3e49cedb8d64308013372a5dea4eee2a5cdd13653123bbd09da0e4071817eff3

Sharing

Copy URL Twitter E-mail

General

Target

3e49cedb8d64308013372a5dea4eee2a5cdd13653123bbd09da0e4071817eff3
Size

472KB
MD5

3ca5bc2a6b114d65cc4da6818f306fde
SHA1

33d7d02e2dc88f4ef2b2bbc626b466c4ef2e2859
SHA256

3e49cedb8d64308013372a5dea4eee2a5cdd13653123bbd09da0e4071817eff3
SHA512

d4dced99459a3feeb96f6e1764aaaacb5d540ec5f5955d0492b7d710c0c75b16712834f279ba752b762df104c89269bb9638e80d21c8f0643af8cb10db5f07c8
SSDEEP

12288:ECZlwlBiyQFksQWYvmY3urnzY8oimWTxmGy:ECZlLygQTv3eToimWT

Score

1^/10

Malware Config

Signatures

Files

3e49cedb8d64308013372a5dea4eee2a5cdd13653123bbd09da0e4071817eff3
.dll windows x86

b12a4683ace616d4755b680a20e91b95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
GetStartupInfoA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetStdHandle
SetHandleCount
IsBadWritePtr
LoadLibraryA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
HeapSize
TerminateProcess
ExitProcess
GetFileType
SetStdHandle
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
GetCommandLineA
RtlUnwind
WritePrivateProfileStringA
GetFileTime
GetFileSize
GetFileAttributesA
CopyFileA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetCurrentThread
lstrcmpA
GetProfileIntA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetModuleFileNameA
GetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
lstrcpynA
SetLastError
FormatMessageA
LocalFree
lstrlenA
InterlockedDecrement
InterlockedIncrement
FreeLibrary
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
GlobalAlloc
GlobalFree
WideCharToMultiByte
MultiByteToWideChar
OutputDebugStringA
GetTickCount
lstrcpyA
MulDiv
GlobalSize
GlobalLock
GlobalUnlock
GlobalReAlloc
GetProcAddress
GetModuleHandleA
IsBadCodePtr

user32

GetClassNameA
UnregisterClassA
GetMessageA
ValidateRect
PostQuitMessage
LoadStringA
GetActiveWindow
CreateDialogIndirectParamA
CharUpperA
wvsprintfA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
IsDialogMessageA
GetDlgItemInt
LoadIconA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
SetActiveWindow
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
wsprintfA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowPos
RegisterWindowMessageA
IsIconic
GetWindowPlacement
RedrawWindow
GetWindowLongA
SetWindowLongA
EndDialog
SetFocus
SetWindowTextA
GetWindow
MoveWindow
DialogBoxIndirectParamW
UpdateWindow
ClientToScreen
WindowFromPoint
IsRectEmpty
EnableWindow
InvalidateRect
GetFocus
LoadBitmapA
FrameRect
GetSysColor
FillRect
InflateRect
DrawFrameControl
SetCursor
LoadCursorA
IsWindowVisible
GetDoubleClickTime
TranslateMessage
DispatchMessageA
GetWindowTextW
MessageBeep
SendMessageW
CallWindowProcW
DefWindowProcW
SetWindowLongW
CreateWindowExW
SetWindowTextW
DestroyMenu
WinHelpA
GetSysColorBrush
GetWindowTextLengthW
LoadImageA
GetCapture
ReleaseCapture
GetCursor
SetCapture
ClipCursor
SetTimer
PtInRect
InvertRect
PostMessageA
GetWindowRect
GetSystemMetrics
IsClipboardFormatAvailable
GetCursorPos
ReleaseDC
GetDC
SetRect
CopyRect
DrawTextA
DrawTextW
GetParent
SystemParametersInfoA
DefWindowProcA
GetClassInfoA
IsWindow
SendMessageA
TabbedTextOutA
GrayStringA
IntersectRect
GetKeyState
KillTimer
GetClientRect
ScreenToClient
ScrollWindow

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetViewportExtEx
CopyMetaFileA
SetBkMode
RestoreDC
SaveDC
CreateBitmap
GetClipBox
Rectangle
SetTextColor
GetStockObject
GetTextMetricsW
PatBlt
GetWindowExtEx
LPtoDP
DPtoLP
StartDocA
StartPage
EndPage
EndDoc
AbortDoc
Escape
TextOutA
RectVisible
PtVisible
SelectObject
GetTextExtentPoint32W
CreateFontA
GetCurrentObject
SetStretchBltMode
GetPixel
GetTextMetricsA
CreateFontIndirectA
GetTextExtentPoint32A
GetDeviceCaps
GetObjectA
SetBrushOrgEx
StretchBlt
CreatePatternBrush
RoundRect
Ellipse
LineTo
MoveToEx
SetBkColor
ExtTextOutA
CreateBrushIndirect
CreateSolidBrush
CreatePen
BitBlt
GetBitmapBits
SetBitmapBits
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetBkColor

comdlg32

PrintDlgA
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

comctl32

ImageList_AddMasked
ImageList_Draw
ord17
ImageList_Destroy
ImageList_Create
ImageList_GetImageInfo

ole32

CoTaskMemAlloc
OleDuplicateData
RevokeDragDrop
CoLockObjectExternal
DoDragDrop
OleGetClipboard
OleFlushClipboard
OleSetClipboard
CoTaskMemFree
ReleaseStgMedium
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
OleIsCurrentClipboard

oleaut32

VarDateFromStr

Sections

.text
Size: 316KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b12a4683ace616d4755b680a20e91b95

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

ole32

oleaut32

Sections

.text Size: 316KB - Virtual size: 313KB

.rdata Size: 52KB - Virtual size: 49KB

.data Size: 52KB - Virtual size: 111KB

.rsrc Size: 12KB - Virtual size: 11KB

.data Size: 36KB - Virtual size: 33KB

.text
Size: 316KB - Virtual size: 313KB

.rdata
Size: 52KB - Virtual size: 49KB

.data
Size: 52KB - Virtual size: 111KB

.rsrc
Size: 12KB - Virtual size: 11KB

.data
Size: 36KB - Virtual size: 33KB