429c7d9da94ad491151a1d2c09c248bddf02ff53ceccb3bca4463ba8c025bdf4

Sharing

Copy URL

Twitter E-mail

General

Target

429c7d9da94ad491151a1d2c09c248bddf02ff53ceccb3bca4463ba8c025bdf4
Size

418KB
MD5

5a12efa968ba9182beca5d192342529f
SHA1

4bac6715187a58c2ea324a4aa1a086a16be05084
SHA256

429c7d9da94ad491151a1d2c09c248bddf02ff53ceccb3bca4463ba8c025bdf4
SHA512

866dc487d94d86e73ddda3b6a73c462beb576cdca396400acb9036ae57462613a47ed20bdfcd2d3a1b44f6f3fde2fc94b44314eaf1e3f602b0096c9911de5925
SSDEEP

12288:aUbjpvVw7FlRNCq/knSujQRlBlDeK0k9p:xbdVMhS0nltp

Score

N/A

Malware Config

Signatures

Files

429c7d9da94ad491151a1d2c09c248bddf02ff53ceccb3bca4463ba8c025bdf4
.exe windows x86

07f0e8cbe0c75e65eb05b089322fed55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetCancelConnection2A

gdi32

GetBkColor
Polyline
SetPixel
CreatePenIndirect
Ellipse
SetPixelFormat
FillRgn
GetTextExtentPoint32A
PatBlt
IntersectClipRect
GetTextExtentPointA
GetFontData
Rectangle
FillPath
CancelDC
CreateFontW
GetTextAlign
GetTextCharsetInfo
CopyEnhMetaFileW
GetDIBColorTable
GetObjectW
OffsetWindowOrgEx
GetObjectA
GetNearestPaletteIndex
GetCharWidthA
GdiFlush
ExtCreatePen
EnumMetaFile
ScaleViewportExtEx
DeleteEnhMetaFile
CreateFontIndirectA
Arc
PtVisible
SetPolyFillMode
SetWindowExtEx
MoveToEx
SetRectRgn
SetAbortProc
GetDeviceCaps
SaveDC
ExtFloodFill
OffsetRgn
GetRgnBox
CreateRoundRectRgn
CreateDCA
CreateBitmap
RealizePalette
OffsetViewportOrgEx
CreateRectRgn
OffsetClipRgn
GetGlyphOutlineW
GetDIBits
StartDocW
PlayEnhMetaFileRecord
GetPolyFillMode
LPtoDP
GetTextMetricsA
SetPixelV
DeleteDC
GetClipRgn
GetStockObject
UpdateColors
SetViewportExtEx
SetTextAlign

advapi32

SetKernelObjectSecurity
IsValidSid
CreateServiceA
SetSecurityDescriptorGroup
GetSecurityDescriptorOwner
SetSecurityDescriptorOwner
IsValidSecurityDescriptor
FreeSid
ChangeServiceConfigA
LookupPrivilegeValueA
ChangeServiceConfig2A
InitializeSecurityDescriptor
QueryServiceStatus
OpenProcessToken
LsaQueryInformationPolicy
LookupPrivilegeValueW
GetAce
LogonUserA
OpenThreadToken
CreateServiceW
RevertToSelf
RegDeleteKeyA
CloseServiceHandle
AllocateAndInitializeSid
LsaFreeMemory
GetEffectiveRightsFromAclW
MakeSelfRelativeSD
GetLengthSid
RegSetValueA
GetSidSubAuthorityCount
RegSetValueExW
DecryptFileW
SetFileSecurityA
LookupAccountNameW
RegCloseKey
EnumServicesStatusA
GetTokenInformation

kernel32

GetStringTypeA
GetStartupInfoA
EnumResourceNamesW
GetConsoleTitleW
GetModuleHandleA

msvcrt

_acmdln
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
exit
_safe_fdivr
gets
_onexit
__dllonexit
_mbscpy
_ismbstrail
__getmainargs

version

VerInstallFileA
GetFileVersionInfoSizeW
VerFindFileA
VerQueryValueW
VerInstallFileW
VerQueryValueA
GetFileVersionInfoSizeA

user32

LoadBitmapA
CopyIcon
IsCharLowerA
CheckMenuItem
IsChild
TranslateMessage
MapVirtualKeyExW
SetCaretPos
SetWindowTextW
LoadMenuW
SetRectEmpty
GetUserObjectInformationW
IsWindowVisible
SetMenuDefaultItem
GetClipboardData
GetDlgCtrlID
CopyAcceleratorTableW
GetClassInfoA
SetKeyboardState
EnableWindow
GetDoubleClickTime
DrawStateW
GetProcessWindowStation
UnhookWinEvent
WindowFromPoint
GetSysColorBrush
ShowWindow
IsCharAlphaW
GetCaretPos
DestroyCaret
DrawTextExA
DialogBoxParamA
DestroyAcceleratorTable
InsertMenuW
ValidateRect
CreateDialogIndirectParamA
CreateCursor
SetFocus
CheckRadioButton
DrawTextA
CharUpperA
GetWindowWord
IntersectRect
MoveWindow
FindWindowA
InSendMessage
EnumThreadWindows
SetWindowPos
LoadCursorA
CloseDesktop
DrawIcon
DialogBoxIndirectParamA
CreateDialogParamA
ShowCaret
FillRect
DestroyMenu
GetWindowThreadProcessId
TranslateMDISysAccel
LoadIconA
GetDlgItemTextW
CharLowerBuffA
GetClassInfoW
SetTimer
PostThreadMessageA
RegisterWindowMessageA
GetWindowTextLengthA
InvalidateRect
SetClipboardData
ScrollWindowEx
ShowOwnedPopups
EnableScrollBar
GetMenuItemID
GetDlgItemTextA
SetMenu
CharLowerW
IsWindowEnabled
DdeConnect
WaitMessage
GetClassLongA
ClipCursor
FindWindowW
CharNextA
IsCharAlphaNumericA
PostMessageA
GetWindowLongW

netapi32

NetServerEnum

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 545KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07f0e8cbe0c75e65eb05b089322fed55

Headers

File Characteristics

Imports

mpr

gdi32

advapi32

kernel32

msvcrt

version

user32

netapi32

Sections

.text Size: 92KB - Virtual size: 89KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 16KB - Virtual size: 545KB

.rsrc Size: 68KB - Virtual size: 66KB

.text
Size: 92KB - Virtual size: 89KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 16KB - Virtual size: 545KB

.rsrc
Size: 68KB - Virtual size: 66KB