66f6f1fa55a0d506c7b8e46a6600e081ef00d085b7492fdf082651e8db37fba6

Sharing

Copy URL

Twitter E-mail

General

Target

66f6f1fa55a0d506c7b8e46a6600e081ef00d085b7492fdf082651e8db37fba6
Size

304KB
MD5

8b294b6025af7d8a90b69d304156f5cc
SHA1

b0d0ea067cc3700eb794762c1a3c3930a423a77c
SHA256

66f6f1fa55a0d506c7b8e46a6600e081ef00d085b7492fdf082651e8db37fba6
SHA512

d196328a02c456b40149d51cfc733c8f2946cd1522d7d688c9d21ba48f92f586d0cb3b6a5557d710a959b696e490668e4f5fac2d5390f4c774334512f5686d56
SSDEEP

3072:lBHJC4IzwSDV1xbwPUyB9daqWfVbKvYTCuKBm7FZ2VOOPX351Ny1ZD2yX:lhuzw2bwPUQdaq2VblABq2UO5

Score

N/A

Malware Config

Signatures

Files

66f6f1fa55a0d506c7b8e46a6600e081ef00d085b7492fdf082651e8db37fba6
.exe windows x86

fd29aca8050a1a5757829a233a5c915a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyA
RegCreateKeyExA
QueryServiceStatus
OpenThreadToken
OpenServiceA
OpenSCManagerA
LookupPrivilegeValueA
CreateServiceW
ControlService
SetServiceStatus
SetSecurityDescriptorDacl
SetEntriesInAclA
RegisterServiceCtrlHandlerA
InitializeSecurityDescriptor
StartServiceCtrlDispatcherA
OpenProcessToken
FreeSid
AllocateAndInitializeSid
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

user32

MapWindowPoints
SetForegroundWindow
GetMessagePos
GetMessageTime
DestroyWindow
AppendMenuA
GetActiveWindow
IsDialogMessageA
SetWindowLongA
PostMessageA
DrawFrameControl
TrackPopupMenu
FillRect
GetTopWindow
GetDlgItem
GetForegroundWindow
IsWindow
RemovePropA
GetPropA
SetPropA
GetClassLongA
GetCapture
WinHelpA
LoadIconA
RegisterWindowMessageA
DestroyMenu
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
PostQuitMessage
GetClientRect
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetFocus
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
UnregisterClassA
SetWindowsHookExA
CallNextHookEx
DispatchMessageA
GetKeyState
PeekMessageA
ValidateRect
LoadCursorA
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnhookWindowsHookEx
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu

gdi32

TextOutA
SetTextColor
GetClipBox
CreateBitmap
DeleteObject
GetDeviceCaps
SetMapMode
Escape
PtVisible
RectVisible
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SetBkColor
ExtTextOutA
DeleteDC
GetStockObject
SaveDC
RestoreDC

comctl32

ImageList_Create
ImageList_GetDragImage
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_EndDrag

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

ole32

CoUninitialize
CoRevokeClassObject
CoInitialize

oleaut32

VariantInit
VariantChangeType
VariantClear

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

wininet

HttpSendRequestExA
InternetAttemptConnect
HttpEndRequestA
InternetWriteFile
InternetSetOptionA
InternetSetCookieA
InternetReadFile
InternetQueryOptionA
InternetQueryDataAvailable
InternetOpenA
InternetErrorDlg
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
HttpSendRequestA
HttpOpenRequestA
HttpAddRequestHeadersA

shlwapi

StrStrA
StrDupA
PathIsUNCA

winmm

timeGetTime
timeBeginPeriod

uxtheme

CloseThemeData
GetThemeTextExtent
OpenThemeData

avifil32

AVIFileOpenA
AVIFileWriteData
AVIFileReadData
AVISaveOptions
AVISaveOptionsFree
AVIFileInit

kernel32

VirtualProtect
GetProcAddress
FreeLibrary
LoadLibraryA
RaiseException
lstrlenA
CompareStringA
GetCurrentProcess
SetFilePointer
WriteFile
GetOEMCP
GetCPInfo
GetLocaleInfoA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetThreadLocale
GlobalGetAtomNameA
GlobalFlags
lstrcmpA
GetCurrentThreadId
CloseHandle
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameW
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
GetCurrentProcessId
GetModuleFileNameA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LockResource
SizeofResource
SetLastError
GetTempPathA
GetSystemInfo
GetCurrentDirectoryA
Sleep
LocalAlloc
LocalFree
CreateThread
FlushFileBuffers
LoadResource
FindResourceA
GetDateFormatA
GetModuleHandleA
GetVersionExA
OpenProcess
GetSystemTime
GetWindowsDirectoryA
CreateFileA
QueryPerformanceCounter
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
HeapAlloc
HeapFree
HeapReAlloc
VirtualAlloc
RtlUnwind
GetProcessHeap
GetStartupInfoW
HeapSize
ExitProcess
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
GetTickCount
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

Sections

.text
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd29aca8050a1a5757829a233a5c915a

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

gdi32

comctl32

comdlg32

ole32

oleaut32

version

wininet

shlwapi

winmm

uxtheme

avifil32

kernel32

Sections

.text Size: 124KB - Virtual size: 122KB

.rdata Size: 44KB - Virtual size: 41KB

.data Size: 8KB - Virtual size: 3.0MB

.rsrc Size: 96KB - Virtual size: 92KB

.reloc Size: 28KB - Virtual size: 27KB

.text
Size: 124KB - Virtual size: 122KB

.rdata
Size: 44KB - Virtual size: 41KB

.data
Size: 8KB - Virtual size: 3.0MB

.rsrc
Size: 96KB - Virtual size: 92KB

.reloc
Size: 28KB - Virtual size: 27KB