9f8dc2fde594a48bb1fbf91333804f4e38fae19a20c6d2bd882908bde1c71613

Sharing

Copy URL Twitter E-mail

General

Target

9f8dc2fde594a48bb1fbf91333804f4e38fae19a20c6d2bd882908bde1c71613
Size

264KB
MD5

afd12c9c3cd8b172d501bdacaab975bd
SHA1

4e7776a6150c1c6c3bc8d5a4e26a2683188fc8a2
SHA256

9f8dc2fde594a48bb1fbf91333804f4e38fae19a20c6d2bd882908bde1c71613
SHA512

de8a9099a18fc10139d3714b86d67651131adefc6f34e3e445ecf8f1388898c2d6431dccf221c0b63b2eea339b0e82cc07f0951c985e829aaeb785e896645074
SSDEEP

6144:t+ywb8VPfJ/BTJtDQ4vIMMgEGCnOhI3W4a2ok80D:t+yQCfdBTPrENFd

Score

N/A

Malware Config

Signatures

Files

9f8dc2fde594a48bb1fbf91333804f4e38fae19a20c6d2bd882908bde1c71613
.exe windows x86

c3f78d6992f696409b266a85bebb111e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseFontW
FindTextA

gdi32

OffsetRgn
GetNearestColor
RoundRect
SetPixelFormat
PlayEnhMetaFileRecord
WidenPath
SetEnhMetaFileBits
SetRectRgn
EnumObjects
GetDeviceCaps
CreatePenIndirect
CreateBitmapIndirect
LPtoDP
CreateEllipticRgn
RemoveFontResourceA
CreatePolyPolygonRgn

version

VerInstallFileA

kernel32

FlushConsoleInputBuffer
SwitchToFiber
SetThreadPriorityBoost
SystemTimeToFileTime
GetSystemTime
GlobalReAlloc
DosDateTimeToFileTime
GetThreadPriority
GetOEMCP
PurgeComm
ClearCommBreak
IsBadWritePtr
SetFileAttributesA
ConnectNamedPipe
WriteProcessMemory
DeleteFiber
GetUserDefaultLCID
SetupComm
FatalAppExitA
GetEnvironmentVariableW
SetProcessAffinityMask
FormatMessageA
QueryDosDeviceA
CompareStringA
QueryDosDeviceW
SetConsoleTitleA
IsBadReadPtr
GetModuleFileNameW
VirtualQueryEx
GetDriveTypeW
lstrcpyA
VirtualAllocEx
MoveFileExA
FormatMessageW
GetSystemInfo
LocalSize
WritePrivateProfileStructA
GetNumberFormatW
OutputDebugStringA
lstrcmpiA
GetCommState
GetFileType
SetCommMask
CancelIo
GlobalFree
GetSystemTimeAsFileTime
SetVolumeLabelA
SetThreadAffinityMask
UnmapViewOfFile
FindCloseChangeNotification
CreateDirectoryExA
CreateFileW
CopyFileExW
GetFileInformationByHandle
ExpandEnvironmentStringsW
CreatePipe
_lopen
SetEndOfFile
GlobalFindAtomW
SetFileTime
SetLastError
GetTickCount
UnhandledExceptionFilter
GetCurrentProcess
GetStartupInfoA
SetStdHandle
GetThreadContext
InitializeCriticalSection
EnumCalendarInfoW
GetFileAttributesExA
CreateDirectoryA
VirtualAlloc
EnumSystemCodePagesW
GetWindowsDirectoryA
GetBinaryTypeW
EnumSystemCodePagesA
SetConsoleOutputCP
GetCompressedFileSizeW
GetLogicalDriveStringsA
GetDiskFreeSpaceW
DuplicateHandle
FreeLibrary
WritePrivateProfileStringW
GetSystemDirectoryW
GetCommModemStatus
FreeLibraryAndExitThread
LocalReAlloc
GetConsoleMode
SetMailslotInfo
CreateProcessA
DeleteCriticalSection
GetShortPathNameW
GetModuleHandleA
GetLargestConsoleWindowSize

shell32

SHFileOperationW

advapi32

CryptSetProvParam
CreateProcessAsUserW
GetExplicitEntriesFromAclW
CryptGenKey
LookupPrivilegeNameA
SetKernelObjectSecurity
AllocateLocallyUniqueId
GetServiceDisplayNameW
AllocateAndInitializeSid
SetFileSecurityW
CryptGetHashParam
RegSetValueW
AccessCheckAndAuditAlarmW
CryptDeriveKey
RegRestoreKeyW
RegQueryValueExA
CryptSetHashParam
RegSetValueExW
CryptDestroyKey
EnumServicesStatusA
SetSecurityDescriptorSacl
CreatePrivateObjectSecurity
OpenSCManagerW
GetNamedSecurityInfoW
SetServiceStatus
CryptCreateHash
GetFileSecurityW
RegRestoreKeyA
LookupPrivilegeValueA
CryptEncrypt

comctl32

ImageList_Add
CreatePropertySheetPageW
ImageList_LoadImageW

ws2_32

WSARemoveServiceClass
getpeername
WSAGetServiceClassInfoW
WSAEventSelect
WSASend
bind
__WSAFDIsSet
recv
getsockname
WSAStartup
WSAIsBlocking
WSACloseEvent
WSAGetOverlappedResult
shutdown
WSAStringToAddressA
WSALookupServiceNextW
getservbyname

user32

GetLastActivePopup
wsprintfA
EnumWindowStationsA
CallWindowProcA
SendMessageA
GetMenuItemInfoA
ChangeDisplaySettingsW
ChangeMenuA
CloseClipboard
TabbedTextOutW
EndMenu
SetUserObjectSecurity
CharToOemW

oleaut32

SysStringLen
VariantCopy
VariantChangeType
SafeArrayCreate
SysFreeString
SafeArrayUnaccessData
QueryPathOfRegTypeLi
LoadTypeLi
SafeArrayGetLBound
SetErrorInfo

msvcrt

_cexit
_wstrtime
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
wcstombs
floor
_pclose
fputs
iswalpha
_tell
_wfopen
swscanf
vswprintf
_strtime
fwrite
_getche
getchar
_ltoa
_beginthread
_wopen
putchar
_ultow
_strnicmp

Sections

.text
Size: 240KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c3f78d6992f696409b266a85bebb111e

Headers

File Characteristics

Imports

comdlg32

gdi32

version

kernel32

shell32

advapi32

comctl32

ws2_32

user32

oleaut32

msvcrt

Sections

.text Size: 240KB - Virtual size: 236KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 8KB

.text
Size: 240KB - Virtual size: 236KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 8KB