36fcc1f630d4945ea3de59fa000956cc3062249b7f67b68ddc9a9aca2e3c4ec5

Sharing

Copy URL Twitter E-mail

General

Target

36fcc1f630d4945ea3de59fa000956cc3062249b7f67b68ddc9a9aca2e3c4ec5
Size

102KB
MD5

c278469e4db9eed7eecbb868a476a5c3
SHA1

dbfedbe744b8f75f8a9dc7ffaddc3b986b46ec3c
SHA256

36fcc1f630d4945ea3de59fa000956cc3062249b7f67b68ddc9a9aca2e3c4ec5
SHA512

9e80337675b440dd59391496e5e5f0800c0ddd13803014f609b6304165e2c93ac5d973b7bdfc6ff5e9be8363d32e59be6e21293941813a9850239961e16b2cc5
SSDEEP

1536:ckKbdbxXDGFvTnAtlqJCu/GhmXUAfZS8HYyOgtE84N1qizVKiNagVJ/flrdaH6A1:SBVzEbnwhUUISDAGXc8auBfCHmG

Score

N/A

Malware Config

Signatures

Files

36fcc1f630d4945ea3de59fa000956cc3062249b7f67b68ddc9a9aca2e3c4ec5
.exe windows x86

746d02cdbc28cddedbc1e51e21080044

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
SetWindowLongW
GetWindowLongW
CheckRadioButton
ClientToScreen
ReleaseDC
SetDlgItemTextW
GetDesktopWindow
GetClientRect
TranslateMessage
GetDlgItemInt
DispatchMessageW
GetDlgItem
SendMessageW
DefWindowProcW
GetWindowRect
DestroyWindow
IsWindowVisible
InvalidateRect
IsRectEmpty
GetAsyncKeyState
CheckDlgButton
LoadStringW
wsprintfW
CreateDialogParamW
IsWindow
SetCursor
PeekMessageW
MoveWindow
GetDC
LoadCursorW
EnableWindow
SetDlgItemInt

kernel32

InitializeCriticalSection
GlobalAlloc
FreeLibrary
GetSystemInfo
ResetEvent
MulDiv
GetCurrentProcess
IsBadWritePtr
GetProcessHeap
SetThreadPriority
CreateThread
GetSystemTimeAsFileTime
GetThreadPriority
LeaveCriticalSection
HeapAlloc
DeleteFileW
lstrcpyA
IsBadCodePtr
VirtualFree
GlobalMemoryStatus
SetEvent
CloseHandle
SetFilePointer
HeapFree
lstrcpyW
GetFileAttributesW
CreateIoCompletionPort
GlobalLock
GetFileSize
lstrcmpiW
MultiByteToWideChar
CreateEventW
GlobalFree
GetLocaleInfoW
QueryPerformanceCounter
PostQueuedCompletionStatus
WriteFile
EnterCriticalSection
lstrlenW
GetTickCount
lstrlenA
ReleaseSemaphore
InterlockedDecrement
GetVersionExW
DeleteCriticalSection
SetUnhandledExceptionFilter
GetQueuedCompletionStatus
lstrcmpW
SetEndOfFile
GetCurrentThread
SetLastError
WideCharToMultiByte
lstrcpynW
GetModuleFileNameA
GetFullPathNameW
CreateFileW
GetProfileIntA
ReadFile
GetCurrentProcessId
GlobalHandle
GetProcAddress
InterlockedExchange
GlobalUnlock
WaitForMultipleObjects
GetACP
GetDiskFreeSpaceW
WaitForSingleObject
LoadLibraryW
GetStartupInfoA
GetLastError
InterlockedIncrement
IsBadReadPtr
GetPrivateProfileStringW
CreateSemaphoreW

msvfw32

ICGetInfo
ICCompress
ICClose
ICOpen
ICSendMessage
ICDecompress
ICLocate

ole32

CoTaskMemAlloc
CoUninitialize
StringFromGUID2
CoInitialize
CoCreateInstance
CoTaskMemFree
CoFreeUnusedLibraries

ncobjapi

WmiAddObjectProp
WmiCreateObjectWithProps
WmiDestroyObject
WmiIsObjectActive
WmiCreateObject
WmiEventSourceDisconnect
WmiCommitObject
WmiEventSourceConnect
WmiCreateObjectWithFormat
WmiSetAndCommitObject

winmm

waveInAddBuffer
mixerGetLineInfoW
OpenDriver
waveInPrepareHeader
CloseDriver
waveInStart
mixerGetControlDetailsW
mixerOpen
waveInReset
waveInOpen
waveInUnprepareHeader
mixerGetID
mixerSetControlDetails
mixerClose
waveInGetDevCapsW
waveInClose
waveInStop
SendDriverMessage
mixerGetLineControlsW

gdi32

SelectObject
GetPaletteEntries
GetStockObject
PatBlt
GetObjectW
GetTextExtentPoint32W

mydocs

DllCanUnloadNow
PerUserInit
DllGetClassObject

nddeapi

NDdeGetShareSecurityA
NDdeGetErrorStringA
NDdeIsValidAppTopicListW
NDdeIsValidShareNameA
NDdeGetShareSecurityW
NDdeGetTrustedShareA
NDdeIsValidAppTopicListA
NDdeGetTrustedShareW

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

746d02cdbc28cddedbc1e51e21080044

Headers

File Characteristics

Imports

user32

kernel32

msvfw32

ole32

ncobjapi

winmm

gdi32

mydocs

nddeapi

Sections

.text Size: 51KB - Virtual size: 50KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 20KB - Virtual size: 87KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 51KB - Virtual size: 50KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 20KB - Virtual size: 87KB

.rsrc
Size: 24KB - Virtual size: 24KB