fdd0bfed69d02a5136dc74fba27dcc9e7385bd441888ff3cc52fb17c649afca2

Sharing

Copy URL Twitter E-mail

General

Target

fdd0bfed69d02a5136dc74fba27dcc9e7385bd441888ff3cc52fb17c649afca2
Size

403KB
MD5

6552cafb7b348f2f468c65e6d4928cf7
SHA1

f60238a3f56ac19506b083e95f228a05e2ada413
SHA256

fdd0bfed69d02a5136dc74fba27dcc9e7385bd441888ff3cc52fb17c649afca2
SHA512

0a9979c7f43df45ab4eebbddd8156754dad4f83af7263608e1562a4c354d6d494490641b3caebea961997a9405177142442d5bace1b13e042679f891da778f7d
SSDEEP

6144:2KZu9u1Gy09Q0vRMOkCXE4aS+FQAi82WIr5IhKu2/WvD5ryTG80:Hu9u1Gn9tvR9U4aS+F/hg1ui8rEb0

Score

N/A

Malware Config

Signatures

Files

fdd0bfed69d02a5136dc74fba27dcc9e7385bd441888ff3cc52fb17c649afca2
.exe windows x86

aed9c18154a3d337f1274904a5fd33b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FlushFileBuffers
GetConsoleMode
GetConsoleCP
ExitProcess
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetProcAddress
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
FreeEnvironmentStringsW
GetOEMCP
GetACP
IsProcessorFeaturePresent
ReadFile
MultiByteToWideChar
LCMapStringW
WideCharToMultiByte
GetStartupInfoW
HeapSetInformation
GetCommandLineA
RtlUnwind
RaiseException
HeapFree
DecodePointer
EncodePointer
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
Sleep
InterlockedDecrement
InterlockedIncrement
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
GetLocaleInfoW
HeapReAlloc
HeapSize
GetUserDefaultLCID
GetLocaleInfoA
SetFilePointer
GetCPInfo
GetModuleFileNameW
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
SetStdHandle
CreateFileW
SetEndOfFile
GetLastError
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetTickCount
SetConsoleTitleA
HeapCreate
FreeLibrary
GetFileAttributesW
GlobalAlloc
GlobalFree
LoadLibraryW
lstrlenA
GlobalAddAtomA
LoadLibraryA
GlobalDeleteAtom
GlobalLock
GlobalGetAtomNameA
GlobalUnlock
CreateFileA
WriteFile
CloseHandle
GetModuleFileNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
HeapAlloc
GetModuleHandleA
IsValidCodePage
GetProcessHeap

user32

SendMessageA
SetWindowTextA
GetDC
GetWindowRect
BeginPaint
EndPaint
DestroyWindow
DefWindowProcA
SetDlgItemTextA
LoadCursorA
LoadIconA
CopyImage
GetIconInfo
LoadImageA
DeleteMenu
GetDesktopWindow
EnumDesktopsA
InvalidateRect
LoadStringA
CheckRadioButton
SetFocus
MoveWindow
LoadBitmapA
DialogBoxParamA
GetMonitorInfoA
MonitorFromWindow
SetDlgItemInt
GetWindowDC
PostMessageA
FreeDDElParam
UnpackDDElParam
PackDDElParam
DrawFocusRect
GetParent
HideCaret
ReleaseDC
GetWindow
GetClassNameA
GetWindowTextA
SendDlgItemMessageA
GetDlgItem
EnableWindow
CheckDlgButton
GetClientRect
DrawIconEx
EmptyClipboard
SetClipboardData
CloseClipboard
EndDialog
wsprintfA
FindWindowExA
GetSystemMenu
ScreenToClient
SetRect
FillRect
IsDlgButtonChecked
RegisterClassExA
MessageBoxA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics
DestroyIcon
PostQuitMessage
SetWindowPos
GetDlgCtrlID
GetWindowTextLengthA
GetDlgItemTextA
CreateWindowExW
GetWindowLongA
CopyRect
GetCursorPos
PtInRect
InflateRect
OffsetRect
DrawFrameControl
DrawTextA

gdi32

SetBkMode
SetBkColor
GetMapMode
SetMapMode
DPtoLP
BitBlt
CreateCompatibleDC
CreateDIBSection
Rectangle
CreateHatchBrush
GetTextMetricsA
SelectClipRgn
CombineRgn
FrameRgn
GetCharWidth32A
GetObjectA
DeleteObject
GetStockObject
SetTextColor
SelectObject
CreateFontA
CreateSolidBrush
ExcludeClipRect
PatBlt
CreateEllipticRgn
CreateCompatibleBitmap
Ellipse
DeleteDC

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextW

advapi32

RegEnumKeyExA

shell32

SHGetFileInfoA
ExtractIconExA
DragQueryFileA

oleaut32

OleLoadPicture

iphlpapi

IcmpCloseHandle
IcmpCreateFile

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
InitCommonControlsEx
ord17
CreateToolbarEx
ImageList_Add
ord410
ImageList_Create

gdiplus

GdipCreateFromHWND
GdipDisposeImage
GdipLoadImageFromFile
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCloneImage

winhttp

WinHttpOpen
WinHttpConnect
WinHttpOpenRequest
WinHttpSendRequest
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpQueryAuthSchemes
WinHttpCloseHandle
WinHttpSetCredentials

uxtheme

OpenThemeData
DrawThemeBackground
CloseThemeData

powrprof

CanUserWritePwrScheme
DeletePwrScheme

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.deta
Size: 221KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bave
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aed9c18154a3d337f1274904a5fd33b9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

iphlpapi

comctl32

gdiplus

winhttp

uxtheme

powrprof

Sections

.text Size: 105KB - Virtual size: 105KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 5KB - Virtual size: 13KB

.deta Size: 221KB - Virtual size: 221KB

.bave Size: 3KB - Virtual size: 2KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 105KB - Virtual size: 105KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 5KB - Virtual size: 13KB

.deta
Size: 221KB - Virtual size: 221KB

.bave
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 11KB - Virtual size: 10KB