43f9ada116994380a84ba5346ca968a0e011ff2c7f89de893ea947cf8fee5995

Sharing

Copy URL Twitter E-mail

General

Target

43f9ada116994380a84ba5346ca968a0e011ff2c7f89de893ea947cf8fee5995
Size

300KB
MD5

3aaac423166ebdf71701c875623a8c19
SHA1

a1daf0e7a21b760525da6798e21e1fa822af16b2
SHA256

43f9ada116994380a84ba5346ca968a0e011ff2c7f89de893ea947cf8fee5995
SHA512

336aaadc6dadb9cca5203a0f183bb55b159528dd898b430e8364edadb84cf5161a06e23d348ed05482d737b2d93cfbbefefd94f0a178e53a159e10e028dcb36f
SSDEEP

6144:x4w+Xpsoo+h/FuKgRJMzt1T1H8nVQ4YxRicJgYvtdP:GThNuKgR6XJHgTgM8fP

Score

N/A

Malware Config

Signatures

Files

43f9ada116994380a84ba5346ca968a0e011ff2c7f89de893ea947cf8fee5995
.exe windows x86

5160bbb41621b942968917e3e6f90969

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAdjustment
IsDBCSLeadByteEx
_lclose
GetBinaryTypeW
GetNumberFormatW
MultiByteToWideChar
OpenMutexA
SetConsoleCursorPosition
SetCommTimeouts
ExitProcess
CopyFileExW
FormatMessageW
CompareStringW
SetEvent
GetStartupInfoA
GlobalAddAtomA
IsValidLocale
LocalReAlloc
GetFileInformationByHandle
ReadDirectoryChangesW
GetTempFileNameA
GetTickCount
CompareStringA
FreeResource
GetFullPathNameA
MoveFileW
_llseek
GetShortPathNameA
WaitNamedPipeA
SetupComm
GetThreadContext
SetVolumeLabelA
WritePrivateProfileStructA
GlobalGetAtomNameW
SetEnvironmentVariableA
CancelIo
EnumSystemCodePagesA
WritePrivateProfileSectionA
GlobalReAlloc
GetOverlappedResult
GenerateConsoleCtrlEvent
EndUpdateResourceA
GetThreadPriority
LeaveCriticalSection
SetConsoleMode
ReadFileScatter
GetLongPathNameA
GetVersion
WriteConsoleOutputCharacterA
LoadLibraryExA
GetLogicalDriveStringsA
GlobalUnlock
FindNextChangeNotification
CreateEventA
LoadResource
WriteProcessMemory
GetCurrentProcess
GetLocaleInfoW
SetFileTime
SetConsoleOutputCP
FreeLibraryAndExitThread
LocalFileTimeToFileTime
GetDriveTypeW
ReadConsoleInputW
SuspendThread
lstrlenA
GlobalFindAtomA
VirtualAlloc
GetModuleHandleA

user32

MapVirtualKeyW
GetMenuCheckMarkDimensions
GetScrollBarInfo
GetWindowLongW
OpenWindowStationA
wsprintfA
IsClipboardFormatAvailable
LoadMenuA
CharLowerBuffW
OpenDesktopW
ActivateKeyboardLayout
ShowOwnedPopups
UnionRect
GetGuiResources
EnumDesktopsW
CharLowerA
GetWindowPlacement
CharNextA
IsDialogMessageW
GetUpdateRgn
LookupIconIdFromDirectory
IsCharUpperA
SetActiveWindow
EnumDisplaySettingsA
DefWindowProcA
SetWinEventHook
SetCaretPos
DestroyWindow
IsWindowUnicode
IsCharLowerA
GetMonitorInfoW
GetCapture
LoadBitmapA
CharToOemW
LoadAcceleratorsA
CharLowerW
FindWindowA
MonitorFromRect
GetDlgCtrlID
GetMessageTime
EnumWindowStationsW
CreateDialogParamA
GetCaretPos
SetDlgItemTextW
SetMenuItemBitmaps
TranslateAcceleratorA
CharNextExA
SetWindowLongW
OpenWindowStationW
GetWindow
MapDialogRect
ChangeDisplaySettingsExA
SetDlgItemInt
InvertRect
WindowFromPoint
GetClassNameA
GetWindowLongA
TabbedTextOutA
HideCaret
SetSysColors
GetScrollPos
SendDlgItemMessageA

gdi32

GetROP2
GetCurrentPositionEx
GetCharWidthA
DeleteDC
StartDocW
MoveToEx
CloseEnhMetaFile
PatBlt
PathToRegion
PtInRegion

comdlg32

ChooseColorW
GetFileTitleW

advapi32

InitializeAcl
LookupPrivilegeDisplayNameA
OpenServiceW
LookupAccountSidA
LookupAccountNameW
GetAce
CloseServiceHandle
MakeAbsoluteSD
RegSetValueW
RegQueryValueA
BuildSecurityDescriptorW
LookupPrivilegeValueA
CryptDestroyKey
EnumDependentServicesA
RegQueryInfoKeyW
RegSetValueExA

shell32

SHBrowseForFolderA

oleaut32

VariantCopy
SafeArrayGetLBound
SafeArrayPutElement
SafeArrayRedim
LoadTypeLibEx
SafeArrayGetElement
LoadTypeLi

comctl32

ImageList_DragLeave
ImageList_DragShowNolock

shlwapi

PathCanonicalizeW
PathIsUNCServerW
StrCmpW
SHGetValueA
PathStripPathA
AssocQueryStringW
PathCompactPathExW
PathRemoveBlanksW
PathIsUNCW
StrRChrW
AssocCreate
StrRetToStrW

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3

Sections

aewcsmg
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

auags
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

agiky
Size: 271KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

acemm
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5160bbb41621b942968917e3e6f90969

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

comctl32

shlwapi

msvcrt

Sections

aewcsmg Size: 3KB - Virtual size: 3KB

auags Size: 5KB - Virtual size: 5KB

agiky Size: 271KB - Virtual size: 271KB

acemm Size: 18KB - Virtual size: 18KB

aewcsmg
Size: 3KB - Virtual size: 3KB

auags
Size: 5KB - Virtual size: 5KB

agiky
Size: 271KB - Virtual size: 271KB

acemm
Size: 18KB - Virtual size: 18KB