3a2af139573ebdde19b3894fa8a60ba0cac3a596b3e8a8f01b41de70c6aa0aa3

Sharing

Copy URL Twitter E-mail

General

Target

3a2af139573ebdde19b3894fa8a60ba0cac3a596b3e8a8f01b41de70c6aa0aa3
Size

823KB
MD5

6df219fd18059da1c7f42808e130d3d3
SHA1

e902c93411421771de834cbd562cbd698d478bb6
SHA256

3a2af139573ebdde19b3894fa8a60ba0cac3a596b3e8a8f01b41de70c6aa0aa3
SHA512

05d1ac1322e0c0ac37a6bdf47f87bb1031b4d8abb3bec554a2f45d073fbb9349329aa1900ebab56702ca2d68d00885703dfbdab0eb8a0d0241819000ff0612c2
SSDEEP

24576:MugRfqQ9YIOhlFC0E+7pzHGn19mh7qMSI:ZgYatSlw0EwJG1u2M7

Score

N/A

Malware Config

Signatures

Files

3a2af139573ebdde19b3894fa8a60ba0cac3a596b3e8a8f01b41de70c6aa0aa3
.exe windows x86

742ed3d4e2cf87993a451f18a4fb3514

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
SetBkColor
DeleteObject
GetDeviceCaps
DeleteDC
CreateCompatibleDC
SelectObject
CreateSolidBrush
SetBkMode

ole32

CoUninitialize
CoCreateInstance
CoTaskMemFree
CoInitialize

kernel32

GetSystemDefaultLCID
GetModuleHandleW
GetCommandLineA
GetUserDefaultLangID
GetCurrentThread
GetCurrentProcessId
GetTickCount
GetVersion
HeapAlloc
GetProcessHeap
ResetEvent
GetOEMCP
DeleteFileW
VirtualAlloc
IsBadReadPtr
Sleep
VirtualFree
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
FindResourceA
GetACP
lstrcpynA
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
lstrlenW
LockResource
GetEnvironmentStrings
FileTimeToLocalFileTime
CreateProcessW
RemoveDirectoryA
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
CreateFileMappingA
CompareStringA
lstrcpyA
FindNextFileW
lstrcmpA
CompareStringW
GlobalLock
GetFullPathNameA
GetCurrentThreadId
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
IsBadWritePtr
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
GetSystemTime
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
GetProcAddress
GetLocaleInfoA
SetEndOfFile
CreateEventW
GetConsoleMode
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
CreateMutexA
LeaveCriticalSection
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetPrivateProfileStringA
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
InterlockedDecrement
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree
SetEvent
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
GetCPInfo
GetTempPathA
GetLocaleInfoW
FreeEnvironmentStringsW
SetErrorMode
ExpandEnvironmentStringsA
LocalAlloc
GetCurrentDirectoryA
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetCommandLineW
GetFileAttributesW
HeapDestroy
FindNextFileA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetLastError
GetModuleHandleA
GetCurrentProcess
GetEnvironmentVariableA

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

oleaut32

SysAllocStringLen
SysFreeString
SysAllocString
SysStringLen

advapi32

RegDeleteKeyA
RegDeleteValueA
RegSetValueExW
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey
RegCreateKeyExA

user32

SetForegroundWindow
DestroyMenu
PostQuitMessage
IsWindow
DispatchMessageA
EndPaint
GetDC
GetCursorPos
ReleaseDC
SetCursor
CallWindowProcA
GetClientRect
SendMessageA
InvalidateRect
DrawTextA
IsWindowVisible
SystemParametersInfoA
GetSysColor
DialogBoxParamA
MessageBoxA
GetFocus
GetDesktopWindow
TrackPopupMenu
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetTimer
GetSubMenu
CheckMenuItem
SetWindowTextA
EndDialog
SetWindowLongA
ReleaseCapture
PostMessageA
IsIconic
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
PeekMessageA
SetFocus
FillRect
CreateWindowExA
GetWindowLongA
RegisterClassA
EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
SetWindowPos
EnableWindow
SetCapture
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetKeyState
GetActiveWindow
MoveWindow
UnregisterClassA

Sections

.text
Size: 11KB - Virtual size: 337KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 785KB - Virtual size: 785KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

742ed3d4e2cf87993a451f18a4fb3514

Headers

File Characteristics

Imports

gdi32

ole32

kernel32

version

oleaut32

advapi32

user32

Sections

.text Size: 11KB - Virtual size: 337KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 785KB - Virtual size: 785KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 11KB - Virtual size: 337KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 785KB - Virtual size: 785KB

.rsrc
Size: 18KB - Virtual size: 18KB