cf2c5b34b242af8b2a036c5e93580833d48d007e1ec60e23c1c8d32ffd40afd2

Sharing

Copy URL

Twitter E-mail

General

Target

cf2c5b34b242af8b2a036c5e93580833d48d007e1ec60e23c1c8d32ffd40afd2
Size

283KB
MD5

8e1c7db9c087d0a85e9b56adc186d12f
SHA1

be3ff456da4b43115b0ac5487fd7777cf8e0060e
SHA256

cf2c5b34b242af8b2a036c5e93580833d48d007e1ec60e23c1c8d32ffd40afd2
SHA512

5ef343d230f52edcc6170b86e83d206cf30910eb58864dfc25dfc72d2c78aa9cf6adc7772ef41fdcc2fed9670583861cde201c8643d600a6261aff411964b7e0
SSDEEP

6144:27BMPL1UpfZNeuAFnUyGIkZW04ZLLIbUDbwLCTSu9Uu40GlJ:27BMPiZAvGIkZW046QPwLA9r

Score

N/A

Malware Config

Signatures

Files

cf2c5b34b242af8b2a036c5e93580833d48d007e1ec60e23c1c8d32ffd40afd2
.exe windows x86

f53b19d260272d9f04ef1e5ad9c4ccf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
ChooseColorW

gdi32

Pie
UpdateColors
GetClipRgn

ws2_32

WSALookupServiceBeginA
WSALookupServiceNextA
WSAHtonl
WSAGetOverlappedResult
WSASetBlockingHook
getpeername
WSADuplicateSocketA
WSASetEvent
WSAUnhookBlockingHook
accept
connect

comctl32

ImageList_DrawEx
ImageList_GetIconSize

kernel32

GetCompressedFileSizeW
GetStartupInfoA
LCMapStringA
FreeEnvironmentStringsA
GetPrivateProfileStringA
EnumResourceLanguagesW
TryEnterCriticalSection
SetTimeZoneInformation
SetFileAttributesA
SetVolumeLabelA
FormatMessageW
GlobalGetAtomNameW
GetFileType
FindCloseChangeNotification
GetDriveTypeA
GetCurrentProcessId
SetConsoleTitleA
GetCurrentDirectoryW
lstrcmpiW
GlobalAddAtomA
SetThreadLocale
CancelIo
VirtualAlloc
SystemTimeToFileTime
EnumCalendarInfoA
FindResourceExW
GetTempPathW
GetModuleHandleA
SetProcessShutdownParameters
SetCommMask
GetWindowsDirectoryA
EnumResourceNamesW

user32

InflateRect
GetDlgCtrlID
UnregisterHotKey
EqualRect
UnregisterClassA
IsCharLowerA
ChangeClipboardChain
GetTopWindow
SendMessageTimeoutW
SetRectEmpty
ReleaseDC
SetUserObjectInformationW
EnumWindowStationsW
IsDialogMessageW
GetKeyboardLayoutNameA
CopyRect
AppendMenuW
GetTitleBarInfo
GetTabbedTextExtentA
LoadMenuIndirectA
GetWindowRgn
LoadAcceleratorsW
SetCursorPos
GetMenuDefaultItem
IsRectEmpty
VkKeyScanA
ValidateRgn
GetMenuItemCount
RegisterDeviceNotificationW
TranslateMDISysAccel
ShowCaret
CharLowerA
SwitchToThisWindow
GetWindowTextA
EnableWindow
wvsprintfA
CreateIcon
FindWindowExA
SetScrollInfo

shell32

Shell_NotifyIconA
ExtractIconA
DragAcceptFiles
FindExecutableA
SHGetSpecialFolderPathW
DragFinish
SHGetPathFromIDListA
ShellExecuteA

version

GetFileVersionInfoA
VerQueryValueA
VerInstallFileA

advapi32

GetSidSubAuthority
AddAce
RegConnectRegistryA
RegEnumValueW
DestroyPrivateObjectSecurity
RegSetValueExW
RegQueryValueW
QueryServiceConfigW
GetSecurityDescriptorLength
MakeSelfRelativeSD
LogonUserA
InitiateSystemShutdownA
RegUnLoadKeyA
CreateServiceW
GetSecurityDescriptorGroup
RegQueryValueA
GetNamedSecurityInfoA
DeregisterEventSource
AbortSystemShutdownW
ReportEventA
SetSecurityDescriptorSacl
QueryServiceStatus
AdjustTokenPrivileges
LookupPrivilegeValueW
AccessCheck
StartServiceA
GetFileSecurityA
GetExplicitEntriesFromAclW
ControlService
StartServiceCtrlDispatcherW
StartServiceCtrlDispatcherA
LookupAccountNameA
EnumServicesStatusA
RegDeleteKeyW
QueryServiceObjectSecurity
RegEnumKeyExA
GetPrivateObjectSecurity
RegReplaceKeyW
RegisterEventSourceW
LookupPrivilegeNameA
SetNamedSecurityInfoW

oleaut32

SetErrorInfo
SysAllocStringLen
QueryPathOfRegTypeLi
VariantChangeType
LoadTypeLi

ole32

CoFreeUnusedLibraries
OleFlushClipboard
CoRegisterMallocSpy
StringFromGUID2

msvcrt

__setusermatherr
_wchdir
iswcntrl
gmtime
_wsystem
strftime
_iob
_mbsrchr
_wputenv
fputs
_getch
_errno
getc
_memicmp
strstr
fwscanf
wcstod
_wgetenv
_sleep
ungetc
isalnum
_controlfp
fread
_wcsdup
_getcwd
strtol
_ecvt
_strnicoll
tolower
_dup
wcscspn
wcsftime
_pctype
fflush
freopen
_snwprintf
_mbscmp
_mbsnbcat
printf
vfwprintf
_c_exit
strpbrk
wcsncmp
tmpnam
fclose
strncmp
__p___argc
_exit
_XcptFilter
exit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_open_osfhandle
_initterm
__getmainargs
_acmdln

Sections

.text
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f53b19d260272d9f04ef1e5ad9c4ccf6

Headers

File Characteristics

Imports

comdlg32

gdi32

ws2_32

comctl32

kernel32

user32

shell32

version

advapi32

oleaut32

ole32

msvcrt

Sections

.text Size: 236KB - Virtual size: 236KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 40KB - Virtual size: 39KB

.text
Size: 236KB - Virtual size: 236KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 40KB - Virtual size: 39KB