2662d77eb8ac9557dc4c9d419db9827074fc5db6130ba5056026636661e8d550

Sharing

Copy URL

Twitter E-mail

General

Target

2662d77eb8ac9557dc4c9d419db9827074fc5db6130ba5056026636661e8d550
Size

324KB
MD5

0766372b557139e954f90e54cbcb64ab
SHA1

421bc17313603ccaefc3aaa27c59c8b7ecb04ed4
SHA256

2662d77eb8ac9557dc4c9d419db9827074fc5db6130ba5056026636661e8d550
SHA512

a03e24f2e5967f9a2477458b8d157ed6e6931b5069b64a237f4caf38eba0e90c7479fce46488a4a22b81e2924bdbdb5df70630b865a943935c12ecc78e324871
SSDEEP

6144:qAoqVtLV56fpLziuL/5k7kW/nvAOZMiu9Q1QyuGnP:qArtLv6fwuz5k7kqvAOZMpHGn

Score

N/A

Malware Config

Signatures

Files

2662d77eb8ac9557dc4c9d419db9827074fc5db6130ba5056026636661e8d550
.exe windows x86

bd9d3f813b859f12265826b2cd3eb092

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxW
RegisterClassW
CreateWindowExW
CallNextHookEx
PostQuitMessage
TranslateMessage
CharNextW
RegisterWindowMessageW
GetCursorPos
SendMessageW
ShowWindow
CreateMenu
DefWindowProcW
DeferWindowPos
DestroyWindow
TranslateAcceleratorW
GetSystemMenu
RegisterClassExW
KillTimer

advapi32

RegCloseKey
RegGetKeySecurity
SetSecurityDescriptorDacl
OpenProcessToken
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW
RegSetValueExW
InitializeSecurityDescriptor
RegCreateKeyExA
GetUserNameW
RegQueryValueExW
RegDeleteValueA
RegDeleteValueW
RegSetValueExA
RegQueryInfoKeyW
RegQueryValueW
RegEnumKeyExW
RegEnumValueW
RegDeleteKeyW

shell32

ShellExecuteA
DragFinish
SHGetFileInfoA
SHFileOperationA
SHGetMalloc
DragAcceptFiles
ord155

kernel32

GetConsoleOutputCP
GetCurrentProcess
CompareStringW
SetStdHandle
HeapAlloc
HeapDestroy
GetModuleHandleW
TlsAlloc
MultiByteToWideChar
GetCPInfo
GetStringTypeW
IsDebuggerPresent
VirtualQuery
TerminateProcess
GetModuleFileNameW
InterlockedDecrement
GetLocaleInfoW
FatalAppExitA
GetEnvironmentStringsW
VirtualFree
InitializeCriticalSectionAndSpinCount
CreateMutexW
SetConsoleCtrlHandler
GetCurrentThreadId
HeapFree
GetStartupInfoA
TlsSetValue
QueryPerformanceCounter
LoadLibraryA
GetStdHandle
WriteConsoleW
InterlockedExchange
CreateFileA
GetLocaleInfoA
TlsGetValue
SetLastError
GetOEMCP
GetLastError
SetFilePointer
TlsFree
GetTimeZoneInformation
UnhandledExceptionFilter
GetDateFormatA
WriteFile
GetProcAddress
CompareStringA
GetModuleFileNameA
GetStartupInfoW
GetTimeFormatA
VirtualAlloc
HeapReAlloc
Sleep
IsValidCodePage
ExitProcess
GetCurrentProcessId
SetEnvironmentVariableA
GetCommandLineW
GetACP
DeleteCriticalSection
HeapSize
EnterCriticalSection
IsValidLocale
RaiseException
WaitForSingleObject
FlushFileBuffers
InterlockedIncrement
LocalFree
LCMapStringA
FreeEnvironmentStringsW
GetModuleHandleA
WideCharToMultiByte
WriteConsoleA
LCMapStringW
RtlUnwind
GetFileType
GetConsoleCP
HeapCreate
GetSystemTimeAsFileTime
SetHandleCount
GetConsoleMode
GetStringTypeA
GetUserDefaultLCID
LeaveCriticalSection
CloseHandle
FreeLibrary
SetUnhandledExceptionFilter
GetCurrentThread
ReadFile
GetTickCount

oleaut32

LoadTypeLi

gdi32

ExtCreateRegion
SetColorAdjustment
CreatePatternBrush
PlayMetaFileRecord
CloseMetaFile
StretchDIBits
DeleteDC
GetTextExtentPoint32A
PolyDraw
OffsetRgn
SetMapperFlags
PaintRgn
GetRegionData
CreateFontIndirectA
CreateCompatibleBitmap
RestoreDC
CreateMetaFileA
SaveDC
ExtSelectClipRgn
CreateBitmap
GetTextColor
Rectangle
SetBkColor
GetBkColor
EnumMetaFile
SetBkMode
SetTextColor
GetTextMetricsA
CreateDIBPatternBrushPt
SetViewportExtEx
CreatePen
MoveToEx
PatBlt
CreatePolygonRgn
UnrealizeObject
SetBrushOrgEx
ArcTo

ole32

OleRun
CreateBindCtx
CoCreateInstance
IsAccelerator
OleRegEnumVerbs
GetClassFile
CoGetMalloc
OleGetClipboard
CoFreeUnusedLibraries
OleDestroyMenuDescriptor
OleSetContainedObject
OleCreateMenuDescriptor
OleRegGetMiscStatus
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
DoDragDrop
CoInitialize
CoDisconnectObject
OleTranslateAccelerator
CLSIDFromProgID
OleInitialize
OleLockRunning
StgIsStorageILockBytes
CoLockObjectExternal
CreateItemMoniker
StgCreateDocfileOnILockBytes

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd9d3f813b859f12265826b2cd3eb092

Headers

File Characteristics

Imports

user32

advapi32

shell32

kernel32

oleaut32

gdi32

ole32

Sections

.text Size: 104KB - Virtual size: 102KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 60KB - Virtual size: 77KB

.rsrc Size: 60KB - Virtual size: 58KB

.text
Size: 104KB - Virtual size: 102KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 60KB - Virtual size: 77KB

.rsrc
Size: 60KB - Virtual size: 58KB