3cd153f450d927ea10ff95baedfc6ccd

Sharing

Copy URL Twitter E-mail

General

Target

3cd153f450d927ea10ff95baedfc6ccd
Size

79KB
MD5

3cd153f450d927ea10ff95baedfc6ccd
SHA1

804698669f12b31e7ecf81a3c6719203696484e9
SHA256

634bdd45481f8395fcab43147585e0759ff82e14d39d45b1d105f2be183f0a4d
SHA512

b6b6678958e598b8cd80d2d22feb7c37cef6f81d8a638772abb685227b9b607a8699f84eda390db69e976377e8f9c6b9301689e735fb1b93d7162c87483c41c5
SSDEEP

768:btTIl2YB7q9AbEgdhVGd0NoowRZZe8DYgeW136R2h70Va4Ryp/qbX0hinZg8QqM:bhIlbq9AhNNwRvQgeWNT7s0FOX0he2

Score

1^/10

Malware Config

Signatures

Files

3cd153f450d927ea10ff95baedfc6ccd
.exe windows:5 windows x86 arch:x86

a35af529b86e6e62523e677f1eb58abb

Code Sign

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9
Certificate

Issuer

CN=eryer

Not Before

05/02/2012, 09:13

Not After

31/12/2039, 23:59

Subject

CN=eryer

Extended Key Usages

ExtKeyUsageCodeSigning

35:55:4b:5c:77:b2:e7:25:f8:ab:56:bd:a6:2b:71:0e:2c:1f:92:51
Signer

Actual PE Digest

35:55:4b:5c:77:b2:e7:25:f8:ab:56:bd:a6:2b:71:0e:2c:1f:92:51

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetWindowsDirectoryW
lstrcatW
CreateFileW
GetSystemInfo
GetProcessHeap

msvcrt

memset

user32

DefDlgProcA
DefFrameProcA
DefMDIChildProcW
DlgDirListW
DlgDirSelectExW
DrawFrameControl
DrawStateW
EnumDesktopsW
EnumPropsW
EnumWindowStationsA
FillRect
FindWindowExW
GetAltTabInfoW
GetClassInfoA
GetClassInfoExA
GetClipCursor
GetClipboardData
GetComboBoxInfo
GetCursor
GetDCEx
GetGuiResources
GetKeyboardLayoutList
GetKeyboardState
GetMenuCheckMarkDimensions
GetMenuItemInfoA
GetMenuStringA
GetMenuStringW
GetMessageA
GetWindowLongW
GetWindowModuleFileName
GetWindowModuleFileNameW
IMPSetIMEW
DdeUninitialize
InflateRect
InvalidateRect
IsCharUpperW
IsDialogMessage
IsDialogMessageA
IsDialogMessageW
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadCursorFromFileA
LoadIconW
LoadMenuW
MonitorFromRect
OffsetRect
OpenClipboard
OpenDesktopW
OpenIcon
PackDDElParam
RealGetWindowClassW
RegisterClassW
RemovePropA
SendIMEMessageExW
SendMessageTimeoutA
SetCaretBlinkTime
SetClipboardData
SetDeskWallpaper
SetMenuItemBitmaps
SetMenuItemInfoA
SetScrollPos
SetUserObjectInformationA
SetWindowContextHelpId
SetWindowPos
SetWindowTextA
SetWindowsHookExA
SetWindowsHookExW
UnregisterClassW
UserHandleGrantAccess
ValidateRect
VkKeyScanExW
DdeSetQualityOfService
DdeReconnect
DdeNameService
DdeGetLastError
DdeFreeDataHandle
DdeCreateStringHandleW
DdeConnectList
DdeClientTransaction
CreateWindowExA
CreatePopupMenu
CreateMDIWindowW
CreateDesktopW
CloseWindowStation
ChildWindowFromPointEx
CheckMenuRadioItem
CharToOemBuffA
ChangeDisplaySettingsExA
AttachThreadInput
AllowSetForegroundWindow
InSendMessage

comdlg32

ChooseColorW
ChooseFontA
ChooseFontW
CommDlgExtendedError
FindTextA
FindTextW
GetFileTitleA
ReplaceTextW
ReplaceTextA
PrintDlgW
PrintDlgExW
PrintDlgExA
PrintDlgA
PageSetupDlgW
PageSetupDlgA
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
ChooseColorA

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a35af529b86e6e62523e677f1eb58abb

Code Sign

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9Certificate

Extended Key Usages

35:55:4b:5c:77:b2:e7:25:f8:ab:56:bd:a6:2b:71:0e:2c:1f:92:51Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

comdlg32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 484B

.text2 Size: 62KB - Virtual size: 62KB

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 1KB

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9
Certificate

35:55:4b:5c:77:b2:e7:25:f8:ab:56:bd:a6:2b:71:0e:2c:1f:92:51
Signer

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 484B

.text2
Size: 62KB - Virtual size: 62KB

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 1KB