6553c8ed6a05bcd93a115f0fa1038c163f19e2c380f0566de0c987a35f540561

Sharing

Copy URL Twitter E-mail

General

Target

6553c8ed6a05bcd93a115f0fa1038c163f19e2c380f0566de0c987a35f540561
Size

307KB
MD5

8ae56bf4cc3011b6fb8bdfce51343ebc
SHA1

cd3947afcc28678b10ebc5e54b1814b760d09787
SHA256

6553c8ed6a05bcd93a115f0fa1038c163f19e2c380f0566de0c987a35f540561
SHA512

ee8c74e1dafb61eca172a7946eaf2f94878fd92b8d2c69ce21997ec0c3e969f97cd67f820ba99e5db3f154016d1b3dee4ca60ea7d23553e5499544a7ee8767c6
SSDEEP

6144:B3cf70qh6tuSqFLSSPX2iTihH6h5b4JY6EGK3/wmU9:Zq0qh+qF2SP+H6h5kSvl

Score

N/A

Malware Config

Signatures

Files

6553c8ed6a05bcd93a115f0fa1038c163f19e2c380f0566de0c987a35f540561
.exe windows x86

e78a05e7ec55598757b96016341ef1fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragFinish
SHGetFolderLocation
Shell_NotifyIconA

ole32

ReleaseStgMedium
CreateGenericComposite
OleSave
CoCreateInstance
CreateOleAdviseHolder
OleCreateLink

gdi32

AbortDoc
SetAbortProc
GetTextMetricsW
Polyline
GetPixel
OffsetRgn
CreateHalftonePalette
GetTextExtentPoint32W
ExtEscape
GetTextCharsetInfo

comdlg32

GetFileTitleA

kernel32

GetDiskFreeSpaceW
SetEnvironmentVariableA
CreateSemaphoreA
GetPrivateProfileSectionA
IsDBCSLeadByte
GlobalReAlloc
lstrlenA
CompareFileTime
QueryDosDeviceW
OpenFile
RemoveDirectoryW
Sleep
GetFileAttributesExW
GetCurrentProcess
GetLastError
SearchPathW
DeleteTimerQueueTimer
GetTempPathW
GetSystemDefaultLCID
Process32FirstW
SetEvent
_llseek
InterlockedCompareExchange
CreateIoCompletionPort
DeviceIoControl
GetStringTypeExA
LocalFileTimeToFileTime
WaitForSingleObject
TerminateProcess
GetSystemWindowsDirectoryW
CreateProcessW
RaiseException
GlobalUnlock
MulDiv
GetCurrentProcessId
VirtualProtect
OpenMutexA
TlsAlloc
TlsSetValue
SetFileTime
SetWaitableTimer
GetNumberFormatW
GetTimeFormatA
DeleteCriticalSection
CreateSemaphoreW
GetTimeZoneInformation
GetSystemDirectoryA
_lopen
GetCommandLineA
RemoveDirectoryA
GetEnvironmentVariableW
SetFilePointerEx
GetCommandLineW
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
UnhandledExceptionFilter
InitializeCriticalSection
InterlockedIncrement
InterlockedDecrement
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
TlsGetValue
SetLastError
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetProcAddress
ExitProcess
lstrcatW
VerifyVersionInfoW
VirtualAlloc
LCMapStringA
LCMapStringW
FormatMessageW
GetEnvironmentStringsW
GetEnvironmentStrings
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FindClose
GetModuleHandleA
GetStartupInfoA
GetVersion
WideCharToMultiByte

shlwapi

PathRemoveExtensionW

user32

GetPropA
GetClassInfoExA
ExitWindowsEx
MessageBoxW
IsDlgButtonChecked
InsertMenuItemA
GetLastActivePopup
IsZoomed
SetRect
IsDialogMessageA
GetWindowTextW
ReplyMessage
SetActiveWindow
FindWindowExW
PostThreadMessageW
GetNextDlgTabItem
CharPrevA
InsertMenuA
SetWindowLongA
SendMessageW
FindWindowExA
WindowFromPoint
GetCaretBlinkTime
ScreenToClient
DefFrameProcA
SetWindowTextA
ValidateRect
DdeQueryNextServer
CreateMenu
MessageBeep
GetMessageW

oleaut32

SafeArrayPutElement

advapi32

CreateProcessAsUserW
LookupAccountNameW
MakeSelfRelativeSD
RegSetValueExA
RegSetValueA
CryptGenRandom
LookupPrivilegeValueW
IsValidSecurityDescriptor
LookupAccountSidW
CryptAcquireContextA
EqualSid

version

GetFileVersionInfoA

comctl32

PropertySheetA
ImageList_SetBkColor
ImageList_Draw
ImageList_AddMasked
ImageList_DragEnter

Sections

.text
Size: 263KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e78a05e7ec55598757b96016341ef1fc

Headers

File Characteristics

Imports

shell32

ole32

gdi32

comdlg32

kernel32

shlwapi

user32

oleaut32

advapi32

version

comctl32

Sections

.text Size: 263KB - Virtual size: 263KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 14KB - Virtual size: 16KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 263KB - Virtual size: 263KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 14KB - Virtual size: 16KB

.rsrc
Size: 7KB - Virtual size: 6KB