5df9fc49473625410126f85b33807aed8e0eccd2e0bee457249b93166902af50

Sharing

Copy URL

Twitter E-mail

General

Target

5df9fc49473625410126f85b33807aed8e0eccd2e0bee457249b93166902af50
Size

388KB
MD5

726ef9ecbca2050a2495cef5ca9c8562
SHA1

ae03be4b1486880d1011802e4204569263a7d5f5
SHA256

5df9fc49473625410126f85b33807aed8e0eccd2e0bee457249b93166902af50
SHA512

9ceffc6e18376ba6ac3514def4468feb63a16d6d675cf2d0c66463fc8612b025ac5074a210f4c180e71dd03897c21f574c53cbc0e15009fa28d3c498360e9958
SSDEEP

6144:VPHkQ4ydZZb+Q7Qf4+4/X+8PvjAsYcHte9qYJkIb/VNIFNgQfoe3V+On+pA+Z0S:BrZZbJu4+Q+8RBe9qYacVNyN/F+pn5

Score

N/A

Malware Config

Signatures

Files

5df9fc49473625410126f85b33807aed8e0eccd2e0bee457249b93166902af50
.exe windows x86

b984b157a5e3604b05c83c9bac0133df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasEnumConnectionsA
RasGetConnectStatusA

user32

GetKeyNameTextW
CloseDesktop
SendDlgItemMessageA
GetWindowTextLengthA
CharUpperA
CheckMenuItem
LoadMenuW
UnpackDDElParam
InsertMenuW
SetRect
LoadCursorFromFileA
ShowWindow
AttachThreadInput
BeginDeferWindowPos
ScreenToClient
SetClassLongW
ScrollWindowEx
SetWindowTextA
IsZoomed
DdeFreeStringHandle
GetMessagePos
GetQueueStatus
GetClassInfoExW
FindWindowA
IsDlgButtonChecked
CheckRadioButton
DialogBoxParamA
BringWindowToTop
GetDlgItemTextA
DrawIcon
GetParent
KillTimer
DispatchMessageW
SetWindowPlacement
GetGUIThreadInfo
IsCharLowerA
GetMenuItemID
SetMenuDefaultItem
MapVirtualKeyA
SetWindowTextW
GetMenuState
GetMenu
CallMsgFilterA
wvsprintfA
PostThreadMessageA
GetKeyState
IsWindow
RemovePropA
FindWindowExW
TranslateMessage
GetClipboardFormatNameW
SetActiveWindow
DrawStateW
ValidateRect
GetCapture
WinHelpA
GetKeyboardLayoutList
ShowOwnedPopups
VkKeyScanExW
GrayStringW
LoadMenuA
GetWindowWord
AdjustWindowRect
SendDlgItemMessageW
DeferWindowPos
SetClassLongA
GetMessageA
GetClassInfoW
ModifyMenuA
WindowFromPoint
RegisterWindowMessageA
MapVirtualKeyExA
EnumThreadWindows
DdeClientTransaction
SetWindowLongW
GetDlgItemTextW
LoadKeyboardLayoutW
PtInRect
CharLowerA
TrackPopupMenu
LoadIconA
DefWindowProcA
IsDialogMessageA
MessageBeep
CharPrevA
GetWindow
GetScrollInfo
DrawTextExA
EnableScrollBar
SetCapture
GetKeyboardLayoutNameW
SetWindowRgn
MapWindowPoints
WaitMessage
SetMenu
SetDlgItemInt
GetClassInfoA
GetWindowThreadProcessId
CharUpperW
GetDoubleClickTime

advapi32

CreateServiceW
GetServiceKeyNameA
RegOpenKeyExW
InitiateSystemShutdownA
RegEnumKeyExA
StartServiceA
RegisterEventSourceA
ReadEventLogW
GetServiceDisplayNameW
ChangeServiceConfigW
RegOverridePredefKey
OpenSCManagerW
EnumDependentServicesA
CreateProcessAsUserW
RegCloseKey
GetUserNameW
ReportEventW
RegQueryValueA
RegisterServiceCtrlHandlerW
RegEnumKeyW
QueryServiceLockStatusW
ReportEventA
RegNotifyChangeKeyValue
CloseServiceHandle
RegCreateKeyExW
RegRestoreKeyW
ChangeServiceConfigA
StartServiceCtrlDispatcherW
RegisterServiceCtrlHandlerA
RegQueryInfoKeyA
LsaOpenPolicy
RegQueryValueW
RegDeleteKeyA
RegUnLoadKeyW
DecryptFileW
ChangeServiceConfig2A
RegQueryInfoKeyW
QueryServiceStatus
LsaFreeMemory
LsaQueryInformationPolicy
RegSetValueA
RegConnectRegistryA
RegSetValueExA
OpenServiceA
ChangeServiceConfig2W
StartServiceCtrlDispatcherA
RegOpenKeyExA
LockServiceDatabase
RegCreateKeyExA
DeleteService
OpenSCManagerA
LogonUserA
RegSetValueExW
RegSetValueW
EnumServicesStatusA
RegCreateKeyA
ControlService
GetUserNameA
SetServiceObjectSecurity
SetServiceStatus
OpenEventLogW
QueryServiceConfigW
RegCreateKeyW

msvcrt

_wcsicmp
__dllonexit
_onexit
_inp
_wspawnvp
exp
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_wopen
_controlfp

gdi32

EnumFontsW
GetBkColor
SetWindowOrgEx
PatBlt
DeleteEnhMetaFile
TextOutA
SetWindowExtEx
CreateEnhMetaFileA
CreateSolidBrush
PolyBezier
CreateMetaFileA
CreateDCW
GetTextExtentPoint32W
Chord
CreateCompatibleDC
CreatePen
CreateFontIndirectW
SetBkMode
CreateRectRgn
ExtFloodFill
GetObjectA
SetBitmapBits
SetStretchBltMode
SetWinMetaFileBits
PlayEnhMetaFileRecord
GetDIBColorTable
GetPixel
EndPage
CreateEllipticRgn
SetViewportExtEx
GetTextAlign
GetTextCharsetInfo
SwapBuffers
GetBitmapBits
OffsetWindowOrgEx
GetObjectW
SetPixelV
SelectClipRgn
MoveToEx
GetGlyphOutlineA
SetBkColor
StartDocW
IntersectClipRect
CombineRgn
GetTextExtentPointA
SetPixelFormat
SetPolyFillMode
PolyPolyline
GetDIBits
PtVisible
GetPolyFillMode
GdiFlush
StrokePath
GetDeviceCaps
ResetDCW
ExtCreatePen
GetTextMetricsA
GetStockObject
PolyBezierTo
SetColorAdjustment
SetPixel
PlayEnhMetaFile
UpdateColors
GetClipBox
OffsetRgn
EndPath
GetClipRgn
SetTextAlign
CreatePenIndirect
FillRgn
SetArcDirection
GetNearestPaletteIndex
GetCharABCWidthsW
SetROP2
SelectPalette
EqualRgn
GetSystemPaletteEntries
GetEnhMetaFileHeader
SetAbortProc
CopyEnhMetaFileA
CreateFontA
GetKerningPairsA
DPtoLP
ExtSelectClipRgn
ExtCreateRegion
ExtTextOutA
CancelDC
DeleteDC
OffsetViewportOrgEx
GetRgnBox
Ellipse
CreateICA
GetEnhMetaFilePaletteEntries
EnumFontFamiliesExW
GetObjectType
CreateFontIndirectA
SetDeviceGammaRamp
DeleteObject
RectVisible
EnumFontFamiliesA
StartPage
CreateDIBPatternBrushPt
CreateBitmap
CreateICW
ScaleViewportExtEx
CloseEnhMetaFile
RectInRegion
PolyDraw
ExtEscape
CreateRoundRectRgn
GetTextExtentPoint32A
ResizePalette
WidenPath
Arc
GetWinMetaFileBits
GetTextFaceA
OffsetClipRgn
AbortDoc
SetTextCharacterExtra
RealizePalette
EnumMetaFile

kernel32

GetStringTypeExW
CreateConsoleScreenBuffer
AddAtomW
IsValidLocale

mfc42

ord4424
ord1038
ord4080
ord3079
ord3825
ord3738
ord3830
ord3401
ord2976
ord3081
ord2985
ord3262
ord561
ord1576
ord3831
ord3346
ord815
ord6375
ord4486
ord2554
ord1056
ord5731
ord3922
ord1089
ord1093
ord2396
ord1168
ord1094
ord5302
ord2725
ord1047
ord4698
ord5307
ord1023
ord5714
ord1007
ord2982
ord1036
ord3259
ord4465
ord1065

Sections

.text
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 860KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b984b157a5e3604b05c83c9bac0133df

Headers

File Characteristics

Imports

rasapi32

user32

advapi32

msvcrt

gdi32

kernel32

mfc42

Sections

.text Size: 268KB - Virtual size: 265KB

.rdata Size: 52KB - Virtual size: 49KB

.data Size: 56KB - Virtual size: 860KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 268KB - Virtual size: 265KB

.rdata
Size: 52KB - Virtual size: 49KB

.data
Size: 56KB - Virtual size: 860KB

.rsrc
Size: 8KB - Virtual size: 7KB