cbcf4b646febb5b375e669608dc115e164fbffc3b4f5a8f0f8602125f118fadd

Sharing

Copy URL Twitter E-mail

General

Target

cbcf4b646febb5b375e669608dc115e164fbffc3b4f5a8f0f8602125f118fadd
Size

45KB
MD5

23785e63ebb747a861d9bf6ebf8c4fc0
SHA1

b64958790cd38d3558ca52fab2edf579b8bd1de1
SHA256

cbcf4b646febb5b375e669608dc115e164fbffc3b4f5a8f0f8602125f118fadd
SHA512

332cfdbaa87eed1bd1f140f4e5e9e6c8155617f83f3d9b0f94ab2923d2af08a01d9d991ea6bc2ca10d6b88b54da7ae903c642a0c9e0894b87b170a1d9e82c787
SSDEEP

768:kLDdR8uBPM3DrUNNksHsXxDx+OqHi636bhsLFQ5PHjrBOVaQiqmKH:kLJ2GM3nUN64sXxDx+OqHbK14oHfBSD

Score

N/A

Malware Config

Signatures

Files

cbcf4b646febb5b375e669608dc115e164fbffc3b4f5a8f0f8602125f118fadd
.dll windows x86

7014529bf795e2e12dad565ce5185151

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

realloc
system
_controlfp
towlower
mbstowcs
strstr
__set_app_type
getenv
malloc
iswxdigit
__p__fmode
localtime
perror
wcscoll
iswprint
printf
swscanf
fwrite
clearerr
wcsstr
__p__commode
wcsncmp
vswprintf
strncpy
wcsncpy
_amsg_exit
wcstombs
wcsrchr
mktime
strrchr
fgets
wcstoul
clock
_initterm
swprintf
atoi
puts
isdigit
wcspbrk
strspn
atol
iswspace
tolower
bsearch
_ismbblead
memset
wcscspn
srand
isspace
free
strcoll
vsprintf
strpbrk
rand
mbtowc
_XcptFilter
wcscpy
towupper
strtol
sprintf
_exit
_cexit
wcscmp
wcslen
__setusermatherr
isprint
calloc
fprintf
__getmainargs
setvbuf

shlwapi

UrlGetPartA

user32

GetDC
GetFocus
WindowFromPoint
GetWindowLongA
CharNextExA
IsWindow
PostThreadMessageA
OpenDesktopW
GetPropW
SetScrollInfo
SetForegroundWindow
RegisterClassExA
DefWindowProcW
CreateDialogParamW
GetWindowPlacement
IsCharAlphaA
ClipCursor
OemToCharA
OpenInputDesktop
ModifyMenuW
LoadBitmapW
GetMenuStringA
IsDlgButtonChecked
CharLowerW
UnloadKeyboardLayout
GetMenuItemInfoW
DrawMenuBar
InSendMessage
CharUpperW
LoadIconA
MessageBoxExW
DrawFrameControl
AdjustWindowRectEx
CloseDesktop
keybd_event
SetFocus
CharPrevA
SendDlgItemMessageA
KillTimer
GetWindowLongW
DefFrameProcW
SetWindowPlacement
GetCaretPos
DialogBoxIndirectParamW
SetRect
WaitMessage
ShowOwnedPopups
BeginDeferWindowPos
SystemParametersInfoA
IsDialogMessageW
SetWindowTextW
CreateWindowExW
SendDlgItemMessageW
GetMenuItemCount
IsIconic
SendInput
DragObject
GetMenuStringW
HiliteMenuItem
GetClientRect
mouse_event
SendNotifyMessageW
CopyAcceleratorTableW
EndDialog
TabbedTextOutW
DeleteMenu
GetNextDlgGroupItem
GetScrollPos
AttachThreadInput
CharNextW
GetUpdateRect
DefFrameProcA
IsCharAlphaNumericW
RegisterClassExW
GetIconInfo
DestroyCursor
EnableMenuItem
SetMenuDefaultItem
TrackPopupMenuEx
GetKeyboardLayoutNameW
GetDCEx
GetWindowTextA
ToUnicodeEx
EndTask
UpdateWindow
CreateAcceleratorTableW
MapWindowPoints
GetClassInfoW
GetUserObjectInformationA
ShowCaret
ExitWindowsEx
CreateMenu
CharToOemA
DestroyMenu
ShowCursor
GetKeyboardType
SetMenu
GetTopWindow
ChangeMenuW
SetWindowPos
SetSysColors
TranslateAcceleratorW
CreateCursor
LoadStringW
SetPropW
LoadCursorW
EnableWindow
GetWindowTextW
DrawAnimatedRects
DrawTextW
MessageBoxA
RemoveMenu
wsprintfW
SendMessageW
GetSysColorBrush
wsprintfA
PeekMessageW
LoadMenuW
GetClassInfoExA
PtInRect
GetClipCursor
CreateCaret
IsCharUpperA
CheckRadioButton
IsWindowUnicode
DrawTextA
LoadIconW
GetMessageW
IsWindowVisible
OpenIcon
DestroyWindow
ScrollWindowEx
FindWindowW
CharUpperA
GetDesktopWindow
GetSubMenu
EqualRect
DestroyAcceleratorTable
RegisterWindowMessageW
GetDlgItemTextA
SetUserObjectInformationW
GetWindowTextLengthW
GetNextDlgTabItem
GetWindowDC
UnionRect
GetMenu
SetScrollPos
GetForegroundWindow
DestroyIcon
SetWindowRgn
FrameRect
SwitchToThisWindow
EndPaint
OemToCharBuffA
InvalidateRgn
MonitorFromPoint
LoadAcceleratorsA
GetMenuItemID
InsertMenuW
GetSystemMetrics
GetDlgCtrlID
RemovePropW
GetClassLongW
DrawFocusRect
DialogBoxParamW
DrawIconEx
GetSysColor
CharToOemBuffA
IsCharLowerA
BringWindowToTop
DrawIcon
CreateIconFromResource
CharNextA
ScreenToClient
VkKeyScanW
CheckMenuItem
ChildWindowFromPointEx
LookupIconIdFromDirectory
DialogBoxIndirectParamA
TranslateMessage
PostMessageA
MapDialogRect
SetDlgItemTextW
FindWindowExW
CheckDlgButton
GetMessageTime
CallWindowProcA
GetKeyNameTextW
GetUserObjectInformationW
GetMessageA
GetCursorPos
wvsprintfW
CheckMenuRadioItem
DrawStateW
SetCursorPos
GetShellWindow
AdjustWindowRect
InsertMenuItemW
GetParent
GetKeyboardLayout

kernel32

GetModuleHandleA
SuspendThread
GetTickCount
GlobalReAlloc
UnlockFile
DisconnectNamedPipe
CompareStringW
SetEndOfFile
CopyFileA
GetDateFormatA
SetThreadAffinityMask
IsBadCodePtr
CreateDirectoryA
GetLocaleInfoW
GetFileAttributesExA
ConvertDefaultLocale
GetSystemDirectoryW
GetComputerNameA
CreateDirectoryW
RemoveDirectoryW
FlushViewOfFile
SetSystemTimeAdjustment
WaitForMultipleObjectsEx
GetTempPathW
DeviceIoControl
GetCPInfo
CreateRemoteThread
SystemTimeToFileTime
FindFirstFileW
SetNamedPipeHandleState
IsBadReadPtr
ClearCommBreak
SetFileAttributesA
lstrlenW
WaitForSingleObjectEx
QueryPerformanceCounter
GlobalHandle
FindNextFileA
GetTempFileNameA
SetFileAttributesW
ConnectNamedPipe
LockFile
LCMapStringW
GlobalAlloc
LocalAlloc
SetCommState
GetFileSize
SetWaitableTimer
InitializeCriticalSection
SetupComm
EnumResourceTypesA
ResumeThread
RtlUnwind
GetSystemDefaultLangID
CreateWaitableTimerA
GetBinaryTypeA
CreateFileMappingW
GlobalDeleteAtom
IsDBCSLeadByte
CreateMailslotW
GetTempPathA
DeleteFileW
GetTempFileNameW
TlsSetValue
GetCommConfig
GlobalFree
MapViewOfFile
OpenFileMappingW
GetLongPathNameW
GetModuleFileNameA
TlsFree
SetFilePointer
TlsGetValue
SetPriorityClass
EnumResourceLanguagesA
SetCommMask
GetFileAttributesA
CreateMutexW
GetCommProperties
GetThreadPriority
CompareStringA
GetNumberFormatA
GetComputerNameW
SetCurrentDirectoryW
GetWindowsDirectoryW
lstrcpynA
SearchPathW
HeapUnlock
AddAtomA
FindClose

Exports

Exports

?HistoryLoggingOn@@YGKDKPAX:O

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.eplan
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ainit
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iplan
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 238KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdbg
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.run
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0dat
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7014529bf795e2e12dad565ce5185151

Headers

File Characteristics

Imports

msvcrt

shlwapi

user32

kernel32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.eplan Size: 512B - Virtual size: 91B

.ainit Size: 2KB - Virtual size: 1KB

.iplan Size: 9KB - Virtual size: 9KB

.data Size: 2KB - Virtual size: 238KB

.rdbg Size: 512B - Virtual size: 88B

.run Size: 1024B - Virtual size: 636B

.0dat Size: 512B - Virtual size: 192B

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 24KB - Virtual size: 23KB

.eplan
Size: 512B - Virtual size: 91B

.ainit
Size: 2KB - Virtual size: 1KB

.iplan
Size: 9KB - Virtual size: 9KB

.data
Size: 2KB - Virtual size: 238KB

.rdbg
Size: 512B - Virtual size: 88B

.run
Size: 1024B - Virtual size: 636B

.0dat
Size: 512B - Virtual size: 192B

.rsrc
Size: 4KB - Virtual size: 3KB