964eb7ba655b3794f2a9baa07c0935aab83209371ae5d73cd23e1c2518b1835d

Sharing

Copy URL Twitter E-mail

General

Target

964eb7ba655b3794f2a9baa07c0935aab83209371ae5d73cd23e1c2518b1835d
Size

39KB
MD5

2699defb27355f1c2c6cb0186eeccb56
SHA1

36d2cbbf3c34aa356c21adda7a2aa044214bf800
SHA256

964eb7ba655b3794f2a9baa07c0935aab83209371ae5d73cd23e1c2518b1835d
SHA512

5cc7e61fd8013a5c7f7ff750091b426785d93ecc7a453f121480cb3a29f498112deef0d825a59d0aee9d53762edefac6de55e1772f85763f90b1c855f10e2c96
SSDEEP

768:Qd3TNqPZuwwCjjZDDhmN3W8Np+mHcz7m9PPAb9AYVAoBkvx3xa:QZTNpwnf4N3df5Hc+9PPAbFADvx3xa

Score

N/A

Malware Config

Signatures

Files

964eb7ba655b3794f2a9baa07c0935aab83209371ae5d73cd23e1c2518b1835d
.exe windows x86

2fac9c787c0e681eee01bc81b90c630f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumDisplayDevicesW
UpdateLayeredWindow
RegisterUserApiHook
WINNLSGetEnableStatus
GetTabbedTextExtentA
UserLpkPSMTextOut
ScrollDC
ArrangeIconicWindows
UnloadKeyboardLayout
RegisterTasklist
ShowScrollBar
BroadcastSystemMessageExA
IsDlgButtonChecked
TranslateAcceleratorW
IMPGetIMEA
MessageBoxW
RemovePropW
GetMessageTime
CharUpperW
EnumPropsExW
EndTask
LoadMenuIndirectA
EnumChildWindows
GrayStringA
SetProcessWindowStation
CreatePopupMenu
InSendMessage
SetLastErrorEx
EnumThreadWindows
SetWindowRgn
GetCapture
GetClassNameW
IsZoomed
RealGetWindowClassA
CharNextA

kernel32

SearchPathA
ReadConsoleInputExA
SetLastError
GetModuleHandleA
LCMapStringW
CopyLZFile
WriteConsoleInputA
SwitchToThread
SetEnvironmentVariableA
DeleteVolumeMountPointW
lstrcpy
MoveFileWithProgressA
GlobalAlloc
GetACP
GetThreadContext
DisconnectNamedPipe
CreateProcessInternalA
SetVolumeLabelW
GetStartupInfoA
ReadFileScatter
EnumResourceTypesA
CmdBatNotification
CreateActCtxW
LoadLibraryA
WritePrivateProfileStructW
RtlMoveMemory
BaseDumpAppcompatCache
OpenSemaphoreW
VirtualAlloc
CreateConsoleScreenBuffer
GetLocalTime
HeapCreate
SetConsoleIcon

uxtheme

HitTestThemeBackground
GetThemeColor
CloseThemeData
DrawThemeEdge
OpenThemeData
GetThemeSysInt
GetThemePartSize
GetWindowTheme
GetThemeMetric
GetThemeTextExtent
GetThemeAppProperties
EnableThemeDialogTexture
GetThemeFilename
GetThemePosition
GetThemeBackgroundExtent
GetThemeInt
IsAppThemed
SetWindowTheme
GetThemeBool
IsThemeBackgroundPartiallyTransparent
DrawThemeIcon
DrawThemeBackground
IsThemeActive
GetThemeString
EnableTheming
SetThemeAppProperties
GetThemeDocumentationProperty
GetThemeBackgroundRegion

resutils

ResUtilGetCoreClusterResources
ResUtilExpandEnvironmentStrings
ResUtilGetPropertyFormats
ResUtilSetPropertyTableEx
ResUtilEnumResourcesEx
ClusWorkerStart
ResUtilFindSzProperty
ResUtilGetPropertiesToParameterBlock
ResUtilEnumResources
ResUtilFindExpandedSzProperty
ResUtilCreateDirectoryTree
ResUtilFindDependentDiskResourceDriveLetter
ResUtilSetExpandSzValue
ResUtilIsResourceClassEqual
ResUtilGetBinaryProperty
ResUtilSetResourceServiceStartParameters
ResUtilSetUnknownProperties
ResUtilVerifyService
ResUtilFindLongProperty
ClusWorkerTerminate
ResUtilGetProperty
ClusWorkerCreate
ResUtilResourceTypesEqual
ResUtilResourcesEqual
ResUtilGetResourceDependencyByName
ResUtilGetDwordProperty
ResUtilGetResourceDependentIPAddressProps
ResUtilFindDwordProperty
ResUtilFindMultiSzProperty
ResUtilGetResourceDependencyByClass

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fac9c787c0e681eee01bc81b90c630f

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

uxtheme

resutils

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 7KB - Virtual size: 6KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 3KB - Virtual size: 2KB