1d536f8977afc2a7a1d3843976ed50789231534e31a730193809711dea06efe0

Sharing

Copy URL Twitter E-mail

General

Target

1d536f8977afc2a7a1d3843976ed50789231534e31a730193809711dea06efe0
Size

1.9MB
MD5

6318e7f5501798f31f06a5ddbe442d01
SHA1

922842a053d3416467fc7f8a94fd966429a1614b
SHA256

1d536f8977afc2a7a1d3843976ed50789231534e31a730193809711dea06efe0
SHA512

998f54f906e1b72415aa2db950a8c171fe05f0495563813a410fd541ecc86b12609d2335783f693f79658690f44abba4a6044ae5efc2983fb32fcc637e98fba1
SSDEEP

12288:oDxhDTczaWwxlYNP6617EBHJF/FGo7TrKF6F/o76aJ4DN78:8zHJF/FGo7nKF6F/o76645

Score

N/A

Malware Config

Signatures

Files

1d536f8977afc2a7a1d3843976ed50789231534e31a730193809711dea06efe0
.exe windows x86

6c1cebc1cc18504bed655840a096b626

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
SetLastError
SetEvent
ReadFile
SetFilePointer
CreateFileA
FormatMessageA
FlushFileBuffers
VirtualQuery
GetSystemInfo
VirtualProtect
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
GetProcessHeap
SetUnhandledExceptionFilter
InitializeCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
HeapSize
UnhandledExceptionFilter
TlsAlloc
TlsFree
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCommandLineA
GetStartupInfoA
TlsGetValue
TlsSetValue
RtlUnwind
ExitProcess
HeapFree
CreateMutexA
GetLastError
GetLocaleInfoA
lstrcatA
GetProcAddress
GetVersionExA
SetThreadExecutionState
GetModuleFileNameA
GetSystemDefaultLangID
lstrlenA
GetTickCount
GetModuleHandleA
LoadLibraryA
lstrcmpA
FreeLibrary
lstrcmpiA
Sleep
SetErrorMode
lstrcpyA
GetTempPathA
GetDiskFreeSpaceExA
GetCurrentThreadId
CreateThread
ReleaseMutex
IsBadReadPtr
CloseHandle

user32

EndDialog
GetDlgItemInt
GetDlgItem
SetDlgItemInt
LoadMenuA
CreatePopupMenu
InsertMenuItemA
DestroyMenu
LoadIconA
InvalidateRect
DialogBoxParamA
RegisterClassExA
DrawMenuBar
FillRect
IsIconic
wsprintfA
GetForegroundWindow
GetWindowThreadProcessId
SetForegroundWindow
BringWindowToTop
MessageBoxA
FindWindowA
SetCursorPos
GetCursorPos
DeleteMenu
GetSystemMenu
GetDlgItemTextA
GetFocus
SetDlgItemTextA
EnumChildWindows
TrackMouseEvent
SetWindowRgn
MoveWindow
SetWindowTextA
SystemParametersInfoA
ClientToScreen
IsWindowVisible
IsWindowEnabled
ShowWindow
GetWindowLongA
SetPropA
SetWindowLongA
RemovePropA
CallWindowProcA
PostQuitMessage
GetPropA
DestroyWindow
WindowFromPoint
GetClientRect
PostMessageA
EnableWindow
RedrawWindow
PtInRect
SendMessageA
ScreenToClient
BeginPaint
SetRect
DrawTextA
OffsetRect
EndPaint
SetCapture
SetTimer
DefWindowProcA
KillTimer
GetWindowRect
SetFocus
ReleaseCapture
GetDC
ReleaseDC
LoadImageA
CreateWindowExA
LoadStringA
IsWindow
GetWindowTextA
CallNextHookEx
LoadCursorA
AttachThreadInput
SetCursor
GetSystemMetrics
GetMessageA
SetWindowsHookExA
TranslateMessage
DispatchMessageA
TrackPopupMenu

gdi32

DeleteDC
CreateFontIndirectA
GetDeviceCaps
GetStockObject
SetBkMode
CreateFontA
SetStretchBltMode
SetBkColor
SetMapMode
DeleteObject
CreateBitmap
DPtoLP
LineTo
MoveToEx
CreatePen
Rectangle
CreateSolidBrush
BitBlt
CreateCompatibleBitmap
SelectObject
GetObjectA
CreateCompatibleDC
SetTextColor
StretchBlt
GetPixel
GetMapMode
CreateRoundRectRgn
SetPixel

advapi32

RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA

comctl32

ord17

shlwapi

SHDeleteEmptyKeyA

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6c1cebc1cc18504bed655840a096b626

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

shlwapi

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 12KB - Virtual size: 26KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 12KB - Virtual size: 26KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB