5085ed5da0d670e2fe34bffdcdc74cc51b0d1d76000ef002f6bacd76c40e4962

Sharing

Copy URL

Twitter E-mail

General

Target

5085ed5da0d670e2fe34bffdcdc74cc51b0d1d76000ef002f6bacd76c40e4962
Size

308KB
MD5

44654a2110c1d3b323e95ad53f0c2df2
SHA1

edb618557380731a31e376d0a61c9836c83bc228
SHA256

5085ed5da0d670e2fe34bffdcdc74cc51b0d1d76000ef002f6bacd76c40e4962
SHA512

08fc2c7a6d1a59042f0233c99b8a805335df6f6c2315d3a2a7bf4a15675508c1e4e9465dc35d9941dd65fcfdf00d36462f591a438caa0e96bae1adcbb5572c35
SSDEEP

6144:myHc8bvrHBX5WqLl/mvr/0JMUbeNTrF/8bKfXAy+WiRx:myHcG1Qau74tbeNTrl8OwyqRx

Score

N/A

Malware Config

Signatures

Files

5085ed5da0d670e2fe34bffdcdc74cc51b0d1d76000ef002f6bacd76c40e4962
.exe windows x86

72fe17c833be319afe803ab970b31684

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LookupPrivilegeValueA
CopySid
RegUnLoadKeyW
InitializeSecurityDescriptor
CloseServiceHandle
RevertToSelf
OpenThreadToken
OpenServiceA
QueryServiceStatus
CreateServiceW
GetAce
SetFileSecurityA
MakeAbsoluteSD
RegQueryInfoKeyW
SetSecurityDescriptorGroup
ReportEventW
RegSetValueExA
RegCloseKey
AddAce
RegEnumKeyW
RegisterServiceCtrlHandlerA
EnumServicesStatusA
ChangeServiceConfigW
LsaFreeMemory
StartServiceCtrlDispatcherA
InitiateSystemShutdownA
RegOpenKeyExA
LogonUserA
AdjustTokenPrivileges
ChangeServiceConfig2W
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyExA
DeleteService
LookupAccountNameW
InitializeSid
GetAclInformation

msvcrt

_ui64tow
_fileno
signal
sinh
_CIpow
atol
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_fstati64
_ltow
_controlfp

gdi32

GetPixel
CreateCompatibleDC
StartDocW
SetBitmapBits
SetROP2
GetObjectA
RestoreDC
EndDoc
GdiFlush
ExtSelectClipRgn
GetTextFaceA
CreateBitmap
GetBkColor
CreateEllipticRgn
GetCharABCWidthsW
CreateCompatibleBitmap
SetStretchBltMode
GetRgnBox
EnumFontsW
CreateSolidBrush
BitBlt
EnumFontFamiliesA
GetWindowOrgEx
BeginPath
SetWinMetaFileBits
RealizePalette
DeleteDC
ScaleWindowExtEx
CreateFontIndirectW
SetTextColor
LPtoDP
SaveDC
SetViewportOrgEx
GetEnhMetaFilePaletteEntries
AbortDoc
ExtEscape
StartDocA
GetBitmapBits
OffsetRgn
Rectangle
StrokePath
GetMapMode
DeleteEnhMetaFile
EndPath
CreateRectRgn
GetKerningPairsA
TextOutA
DeleteObject
ExtFloodFill
CreateFontIndirectA
Ellipse
SelectClipRgn
SetPolyFillMode
SetWorldTransform
CreateFontW
SetWindowExtEx
CloseEnhMetaFile
GetStockObject
CreateDCA
SetPixelV
EqualRgn
OffsetWindowOrgEx
EndPage
CreateRoundRectRgn
CancelDC
Polygon
RectVisible
CreateDCW
PolyPolyline
GetDeviceCaps
PtVisible
CreateDIBSection
PlayEnhMetaFileRecord
FillRgn
GetTextColor
GetTextCharsetInfo
GetEnhMetaFileHeader
CreatePenIndirect
SelectPalette
GetFontData
CreateICW
GetClipRgn
EnumMetaFile
OffsetViewportOrgEx
GetBrushOrgEx
GetGlyphOutlineW
CreateICA
CreatePen
SetPixel
GetClipBox
SwapBuffers
PatBlt
UnrealizeObject
Pie
IntersectClipRect
FillPath
CombineRgn
SetViewportExtEx
GetDIBColorTable
ExtCreateRegion
SetBkColor
PolyBezierTo
SetDIBColorTable
ExtCreatePen
SetAbortProc
SetPixelFormat
SetBkMode
StretchBlt
SetMapMode
ExtTextOutA
GetEnhMetaFileBits
GetTextMetricsA
GetGlyphOutlineA
GetTextExtentPoint32A
CreateFontA
GetNearestPaletteIndex
GetObjectType
SetWindowOrgEx
GetCharWidthA
MoveToEx
EnumFontFamiliesExW
CopyEnhMetaFileW
CreateDIBPatternBrushPt
Polyline
GetTextAlign
GetSystemPaletteEntries
GetROP2
ResizePalette
GetTextExtentPoint32W
CopyEnhMetaFileA
GetWinMetaFileBits
SetTextAlign
Arc
UpdateColors
SetTextCharacterExtra
SetRectRgn
StartPage
OffsetClipRgn
ScaleViewportExtEx
PlayEnhMetaFile

version

VerInstallFileA
VerFindFileA
VerInstallFileW
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoW

user32

DdeQueryStringA
IsMenu
CloseDesktop
ChangeClipboardChain
PostQuitMessage
GetWindow
CreateDialogIndirectParamA
DrawTextW
GetKeyState
PostMessageA
SetRectEmpty
EnumDisplaySettingsW
LoadIconA
PeekMessageW
MoveWindow
TrackPopupMenuEx
SendDlgItemMessageW
GetKeyboardState
CreateWindowStationW
WinHelpA
SendInput
LockWindowUpdate
GetDC
GetCapture
UnionRect
GetDlgItem
DialogBoxParamA
IsWindow
IsCharLowerA
LoadImageA
TranslateMessage
GetSystemMetrics
LoadKeyboardLayoutW
ScrollWindow
FindWindowA
LoadAcceleratorsA
UnpackDDElParam
DrawStateW
DdeFreeStringHandle
GetTabbedTextExtentA
GetWindowLongW
MessageBeep
IsDialogMessageA
DestroyMenu
DrawIconEx
DrawStateA
AdjustWindowRect
SetClassLongA
GetClassNameW
DdeAccessData
GetQueueStatus
RemoveMenu
ChildWindowFromPointEx

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72fe17c833be319afe803ab970b31684

Headers

File Characteristics

Imports

advapi32

msvcrt

gdi32

version

user32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 4KB - Virtual size: 540KB

.rsrc Size: 184KB - Virtual size: 182KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 4KB - Virtual size: 540KB

.rsrc
Size: 184KB - Virtual size: 182KB