cb53c4c86291ec35292634fe571c0a8d4575608442a7689df16496da6c5ff464

Sharing

Copy URL Twitter E-mail

General

Target

cb53c4c86291ec35292634fe571c0a8d4575608442a7689df16496da6c5ff464
Size

292KB
MD5

0f974b26c9ac368c39300d08177216a0
SHA1

44c74effb2198e78b60c3d95387c90844544dc3b
SHA256

cb53c4c86291ec35292634fe571c0a8d4575608442a7689df16496da6c5ff464
SHA512

fd40b6ead809ebb0e17d990c4130660e01193833176823b962bcda6fc61f03f75b7cd7391202ac79bf149f9a92788458006666885d4117be167f02134bf48b94
SSDEEP

6144:ib9veD51EO3eorEosqbjONloYuQQfCSlEvPFtXnxZy7Bt1iR8:ARe11EO3DrEosqbqxuFjE8G8

Score

N/A

Malware Config

Signatures

Files

cb53c4c86291ec35292634fe571c0a8d4575608442a7689df16496da6c5ff464
.exe windows x86

fb872d39fb49f6a65a0b174787094632

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDesktopFolder
SHBrowseForFolderA

user32

SetWindowTextW
TrackMouseEvent
GetWindowModuleFileNameA
GetMessageW
IsCharAlphaA
SetWindowPos
UpdateLayeredWindow
SetWindowsHookExW
TranslateMDISysAccel
ScrollDC
GetPropW
UnionRect
DdeCreateDataHandle
GetCursorPos
GetDlgItemInt
SetWindowTextA
SetClipboardData
TabbedTextOutW
UnregisterClassA
PtInRect
GetLastActivePopup
OemToCharBuffA
RedrawWindow
GetDoubleClickTime
DdeFreeStringHandle
CopyRect
DrawEdge
RemovePropW
DrawIcon
IsDialogMessageW
FlashWindowEx
IsDlgButtonChecked
SetRect
VkKeyScanA
DestroyMenu
SetMessageQueue
PostQuitMessage

kernel32

QueryPerformanceFrequency
GetSystemPowerStatus
GetFileInformationByHandle
CreateTimerQueue
TlsGetValue
GetFileAttributesW
GetLongPathNameW
IsBadReadPtr
lstrcmpW
GetStringTypeW
GetCurrentDirectoryA
lstrcmpiW
TlsSetValue
DeleteCriticalSection
ReadFile
EnumCalendarInfoA
IsDBCSLeadByteEx
GetSystemDefaultLangID
FindCloseChangeNotification
OutputDebugStringA
GetUserDefaultLCID
SetNamedPipeHandleState
DeleteTimerQueueTimer
GetCurrentThreadId
WriteProfileStringA
lstrcpynW
GetEnvironmentVariableA
CompareFileTime
GetWindowsDirectoryA
GetDateFormatW
GetFileType
FreeEnvironmentStringsW
IsDBCSLeadByte
GetTimeFormatA
GetStartupInfoA
GlobalAlloc
VirtualAlloc
GetOEMCP
_llseek
ExpandEnvironmentStringsA
SetFileAttributesW
GetSystemDirectoryA
HeapDestroy
CreateEventW
VirtualFree
FindClose
LoadLibraryA
GetNumberFormatW
Process32FirstW
GetModuleHandleA
GlobalSize
LocalAlloc
SetHandleCount
FindResourceExA
LoadLibraryW
DeleteFileA
WaitForSingleObject
GetConsoleOutputCP
SuspendThread
GetStringTypeExA
SetThreadPriority
LeaveCriticalSection
GlobalAddAtomW
FileTimeToDosDateTime
GlobalAddAtomA
PulseEvent
WriteConsoleW
LCMapStringA
OpenMutexW
GetWindowsDirectoryW
GetTempPathA
GetSystemTimeAsFileTime
GetModuleHandleW
GetVolumeInformationW
GetLogicalDrives
GetEnvironmentVariableW
CreateFileMappingW
GetCurrentProcess
MapViewOfFile
CompareStringA
GetLastError
GlobalUnlock
FindFirstFileA
GetVersion
GetFileAttributesExW
lstrlenW
FindResourceW
GlobalMemoryStatus
GetTickCount
GetSystemDefaultUILanguage
lstrcpynA
WaitForMultipleObjectsEx
QueryDosDeviceW
_lread
GetCurrentDirectoryW
DosDateTimeToFileTime
RemoveDirectoryA
LCMapStringW
GetLocaleInfoA
LocalReAlloc

advapi32

GetSidLengthRequired
AddAce
CryptAcquireContextW

msvcrt

swprintf
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_wtoi
memmove
_iob
_wcsnicmp
longjmp
_stricmp
iswdigit
bsearch
_itoa
iswspace
tolower
toupper
_wcslwr
wcstol
wcscmp
_setmbcp
wcschr
_msize
_ecvt
wcscspn
fclose
_exit
wcstok
_itow
localtime
_wtoi64
rand
_fpreset
_strlwr
time
_wcsicmp
wcscpy
free
malloc
_snwprintf
sprintf
swscanf
iswalnum
_wsplitpath
srand
_purecall
wcstod
atof
_ltow
_CxxThrowException
strrchr
strstr
_beginthreadex
qsort
_controlfp
wcslen
_vsnwprintf

Sections

.text
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb872d39fb49f6a65a0b174787094632

Headers

File Characteristics

Imports

shell32

user32

kernel32

advapi32

msvcrt

Sections

.text Size: 216KB - Virtual size: 215KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 728B

.text
Size: 216KB - Virtual size: 215KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 728B