d0fa862fe8cf5c7a6ecaf4922460cc571a82acc1bba4b310f8ad77170a0509a3

Sharing

Copy URL Twitter E-mail

General

Target

d0fa862fe8cf5c7a6ecaf4922460cc571a82acc1bba4b310f8ad77170a0509a3
Size

244KB
MD5

3df5165b749703b4d89dd414bdc96ca9
SHA1

da02190827a96e90db93b0c78dc5f6ddc94fa16c
SHA256

d0fa862fe8cf5c7a6ecaf4922460cc571a82acc1bba4b310f8ad77170a0509a3
SHA512

3f02ad161f975433c7740cc4d250e85b21137c3085e0a74aa9c24b1298ed9f3d34f6d9e9daaae68305b5df2d3a3a758d37c43132bcad07cec489a5d8084e02ed
SSDEEP

6144:fKiq3zqT83ruPOmcJxmUk7f9K++0ScFVMuGCtC6I:Oz4cUPcj/kbLFVMvCE1

Score

N/A

Malware Config

Signatures

Files

d0fa862fe8cf5c7a6ecaf4922460cc571a82acc1bba4b310f8ad77170a0509a3
.exe windows x86

4d61ca0b2d3469df57062169d85a5c88

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_wtol
_initterm
_onexit
__getmainargs
_purecall
__set_app_type
__setusermatherr
_cexit
__CxxFrameHandler
_XcptFilter
swscanf
_acmdln
exit
_exit
wcschr
_c_exit
wcstoul
_wtoi
__dllonexit

advapi32

RegSetValueExA
RegEnumValueA
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyA
RegSetValueExW
RegOpenKeyExA
RegOpenKeyA
RegOpenKeyW
RegEnumKeyA
RegCreateKeyW
RegCreateKeyExW

kernel32

CommConfigDialogW
SetConsolePalette
lstrcmpW
FileTimeToSystemTime
GetNumberOfConsoleMouseButtons
SetConsoleActiveScreenBuffer
lstrcatW
SetConsoleNlsMode
GetVersionExW
GetModuleHandleW
GetCurrentProcess
GetCommandLineW
ReadFile
GetCurrentProcess
GetVolumePathNameA
EnumCalendarInfoA
lstrcmpiW
lstrlenW
lstrcpyW
PulseEvent
CloseHandle
GetSystemTimeAsFileTime
GetConsoleAliasA
GetCurrentProcessId
GetTickCount
FindResourceA
CreateFileW
SetLastError
CreateMailslotA
DeleteTimerQueueTimer
FindVolumeMountPointClose
IsWow64Process
FreeLibraryAndExitThread
UnhandledExceptionFilter
Heap32First
GetSystemWow64DirectoryA
WaitForSingleObjectEx
PrepareTape
GetStartupInfoA
GetConsoleCommandHistoryLengthA
GetModuleHandleA
GlobalAddAtomA
WriteProfileStringW
QueueUserWorkItem
TransmitCommChar
HeapWalk
FindFirstFileW
_lwrite
SetConsoleCursorInfo
VirtualAllocEx
TerminateProcess
SetUnhandledExceptionFilter
QueryPerformanceCounter
Sleep
GetCompressedFileSizeA
GetDriveTypeA
CreateMutexW
EnumSystemLanguageGroupsW
BaseCleanupAppcompatCacheSupport
WriteConsoleA
GetComPlusPackageInstallStatus
GetLastError
SetCalendarInfoW
LZOpenFileW
FreeResource
GetFileSize
MulDiv
GetNumberFormatW
EnumUILanguagesA
DebugBreak
FlushConsoleInputBuffer

gdi32

ExtTextOutW
GetStockObject
SetTextColor
CreateBitmap
GetDeviceCaps
CreateCompatibleDC
SetTextAlign
GetPaletteEntries
SetBkMode
SelectPalette
SaveDC
GetTextMetricsW
SetBkColor
CreateFontIndirectW
GetTextColor
RestoreDC
GetNearestColor
SelectObject
GetNearestPaletteIndex
GetTextExtentPoint32W
CreatePalette
BitBlt
CreateSolidBrush
DeleteDC
TextOutW
CreateCompatibleBitmap
SetLayout
PatBlt
SetPaletteEntries
DeleteObject
Rectangle
RealizePalette

user32

SetWindowTextW
DestroyIcon
GetSysColor
MessageBoxW
EnumDisplaySettingsW
HiliteMenuItem
GetWindow
SetCaretBlinkTime
EndPaint
GetClientRect
EnableWindow
SetSysColorsTemp
ReleaseDC
OffsetRect
MapWindowPoints
GetSystemMetrics
ShowWindow
GetFocus
GetDesktopWindow
DrawEdge
SwapMouseButton
InflateRect
RegisterClassW
SetWindowPos
DrawCaptionTempW
GetWindowLongW
LoadImageW
GetTopWindow
SendMessageW
SetTimer
FillRect
SetFocus
wsprintfW
SetSysColors
DefWindowProcW
GetDlgCtrlID
GetParent
BeginPaint
FindWindowW
LoadIconW
EnableMenuItem
InvalidateRect
SystemParametersInfoW
LoadCursorW
SendMessageTimeoutW
GetDC
SetWindowLongW
LoadStringW
SendDlgItemMessageW
SetDlgItemTextW
LoadMenuW
DrawFrameControl
PostMessageW
DrawTextW
ChangeDisplaySettingsW
GetWindowRect
GetForegroundWindow
KillTimer

comctl32

ord17

comdlg32

GetSaveFileNameW

shlwapi

StrTrimW

shell32

ord258
ShellExecuteW

ole32

CoCreateInstance
CoInitialize

uxtheme

ord4
ord65
GetCurrentThemeName
IsThemeActive

msls31

LsGetTatenakayokoLsimethods
LsQueryLinePointPcp
LsdnFinishByOneChar
LsGetHihLsimethods
LsSetBreakSubline
LsGetRubyLsimethods
LssbGetDurTrailWithPensInSubline
LsEnumSubline

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 209KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d61ca0b2d3469df57062169d85a5c88

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comctl32

comdlg32

shlwapi

shell32

ole32

uxtheme

msls31

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 9KB - Virtual size: 50KB

.rsrc Size: 209KB - Virtual size: 208KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 9KB - Virtual size: 50KB

.rsrc
Size: 209KB - Virtual size: 208KB