3d8e9d1484e2c019430469472ceb4e99

Sharing

Copy URL Twitter E-mail

General

Target

3d8e9d1484e2c019430469472ceb4e99
Size

79KB
MD5

3d8e9d1484e2c019430469472ceb4e99
SHA1

b49e5f5a67e4d58435babf4acbe91f1f75a6975a
SHA256

3b845a978fa9bba1f6a645bab84793f9c1293aff08a55e716330d0189b723349
SHA512

fa3d236a1af918a43cd1c1aa77d14a9f101f17e8e8b152582bf142d81880c72719c78a7dcb9d6c3b402152977a2326f082404927797bf7e75eb5e64a0de75ece
SSDEEP

1536:1/kwl/cq9q+U42NmzCenAVm/E5KaFlbpRNEfFH8VSZceb8l:18wlUq9Y42NmvnbGFBpRNE9H2SyaW

Score

1^/10

Malware Config

Signatures

Files

3d8e9d1484e2c019430469472ceb4e99
.exe windows:5 windows x86 arch:x86

a35af529b86e6e62523e677f1eb58abb

Code Sign

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9
Certificate

Issuer

CN=eryer

Not Before

05/02/2012, 09:13

Not After

31/12/2039, 23:59

Subject

CN=eryer

Extended Key Usages

ExtKeyUsageCodeSigning

93:ee:47:a2:57:81:79:c9:b5:54:cf:85:c5:af:fc:1c:85:f2:c3:50
Signer

Actual PE Digest

93:ee:47:a2:57:81:79:c9:b5:54:cf:85:c5:af:fc:1c:85:f2:c3:50

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetWindowsDirectoryW
lstrcatW
CreateFileW
GetSystemInfo
GetProcessHeap

msvcrt

memset

user32

DefDlgProcA
DefFrameProcA
DefMDIChildProcW
DlgDirListW
DlgDirSelectExW
DrawFrameControl
DrawStateW
EnumDesktopsW
EnumPropsW
EnumWindowStationsA
FillRect
FindWindowExW
GetAltTabInfoW
GetClassInfoA
GetClassInfoExA
GetClipCursor
GetClipboardData
GetComboBoxInfo
GetCursor
GetDCEx
GetGuiResources
GetKeyboardLayoutList
GetKeyboardState
GetMenuCheckMarkDimensions
GetMenuItemInfoA
GetMenuStringA
GetMenuStringW
GetMessageA
GetWindowLongW
GetWindowModuleFileName
GetWindowModuleFileNameW
IMPSetIMEW
DdeUninitialize
InflateRect
InvalidateRect
IsCharUpperW
IsDialogMessage
IsDialogMessageA
IsDialogMessageW
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadCursorFromFileA
LoadIconW
LoadMenuW
MonitorFromRect
OffsetRect
OpenClipboard
OpenDesktopW
OpenIcon
PackDDElParam
RealGetWindowClassW
RegisterClassW
RemovePropA
SendIMEMessageExW
SendMessageTimeoutA
SetCaretBlinkTime
SetClipboardData
SetDeskWallpaper
SetMenuItemBitmaps
SetMenuItemInfoA
SetScrollPos
SetUserObjectInformationA
SetWindowContextHelpId
SetWindowPos
SetWindowTextA
SetWindowsHookExA
SetWindowsHookExW
UnregisterClassW
UserHandleGrantAccess
ValidateRect
VkKeyScanExW
DdeSetQualityOfService
DdeReconnect
DdeNameService
DdeGetLastError
DdeFreeDataHandle
DdeCreateStringHandleW
DdeConnectList
DdeClientTransaction
CreateWindowExA
CreatePopupMenu
CreateMDIWindowW
CreateDesktopW
CloseWindowStation
ChildWindowFromPointEx
CheckMenuRadioItem
CharToOemBuffA
ChangeDisplaySettingsExA
AttachThreadInput
AllowSetForegroundWindow
InSendMessage

comdlg32

ChooseColorW
ChooseFontA
ChooseFontW
CommDlgExtendedError
FindTextA
FindTextW
GetFileTitleA
ReplaceTextW
ReplaceTextA
PrintDlgW
PrintDlgExW
PrintDlgExA
PrintDlgA
PageSetupDlgW
PageSetupDlgA
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
ChooseColorA

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a35af529b86e6e62523e677f1eb58abb

Code Sign

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9Certificate

Extended Key Usages

93:ee:47:a2:57:81:79:c9:b5:54:cf:85:c5:af:fc:1c:85:f2:c3:50Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

comdlg32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 484B

.text2 Size: 62KB - Virtual size: 62KB

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 1KB

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9
Certificate

93:ee:47:a2:57:81:79:c9:b5:54:cf:85:c5:af:fc:1c:85:f2:c3:50
Signer

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 484B

.text2
Size: 62KB - Virtual size: 62KB

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 1KB