3e78916f69c1537264765d23c33dc23e

Sharing

Copy URL Twitter E-mail

General

Target

3e78916f69c1537264765d23c33dc23e
Size

24KB
MD5

3e78916f69c1537264765d23c33dc23e
SHA1

ab6dbeb357c855ae53bad31d2530a71390ed2a8e
SHA256

27c33dd76f150242c533fa55f3459efa72ba86029f664b3235792ec599ec1912
SHA512

f0ca2b77ab4ccfb7d245d246b9673b7974708126cc6ea467a40c593e6ddebd4b993addafde9352a001c4cff9169e685772635db956aed4367efded636566debf
SSDEEP

384:Pugzg1Gpyl8ETI3M9oWLVu/ZmcZQrQkCXsL25pJhh4WWieZW0K:Pugzg12q8ET9DVu/AcZwQkVqrJhhde0

Score

1^/10

Malware Config

Signatures

Files

3e78916f69c1537264765d23c33dc23e
.exe windows:5 windows x86 arch:x86

96a58302173d9e56edc5e6b4d8a97f51

Code Sign

2c:97:e6:33:fd:29:aa:4b:d0:85:0e:65:dd:02:aa
Certificate

Issuer

CN=yprYsj1KNRia

Not Before

12/03/2012, 12:03

Not After

31/12/2039, 23:59

Subject

CN=yprYsj1KNRia

Extended Key Usages

ExtKeyUsageCodeSigning

ec:06:16:ea:5b:0a:70:de:96:09:37:07:ff:f4:44:26:31:91:b4:d4
Signer

Actual PE Digest

ec:06:16:ea:5b:0a:70:de:96:09:37:07:ff:f4:44:26:31:91:b4:d4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyn
lstrcpyA
lstrcmpA
lstrcmp
_hread
WriteFileEx
WriteConsoleW
WinExec
WaitForDebugEvent
TlsAlloc
SwitchToFiber
SetVolumeMountPointW
SetThreadIdealProcessor
SetTapePosition
SetSystemPowerState
SetPriorityClass
SetLocalTime
SetEnvironmentVariableA
SetCurrentDirectoryW
SetConsoleTitleW
SetConsoleMode
SetConsoleCtrlHandler
SetConsoleCP
SetComputerNameW
SetComputerNameExW
SetCommTimeouts
SetCommState
SetCalendarInfoA
RemoveDirectoryW
ReadConsoleInputW
PeekNamedPipe
PeekConsoleInputW
OpenThread
OpenSemaphoreW
MoveFileW
Module32Next
MapViewOfFile
LocalShrink
LoadLibraryExW
LoadLibraryExA
IsBadStringPtrA
InitializeCriticalSectionAndSpinCount
GlobalUnWire
GlobalDeleteAtom
GetTimeZoneInformation
GetThreadTimes
GetModuleHandleA
GetThreadContext
GetTapeParameters
GetStringTypeW
GetStdHandle
GetPrivateProfileIntA
GetModuleFileNameW
GetDiskFreeSpaceExW
GetCurrencyFormatW
GetCurrencyFormatA
GetConsoleScreenBufferInfo
GetConsoleFontSize
GetConsoleAliasExesA
GetComputerNameExA
GetCommandLineA
GetCommProperties
GetACP
GenerateConsoleCtrlEvent
FreeLibraryAndExitThread
FreeConsole
FoldStringW
FlushConsoleInputBuffer
FindVolumeClose
FindNextFileW
FindCloseChangeNotification
FindClose
FillConsoleOutputCharacterW
ExpandEnvironmentStringsW
EscapeCommFunction
EnumTimeFormatsW
EnumSystemLanguageGroupsW
EnumSystemLanguageGroupsA
EnumCalendarInfoExA
DeleteFileW
DeleteFiber
CreateThread
CreateJobObjectW
CreateIoCompletionPort
CreateEventW
CompareFileTime
CommConfigDialogW
CancelTimerQueueTimer
BuildCommDCBAndTimeoutsW
BindIoCompletionCallback
AllocateUserPhysicalPages
GetProcAddress
GetTempPathA

msvcrt

memset

user32

wvsprintfA
wsprintfW
keybd_event
UnregisterClassA
UnhookWindowsHookEx
TranslateMessage
TrackPopupMenu
ToAscii
TileChildWindows
SubtractRect
ShowOwnedPopups
SetWinEventHook
SendInput
SendIMEMessageExA
ReleaseCapture
RegisterClassA
RealGetWindowClassA
OpenIcon
OffsetRect
OemToCharW
MsgWaitForMultipleObjectsEx
MoveWindow
MonitorFromRect
MonitorFromPoint
ModifyMenuA
MessageBoxIndirectW
MessageBoxA
MapVirtualKeyExA
MapDialogRect
LookupIconIdFromDirectoryEx
LockWorkStation
LoadIconA
LoadCursorA
IsMenu
InSendMessageEx
ImpersonateDdeClientWindow
IMPGetIMEA
GetWindowTextLengthW
GetUserObjectInformationW
GetTabbedTextExtentA
GetSysColorBrush
GetPropW
GetMonitorInfoW
GetMessageW
GetMessageTime
GetMenuItemCount
GetMenuBarInfo
GetLastInputInfo
GetKeyboardLayout
GetKeyNameTextA
GetInputState
GetDlgItemTextA
GetDlgCtrlID
GetDesktopWindow
GetCursor
GetClipboardFormatNameA
GetClassInfoW
GetClassInfoExW
GetAltTabInfo
FlashWindow
FindWindowExW
FindWindowExA
FindWindowA
EnumWindows
EnumThreadWindows
EnumDesktopsA
EnableScrollBar
DrawTextW
DialogBoxIndirectParamW
DialogBoxIndirectParamA
DestroyAcceleratorTable
DdeQueryStringA
DdeInitializeA
DdeImpersonateClient
CreatePopupMenu
CreateMenu
CreateDialogIndirectParamW
CreateCaret
CopyIcon
CloseWindowStation
ClientToScreen
CheckMenuRadioItem
CharUpperBuffW
CharPrevExA
CharNextW
ChangeMenuW
ChangeMenuA
CascadeChildWindows
CallWindowProcA
CallNextHookEx
AppendMenuW
GetMessageA

gdi32

ArcTo
BitBlt
CLIPOBJ_bEnum
CloseEnhMetaFile
CreateBitmap
CreateColorSpaceW
CreateDIBPatternBrushPt
CreateEllipticRgn
CreateFontIndirectW
CreateMetaFileA
CreatePenIndirect
CreatePolygonRgn
CreateRectRgnIndirect
CreateRoundRectRgn
DeleteColorSpace
DeleteDC
EngEraseSurface
EngLoadModule
EngLockSurface
EngQueryEMFInfo
EngStretchBlt
ExtCreateRegion
FONTOBJ_pvTrueTypeFontFile
FillRgn
FlattenPath
GdiCleanCacheDC
GdiConvertBitmapV5
GdiConvertFont
GdiDescribePixelFormat
GdiEntry10
GdiEntry4
GdiEntry5
GdiFixUpHandle
GdiGetLocalDC
GdiResetDCEMF
GdiSetAttrs
GdiSetLastError
GdiValidateHandle
GetBitmapBits
GetCharWidth32A
GetCharacterPlacementW
GetColorSpace
GetDCOrgEx
GetDIBColorTable
GetDeviceCaps
AddFontResourceTracking
GetEnhMetaFileDescriptionA
GetEnhMetaFileDescriptionW
GetEnhMetaFilePaletteEntries
GetFontUnicodeRanges
GetGlyphIndicesA
GetKerningPairs
GetMetaRgn
GetNearestPaletteIndex
GetObjectA
GetOutlineTextMetricsW
GetPaletteEntries
GetPath
GetPixel
GetStringBitmapW
GetTextMetricsW
GetWindowOrgEx
GetWorldTransform
InvertRgn
ModifyWorldTransform
OffsetViewportOrgEx
PatBlt
Pie
PlgBlt
PolyBezierTo
PolyDraw
PolyPolyline
RemoveFontResourceExW
RemoveFontResourceW
ResetDCA
RestoreDC
RoundRect
STROBJ_vEnumStart
SaveDC
SetBkColor
SetDCBrushColor
SetLayoutWidth
SetMapMode
SetMetaRgn
SetPixelV
SetROP2
SetRectRgn
SetSystemPaletteUse
XFORMOBJ_iGetXform
XLATEOBJ_hGetColorTransform
bMakePathNameW
GetEnhMetaFileBits
AddFontResourceA

advapi32

RegOpenKeyExW

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96a58302173d9e56edc5e6b4d8a97f51

Code Sign

2c:97:e6:33:fd:29:aa:4b:d0:85:0e:65:dd:02:aaCertificate

Extended Key Usages

ec:06:16:ea:5b:0a:70:de:96:09:37:07:ff:f4:44:26:31:91:b4:d4Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

advapi32

Sections

.text Size: 16KB - Virtual size: 16KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

2c:97:e6:33:fd:29:aa:4b:d0:85:0e:65:dd:02:aa
Certificate

ec:06:16:ea:5b:0a:70:de:96:09:37:07:ff:f4:44:26:31:91:b4:d4
Signer

.text
Size: 16KB - Virtual size: 16KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB