768b79f8cd7039e8bcf6e0ebb27884a5f94d5b0015f7e340c5d927fbd4e45777

Sharing

Copy URL

Twitter E-mail

General

Target

768b79f8cd7039e8bcf6e0ebb27884a5f94d5b0015f7e340c5d927fbd4e45777
Size

331KB
MD5

69d30f87db01e001c918ca12d4278910
SHA1

919ecffc04c76030e396bcbbec1c9a0233736c54
SHA256

768b79f8cd7039e8bcf6e0ebb27884a5f94d5b0015f7e340c5d927fbd4e45777
SHA512

4f96f1785ca231454a666e29d85efd640e46319c29cf98092c25259ba250ec37f54bb296625a22cc4e4045bde5015e0bc290adf013a6c032d9dd59f93e631aba
SSDEEP

6144:OXXD/iX+RWwAOAr77VIVNB4zCV2xBpZB4zCVK:OGXAWwmr77iV7+jBt+f

Score

N/A

Malware Config

Signatures

Files

768b79f8cd7039e8bcf6e0ebb27884a5f94d5b0015f7e340c5d927fbd4e45777
.exe windows x86

b4c7f4c5325ef4c9cf09713ca6b91718

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromPoint
WinHelpA
WaitMessage
UpdateWindow
UnregisterClassA
UnhookWindowsHookEx
TranslateMessage
TranslateMDISysAccel
TrackPopupMenu
SystemParametersInfoA
ShowWindow
ShowScrollBar
ShowOwnedPopups
ShowCursor
SetWindowsHookExA
SetWindowPos
SetWindowPlacement
SetWindowLongA
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropA
SetMenuItemInfoA
SetMenu
SetForegroundWindow
SetFocus
SetCursor
SetClassLongA
SetCapture
SetActiveWindow
SendMessageA
ScrollWindow
ScreenToClient
RemovePropA
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageA
RegisterClipboardFormatA
RegisterClassA
RedrawWindow
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextA
GetIconInfo
GetForegroundWindow
GetFocus
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardData
GetClientRect
GetClassNameA
GetClassInfoA
GetCapture
GetActiveWindow
FrameRect
FindWindowA
FillRect
EqualRect
EnumWindows
EnumThreadWindows
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
DrawTextA
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawEdge
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcA
DefMDIChildProcA
DefFrameProcA
CreateWindowExA
CreatePopupMenu
CreateMenu
CreateIcon
ClientToScreen
CheckMenuItem
CallWindowProcA
CallNextHookEx
BeginPaint
CharLowerBuffA
CharLowerA
AdjustWindowRectEx
ActivateKeyboardLayout
GetKeyboardType
LoadStringA
MessageBoxA
CharNextA
IsWindowVisible
IsWindowUnicode
IsZoomed
TabbedTextOutA
IsHungAppWindow
CheckRadioButton

shell32

ShellExecuteExW
SHGetDesktopFolder
ShellExecuteW
SHGetMalloc

advapi32

RegEnumValueW
QueryServiceStatus
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RevertToSelf
RegQueryValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegEnumKeyExA
RegEnumKeyW
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegDeleteKeyW
RegDeleteValueW
OpenSCManagerW

gdi32

SetTextAlign
CreateBrushIndirect

kernel32

InterlockedIncrement
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
FlushFileBuffers
GetConsoleMode
GetConsoleCP
IsDebuggerPresent
SetHandleCount
GetModuleFileNameA
WriteFile
GetProcAddress
GetModuleHandleW
HeapCreate
VirtualAlloc
VirtualFree
DeleteCriticalSection
GetStartupInfoA
GetCommandLineA
LeaveCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
LocalAlloc
GetModuleHandleA
GetCPInfo
GetOEMCP
IsValidCodePage
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
ReadFile
WaitForMultipleObjects
ResetEvent
SetEvent
CreateDirectoryW
RemoveDirectoryW
FindClose
FindNextFileW
FindFirstFileW
FileTimeToSystemTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetCurrentThreadId
InitializeCriticalSection
lstrlenA
GetLastError
lstrcpynW
lstrlenW
GetFullPathNameW
GetFileAttributesW
SetLastError
WideCharToMultiByte
MultiByteToWideChar
Sleep
TerminateThread
CreateMutexW
GetCurrentProcess
GetExitCodeProcess
FindResourceW
LoadResource
SizeofResource
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentProcessId
GetTickCount
WaitForSingleObject
SwitchToThread
GlobalFindAtomW
GetVolumeInformationW
LockFile
UnlockFile
GetThreadLocale
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
GlobalFlags
CompareStringW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetFileAttributesExW
GetCommandLineW
HeapFree
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
LoadLibraryA
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetLocaleInfoA
CreateFileA
CloseHandle
LCMapStringA
GetStringTypeA
GetStringTypeW
CompareStringA
SetEnvironmentVariableA
GetCurrentThread
GlobalLock
GetOverlappedResult
EnumResourceNamesW
CreateSemaphoreW
LCMapStringW
LockResource
PeekNamedPipe
HeapReAlloc
RaiseException
ExitProcess
RtlUnwind
IsProcessorFeaturePresent
GetACP
GetModuleHandleExW
HeapSize
VirtualProtect
VirtualQuery
GetStdHandle
GetProcessHeap
FormatMessageW
HeapAlloc
GlobalAlloc
GlobalUnlock
GlobalFree
MulDiv
GetFileType

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4c7f4c5325ef4c9cf09713ca6b91718

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

advapi32

gdi32

kernel32

Sections

.text Size: 105KB - Virtual size: 105KB

.rdata Size: 109KB - Virtual size: 108KB

.data Size: 16KB - Virtual size: 39KB

.rsrc Size: 100KB - Virtual size: 99KB

.text
Size: 105KB - Virtual size: 105KB

.rdata
Size: 109KB - Virtual size: 108KB

.data
Size: 16KB - Virtual size: 39KB

.rsrc
Size: 100KB - Virtual size: 99KB