f157864d7032fdc5231b3a34a1c27b53b1a887f4a5883f330b7ba43080035aa8

Sharing

Copy URL

Twitter E-mail

General

Target

f157864d7032fdc5231b3a34a1c27b53b1a887f4a5883f330b7ba43080035aa8
Size

257KB
MD5

8d5bc2eb1aef4784d26c56c5ef28f150
SHA1

c8eaaaaad9cd300d9fa0ca6660ce8da7785a0ce1
SHA256

f157864d7032fdc5231b3a34a1c27b53b1a887f4a5883f330b7ba43080035aa8
SHA512

482f82879761a304bc2f274f07a401e9b3a27f08f3d18b20b9429935f3531050c90a653fe3f5848068375adce005ccd9e8500f641195c5961416cb5a714780ad
SSDEEP

6144:uLVOym7Y22Mw5R/RUCYjt5/yLj5JEJ+WcZUCYjuE7:uLVOymz4UCYSHTw+bdk

Score

N/A

Malware Config

Signatures

Files

f157864d7032fdc5231b3a34a1c27b53b1a887f4a5883f330b7ba43080035aa8
.exe windows x86

e3c6ebf1fa6016b8b0699f226d7e8245

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

QueryServiceStatus
OpenThreadToken
OpenServiceA
OpenSCManagerA
LookupPrivilegeValueW
GetTokenInformation
CreateServiceA
SetServiceStatus
SetSecurityDescriptorDacl
SetEntriesInAclA
RegisterServiceCtrlHandlerA
RegSetValueExA
RegEnumKeyA
InitializeSecurityDescriptor
StartServiceCtrlDispatcherA
OpenProcessToken
FreeSid
AllocateAndInitializeSid
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

user32

GetMessageA
CloseClipboard
EndDialog
OffsetRect
SetCapture
LoadIconA
MapDialogRect
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetSystemMetrics
LoadCursorA
GetWindowTextA
CheckMenuItem
EnableMenuItem
ModifyMenuA
GetFocus
LoadBitmapA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetWindow
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
SetWindowsHookExA
SetWindowPos
CallNextHookEx
DispatchMessageA
SetWindowLongA
GetMenu
CallWindowProcA
DefWindowProcA
GetDlgCtrlID
PtInRect
CopyRect
UnhookWindowsHookEx
MessageBoxA
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
SendMessageA
GetWindowThreadProcessId
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
GetKeyState
PeekMessageA
ValidateRect
PostQuitMessage
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DestroyMenu
ClientToScreen
SetWindowTextA
RegisterWindowMessageA
WinHelpA
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetForegroundWindow
GetClientRect
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx

gdi32

GetStockObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Rectangle
RestoreDC
ExtTextOutA
CreateFontIndirectA
StartDocA
EndPage
Escape
TextOutA
RectVisible
PtVisible
SetMapMode
SaveDC
DeleteObject
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps

comctl32

ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetImageCount
ImageList_EndDrag
ImageList_Create

comdlg32

ReplaceTextA
GetSaveFileNameA
GetOpenFileNameA

ole32

CoRevokeClassObject
CoInitialize
CoUninitialize

oleaut32

VariantChangeType
VariantInit
VariantClear

wininet

InternetCloseHandle
HttpOpenRequestA
InternetConnectA
HttpSendRequestA
InternetWriteFile
HttpQueryInfoA
InternetQueryDataAvailable
InternetCanonicalizeUrlA
InternetOpenUrlA
InternetOpenA

shlwapi

PathRemoveBackslashA
StrStrIA
PathStripPathA
PathRemoveArgsA
PathRemoveBlanksA
UrlEscapeA

winmm

timeEndPeriod
mciSendCommandA
mciGetErrorStringA
timeBeginPeriod

uxtheme

GetThemeTextExtent
DrawThemeBackground
CloseThemeData

avifil32

AVIFileInit
AVIStreamFindSample
AVIStreamEndStreaming
AVIStreamTimeToSample
AVIStreamRelease
AVIFileExit

kernel32

GetProcessHeap
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetACP
GetSystemTimeAsFileTime
GetTickCount
VirtualFree
HeapCreate
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetConsoleMode
GetConsoleCP
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
HeapSize
HeapReAlloc
VirtualAlloc
HeapFree
HeapAlloc
GetStartupInfoW
RtlUnwind
GetOEMCP
GetCPInfo
GetLocaleInfoA
GlobalFlags
GetCurrentProcess
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
lstrcmpA
GlobalGetAtomNameA
InterlockedIncrement
GetModuleHandleW
CompareStringA
GetCurrentThreadId
CloseHandle
FormatMessageA
MultiByteToWideChar
lstrlenA
GetCurrentProcessId
GetModuleFileNameA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
InterlockedDecrement
GetModuleFileNameW
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
GlobalLock
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
SetLastError
GlobalFree
GlobalAlloc
GlobalUnlock
QueryPerformanceCounter
CreateFileA
GetVolumeInformationA
GetSystemTime
OpenProcess
GetVersionExA
GetModuleHandleA
GetDateFormatA
SizeofResource
Sleep
GetWindowsDirectoryA
GetSystemInfo
GetCurrentDirectoryA
LocalAlloc
VirtualProtect
LocalFree
GetProcAddress
FreeLibrary
InterlockedExchange
GetLastError
LoadLibraryA
RaiseException
SetUnhandledExceptionFilter

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3c6ebf1fa6016b8b0699f226d7e8245

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

gdi32

comctl32

comdlg32

ole32

oleaut32

wininet

shlwapi

winmm

uxtheme

avifil32

kernel32

Sections

.text Size: 152KB - Virtual size: 152KB

.rdata Size: 45KB - Virtual size: 44KB

.data Size: 8KB - Virtual size: 6.6MB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 48KB - Virtual size: 48KB

.text
Size: 152KB - Virtual size: 152KB

.rdata
Size: 45KB - Virtual size: 44KB

.data
Size: 8KB - Virtual size: 6.6MB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 48KB - Virtual size: 48KB