18f0ac51eeb580aac4ef7f7e5600bfc931947001cb34fc8fd1c1e48b5801555c

Sharing

Copy URL

Twitter E-mail

General

Target

18f0ac51eeb580aac4ef7f7e5600bfc931947001cb34fc8fd1c1e48b5801555c
Size

120KB
MD5

0059b90dceb12e2da674f7dc0501dfb2
SHA1

3e170169d3da1eac82404eeffbfbb2db39b6a339
SHA256

18f0ac51eeb580aac4ef7f7e5600bfc931947001cb34fc8fd1c1e48b5801555c
SHA512

eaa3f859bc552fc04fd4c99d28d987eb549f1015bd281d6c96e965652296b1372022c72d29d08d3496637af4cb5af8a3358129de815033c78a6b305654b4e537
SSDEEP

3072:2Gguw2TvL/L7cszvlaYXBewWblvqPTuQeVJV/ZVLHa:xguwuDhzvltBew6vqPON7

Score

N/A

Malware Config

Signatures

Files

18f0ac51eeb580aac4ef7f7e5600bfc931947001cb34fc8fd1c1e48b5801555c
.exe windows x86

529b4381abb77a231198873f25ea6a67

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetTraceEnableFlags
GetTraceEnableLevel
UnregisterTraceGuids
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegCreateKeyW
RegCreateKeyExW
RegisterTraceGuidsW
RegOpenKeyExW
GetTraceLoggerHandle
TraceMessage

uxtheme

GetThemeColor
CloseThemeData
OpenThemeData
GetThemeFont

wtsapi32

WTSRegisterSessionNotification
WTSUnRegisterSessionNotification

msvcrt

?terminate@@YAXXZ
__wgetmainargs
??2@YAPAXI@Z
_wcmdln
__setusermatherr
_cexit
__p__fmode
_exit
_XcptFilter
??3@YAXPAX@Z
exit
__set_app_type
__p__commode
wcstoul
_wcsicmp
_amsg_exit
_vsnwprintf
_initterm
memset
_controlfp

gdi32

SetTextColor
SetBkColor
CreateFontIndirectW
CreateSolidBrush
DeleteObject

setupapi

SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsExW

shell32

CommandLineToArgvW
ShellExecuteExW

ole32

CoCreateInstance
CoTaskMemFree
CoInitializeEx

user32

GetMessageW
SetTimer
PostMessageW
SetFocus
GetParent
SendMessageW
GetWindowTextW
SetDlgItemTextW
LoadIconW
RegisterDeviceNotificationW
DefWindowProcW
GetSysColor
UnregisterClassW
IsDlgButtonChecked
TranslateMessage
SetWindowTextW
FindWindowW
GetDlgItem
EndDialog
DialogBoxParamW
SetActiveWindow
SendDlgItemMessageW
CheckDlgButton
DispatchMessageW
SetForegroundWindow
LoadStringW
SetWindowLongW
PostQuitMessage
GetDlgCtrlID
ShowWindow
FindWindowExW
GetSysColorBrush
UnregisterDeviceNotification
DestroyWindow
EnableWindow
CreateWindowExW
RegisterClassExW
GetWindowLongW
GetWindowTextLengthW
KillTimer

crypt32

CryptEncodeObjectEx
CertEnumSystemStoreLocation
CryptEncodeObject

kernel32

InterlockedExchange
GlobalAlloc
LocalFree
TerminateProcess
LockResource
GetCurrentProcess
DeleteCriticalSection
GetProcessVersion
GetSystemTimeAsFileTime
LeaveCriticalSection
UnhandledExceptionFilter
InterlockedDecrement
GetModuleHandleA
GetStartupInfoW
ExitProcess
GetLastError
GetCurrentThreadId
SetUnhandledExceptionFilter
InterlockedCompareExchange
WideCharToMultiByte
FindResourceW
FreeResource
InitializeCriticalSection
QueryPerformanceCounter
InterlockedIncrement
LocalAlloc
EnterCriticalSection
CloseHandle
CreateThread
LoadResource
WaitForSingleObject
GetTickCount
GetCurrentProcessId
Sleep

powrprof

CallNtPowerInformation

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

529b4381abb77a231198873f25ea6a67

Headers

File Characteristics

Imports

advapi32

uxtheme

wtsapi32

msvcrt

gdi32

setupapi

shell32

ole32

user32

crypt32

kernel32

powrprof

Sections

.text Size: 65KB - Virtual size: 64KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 49KB - Virtual size: 48KB

.rsrc Size: 1024B - Virtual size: 104KB

.text
Size: 65KB - Virtual size: 64KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 1024B - Virtual size: 104KB