8df99f26dea8eff6993c666db0c55ddfe3a6480fa293cefa9239e3858d4edb59

Sharing

Copy URL Twitter E-mail

General

Target

8df99f26dea8eff6993c666db0c55ddfe3a6480fa293cefa9239e3858d4edb59
Size

244KB
MD5

35aee76ab3b4fb99a27a07c2f5e8260a
SHA1

6cd0dbf0c09888302f53872adb1e6cfaa58ba1c6
SHA256

8df99f26dea8eff6993c666db0c55ddfe3a6480fa293cefa9239e3858d4edb59
SHA512

8068b372529fd49d3f6894bb1676ae4d86fc945b6c6c50f0505d109bf39268e24b7211cf5b8006851cb5d0990b68866baa0bc1e21ad20a4585a713edd7d687bd
SSDEEP

3072:1CkLlA1t7COmXObAUNLNFk6trC6es10c1cTGV9nuCmJiMeqg/OKGUFwyZY5mMyF:1CyW10OmAAqTrC6efinuWv2cFnZK

Score

N/A

Malware Config

Signatures

Files

8df99f26dea8eff6993c666db0c55ddfe3a6480fa293cefa9239e3858d4edb59
.exe windows x86

d24913f9f89985f03dc349f0399bc33e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
TerminateProcess
GetStringTypeA
IsBadCodePtr
GetTempFileNameA
GetCurrentProcess
HeapDestroy
GetSystemTimeAsFileTime
HeapAlloc
TlsFree
GetProcAddress
GetStdHandle
UnhandledExceptionFilter
lstrcmpW
SetFilePointer
HeapFree
RtlUnwind
GetSystemInfo
ReadFile
lstrlenW
GetFileType
FormatMessageA
GetLocaleInfoW
GetStartupInfoA
HeapReAlloc
VirtualAlloc
SetStdHandle
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
InterlockedExchange
GetPrivateProfileStringA
FlushFileBuffers
CreateMutexA
LocalFileTimeToFileTime
SetHandleCount
InitializeCriticalSection
GetVersionExA
VirtualFree
GetModuleHandleA
HeapSize
CreateThread
VirtualProtect
GetModuleFileNameA
LCMapStringW
VirtualQuery
EnterCriticalSection
LCMapStringA
TlsAlloc
SetLastError
GetTickCount
GetEnvironmentStringsW
QueryPerformanceCounter
ExitProcess
GetLocaleInfoA
MultiByteToWideChar
CloseHandle
GetOEMCP
TlsGetValue
GetCurrentProcessId
LeaveCriticalSection
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
WideCharToMultiByte
FreeEnvironmentStringsA
GetACP
WriteFile
GetLastError
RaiseException
GetStringTypeW
HeapCreate
GetEnvironmentStrings
LoadLibraryA
GetCPInfo

ole32

CreateBindCtx
CreateILockBytesOnHGlobal
CLSIDFromString
StgCreateDocfileOnILockBytes
CoGetClassObject
OleRegGetUserType
CoFreeUnusedLibraries
OleInitialize
WriteClassStg
OleRun

comdlg32

PrintDlgA
PageSetupDlgA
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA
CommDlgExtendedError

gdi32

CreatePatternBrush
CreateRectRgnIndirect
MoveToEx
GdiFlush
CreateFontIndirectW
EndDoc
SetWindowOrgEx
StartDocA
DPtoLP
SetTextAlign
SetViewportExtEx
GetPixel
SetROP2
GetCurrentPositionEx
SetTextColor
SetWindowExtEx
SetRectRgn
ExcludeClipRect
GetTextCharsetInfo
DeleteObject
RectVisible
CreatePen
CreateSolidBrush
PtInRegion
StartPage
GetWindowOrgEx
SetBrushOrgEx
SelectClipRgn
CreateEllipticRgn
SetBkMode
GetTextMetricsA
SetMapMode
GetTextFaceA
SaveDC
ExtFloodFill
GetTextColor
SetPixel
SetViewportOrgEx
Escape
CreateDIBitmap
CreateBitmap
LineTo
SetBkColor
StrokePath
EqualRgn
OffsetViewportOrgEx
RestoreDC
SelectObject
SelectPalette
CreateRectRgn
ExtSelectClipRgn
GetRgnBox
SetPixelV
GetStockObject
StretchBlt
GetPaletteEntries
DeleteDC
CreatePalette
CreateCompatibleDC
CreateCompatibleBitmap
RealizePalette
EndPage
GetDeviceCaps
OffsetRgn
Ellipse

advapi32

RegDeleteKeyA
GetTokenInformation
GetUserNameA
IsValidSid
RegOpenKeyA
ControlService
RegDeleteValueA
RegQueryValueA
OpenThreadToken
OpenProcessToken
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegCreateKeyA
RegEnumKeyA
RegSetValueExA
RegEnumKeyExA
CloseServiceHandle
OpenServiceA
RegCloseKey
InitializeSecurityDescriptor
GetLengthSid
DeleteService
RegCreateKeyExA
CreateServiceA
OpenSCManagerA

oleaut32

LoadTypeLi

shell32

ord155
ShellExecuteExA

user32

MessageBoxA
CreateWindowExA
RegisterClassExA
DefWindowProcA
LoadCursorA
DestroyWindow
RegisterClassA
LoadAcceleratorsA
LoadStringA
LoadIconA
ShowWindow

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d24913f9f89985f03dc349f0399bc33e

Headers

File Characteristics

Imports

kernel32

ole32

comdlg32

gdi32

advapi32

oleaut32

shell32

user32

Sections

.text Size: 77KB - Virtual size: 77KB

.rdata Size: 97KB - Virtual size: 96KB

.data Size: 60KB - Virtual size: 81KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 77KB - Virtual size: 77KB

.rdata
Size: 97KB - Virtual size: 96KB

.data
Size: 60KB - Virtual size: 81KB

.rsrc
Size: 8KB - Virtual size: 7KB