a2117674e8d9f797c7632eaaec35b9f1086925db5831c23ab2db6eade4176f81

Sharing

Copy URL Twitter E-mail

General

Target

a2117674e8d9f797c7632eaaec35b9f1086925db5831c23ab2db6eade4176f81
Size

297KB
MD5

e642470f38cf8b6857714e92b980fcb0
SHA1

f6141c79d8082cec97b8336d1db6b12cd2efd509
SHA256

a2117674e8d9f797c7632eaaec35b9f1086925db5831c23ab2db6eade4176f81
SHA512

b70ffab5ace7617936d9f4f8147b0dd97b331f4acde715c5f2b52dcce1b2243ad849a7f1ed1f85d3ce4f81466de82f26f8f60bb1796ab2f144a3961b6338f22b
SSDEEP

3072:WSIT5nNElcNOauciAOrAKVdT++N+bXAY+YKbCf06w+wpLAn92iNm/zD9b2bnYDk+:LITlGlcNrizrAsT+T/yC91NmtqYcA

Score

N/A

Malware Config

Signatures

Files

a2117674e8d9f797c7632eaaec35b9f1086925db5831c23ab2db6eade4176f81
.exe windows x86

18640e9e378009aec27c190ab6687e42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteW
ExtractAssociatedIconW
SHEmptyRecycleBinW
SHQueryRecycleBinW
ShellExecuteEx
ExtractIconExW
SHGetFileInfoA
SHGetPathFromIDList
DuplicateIcon
ExtractAssociatedIconA
RealShellExecuteExA
FindExecutableW
DragQueryFileA
SheChangeDirA
SHUpdateRecycleBinIcon
ShellAboutW
SHGetSpecialFolderPathW
SHGetInstanceExplorer
SHFileOperation
SheGetDirA
SHFileOperationA
DragQueryFile
ExtractIconW
InternalExtractIconListA
RealShellExecuteA

wininet

FtpRemoveDirectoryW
InternetGetCertByURL
DeleteUrlCacheEntryW
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetSetFilePointer
FindNextUrlCacheEntryW
InternetSetOptionA
InternetWriteFile
InternetDialW

advapi32

RegSaveKeyA
CryptDuplicateKey
CryptImportKey
CryptDuplicateHash
RegCreateKeyExA
CryptHashSessionKey
CryptSetProviderA
CryptEnumProviderTypesW
RegQueryInfoKeyA
CryptSignHashA
RegQueryMultipleValuesA
CryptContextAddRef
RegOpenKeyExA
RegEnumKeyA
ReportEventW
GetUserNameW
RegSetValueExW
RegQueryMultipleValuesW
CryptVerifySignatureA

comdlg32

GetSaveFileNameA
LoadAlterBitmap
GetOpenFileNameA
ReplaceTextW
GetFileTitleA
GetOpenFileNameW
GetFileTitleW
ChooseColorA
GetSaveFileNameW
PageSetupDlgA
PageSetupDlgW
ChooseFontA
ChooseColorW

kernel32

FreeEnvironmentStringsA
RtlUnwind
GetStringTypeA
GetEnvironmentStrings
InterlockedDecrement
GetCurrentProcessId
GetModuleHandleW
GetACP
GetStdHandle
WideCharToMultiByte
WriteConsoleInputA
LCMapStringA
HeapSize
GetConsoleCP
GetLocaleInfoW
GetOEMCP
GetEnvironmentStringsW
GetCommandLineA
WriteConsoleOutputCharacterA
VirtualQuery
FreeLibrary
TlsAlloc
ExitProcess
HeapReAlloc
SetUnhandledExceptionFilter
GetLastError
SetEnvironmentVariableA
CompareStringW
GetProcAddress
InterlockedExchange
VirtualFree
IsValidLocale
GetCurrentProcess
GetCurrentThreadId
HeapCreate
UnhandledExceptionFilter
Sleep
GetLocaleInfoA
GetCurrentThread
HeapDestroy
IsDebuggerPresent
SetHandleCount
GetDateFormatA
CompareStringA
GetModuleFileNameA
TerminateProcess
WaitForDebugEvent
MultiByteToWideChar
WriteFile
QueryPerformanceCounter
FreeEnvironmentStringsW
VirtualAlloc
GetStartupInfoA
TlsGetValue
GetTickCount
IsValidCodePage
GetSystemTimeAsFileTime
LoadLibraryA
FillConsoleOutputCharacterW
SetLastError
GetStringTypeW
GetTimeFormatA
EnumSystemLocalesA
HeapAlloc
GetUserDefaultLCID
GetFileType
GetModuleHandleA
DeleteCriticalSection
FindFirstFileA
TlsSetValue
AddAtomA
HeapFree
TlsFree
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
InterlockedIncrement
EnterCriticalSection
GetWindowsDirectoryA
LeaveCriticalSection
GetCPInfo
LCMapStringW

user32

DestroyCaret
PostMessageA
SendDlgItemMessageA
TranslateAcceleratorA

Sections

.text
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18640e9e378009aec27c190ab6687e42

Headers

File Characteristics

Imports

shell32

wininet

advapi32

comdlg32

kernel32

user32

Sections

.text Size: 143KB - Virtual size: 143KB

.data Size: 139KB - Virtual size: 138KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 143KB - Virtual size: 143KB

.data
Size: 139KB - Virtual size: 138KB

.rsrc
Size: 13KB - Virtual size: 13KB