cda279671657f3d76afa8146026fba7a92c802d1f4a5070f760489849e3ea9ff

Sharing

Copy URL Twitter E-mail

General

Target

cda279671657f3d76afa8146026fba7a92c802d1f4a5070f760489849e3ea9ff
Size

506KB
MD5

15d6264d816cb355568159f89e7a6193
SHA1

2e67dcde3a610aa7b71577d7807a29ebf2745e06
SHA256

cda279671657f3d76afa8146026fba7a92c802d1f4a5070f760489849e3ea9ff
SHA512

643a3d73a89ac4f6b0f6a51faddcbc0cb3d01cd7d78a24489f4c4c1be2033db3fbf685e696dea582ec79658816f5bbf7f1db112e47494f3eb1ebfc9c0b70a0df
SSDEEP

12288:XmctzVjPWcUjE2b+4keZXyoAHXrUEm/641eRAXrxYy:1XjPWpjtb+4soMAHi4Ei

Score

N/A

Malware Config

Signatures

Files

cda279671657f3d76afa8146026fba7a92c802d1f4a5070f760489849e3ea9ff
.exe windows x86

930f2e1ef0b5aca8b51250d901ac65dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetPathFromIDListW
DragFinish
SHGetSpecialFolderPathA
ShellExecuteExW
SHGetSpecialFolderPathW
ExtractIconExW
DragAcceptFiles
DragQueryFileW
ShellExecuteW
SHFileOperationW

wmi

QueryAllTracesW

version

GetFileVersionInfoSizeW
VerFindFileW
GetFileVersionInfoW
VerQueryValueW

gdi32

CreateFontIndirectW
SelectObject
ExtTextOutW
SetTextColor
AddFontResourceW
SetBkColor
DeleteObject
GetTextExtentPointW
RemoveFontResourceW
GetDeviceCaps
GetFontResourceInfoW
GetStockObject
GetTextExtentPoint32W

user32

CharPrevW
CheckDlgButton
SetMenuItemInfoW
TrackPopupMenuEx
GetDlgItem
GetFocus
CharNextW
SendDlgItemMessageW
GetDesktopWindow
GetDlgCtrlID
ChangeClipboardChain
IsClipboardFormatAvailable
GetSubMenu
InflateRect
DialogBoxParamW
DispatchMessageW
RegisterClipboardFormatW
LoadStringA
GetForegroundWindow
PtInRect
GetWindowLongW
GetDC
LoadStringW
OpenClipboard
SendMessageW
LoadMenuW
InsertMenuW
WinHelpW
SetWindowTextW
SetFocus
DeleteMenu
DefDlgProcW
CheckMenuItem
GetClientRect
RegisterWindowMessageW
CreateDialogParamW
DlgDirListComboBoxW
DrawTextExW
GetParent
GetWindowRect
EndDialog
ShowWindow
CheckMenuRadioItem
SetClipboardData
LoadAcceleratorsW
EndPaint
IsDlgButtonChecked
GetKeyState
MapWindowPoints
ScreenToClient
TranslateAcceleratorW
GetSystemMetrics
MsgWaitForMultipleObjects
GetClassInfoW
PostMessageW
RegisterClassW
UnregisterClassW
SetCursor
InvalidateRect
TrackPopupMenu
MessageBoxA
GetDlgItemTextW
PeekMessageW
CreateWindowExW
TranslateMessage
GetMenuState
SetDlgItemTextW
EnableWindow
UpdateWindow
GetDialogBaseUnits
IsDialogMessageW
DestroyWindow
CreateMenu
ClientToScreen
GetSysColor
MessageBoxW
IsWindowEnabled
GetAsyncKeyState
GetMenuItemInfoW
GetMenuItemCount
SetWindowLongW
EnumPropsA
LoadCursorW
MoveWindow
FrameRect
SetForegroundWindow
DestroyIcon
EmptyClipboard
DestroyMenu
GetClipboardData
CopyIcon
DefWindowProcW
CharUpperW
SetWindowPos
BeginPaint
CloseClipboard
EnableMenuItem

setupapi

SetupFindNextLine
SetupCloseInfFile
SetupOpenInfFileW
SetupGetStringFieldW
SetupFindFirstLineW
SetupGetLineTextW

lz32

LZCopy
GetExpandedNameW
LZRead
LZClose
LZOpenFileW
LZSeek

ole32

ReleaseStgMedium

shlwapi

PathFindExtensionW
PathCombineW
PathAppendW
PathRemoveFileSpecW
StrDupW
StrRChrW
SHRegGetUSValueW
wnsprintfW
StrChrW
PathAddBackslashW
StrCmpNIW
PathFindFileNameW

advapi32

RegOpenKeyExW
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegisterEventSourceA
RegQueryInfoKeyW
DeregisterEventSource
RegCreateKeyExW
RegDeleteValueW
RegSetValueExW
RegQueryValueExW
ReportEventA
RegEnumValueW

kernel32

VirtualAlloc
GetLastError

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 483KB - Virtual size: 482KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

930f2e1ef0b5aca8b51250d901ac65dc

Headers

DLL Characteristics

File Characteristics

Imports

shell32

wmi

version

gdi32

user32

setupapi

lz32

ole32

shlwapi

advapi32

kernel32

Sections

.text Size: 1KB - Virtual size: 1KB

.rsrc Size: 483KB - Virtual size: 482KB

.reloc Size: 512B - Virtual size: 24B

.data Size: 10KB - Virtual size: 2.2MB

.rdata Size: 5KB - Virtual size: 4KB

.idata Size: 5KB - Virtual size: 4KB

.text
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 483KB - Virtual size: 482KB

.reloc
Size: 512B - Virtual size: 24B

.data
Size: 10KB - Virtual size: 2.2MB

.rdata
Size: 5KB - Virtual size: 4KB

.idata
Size: 5KB - Virtual size: 4KB