75fa898d2f508b53d5e577b252e02bcec81ac9b4e3e0144a225fc970b566dc71

Sharing

Copy URL Twitter E-mail

General

Target

75fa898d2f508b53d5e577b252e02bcec81ac9b4e3e0144a225fc970b566dc71
Size

324KB
MD5

937a831c41ad559e6ba2f7c683632312
SHA1

f015fc3c9e749b5f985dc5488f23781907ca9e82
SHA256

75fa898d2f508b53d5e577b252e02bcec81ac9b4e3e0144a225fc970b566dc71
SHA512

5c94f564ec244c7d4cf38100d20836ba89d538b6f1be53bf8c0f2d6b34418bbc902f222595a6e4e1b132248869ced51ffa3003cf34671a42308cf53594a01200
SSDEEP

6144:gxmKYbHzGbAGYMLQ3MW5sWJ+vFkobCcmVrXiQHh:g0G0GvcXOW6Ccmhia

Score

N/A

Malware Config

Signatures

Files

75fa898d2f508b53d5e577b252e02bcec81ac9b4e3e0144a225fc970b566dc71
.exe windows x86

e7c94c21d7c8de01e64c23e273e2dfeb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
GetStockObject
RectVisible
DeleteObject
IntersectClipRect
Escape
CreateDIBSection
BitBlt
Polyline
GetViewportExtEx
Ellipse
ExtCreateRegion
MoveToEx
SetTextColor
GetTextColor
PolyBezier
RoundRect
GetViewportOrgEx
GetMapMode
EnumFontFamiliesExA
CreatePalette
CreateRectRgn
DeleteDC
EndPage
CreateSolidBrush
CreateCompatibleBitmap
StartPage
GetRgnBox
RealizePalette
StretchDIBits
PtVisible
CreateCompatibleDC
StartDocA
SelectClipRgn
SelectPalette
GetClipBox
LPtoDP
SetBkColor
OffsetWindowOrgEx
GetObjectW
SetPolyFillMode
SetTextJustification
OffsetViewportOrgEx
Pie
SetTextAlign
GetTextMetricsA
OffsetRgn
LineTo
PolyBezierTo
RectInRegion
EndDoc
SetStretchBltMode
SetBkMode
SetAbortProc
PatBlt
GetTextExtentPoint32W
ExtCreatePen
SetWindowExtEx
SetBrushOrgEx
EqualRgn
CreateEllipticRgn
CreateFontIndirectW
SetPixel

oleaut32

LoadTypeLi

mfc42

ord1576

user32

DestroyMenu
DrawStateW
IsChild
KillTimer
GetMenu
GetWindowLongW
GetDlgItem
SetClipboardData
InvalidateRgn
CreateWindowExW
GetForegroundWindow
UnregisterClassA
SendMessageW
UnregisterClassW
LoadCursorW
GetKeyState
OffsetRect
LoadAcceleratorsW
RegisterClassW
GetLastActivePopup
ScreenToClient
GetMenuCheckMarkDimensions
ShowWindow
GetDesktopWindow
PostQuitMessage
MessageBoxW
LoadBitmapW
IsClipboardFormatAvailable
AttachThreadInput
FlashWindow
GetWindowDC
SetMenuItemInfoW
GetParent
DestroyIcon
EnableWindow
DefWindowProcW
GetSystemMetrics
GetClassInfoExW
SetTimer
LoadStringW
SetWindowsHookExW
GetDCEx
DestroyAcceleratorTable
SetWindowPos
GetWindowPlacement
SetForegroundWindow
SetCapture
DestroyWindow
ReleaseCapture
RemoveMenu
ClientToScreen
SetMenu
DeleteMenu
LoadIconW
WaitMessage
IsZoomed
RegisterClassExW
GetNextDlgTabItem
GetAsyncKeyState
SetMenuDefaultItem
GetMenuItemCount

wsock32

WSACleanup

comctl32

ord17
InitCommonControlsEx

kernel32

FreeEnvironmentStringsA
GetEnvironmentStrings
TlsSetValue
GetCurrentProcess
InterlockedDecrement
FindFirstFileA
GetTickCount
lstrcpynW
LCMapStringA
UnhandledExceptionFilter
WriteConsoleA
HeapReAlloc
EnterCriticalSection
GetFileType
GetCPInfo
TlsGetValue
InterlockedIncrement
OpenProcess
Sleep
GetLocaleInfoA
HeapSize
TerminateProcess
SizeofResource
ReadFile
RtlUnwind
GetTimeFormatA
GetThreadLocale
CompareStringW
CreateFileA
FindFirstFileW
MultiByteToWideChar
SetFilePointer
InterlockedExchange
GetLocalTime
GetModuleHandleW
GetCurrentThread
GetModuleHandleA
GetSystemTimeAsFileTime
GetStringTypeW
CreateThread
LoadLibraryW
GetVersionExA
LCMapStringW
GetStartupInfoA
TlsFree
FormatMessageW
GetModuleFileNameA
ExitProcess
GetProcAddress
GetSystemTime
GlobalFree
FileTimeToSystemTime
GetConsoleOutputCP
LocalAlloc
UnmapViewOfFile
RaiseException
QueryPerformanceCounter
TlsAlloc
LeaveCriticalSection
WideCharToMultiByte
CreateMutexW
VirtualQuery
GetTimeZoneInformation
VirtualFree
LoadLibraryA
GetModuleFileNameW
GetCommandLineA
LocalReAlloc
GetProcessHeap
GetCurrentThreadId
FindNextFileW
GlobalUnlock
HeapDestroy
SetEnvironmentVariableA
FlushFileBuffers
GetCommandLineW
GetStdHandle
GetConsoleCP
GetStringTypeA
HeapAlloc
OutputDebugStringW
SetHandleCount
GetLastError
GetStartupInfoW
lstrcpyW
HeapFree
SetLastError
GetACP
IsValidCodePage
InitializeCriticalSection
GetConsoleMode
CloseHandle
GetEnvironmentStringsW
IsDebuggerPresent
GetTempPathW
DeleteCriticalSection
CreateFileW
WriteFile
CompareStringA
HeapCreate
GetDateFormatA
SetUnhandledExceptionFilter
WriteConsoleW
SetStdHandle
GetOEMCP
GetCurrentProcessId
VirtualAlloc
FreeEnvironmentStringsW

advapi32

RegEnumKeyExA
RegQueryValueA
RegOpenKeyExA
CryptEncrypt
CryptDestroyHash
GetFileSecurityA
RegDeleteValueA
CryptReleaseContext
CryptDecrypt
CryptAcquireContextA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
CryptHashData
CryptDeriveKey
RegEnumKeyA
GetUserNameA
RegDeleteKeyA
RegSetValueExA
CryptCreateHash

Sections

.text
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7c94c21d7c8de01e64c23e273e2dfeb

Headers

File Characteristics

Imports

gdi32

oleaut32

mfc42

user32

wsock32

comctl32

kernel32

advapi32

Sections

.text Size: 108KB - Virtual size: 104KB

.rdata Size: 104KB - Virtual size: 101KB

.data Size: 68KB - Virtual size: 83KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 108KB - Virtual size: 104KB

.rdata
Size: 104KB - Virtual size: 101KB

.data
Size: 68KB - Virtual size: 83KB

.rsrc
Size: 40KB - Virtual size: 36KB