cfea7c524b4e6f9d22a74cb358ade65f64ff33d466bacdee313e591ec0e1bc0c

Sharing

Copy URL Twitter E-mail

General

Target

cfea7c524b4e6f9d22a74cb358ade65f64ff33d466bacdee313e591ec0e1bc0c
Size

435KB
MD5

ae8ce43030f90ac57a12ddefb0e47801
SHA1

9d18527e34225d712f15390b3af4f7655143e92a
SHA256

cfea7c524b4e6f9d22a74cb358ade65f64ff33d466bacdee313e591ec0e1bc0c
SHA512

f560fcf2f767861b8631228bb486167e7519c23e614400082935c86eea64d786ac4abcedb9321c81b0188b397a833e03f32a2e6c90958e7d0c1d4291390169a8
SSDEEP

6144:gHdcjyq8kBwGTsv4qsRX+tCp3FRg8mSZA+XKUtwQQnnH5Hc+x7SnWT3jRp6wMT7b:g+j58kSGq4xXp3b2iHtpat0ETRpNMP

Score

N/A

Malware Config

Signatures

Files

cfea7c524b4e6f9d22a74cb358ade65f64ff33d466bacdee313e591ec0e1bc0c
.exe windows x86

a5d4817e9048733282a061e46e94e7f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
VariantInit
SysFreeString
SysAllocStringLen
VariantClear

user32

SetForegroundWindow
PostQuitMessage
LoadBitmapA
SetWindowPos
IsWindow
DispatchMessageA
GetDC
GetCursorPos
DrawTextA
SendMessageA
GetClientRect
DestroyWindow
GetMessageA
GetParent
DefWindowProcA
ShowWindow
EnableWindow
TranslateMessage
IsWindowEnabled
GetWindow
LoadStringA
EnableMenuItem
GetWindowLongA
SetTimer
FillRect
EndPaint
SetFocus
BeginPaint
KillTimer
GetSystemMetrics
GetWindowRect
SetCapture
ReleaseCapture
SetWindowLongA
SetWindowTextA
GetSubMenu
CreateWindowExA
GetDlgItem
ClientToScreen
ReleaseDC
EndDialog
SetDlgItemTextA
MessageBoxA
PostMessageA
IsWindowVisible
GetFocus
InvalidateRect
CallWindowProcA
SetCursor

gdi32

GetDeviceCaps
DeleteDC
GetStockObject
SetTextColor
SelectObject
BitBlt

advapi32

RegOpenKeyExA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegCloseKey

kernel32

FatalAppExitA
RtlUnwind
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
FindNextFileA
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
SetErrorMode
FreeEnvironmentStringsW
WideCharToMultiByte
GetStringTypeA
IsBadWritePtr
HeapReAlloc
GetStringTypeW
GetFullPathNameA
FreeLibrary
LocalFree
GetExitCodeProcess
InitializeCriticalSection
LoadResource
FindClose
TlsGetValue
FormatMessageA
OutputDebugStringA
SetLastError
GetEnvironmentVariableA
GetModuleFileNameW
IsDebuggerPresent
ExitProcess
GetVersionExA
GetModuleFileNameA
UnhandledExceptionFilter
InterlockedDecrement
SetConsoleCtrlHandler
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
SetEnvironmentVariableA
SetFileAttributesA
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
GetSystemTimeAsFileTime
InterlockedIncrement
VirtualAlloc
GetCommandLineA
FindResourceA
Sleep
VirtualFree
WriteFile
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
InterlockedExchange
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
VirtualQuery
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
GetLastError
SetUnhandledExceptionFilter
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
SetEvent
GlobalLock
FindFirstFileW
CreateFileMappingA
ResetEvent
CompareStringA
lstrcpyA
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
GetCPInfo
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
GlobalAlloc
GetVersion
TerminateProcess
GetSystemDirectoryA
MulDiv
MultiByteToWideChar

ole32

CoTaskMemFree
CoUninitialize
CoInitialize

Sections

.text
Size: 375KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5d4817e9048733282a061e46e94e7f4

Headers

File Characteristics

Imports

oleaut32

user32

gdi32

advapi32

kernel32

ole32

Sections

.text Size: 375KB - Virtual size: 374KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 18KB - Virtual size: 19KB

.rsrc Size: 1024B - Virtual size: 736B

.text
Size: 375KB - Virtual size: 374KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 18KB - Virtual size: 19KB

.rsrc
Size: 1024B - Virtual size: 736B