5a9dbb46efab1b0c747b65831877b5cab4c2f98190d5d94898e223d28fb64f23

Sharing

Copy URL Twitter E-mail

General

Target

5a9dbb46efab1b0c747b65831877b5cab4c2f98190d5d94898e223d28fb64f23
Size

150KB
MD5

016397bead1555f880e73078324af4b0
SHA1

e9fcfc91390fe4b7fcb461d6de9631a19a73e890
SHA256

5a9dbb46efab1b0c747b65831877b5cab4c2f98190d5d94898e223d28fb64f23
SHA512

9ea8a408115ab9009bd97ce4e0cfcbfdc7028156a5c6406c6f99ef4232f72ad389bb3195e0829d3c7cdfd5b078a1c1d49367b79b0a68d5b08eb8b3bc592aa5e8
SSDEEP

3072:VFKttzBT971W6Stt+thki8La/DmV6q/fUEk24tZQIKQvxUKHOPJGLkBWQBOkbSbY:VFwtzBT9BW6Sv+kdLazcUf24/tIGLk0W

Score

N/A

Malware Config

Signatures

Files

5a9dbb46efab1b0c747b65831877b5cab4c2f98190d5d94898e223d28fb64f23
.exe windows x86

05d5a922b4bc32cc9828de5edc675c16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIW
PathIsRelativeW
ChrCmpIA
StrTrimW

comctl32

ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_Write
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_Draw
ImageList_Read
CreateStatusWindowW
ImageList_AddMasked
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_SetIconSize
CreatePropertySheetPageW
ImageList_Create
ImageList_GetIcon
CreateToolbarEx
PropertySheetW
ImageList_LoadImageW
ImageList_Remove
ImageList_Destroy
PropertySheetA

advapi32

CryptHashData
RegCloseKey
RegEnumKeyW
RegQueryValueExA
RegEnumKeyExA
InitializeAcl
RegEnumKeyA
CryptDestroyKey
RegSetValueExW
RegQueryValueExW
OpenServiceW
LookupAccountSidW
CryptDecrypt
EqualSid
SetServiceStatus
CryptDestroyHash
OpenEventLogW
CryptReleaseContext
RegSetValueExA
RegCreateKeyExA
CryptCreateHash
RegCreateKeyW
RegCreateKeyA
NotifyBootConfigStatus
RegCreateKeyExW
RegDeleteKeyA
RegOpenKeyExW
RegOpenKeyA
LookupAccountNameW
OpenEventLogA
RegOpenKeyExA
ControlService
RegQueryInfoKeyA
RegisterServiceCtrlHandlerW
RegDeleteValueA
OpenSCManagerW
RegEnumValueA
CryptDeriveKey
RegOpenKeyW

user32

GetDesktopWindow

kernel32

GetCurrentThreadId
lstrcmpA
SetCommTimeouts
MultiByteToWideChar
CreatePipe
LoadLibraryExW
GetNumberFormatW
EnterCriticalSection
ConnectNamedPipe
IsDBCSLeadByte
GetFullPathNameW
SetFileApisToOEM
Sleep
GetTempFileNameW
GetComputerNameW
lstrcpynA
TryEnterCriticalSection
GetCommProperties
LocalSize
GetModuleHandleW
RemoveDirectoryW
SetCurrentDirectoryA
LocalLock
LoadLibraryA
GetSystemDirectoryW
PulseEvent
CreateWaitableTimerW
GlobalGetAtomNameA
IsDBCSLeadByteEx
OpenFileMappingA
GetTickCount
GlobalGetAtomNameW
MulDiv
TerminateThread
HeapValidate
UnhandledExceptionFilter
GlobalLock
SetEvent
GetFileAttributesA
SizeofResource
IsValidLocale
CreateSemaphoreA
DeviceIoControl
GlobalUnlock
EnumResourceLanguagesA
RaiseException
QueryPerformanceCounter
FindCloseChangeNotification
EscapeCommFunction
OpenEventW
EnumSystemLocalesA
GetTimeFormatW
SetPriorityClass
AreFileApisANSI
GlobalDeleteAtom
HeapAlloc
VirtualFree
FreeResource
MapViewOfFile
GlobalMemoryStatus
GetVersion
lstrcmpiA
GetCommandLineW
GetStartupInfoA
GetStringTypeExW
EnumResourceNamesW
MoveFileExW
GetFileTime
GetThreadPriority
CallNamedPipeW
CompareStringA
GetUserDefaultLangID
FindFirstChangeNotificationW
ConvertDefaultLocale
GetWindowsDirectoryA
GetModuleHandleA
CreateEventW
HeapLock
SetThreadAffinityMask
GetCommState
GetSystemDefaultUILanguage
TlsFree
SetTimerQueueTimer
HeapCreate
WaitForSingleObject
GetThreadTimes
CreateRemoteThread
VirtualAlloc
GetShortPathNameA
GlobalFindAtomW
VerSetConditionMask
GetTempFileNameA
GetStdHandle
lstrcatW
TlsSetValue
SetCommState
GetModuleFileNameW
GetOEMCP
HeapWalk
GetDateFormatA
IsValidLanguageGroup
FileTimeToDosDateTime
CreateNamedPipeW
GetCPInfo
CreateFileW
LocalAlloc
FindResourceW
GetShortPathNameW
InitializeCriticalSection
GetFileAttributesExA
CreateFileMappingW
LCMapStringA
GlobalAlloc
EnumResourceTypesA
GetFullPathNameA
LocalFree
LoadLibraryExA
GlobalMemoryStatusEx
GetFileSize
GetThreadLocale
CancelIo
SetCurrentDirectoryW
FindNextFileA
CancelWaitableTimer
FindFirstFileW
RtlUnwind
GetPriorityClass
FindResourceA
GetSystemDirectoryA
SetLastError
SetErrorMode
HeapSize
CloseHandle
SetMailslotInfo
GlobalReAlloc
GetLocaleInfoA
GetLocaleInfoW
GetCommandLineA
CreateNamedPipeA
FindResourceExW

Exports

Exports

?BightDialog@@YGEUtext@@@Z
?Contst1@@YGEUtext@@@Z
?Contst2@@YGEUtext@@@Z
?FiveTialog@@YGEUtext@@@Z

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ctrl
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.waste
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fort
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.simple
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.none
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.join
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mall
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05d5a922b4bc32cc9828de5edc675c16

Headers

File Characteristics

Imports

shlwapi

comctl32

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 67KB

.ctrl Size: 512B - Virtual size: 28B

.waste Size: 512B - Virtual size: 64B

.fort Size: 1024B - Virtual size: 522B

.data Size: 9KB - Virtual size: 8KB

.simple Size: 18KB - Virtual size: 17KB

.none Size: 18KB - Virtual size: 17KB

.join Size: 9KB - Virtual size: 8KB

.mall Size: 16KB - Virtual size: 15KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 67KB

.ctrl
Size: 512B - Virtual size: 28B

.waste
Size: 512B - Virtual size: 64B

.fort
Size: 1024B - Virtual size: 522B

.data
Size: 9KB - Virtual size: 8KB

.simple
Size: 18KB - Virtual size: 17KB

.none
Size: 18KB - Virtual size: 17KB

.join
Size: 9KB - Virtual size: 8KB

.mall
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB