9e0100f3d4e103657117e9fc53458b0261f31f95825b6ba6ffb9d4517c1a1328

Sharing

Copy URL Twitter E-mail

General

Target

9e0100f3d4e103657117e9fc53458b0261f31f95825b6ba6ffb9d4517c1a1328
Size

304KB
MD5

ea0b46baff7003f4248cf40b1fe4e846
SHA1

d2121f52e5e681db2faf9dd92507dbce6fd009ff
SHA256

9e0100f3d4e103657117e9fc53458b0261f31f95825b6ba6ffb9d4517c1a1328
SHA512

e5cc20f8adc00ff3d3bc809b07128a0575fe3a6d73d245ea409dfc2b45461cbca5928e94d51ad0be5ef3de6e1e7a28db95d24146736eb2c05ee535f4673df354
SSDEEP

6144:yAaEUlNTw9QK8FGFAj7Ys0tXKpgTjs2pcAHDPKC6KAtmK+:yJNTKUYzapg/PDPpO

Score

N/A

Malware Config

Signatures

Files

9e0100f3d4e103657117e9fc53458b0261f31f95825b6ba6ffb9d4517c1a1328
.exe windows x86

45f90009d70c0f9dc816ea995c8c3049

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegOpenKeyExW

kernel32

TlsGetValue
LockResource
CreateEventW
TlsFree
InterlockedPushEntrySList
FindFirstFileW
SizeofResource
SwitchToThread
lstrcmpW
CloseHandle
WaitForSingleObject
FindResourceW
GetSystemTimeAsFileTime
GetComputerNameW
CopyFileA
OutputDebugStringW
UnmapViewOfFile
LoadResource
VirtualFree
MapViewOfFile
CopyFileW
DeleteCriticalSection
HeapDestroy
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
lstrlenW
GlobalUnlock
IsDebuggerPresent
HeapFree
CreateFileA
GetShortPathNameW
SetLastError
GetCurrentDirectoryW
GetFileSize
FindClose
GlobalLock
FindNextFileW
TlsAlloc
EnumResourceNamesW
CreateDirectoryW
HeapReAlloc
EnterCriticalSection
CreateFileW
LeaveCriticalSection
ReadFile
GetFullPathNameW
FindResourceExW
GetCurrentThreadId
CreateThread
HeapAlloc
GlobalAlloc
InterlockedPopEntrySList
VirtualAlloc
SetFileAttributesW
HeapSize
RaiseException
FlushInstructionCache
TlsSetValue
IsValidCodePage
GetProcessHeap
lstrlenA
FreeLibrary
GetACP
RemoveDirectoryW
GetSystemDefaultLCID
MulDiv
SetFileAttributesA
UnhandledExceptionFilter
IsProcessorFeaturePresent
SetThreadPriority
GetModuleHandleW
LocalAlloc
ExpandEnvironmentStringsW
CreateFileMappingW
WideCharToMultiByte
VirtualAllocEx

gdi32

GetDeviceCaps
LPtoDP
TextOutW
DeleteObject
SetMapMode
SetWindowOrgEx
DeleteDC
SetWindowExtEx
RestoreDC
DeleteMetaFile
CreateFontIndirectW
CloseMetaFile
SetTextAlign
CreateMetaFileW
SetViewportOrgEx
SaveDC
CreateRectRgnIndirect
GetTextColor

oleaut32

GetErrorInfo
UnRegisterTypeLi
DispCallFunc
SysFreeString
SafeArrayGetVartype
SysAllocStringByteLen
SysStringLen
SafeArrayAccessData
VariantCopy
SafeArrayGetElement
SafeArrayUnaccessData
SysAllocStringLen
SafeArrayGetLBound
VarBstrCat
SafeArrayCopy
VariantInit
OleCreatePropertyFrame
SafeArrayLock
VariantChangeType
VarBstrCmp
SysStringByteLen
LoadTypeLi
SafeArrayUnlock
SafeArrayCreate
LoadRegTypeLi
VariantClear
SysAllocString
SafeArrayGetUBound
RegisterTypeLi
SafeArrayDestroy

user32

GetWindowTextLengthW
GetParent
IntersectRect
GetClientRect
MonitorFromWindow
GetClassInfoExW
GetWindowLongW
MapDialogRect
EndDialog
OffsetRect
DestroyWindow
CharToOemBuffA
SendMessageA
SendMessageW
MapWindowPoints
GetClassNameW
CreateWindowExW
PostMessageW
SetWindowRgn
IsWindowEnabled
RegisterClassExW
InvalidateRect
GetWindow
GetMenu
UnregisterClassA
CallNextHookEx
SetWindowTextW
UnhookWindowsHookEx
EqualRect
GetWindowRect
LoadCursorW
IsChild
UnionRect
CharNextW
PtInRect
GetWindowTextW
SetWindowPos
SetFocus
AdjustWindowRectEx
EndPaint
GetDC
IsWindow
BeginPaint
GetMonitorInfoW
DefWindowProcW
MessageBoxExW
ShowWindow
SetCursor
SetWindowLongW
GetKeyState
ReleaseDC
SetWindowsHookExW
GetFocus
EnableWindow
CallWindowProcW
SetWindowContextHelpId
UpdateLayeredWindow
CharUpperA
SetTimer
GetDesktopWindow
SetDlgItemTextW
GetSysColor
CreateDialogParamW
WinHelpA
GetSystemMetrics
PeekMessageA
wsprintfW
CharLowerW
wsprintfA
LoadMenuW
GetScrollPos
SendDlgItemMessageA
LoadImageW
GetMenuState
GetDCEx
GetForegroundWindow
PostQuitMessage
CheckMenuItem
IsIconic
OpenClipboard
GetActiveWindow
RegisterWindowMessageW

ole32

CreateOleAdviseHolder
OleRegGetUserType
CLSIDFromProgID
IIDFromString
StringFromGUID2
CreateDataAdviseHolder
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
ProgIDFromCLSID
OleRegGetMiscStatus
CLSIDFromString
StringFromCLSID
CoCreateGuid
CreateStreamOnHGlobal
OleRegEnumVerbs

shlwapi

PathIsRootW
PathFileExistsW
PathFindFileNameW
PathIsRelativeW
PathIsURLW
PathStripToRootW
PathRemoveExtensionW
PathStripPathW
PathCanonicalizeW

cmpbk32

PhoneBookEnumNumbersWithRegionsZero
PhoneBookGetPhoneDUNA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 271KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45f90009d70c0f9dc816ea995c8c3049

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

oleaut32

user32

ole32

shlwapi

cmpbk32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 271KB - Virtual size: 1.1MB

.rdata Size: 6KB - Virtual size: 5KB

.rsrc Size: 6KB - Virtual size: 8KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 271KB - Virtual size: 1.1MB

.rdata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 6KB - Virtual size: 8KB