c25bc1b785137aa250caf4f23e4d36175c8bfe77cff48b753ef9f9908759e458

Sharing

Copy URL Twitter E-mail

General

Target

c25bc1b785137aa250caf4f23e4d36175c8bfe77cff48b753ef9f9908759e458
Size

277KB
MD5

301ae0e34fcead0017638272d7489be2
SHA1

17133b5438b39c71d5a9447ae77ed19f5cf48d1b
SHA256

c25bc1b785137aa250caf4f23e4d36175c8bfe77cff48b753ef9f9908759e458
SHA512

b9f45c1cdf03d689be9b485d7882bbe7a3ebdbc53bded5b719027450c485f1e9db978b4a1a4885f4606959832c5710b6cd71339f036a7a50c8b3142385282107
SSDEEP

6144:upfX8HYVSY3WzMnWE66EgfXWMAkxAhIKK2+9MN8D6iyH:upvwhwWzPkChIe+S8SH

Score

N/A

Malware Config

Signatures

Files

c25bc1b785137aa250caf4f23e4d36175c8bfe77cff48b753ef9f9908759e458
.exe windows x86

b64d306c17b58deb9fc6a0db5186dea1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindExtensionA

oleaut32

SafeArrayPutElement

gdi32

CopyMetaFileW
Polygon
GetEnhMetaFileHeader
EnumFontFamiliesExW
SetMetaFileBitsEx
GetTextCharsetInfo
FillRgn
EnumFontFamiliesW
StretchDIBits
ExtEscape
Rectangle
LPtoDP
ScaleWindowExtEx
CreateFontIndirectW
SaveDC
SelectClipRgn
GetViewportOrgEx
GetCurrentObject
SetTextAlign
GetDCOrgEx
SetDIBits
GetTextAlign
CreateDIBitmap
GetWindowExtEx
SetStretchBltMode
GetFontData
GetWindowOrgEx
CreatePenIndirect

shell32

ExtractIconExW
ExtractIconA
SHGetMalloc
SHFileOperationW

version

GetFileVersionInfoA
GetFileVersionInfoSizeW
VerQueryValueA

user32

RegisterClassExA
MapWindowPoints
DrawTextExA
GetMessageW
GetMenuCheckMarkDimensions

kernel32

MoveFileA
GlobalGetAtomNameW
GetConsoleCP
GetThreadLocale
GetProcessTimes
SetFilePointerEx
lstrlenA
DeleteTimerQueueTimer
LCMapStringA
GetLocaleInfoW
HeapDestroy
SetFilePointer
GetComputerNameA
GlobalAddAtomA
ReadFile
GetFileAttributesExW
VerifyVersionInfoW
TerminateThread
CreateProcessW
CreateIoCompletionPort
GetPrivateProfileStringA
DeleteCriticalSection
CreateSemaphoreW
Beep
GlobalSize
GetEnvironmentVariableA
LoadResource
GetCurrentThread
GetUserDefaultLangID
GlobalAddAtomW
SwitchToThread
SetPriorityClass
MapViewOfFile
GlobalUnlock
GetPrivateProfileIntW
QueryDosDeviceW
GetLocalTime
GetProcAddress
_lclose
FlushInstructionCache
QueueUserWorkItem
GetUserDefaultLCID
OutputDebugStringW
IsBadWritePtr
SetErrorMode
GetModuleFileNameA
WaitForMultipleObjectsEx
WriteFile
CreateEventA
TerminateProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetVersionExA
HeapCreate
VirtualFree
HeapFree
RtlUnwind
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
ResetEvent
VirtualAlloc
LoadLibraryA
CreateThread

advapi32

GetSecurityDescriptorControl
SetSecurityDescriptorGroup
DeleteService
GetSidLengthRequired
GetFileSecurityA
SetServiceStatus
MakeAbsoluteSD
SetSecurityDescriptorDacl
RegQueryValueA
AllocateAndInitializeSid
ConvertSidToStringSidW
RegFlushKey
CreateServiceA
OpenProcessToken
GetAce
CryptHashData
OpenSCManagerW
OpenSCManagerA
RegDeleteValueA

comdlg32

GetOpenFileNameA

ole32

IsAccelerator
GetHGlobalFromILockBytes
PropVariantClear
CoUnmarshalInterface
SetConvertStg
OleSetContainedObject
OleDuplicateData
CreateFileMoniker
OleCreateLinkFromData
StgOpenStorage

comctl32

ImageList_AddMasked
ImageList_SetBkColor

Sections

.text
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b64d306c17b58deb9fc6a0db5186dea1

Headers

File Characteristics

Imports

shlwapi

oleaut32

gdi32

shell32

version

user32

kernel32

advapi32

comdlg32

ole32

comctl32

Sections

.text Size: 224KB - Virtual size: 224KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 13KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 224KB - Virtual size: 224KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 13KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 4KB