57b374e2d2f002c11c69b454fcf1aa57bd971cd0638eca12c6691cdb6a2f011c

Sharing

Copy URL

Twitter E-mail

General

Target

57b374e2d2f002c11c69b454fcf1aa57bd971cd0638eca12c6691cdb6a2f011c
Size

457KB
MD5

13b78d808996120ae0ce4d1b19947c3e
SHA1

6937e2e6301f5ecb0251c26a3ad0afe4a0d30aed
SHA256

57b374e2d2f002c11c69b454fcf1aa57bd971cd0638eca12c6691cdb6a2f011c
SHA512

1c8000f502c10222aa4e14ae00a709d0f0684286de3a125b41649d8749632a91fba31866ce949713cc7920651745ab1f1f9fe3568d25c9065e37de2c47f754dd
SSDEEP

12288:P+AT0/zbx68pqKNkz8a7r3rxnrFMlnl1O9:P+A8BVqKNkAa7hrFAA9

Score

N/A

Malware Config

Signatures

Files

57b374e2d2f002c11c69b454fcf1aa57bd971cd0638eca12c6691cdb6a2f011c
.exe windows x86

aaa2f6e576d6209983fcd2b61c349594

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostMessageA
SendMessageA
CallWindowProcA
GetDC
SetLayeredWindowAttributes
SetWindowRgn
CreateDialogParamA
SetWindowTextA
LoadBitmapA
CreateWindowExA
SetWindowLongA
GetWindowLongA
GetWindowRect
SetWindowPos
MoveWindow
GetMessageA
DispatchMessageA
TranslateMessage
GetDlgItemTextA
SetDlgItemTextA
PostQuitMessage
EndDialog
DefWindowProcA
MessageBoxA

advapi32

CloseServiceHandle
RegQueryValueExA
RegCloseKey
OpenSCManagerA
RegOpenKeyExA

gdi32

SetBkMode

comctl32

ImageList_GetIconSize
ImageList_SetIconSize

kernel32

InterlockedIncrement
LockResource
LoadResource
lstrlenA
Sleep
CreateThread
ExitProcess
InitializeCriticalSectionAndSpinCount
FindResourceA
InterlockedDecrement
LCMapStringA
GetProcAddress
HeapDestroy
VirtualQuery
GetSystemInfo
VirtualProtect
GetVersionExA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetUserDefaultLangID
GetVersion
GetPrivateProfileStringA
CopyFileA
IsDBCSLeadByte
FindFirstFileA
SetFileAttributesA
RemoveDirectoryA
FindNextFileA
FindClose
FreeEnvironmentStringsA
HeapSize
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetModuleFileNameA
GetStdHandle
GetCPInfo
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
GetSystemTimeAsFileTime
GetStartupInfoA
GetCommandLineA
HeapAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapFree
RtlUnwind
RaiseException
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceCounter
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetTickCount
GetCurrentProcessId
GetACP
GetOEMCP
FlushFileBuffers
CloseHandle
GetConsoleMode
GetLastError
GetModuleHandleA
DeleteFileA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
WriteFile
CreateFileA
IsValidCodePage
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LoadLibraryA
SetFilePointer
SetStdHandle
GetConsoleCP
SizeofResource
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 384KB - Virtual size: 534KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aaa2f6e576d6209983fcd2b61c349594

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 384KB - Virtual size: 534KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 384KB - Virtual size: 534KB

.rsrc
Size: 16KB - Virtual size: 16KB