d3eaaddc5ef05505d89460fc8666be7ab25330b8019d412e1040aa03ac36ca72

Sharing

Copy URL Twitter E-mail

General

Target

d3eaaddc5ef05505d89460fc8666be7ab25330b8019d412e1040aa03ac36ca72
Size

150KB
MD5

7b9c7faf3a762052734f6b6150d34240
SHA1

5b8434861076fa76bb2fdf8b299b504f757516d4
SHA256

d3eaaddc5ef05505d89460fc8666be7ab25330b8019d412e1040aa03ac36ca72
SHA512

4370613ac158d47ee75cdb30123544a4c03d49753c428e98ea056c0e023c7dd97dd71a876965cd4c28a03d9a98108559a4777cda604b3bdc50a3d2fbcb03b3b8
SSDEEP

3072:mFKttzBT971W6lXLxV+K2V2wj8Ujc99YmZ4tZQIKLTdp8Yc48f41vCl7/RLCxVR:mFwtzBT9BW6lXL0UwoSp24cr8Yc6QbRG

Score

N/A

Malware Config

Signatures

Files

d3eaaddc5ef05505d89460fc8666be7ab25330b8019d412e1040aa03ac36ca72
.dll windows x86

05d5a922b4bc32cc9828de5edc675c16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIW
PathIsRelativeW
ChrCmpIA
StrTrimW

comctl32

ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_Write
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_Draw
ImageList_Read
CreateStatusWindowW
ImageList_AddMasked
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_SetIconSize
CreatePropertySheetPageW
ImageList_Create
ImageList_GetIcon
CreateToolbarEx
PropertySheetW
ImageList_LoadImageW
ImageList_Remove
ImageList_Destroy
PropertySheetA

advapi32

CryptHashData
RegCloseKey
RegEnumKeyW
RegQueryValueExA
RegEnumKeyExA
InitializeAcl
RegEnumKeyA
CryptDestroyKey
RegSetValueExW
RegQueryValueExW
OpenServiceW
LookupAccountSidW
CryptDecrypt
EqualSid
SetServiceStatus
CryptDestroyHash
OpenEventLogW
CryptReleaseContext
RegSetValueExA
RegCreateKeyExA
CryptCreateHash
RegCreateKeyW
RegCreateKeyA
NotifyBootConfigStatus
RegCreateKeyExW
RegDeleteKeyA
RegOpenKeyExW
RegOpenKeyA
LookupAccountNameW
OpenEventLogA
RegOpenKeyExA
ControlService
RegQueryInfoKeyA
RegisterServiceCtrlHandlerW
RegDeleteValueA
OpenSCManagerW
RegEnumValueA
CryptDeriveKey
RegOpenKeyW

user32

GetDesktopWindow

kernel32

GetCurrentThreadId
lstrcmpA
SetCommTimeouts
MultiByteToWideChar
CreatePipe
LoadLibraryExW
GetNumberFormatW
EnterCriticalSection
ConnectNamedPipe
IsDBCSLeadByte
GetFullPathNameW
SetFileApisToOEM
Sleep
GetTempFileNameW
GetComputerNameW
lstrcpynA
TryEnterCriticalSection
GetCommProperties
LocalSize
GetModuleHandleW
RemoveDirectoryW
SetCurrentDirectoryA
LocalLock
LoadLibraryA
GetSystemDirectoryW
PulseEvent
CreateWaitableTimerW
GlobalGetAtomNameA
IsDBCSLeadByteEx
OpenFileMappingA
GetTickCount
GlobalGetAtomNameW
MulDiv
TerminateThread
HeapValidate
UnhandledExceptionFilter
GlobalLock
SetEvent
GetFileAttributesA
SizeofResource
IsValidLocale
CreateSemaphoreA
DeviceIoControl
GlobalUnlock
EnumResourceLanguagesA
RaiseException
QueryPerformanceCounter
FindCloseChangeNotification
EscapeCommFunction
OpenEventW
EnumSystemLocalesA
GetTimeFormatW
SetPriorityClass
AreFileApisANSI
GlobalDeleteAtom
HeapAlloc
VirtualFree
FreeResource
MapViewOfFile
GlobalMemoryStatus
GetVersion
lstrcmpiA
GetCommandLineW
GetStartupInfoA
GetStringTypeExW
EnumResourceNamesW
MoveFileExW
GetFileTime
GetThreadPriority
CallNamedPipeW
CompareStringA
GetUserDefaultLangID
FindFirstChangeNotificationW
ConvertDefaultLocale
GetWindowsDirectoryA
GetModuleHandleA
CreateEventW
HeapLock
SetThreadAffinityMask
GetCommState
GetSystemDefaultUILanguage
TlsFree
SetTimerQueueTimer
HeapCreate
WaitForSingleObject
GetThreadTimes
CreateRemoteThread
VirtualAlloc
GetShortPathNameA
GlobalFindAtomW
VerSetConditionMask
GetTempFileNameA
GetStdHandle
lstrcatW
TlsSetValue
SetCommState
GetModuleFileNameW
GetOEMCP
HeapWalk
GetDateFormatA
IsValidLanguageGroup
FileTimeToDosDateTime
CreateNamedPipeW
GetCPInfo
CreateFileW
LocalAlloc
FindResourceW
GetShortPathNameW
InitializeCriticalSection
GetFileAttributesExA
CreateFileMappingW
LCMapStringA
GlobalAlloc
EnumResourceTypesA
GetFullPathNameA
LocalFree
LoadLibraryExA
GlobalMemoryStatusEx
GetFileSize
GetThreadLocale
CancelIo
SetCurrentDirectoryW
FindNextFileA
CancelWaitableTimer
FindFirstFileW
RtlUnwind
GetPriorityClass
FindResourceA
GetSystemDirectoryA
SetLastError
SetErrorMode
HeapSize
CloseHandle
SetMailslotInfo
GlobalReAlloc
GetLocaleInfoA
GetLocaleInfoW
GetCommandLineA
CreateNamedPipeA
FindResourceExW

Exports

Exports

?BightDialog@@YGEUtext@@@Z
?Contst1@@YGEUtext@@@Z
?Contst2@@YGEUtext@@@Z
?FiveTialog@@YGEUtext@@@Z

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ctrl
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.waste
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fort
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.simple
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.none
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.join
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mall
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05d5a922b4bc32cc9828de5edc675c16

Headers

File Characteristics

Imports

shlwapi

comctl32

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 67KB

.ctrl Size: 512B - Virtual size: 28B

.waste Size: 512B - Virtual size: 64B

.fort Size: 1024B - Virtual size: 522B

.data Size: 9KB - Virtual size: 8KB

.simple Size: 18KB - Virtual size: 17KB

.none Size: 18KB - Virtual size: 17KB

.join Size: 9KB - Virtual size: 8KB

.mall Size: 16KB - Virtual size: 15KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 67KB

.ctrl
Size: 512B - Virtual size: 28B

.waste
Size: 512B - Virtual size: 64B

.fort
Size: 1024B - Virtual size: 522B

.data
Size: 9KB - Virtual size: 8KB

.simple
Size: 18KB - Virtual size: 17KB

.none
Size: 18KB - Virtual size: 17KB

.join
Size: 9KB - Virtual size: 8KB

.mall
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB