Size: 512B - Virtual size: 88B

.read
Size: 1024B - Virtual size: 124KB

.ips3
Size: 1024B - Virtual size: 704B

.data
Size: 3KB - Virtual size: 2KB

.ips4
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 73KB - Virtual size: 72KB

.reloc
Size: 2KB - Virtual size: 1KB