5caafc32f56e19289b2668cf28ff7f2b73b01ecaa6ab8500850fa8618b59e0df

Sharing

Copy URL

Twitter E-mail

General

Target

5caafc32f56e19289b2668cf28ff7f2b73b01ecaa6ab8500850fa8618b59e0df
Size

356KB
MD5

831b9546c2de09e223f29dc01e6c1e12
SHA1

c222fda0c29096b9d5356e010d830e8217ac845f
SHA256

5caafc32f56e19289b2668cf28ff7f2b73b01ecaa6ab8500850fa8618b59e0df
SHA512

3cd8e7978c4462a8f342623415a31c07151360be29fcab37482f6accd33d6ae9dff9b9654afa036328fb6b61fbfa87f5fcef0ecf9815f01d6ae497b393491b27
SSDEEP

6144:cAaJX5qATNsmfk8yFrD371nBU9t84qTQNlvu1KyLWKS2QS8rE5Lpb96DP8Zv:StIAZEFRn7QN9ulLrSrS8Kb9e8Z

Score

N/A

Malware Config

Signatures

Files

5caafc32f56e19289b2668cf28ff7f2b73b01ecaa6ab8500850fa8618b59e0df
.exe windows x86

10bbfab9eb61035d562b79eaed9ed07a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetServiceDisplayNameW
InitiateSystemShutdownA
RegRestoreKeyW
RegQueryValueW
ControlService
ReportEventA
GetServiceKeyNameA
GetTrusteeTypeA
CreateProcessAsUserA
BuildImpersonateTrusteeA
NotifyBootConfigStatus

gdi32

SwapBuffers
SelectClipRgn
GdiFlush
SetPolyFillMode

msvcrt

__set_app_type
_except_handler3
_controlfp
__getmainargs
_acmdln
__p__fmode
fgets
scanf
_onexit
__dllonexit
getc
_vscprintf
__p__commode
_adjust_fdiv
pow
_initterm
__setusermatherr

user32

ModifyMenuA
GetClassLongA
GetWindowModuleFileNameA
ReleaseDC
LoadCursorA
EmptyClipboard
SendDlgItemMessageA
GetMessageA
GetCursorPos
ChangeDisplaySettingsA
FindWindowExW
DrawIcon
TrackPopupMenu
DrawTextW
GetGUIThreadInfo
GetWindowTextA
CreateWindowExW
DestroyCaret
IsWindowEnabled
RemovePropA
DeferWindowPos
SetWindowRgn
GetForegroundWindow
GetClipCursor
SetWindowTextA
DialogBoxIndirectParamW
IsCharAlphaNumericA
GetWindowLongA
GetCapture
PostMessageA
GetDC
GetMessagePos
RegisterHotKey
CloseDesktop
SetClassLongA
ChildWindowFromPointEx
SetCursor
IsChild
CopyIcon
SetRectEmpty
CharNextA
CharPrevA
SetCapture
ChangeClipboardChain
GetWindowWord
DefFrameProcW
DrawStateW
MapVirtualKeyExW
PtInRect
MapVirtualKeyW
CreateDialogIndirectParamA
DdeFreeStringHandle
GetClassInfoW
GetCaretPos
CreateMenu
MessageBeep
GetParent
PostMessageW
SetClipboardData
FindWindowExA
ShowCaret
GetClassInfoExW
EnumDisplaySettingsW
DefWindowProcA
GetMenuItemCount
RemoveMenu
LoadMenuA
ShowWindow
mouse_event
IsWindow
GetMessageExtraInfo
EnableScrollBar
UnionRect
DestroyMenu
IsDlgButtonChecked
GetWindow
GetProcessWindowStation
SetClassLongW
TrackPopupMenuEx
InsertMenuW
CopyImage
SendInput
SetTimer
IsCharAlphaW
PeekMessageW
SetWindowLongW
LoadKeyboardLayoutW
ScrollWindowEx
AdjustWindowRect
DestroyCursor
GetClassNameA
GetKeyboardLayoutNameW
DdeQueryStringA
SetForegroundWindow
SetWindowPlacement
GetDlgItemTextA
IsMenu
SetFocus
PostThreadMessageW
OffsetRect
GetUserObjectInformationW
RegisterClipboardFormatA
CreateWindowStationW
DdeClientTransaction
IsClipboardFormatAvailable
GetNextDlgTabItem
GetWindowThreadProcessId
GetWindowTextLengthA
CreateIconFromResource
InSendMessage
IsZoomed
GetDlgCtrlID
LoadIconA
LockWindowUpdate
LoadBitmapW
GetDlgItem
SendNotifyMessageW
PostQuitMessage
SetWindowTextW
SendDlgItemMessageW
WindowFromDC
WindowFromPoint
GetClipboardData
GetClipboardFormatNameW
DrawStateA
RegisterClipboardFormatW
ShowCursor
DispatchMessageA
SetKeyboardState
DestroyAcceleratorTable
ClientToScreen
SetScrollPos
ValidateRect
IntersectRect
BringWindowToTop
SystemParametersInfoA
CharUpperW
LoadCursorFromFileA
KillTimer
CharLowerBuffA
SetPropA
TranslateMessage
FillRect
GetClassInfoA
MapDialogRect
BlockInput
GetLastActivePopup
MessageBoxA
GetDlgItemTextW
EnumThreadWindows
ShowOwnedPopups
GetScrollPos
CharToOemA
GetClipboardViewer
SetMenuDefaultItem
VkKeyScanExA
ToAscii
GetSysColorBrush
LoadStringW
LoadImageA
MoveWindow
GetKeyboardState
GetMenuItemID
GetDlgItemInt
CreateCursor
ScreenToClient
WinHelpW
TranslateAcceleratorW

oleaut32

LPSAFEARRAY_UserSize
LPSAFEARRAY_UserFree
VARIANT_UserFree

netapi32

NetServerEnum

mpr

WNetCancelConnection2A
MultinetGetConnectionPerformanceA
WNetCancelConnectionA

version

GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerFindFileA
VerInstallFileW
VerQueryValueW
GetFileVersionInfoW
VerQueryValueA

mfc42

ord1092
ord4080
ord3079
ord3825
ord3831
ord3830
ord1082
ord2976
ord3081
ord4424
ord3262
ord1092
ord4465
ord3259
ord1063
ord2982
ord1092
ord5714
ord1041
ord5307
ord4698
ord1055
ord2725
ord5302
ord1040
ord3346
ord2396
ord1065
ord1089
ord3922
ord5731
ord1005
ord2554
ord4486
ord6375
ord815
ord3738
ord561
ord1576
ord2985
ord1168

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 665KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

10bbfab9eb61035d562b79eaed9ed07a

Headers

File Characteristics

Imports

advapi32

gdi32

msvcrt

user32

oleaut32

netapi32

mpr

version

mfc42

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 52KB - Virtual size: 665KB

.rsrc Size: 60KB - Virtual size: 56KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 52KB - Virtual size: 665KB

.rsrc
Size: 60KB - Virtual size: 56KB