f0852ee20fa64ec0039190d6486b98ea313121d9cdebbbe3aa9e42351a7962d2

Sharing

Copy URL Twitter E-mail

General

Target

f0852ee20fa64ec0039190d6486b98ea313121d9cdebbbe3aa9e42351a7962d2
Size

494KB
MD5

755bff035855d4660188fe7bd11a38b0
SHA1

2d95da2a6ebab0448428d03879c64367aba90cad
SHA256

f0852ee20fa64ec0039190d6486b98ea313121d9cdebbbe3aa9e42351a7962d2
SHA512

2aeb22b796662544b6e91ce70da55fa8295e88a8876610221a2323343e8dc734796c4125785bbe242efd6bf519aa02ab39e0161a20ff3d5a82e83c8b04b6d026
SSDEEP

12288:sHJgQnLKHL1HrQ7r27qqDNOL8Qo7baAw9Q:sHS1xHs7S2sOL8Qu3w9Q

Score

N/A

Malware Config

Signatures

Files

f0852ee20fa64ec0039190d6486b98ea313121d9cdebbbe3aa9e42351a7962d2
.exe windows x86

502c40a48d49a5d1f8f0ed99c8250fbb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetDlgItemInt
SystemParametersInfoW
EndDialog
SetDlgItemTextW
LoadImageW
RegisterWindowMessageW
wsprintfW
SetWindowLongW
GetParent
GetDlgItemTextW
CharPrevW
EnableWindow
LoadIconW
SetWindowPos
SetWindowTextW
MessageBoxW
CharNextW
WinHelpW
ExitWindowsEx
FindWindowW
GetDlgItem
RegisterDeviceNotificationW
SetFocus
ShowWindow
LoadStringW
DestroyWindow
UnregisterDeviceNotification
CheckRadioButton
GetDlgItemInt
SendDlgItemMessageW
IsDlgButtonChecked
DialogBoxParamW
InvalidateRect
SendMessageW
BringWindowToTop
SetTimer
KillTimer
GetWindowLongW
GetWindowTextW
CheckDlgButton
CallWindowProcW
GetIconInfo

msvcrt

_itow
wcscmp
wcscat
wcscpy
_wcsicmp
_except_handler3
wcschr
wcslen
swscanf

setupapi

CM_Get_Hardware_Profile_Info_ExW
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsW
SetupDiChangeState
SetupDiGetDeviceInstallParamsW
CM_Get_HW_Prof_Flags_ExW
SetupDiGetClassDevsExW
SetupDiSetDeviceInstallParamsW
SetupDiDeleteDeviceInfo
SetupDiGetDeviceRegistryPropertyW
CM_Get_Device_ID_ExW
SetupDiDestroyDeviceInfoList

advapi32

UnlockServiceDatabase
RegDeleteKeyW
RegCloseKey
RegEnumValueW
GetTokenInformation
OpenServiceW
AdjustTokenPrivileges
ControlService
LockServiceDatabase
RegEnumKeyExW
OpenProcessToken
RegSetValueExW
OpenSCManagerW
ChangeServiceConfigW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
CloseServiceHandle
StartServiceW
QueryServiceStatus

kernel32

GetCurrentProcessId
GetVersionExW
lstrcpyW
GetWindowsDirectoryW
GetModuleFileNameW
GetSystemDefaultLangID
lstrlenW
GetLocaleInfoW
LocalFree
FreeLibrary
CloseHandle
GetSystemDirectoryW
SetLastError
lstrcmpiW
ExpandEnvironmentStringsW
GetUserDefaultLCID
GetSystemInfo
GetLastError
GetDiskFreeSpaceW
GetCurrentProcess
LocalAlloc
GetProcAddress
GlobalMemoryStatusEx
LoadLibraryA
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
lstrcatW
QueryPerformanceCounter
FormatMessageW
lstrcpynW
GetTickCount

gdi32

GetObjectW
DeleteObject

ntdll

NtPowerInformation
RtlNtStatusToDosError

ole32

CoUninitialize
CoCreateInstance
CoInitialize
CoTaskMemFree

shell32

ShellExecuteW

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 431KB - Virtual size: 431KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

502c40a48d49a5d1f8f0ed99c8250fbb

Headers

File Characteristics

Imports

user32

msvcrt

setupapi

advapi32

kernel32

gdi32

ntdll

ole32

shell32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 10KB - Virtual size: 9KB

.rsrc Size: 431KB - Virtual size: 431KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 431KB - Virtual size: 431KB