45d1e992ea308ec30cbd899b2f1d67e3c5168e74314478f3c104d7d34d516f5f

Sharing

Copy URL Twitter E-mail

General

Target

45d1e992ea308ec30cbd899b2f1d67e3c5168e74314478f3c104d7d34d516f5f
Size

438KB
MD5

6f41c0b768322ec1dbc2ef5ae2979008
SHA1

46c1a2b9a1cfb8ec1c192589cc37b23868fa854d
SHA256

45d1e992ea308ec30cbd899b2f1d67e3c5168e74314478f3c104d7d34d516f5f
SHA512

6d77b3a27e198fa7400ba1fdd83c178decf2e49b145896240e4d3990fa154e78e56efe8dbfeddaa16b885126fe00823be693e87d0a767b0fb9ad64474c228be6
SSDEEP

12288:kNiq/L/WnbA5mo89ViG1oJStCKqEO6U/EDoM68/6Zg8:EhLCAQoG1oiCZEDLZ58

Score

N/A

Malware Config

Signatures

Files

45d1e992ea308ec30cbd899b2f1d67e3c5168e74314478f3c104d7d34d516f5f
.exe windows x86

9ffeca9cd0770a4bdfcf83cb7f7f3b41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExW

user32

SetWindowLongA
EnableWindow
TranslateMessage
IsWindowEnabled
GetWindow
EnableMenuItem
RegisterClassA
GetWindowLongA
SetFocus
BeginPaint
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
ShowWindow
SetWindowTextA
CheckMenuItem
GetDlgItem
ClientToScreen
LoadCursorA
GetDesktopWindow
ReleaseDC
UpdateWindow
GetParent
DestroyWindow
GetKeyState
SetDlgItemTextA
MessageBoxA
GetSysColor
SystemParametersInfoA
IsWindowVisible
CallWindowProcA
SetCursor
GetActiveWindow
ScreenToClient
SendMessageA
GetCursorPos
GetDC
EndPaint
DispatchMessageA
IsWindow
SetWindowPos
LoadBitmapA
PostQuitMessage
EndDialog

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
FindNextFileA
HeapDestroy
HeapFree
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
LocalAlloc
SetFilePointer
ExpandEnvironmentStringsA
SetErrorMode
FreeEnvironmentStringsW
SetStdHandle
WideCharToMultiByte
lstrcmpiA
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
SetEvent
LocalFree
InitializeCriticalSection
LoadResource
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
GetSystemTime
TlsGetValue
GetModuleFileNameW
VirtualAlloc
FindResourceA
IsBadReadPtr
Sleep
VirtualFree
FindResourceW
HeapCreate
IsValidCodePage
SizeofResource
InterlockedExchange
LoadLibraryExA
GetVersion
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
CompareStringA
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
CreateProcessW
lstrlenW
GlobalAlloc
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
GetLastError
InterlockedIncrement
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GetProcAddress
WaitForMultipleObjects
FindFirstFileW
ResetEvent
FindFirstFileA
CompareStringW
GetProcessHeap
GlobalLock
GetStartupInfoW
GetWindowsDirectoryA
LCMapStringW
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
GetTickCount
QueryPerformanceCounter
GetOEMCP
LoadLibraryW
SetHandleCount
EnterCriticalSection
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
GetConsoleMode
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
CreateEventW
CreateMutexA
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

gdi32

DeleteObject
DeleteDC
GetStockObject
SetTextColor
SelectObject
CreateSolidBrush

msvcrt

_strcmpi
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp
_except_handler3

Sections

.text
Size: 310KB - Virtual size: 310KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ffeca9cd0770a4bdfcf83cb7f7f3b41

Headers

File Characteristics

Imports

advapi32

user32

kernel32

version

gdi32

msvcrt

Sections

.text Size: 310KB - Virtual size: 310KB

.rdata Size: 43KB - Virtual size: 42KB

.data Size: 80KB - Virtual size: 80KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 310KB - Virtual size: 310KB

.rdata
Size: 43KB - Virtual size: 42KB

.data
Size: 80KB - Virtual size: 80KB

.rsrc
Size: 3KB - Virtual size: 3KB