83ac9748223a5f37c0112c8723b593a0647b0d7cef5dfd5e7ac70904b4e2e2e3

Sharing

Copy URL Twitter E-mail

General

Target

83ac9748223a5f37c0112c8723b593a0647b0d7cef5dfd5e7ac70904b4e2e2e3
Size

276KB
MD5

268c639af2daf1925243631d09bdd178
SHA1

f741860a21d27e93fc035891e9dd104c6e7ed1c8
SHA256

83ac9748223a5f37c0112c8723b593a0647b0d7cef5dfd5e7ac70904b4e2e2e3
SHA512

8d84856ace315b660d9501e55476b6489ce75cc43dafb7c5c018eaaaaaffba20bcae9ca934563c6a475bedd38fcd163f488c57346d51e5c8cc26678ad5cc2539
SSDEEP

3072:oy/dgbQutc0elxRVETrrRTOn40mcXUosma9ftmlikESoB2zrhrRqGiiL60vpy5FF:J/dut7eT8TrrBOF2zm9yIz7tT6

Score

N/A

Malware Config

Signatures

Files

83ac9748223a5f37c0112c8723b593a0647b0d7cef5dfd5e7ac70904b4e2e2e3
.exe windows x86

7be816a374e01f44ec9d255fc4232115

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetupComm
FormatMessageW
WritePrivateProfileStringA
lstrcpyA
WaitNamedPipeA
SetProcessAffinityMask
SearchPathW
PeekConsoleInputW
FileTimeToLocalFileTime
GetShortPathNameA
FindNextChangeNotification
GlobalFree
ClearCommBreak
CreateProcessA
CopyFileExW
GetTempPathW
IsProcessorFeaturePresent
ExitThread
SetEnvironmentVariableA
WritePrivateProfileStringW
GetStringTypeExW
SetConsoleActiveScreenBuffer
GetOverlappedResult
PeekNamedPipe
GetDateFormatA
SetFileAttributesA
GetPrivateProfileStringW
GetDiskFreeSpaceExA
LoadLibraryExA
OpenSemaphoreW
GetLocaleInfoW
GetSystemTimeAsFileTime
VirtualQueryEx
SetCommTimeouts
SetConsoleCursorPosition
InitializeCriticalSection
GetStartupInfoA
WritePrivateProfileStructA
LoadResource
lstrcmpiA
GetLogicalDriveStringsA
GetACP
GetCommConfig
IsDBCSLeadByteEx
LocalSize
WriteFile
GetDriveTypeW
ExpandEnvironmentStringsW
GetCommState
QueryDosDeviceW
SetErrorMode
_lclose
GetShortPathNameW
VirtualQuery
CreateDirectoryA
_lread
GlobalUnlock
ReadConsoleA
MultiByteToWideChar
RemoveDirectoryA
DebugBreak
GetFullPathNameA
LocalReAlloc
EnumTimeFormatsW
IsBadStringPtrA
VirtualFree
GetTickCount
GetCurrentDirectoryW
lstrcmpiW
WritePrivateProfileSectionA
GetCommandLineA
lstrlenA
VirtualAlloc
VirtualProtect
ExitProcess

user32

DestroyMenu
CreateWindowExA
GetThreadDesktop
SetUserObjectSecurity
InvalidateRgn
SetMenuItemBitmaps
SwitchToThisWindow
GetProcessDefaultLayout
PostThreadMessageW
LoadKeyboardLayoutW
EqualRect
GetClassInfoA
DestroyCursor
GetCaretBlinkTime
DrawMenuBar
GetMenuItemRect
DestroyIcon
ExitWindowsEx
GetScrollBarInfo
DrawAnimatedRects
WinHelpW
VkKeyScanA
LoadIconW
SetWindowPlacement
ModifyMenuA
CallWindowProcW
SetPropA
SwapMouseButton
SetActiveWindow
EndMenu
CreateIconFromResource
GetDlgCtrlID
CopyAcceleratorTableA
SendMessageW
UnhookWindowsHook
EnumDisplaySettingsW
EnumDisplaySettingsExW
MapVirtualKeyA
CharToOemBuffA
GetClipboardFormatNameW
EnumWindowStationsA
GetKeyboardLayoutNameW
ScreenToClient
UnregisterClassW
ChangeMenuA
SetWindowWord
GetMessageTime
TabbedTextOutW
DispatchMessageA
GetCaretPos
DrawFrameControl
CheckMenuItem
CharUpperBuffW
SetScrollPos
TranslateMDISysAccel
BringWindowToTop
GetKeyboardLayoutNameA
GetClassInfoExA
IsCharAlphaA

gdi32

CreatePolygonRgn
CopyEnhMetaFileW
RectVisible
GetTextExtentPoint32A
GetOutlineTextMetricsA
GetGlyphOutlineW
ExtEscape
SetMetaFileBitsEx
GetROP2
ScaleViewportExtEx
ExtCreateRegion
LPtoDP
PolylineTo

comdlg32

PageSetupDlgA
ChooseFontA
ReplaceTextA
GetOpenFileNameW

advapi32

RegEnumKeyExA
RegEnumKeyA
MakeSelfRelativeSD
GetSidIdentifierAuthority
RegDeleteValueA
IsValidSecurityDescriptor
CryptVerifySignatureW
OpenEventLogW
ReportEventW
RegLoadKeyA
LogonUserA
CryptEncrypt
LookupPrivilegeValueA
SetServiceStatus
SetNamedSecurityInfoA
RegConnectRegistryW
CryptGetProvParam
SetSecurityDescriptorOwner
RegSetValueExA
RegSetValueExW
GetSecurityDescriptorDacl
RegSaveKeyW
InitializeSid
BuildSecurityDescriptorW

ole32

CoUninitialize
OleFlushClipboard

oleaut32

QueryPathOfRegTypeLi
SysFreeString
SafeArrayCreate
SafeArrayGetLBound

shlwapi

StrCpyNW
SHAutoComplete
SHCreateStreamOnFileW
StrCatW
StrStrW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7be816a374e01f44ec9d255fc4232115

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

shlwapi

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 260KB - Virtual size: 259KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 260KB - Virtual size: 259KB