3a44fefcd1fe62f4cf621ea9adae95b79308c452f93174757a4c61bf19a06b82

Sharing

Copy URL

Twitter E-mail

General

Target

3a44fefcd1fe62f4cf621ea9adae95b79308c452f93174757a4c61bf19a06b82
Size

280KB
MD5

1cf4d2df77d4f71f1ee9b3714d078c20
SHA1

74cfa7227a6129f485aad08556ca4f714439b9bf
SHA256

3a44fefcd1fe62f4cf621ea9adae95b79308c452f93174757a4c61bf19a06b82
SHA512

ea3371610708c0cdf362cfdae6ec9e829e967df8793a51798a94a295bddd9ab926d6d230daf7e785b1522ebf52d7691f01e2f6b29f611b6a18767daec2404aba
SSDEEP

6144:aWJMgmrPfn+nYG0ZVpdkIQgbDy/xXqp6Ya+ml/OnXT0MFa4QLjD8w:aWJ3gfn+xSdrpbe/x+sWXHkQ

Score

N/A

Malware Config

Signatures

Files

3a44fefcd1fe62f4cf621ea9adae95b79308c452f93174757a4c61bf19a06b82
.exe windows x86

618ac4495193a1c9bd639954211c31b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DPtoLP
GetPixel
CreateSolidBrush
CopyEnhMetaFileA
CreateICW
SetWinMetaFileBits
CreateDIBPatternBrushPt
GetGlyphOutlineA
EnumMetaFile
SetAbortProc
ExtTextOutA
GetBkColor
GetObjectW
GetWinMetaFileBits
Ellipse
GetWindowOrgEx
Arc
GetObjectA
GetEnhMetaFileBits
SetTextCharacterExtra
EqualRgn
CreateCompatibleBitmap
OffsetClipRgn
SetViewportExtEx
ExtCreateRegion
SetPixelV
PlayEnhMetaFile
OffsetRgn
PtVisible
SetROP2
AbortDoc
CreateFontA
RectVisible
ExtEscape
RestoreDC
GetNearestPaletteIndex
GetSystemPaletteEntries
CreateDCW
ScaleViewportExtEx
GetKerningPairsA
SetWindowExtEx
SetTextAlign
ExtCreatePen
SelectPalette
SetRectRgn
CreateFontIndirectW
CreateRoundRectRgn
EndDoc
EndPath
GetRgnBox
GetMapMode
StretchBlt
SetBkColor
GetTextExtentPoint32W
GetROP2
LPtoDP
EnumFontFamiliesExW
BitBlt
GetClipRgn
EnumFontFamiliesA
PolyPolyline
CreateFontW
GetBrushOrgEx
CreateFontIndirectA
ExtSelectClipRgn
CreatePen
CreateICA
EnumFontsW
GetCharABCWidthsW
SetTextColor
DeleteDC
StrokePath
GetGlyphOutlineW
SetMapMode
GetClipBox
SetViewportOrgEx
GetTextCharsetInfo
SwapBuffers
EndPage
UpdateColors
IntersectClipRect
CloseEnhMetaFile
ResizePalette
MoveToEx
CancelDC
RealizePalette
Polygon
Rectangle
GetObjectType
CreatePenIndirect
GetTextColor
SetDIBColorTable
GetEnhMetaFileHeader
SetBkMode
Polyline
BeginPath
FillRgn
ScaleWindowExtEx
GetFontData
StartDocW

advapi32

OpenProcessToken
LookupAccountNameW
LsaFreeMemory
RegQueryInfoKeyW
ReportEventA
GetSidSubAuthority
AddAce
ReportEventW
EnumDependentServicesA
GetSidIdentifierAuthority
CreateProcessAsUserW
OpenSCManagerA
InitializeSecurityDescriptor
ReadEventLogW
CreateServiceW
GetSidSubAuthorityCount
LookupPrivilegeValueA
RegSetValueExW
RegCreateKeyExA
RegCreateKeyExW
InitializeSid
SetFileSecurityW
RegConnectRegistryA
DeleteService
GetUserNameA
LsaQueryInformationPolicy
GetKernelObjectSecurity

version

VerInstallFileW
GetFileVersionInfoA
GetFileVersionInfoSizeW
VerFindFileA

msvcrt

_controlfp
iswctype
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_cputs
fread
strchr
__dllonexit
_wcsnset
fprintf

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

618ac4495193a1c9bd639954211c31b8

Headers

File Characteristics

Imports

gdi32

advapi32

version

msvcrt

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 8KB - Virtual size: 540KB

.rsrc Size: 164KB - Virtual size: 161KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 8KB - Virtual size: 540KB

.rsrc
Size: 164KB - Virtual size: 161KB