f2f61f42c1d2005499dd27e8261cfc49bece06c174f100047996f565cf64927d

Sharing

Copy URL Twitter E-mail

General

Target

f2f61f42c1d2005499dd27e8261cfc49bece06c174f100047996f565cf64927d
Size

776KB
MD5

0085cdf655442efc10ff4570fdc03c33
SHA1

e7392848091c2d9d2bd48b6673337529dc4b5290
SHA256

f2f61f42c1d2005499dd27e8261cfc49bece06c174f100047996f565cf64927d
SHA512

079168fb8d868d78d7235c8aee13f7aa868bc2dfea1f74c440889ca86fd14ca13a4d390bc3eff17cc6e32d89eb343ef9c3aaf21c244b79249e5508d6e7f9a069
SSDEEP

24576:x6d806yRlrOOs87mfARhyrSbPo0nCwb+2M0:i806yTSS7mICrUl

Score

N/A

Malware Config

Signatures

Files

f2f61f42c1d2005499dd27e8261cfc49bece06c174f100047996f565cf64927d
.exe windows x86

c8a8c690272b98e12cf30e67d9672b12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventA
CreateMutexA
CreateEventA
lstrcpyA
lstrlenA
IsBadReadPtr
lstrcatA
GetModuleFileNameA
WinExec
lstrcmpiA
GetPrivateProfileIntA
ReleaseMutex
CreateProcessA
WaitForSingleObject
SetEvent
CloseHandle
GetSystemInfo
GetCommandLineA
OpenFile
WriteFile
FlushFileBuffers
SetStdHandle
SetFilePointer
IsBadCodePtr
GetStringTypeW
LoadLibraryA
SetUnhandledExceptionFilter
GetProcAddress
GetStringTypeA
GetACP
GetCPInfo
GetOEMCP
VirtualAlloc
VirtualFree
IsBadWritePtr
HeapCreate
GetFileType
OpenProcess
GetCurrentProcessId
GetShortPathNameA
GetFileAttributesA
CreateDirectoryA
DeleteFileA
_llseek
CreateFileA
GetLastError
GetFileSize
SetFileAttributesA
GetWindowsDirectoryA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GetPrivateProfileSectionA
GlobalMemoryStatus
GetPrivateProfileStringA
GetTimeFormatA
GetDateFormatA
GetLocalTime
GetDiskFreeSpaceA
GetVolumeInformationA
GetDriveTypeA
SetErrorMode
FreeResource
LockResource
LoadResource
FindResourceA
SizeofResource
_lclose
_lread
HeapAlloc
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetVersionExA
ExitProcess
TerminateProcess
GetCurrentProcess
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
RtlUnwind
GetModuleHandleA
GetStartupInfoA
HeapDestroy
GetVersion
HeapFree
SetHandleCount
GetStdHandle
HeapReAlloc
RaiseException
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW

user32

SetCapture
EndDialog
GetDC
SetWindowLongA
ReleaseDC
GetClientRect
PostQuitMessage
EndPaint
InvalidateRect
BeginPaint
UpdateWindow
LoadBitmapA
GetDlgItem
RedrawWindow
GetWindowLongA
GetDlgCtrlID
PtInRect
GetWindowTextA
SetWindowTextA
PostMessageA
MoveWindow
GetSystemMetrics
GetWindowRect
EnumWindows
DefWindowProcA
DestroyWindow
GetTopWindow
SendMessageA
GetWindow
GetCapture
ReleaseCapture
DrawTextA
SetTimer
MessageBoxA
DialogBoxParamA
wsprintfA
LoadCursorA
LoadIconA
RegisterClassA
CreateWindowExA
ShowWindow
GetMessageA
TranslateMessage
DispatchMessageA
KillTimer
MessageBeep
SetForegroundWindow
LoadStringA

gdi32

DeleteObject
GetTextFaceA
SelectObject
GetStockObject
SetBkMode
GetObjectA
CreateFontA
SetTextColor
CreateCompatibleBitmap
DeleteDC
BitBlt
RealizePalette
SelectPalette
CreateCompatibleDC
CreatePalette
CreateHalftonePalette
CreateDIBitmap
RestoreDC
SaveDC

advapi32

RegDeleteValueA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
SetSecurityDescriptorOwner
RegOpenKeyA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
GetUserNameA
RegGetKeySecurity
RegSetKeySecurity
AllocateAndInitializeSid

shell32

FindExecutableA
ShellExecuteA

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SPLASH
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 652KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8a8c690272b98e12cf30e67d9672b12

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 96KB - Virtual size: 92KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 35KB

SPLASH Size: 4KB - Virtual size: 4B

.rsrc Size: 652KB - Virtual size: 2.4MB

.text
Size: 96KB - Virtual size: 92KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 35KB

SPLASH
Size: 4KB - Virtual size: 4B

.rsrc
Size: 652KB - Virtual size: 2.4MB