d0644da948aa527f3afa053a8e2dee55dc12a0d2a5977d1195de4bc936ce8cc2

Sharing

Copy URL Twitter E-mail

General

Target

d0644da948aa527f3afa053a8e2dee55dc12a0d2a5977d1195de4bc936ce8cc2
Size

140KB
MD5

81e139c482d7ee7d0f729ac72eb151d8
SHA1

ac1d53f2439dd1aa3989b98e0afd02f9e82f6818
SHA256

d0644da948aa527f3afa053a8e2dee55dc12a0d2a5977d1195de4bc936ce8cc2
SHA512

56e02477f57461da642aad5891043ab76795faa63e209e0c20dd20b2bb06dca28468f1decb1d819bb92d5243f518d29dbace94bb6949a96cb1a263909021758b
SSDEEP

3072:s1CYQBVu495Ch/J2YwF1pEiSXf8x7AW7YTT32s5k+:BYquCCh/yvpj0bgYTCs

Score

N/A

Malware Config

Signatures

Files

d0644da948aa527f3afa053a8e2dee55dc12a0d2a5977d1195de4bc936ce8cc2
.exe windows x86

6a6235f88d0585e9485412aedeadc2d1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
FindTextW
PrintDlgW

comctl32

ImageList_ReplaceIcon
CreatePropertySheetPageA
ImageList_AddMasked
PropertySheetW
CreateStatusWindowW
ImageList_Destroy
ImageList_Create

shlwapi

UrlIsOpaqueW
UrlGetLocationA

kernel32

RaiseException
GlobalReAlloc
GetThreadPriority
SetLocalTime
OpenEventW
GetLocaleInfoA
LoadLibraryW
IsValidLanguageGroup
GetModuleFileNameA
GlobalAddAtomW
GetVersion
GetStartupInfoW
lstrcmpA
UnhandledExceptionFilter
AddAtomW
FormatMessageA
lstrcpyW
CreateSemaphoreA
GetTickCount
GetCommandLineA
GetSystemTimeAdjustment
SetSystemTimeAdjustment
GetLastError
lstrcmpiW
GetCommTimeouts
QueryDosDeviceW
IsDBCSLeadByte
FindNextFileA
ResetEvent
GetCommandLineW
CreateFileA
EnumSystemLocalesA
CreatePipe
HeapSize
SleepEx
VirtualAlloc

msvcrt

strcpy
rand
wcsncpy
_controlfp
__set_app_type
setvbuf
getenv
swprintf
ftell
exit
gets
__p__fmode
__p__commode
wcschr
wcstoul
_amsg_exit
_initterm
_ismbblead
isxdigit
strncpy
towupper
strcspn
gmtime
isdigit
setlocale
_XcptFilter
tolower
_exit
strncmp
_cexit
atol
strcoll
__setusermatherr
strspn
__getmainargs
wcsrchr

user32

SendMessageTimeoutW
SetCursorPos
ModifyMenuW
IsCharAlphaA
wsprintfA
GetClassInfoW
EnableMenuItem
ScrollWindow
GetMenuStringW
UpdateWindow
SetWindowLongW
ToUnicodeEx
ActivateKeyboardLayout
GetDC
SetLastErrorEx
MapVirtualKeyA
GetMessageExtraInfo
GetKeyboardType
DestroyMenu
DefFrameProcW
IsCharAlphaNumericW
MessageBoxExW
SetScrollInfo
SetWindowRgn
CreateCaret
GetSysColorBrush
CheckMenuItem
FrameRect
FillRect
FindWindowW
TranslateAcceleratorW
DefWindowProcA
DestroyCursor
SetScrollPos
MessageBoxW
GetUpdateRect
GetUserObjectInformationA
RegisterClassW
SetCursor
OemToCharBuffA
CreateDialogParamW
GetDlgItemTextW
DrawAnimatedRects
GetWindowTextW
CallWindowProcW
WaitMessage
CheckRadioButton
AppendMenuA
GetTopWindow
GetWindowTextLengthW
GetClassLongW
CreateDialogParamA
PostMessageA
GetLastActivePopup
IsMenu
CopyImage
wsprintfW
OpenInputDesktop
AttachThreadInput
OffsetRect
IsWindowEnabled
InvertRect
LoadIconA
BringWindowToTop
UnionRect
AdjustWindowRect
IsWindowVisible
CreatePopupMenu
GetMessageA
LoadStringW
GetActiveWindow
UnloadKeyboardLayout
CallWindowProcA
CreateWindowExA
CheckMenuRadioItem
ShowWindow
SetRectEmpty
ShowWindowAsync
TileWindows
MoveWindow
SetRect
IsWindowUnicode
GetWindowDC

Exports

Exports

?HistoryLoggingOn@@YGKDKPAX:O

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdbg
Size: 512B - Virtual size: 113B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iplan
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eplan
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.run
Size: 1024B - Virtual size: 605B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0dat
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ram
Size: - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a6235f88d0585e9485412aedeadc2d1

Headers

File Characteristics

Imports

comdlg32

comctl32

shlwapi

kernel32

msvcrt

user32

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 23KB

.rdbg Size: 512B - Virtual size: 113B

.iplan Size: 4KB - Virtual size: 4KB

.eplan Size: 512B - Virtual size: 91B

.run Size: 1024B - Virtual size: 605B

.0dat Size: 104KB - Virtual size: 104KB

.data Size: 3KB - Virtual size: 2KB

.ram Size: - Virtual size: 123KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 23KB

.rdbg
Size: 512B - Virtual size: 113B

.iplan
Size: 4KB - Virtual size: 4KB

.eplan
Size: 512B - Virtual size: 91B

.run
Size: 1024B - Virtual size: 605B

.0dat
Size: 104KB - Virtual size: 104KB

.data
Size: 3KB - Virtual size: 2KB

.ram
Size: - Virtual size: 123KB

.rsrc
Size: 2KB - Virtual size: 1KB