0958b0b038532550f3f4b44ee4a9e8ae1c96d9d4aaf4a81b6614ed7e08ffeee5

Sharing

Copy URL Twitter E-mail

General

Target

0958b0b038532550f3f4b44ee4a9e8ae1c96d9d4aaf4a81b6614ed7e08ffeee5
Size

152KB
MD5

6f646a64e5e26ee716825a89534d28bb
SHA1

bb0ea7ef4408820e9a5fc9b5a8c44bd72af504d3
SHA256

0958b0b038532550f3f4b44ee4a9e8ae1c96d9d4aaf4a81b6614ed7e08ffeee5
SHA512

6ee6eaa472676da81acd69e9cca4c2777da16aa0dc842b4dbff7e04b2aafe5d681743dc8bce4e8c6cda9956fb3832eaac49a7da05a1d646e64c38fb06ab8ebde
SSDEEP

3072:uCFInHrSWeqVBNJaeREowfFtQX3BfH9bjzZoxaYI:4rSpqVJR1wjQX3VRYC

Score

N/A

Malware Config

Signatures

Files

0958b0b038532550f3f4b44ee4a9e8ae1c96d9d4aaf4a81b6614ed7e08ffeee5
.exe windows x86

c7bba50932587a2fc2533b144ab1613a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLCID
CreateFileA
CopyFileA
GetLocaleInfoA
CreateProcessA
Sleep
OpenFile
FindResourceA
FreeLibrary
WideCharToMultiByte
GetModuleFileNameA
GetModuleHandleA
GetShortPathNameA
lstrlenA
MultiByteToWideChar
lstrlenW
GetCommandLineA
GetCurrentThreadId
CreateMutexA
GetLastError
GetVersionExA
lstrcatA
lstrcpyA
LoadLibraryA
GetProcAddress
InitializeCriticalSection
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
LoadResource
SizeofResource
GetSystemDirectoryA
InterlockedIncrement
VirtualFree
IsBadCodePtr
IsBadReadPtr
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
IsBadWritePtr
VirtualAlloc
LocalFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
HeapSize
GetCurrentProcess
TerminateProcess
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
WriteFile
ExitProcess
GetVersion
GetStartupInfoA
InterlockedDecrement
CloseHandle
RaiseException
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection

user32

PostThreadMessageA
DefWindowProcA
DestroyMenu
ReleaseDC
SetTimer
SetWindowLongA
GetSubMenu
EnableMenuItem
PeekMessageA
EnableWindow
GetDlgCtrlID
EndDialog
GetDlgItem
SetWindowTextA
WinHelpA
LoadStringA
GetWindowRect
GetSystemMenu
EnumChildWindows
DialogBoxParamA
GetParent
CallWindowProcA
wsprintfA
EnumDisplaySettingsA
GetSystemMetrics
GetDC
GetWindowLongA
FindWindowA
DispatchMessageA
GetMessageA
PostMessageA
CreateWindowExA
RegisterClassA
CharNextA
RegisterWindowMessageA
PostQuitMessage
GetMenuStringA
DestroyWindow
SetForegroundWindow
DestroyIcon
KillTimer
TrackPopupMenu
GetCursorPos
SendMessageA
AppendMenuA
CreatePopupMenu
InsertMenuA

gdi32

DeleteDC
SetTextColor
BitBlt
SetBkColor
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetStockObject
GetDIBits
GetDeviceCaps
CreateDCA
DeleteObject

advapi32

AllocateAndInitializeSid
RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA
RegQueryValueExA
RegOpenKeyA
FreeSid

shell32

ShellExecuteExA
Shell_NotifyIconA

ole32

CoUninitialize
CoRegisterClassObject
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoRevokeClassObject
CoSuspendClassObjects
CLSIDFromProgID
CoCreateInstance

oleaut32

RegisterTypeLi
SysFreeString
SysAllocStringByteLen
SysStringLen
SysAllocString
SysStringByteLen
VariantClear
VarUI4FromStr
LoadTypeLi

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA

hccutils

FindResources
LoadSTRING
LoadBITMAP
LoadIMAGE
GetMyRegKey
LoadDialogString
EnumDspDev
GetHardwareKey
GetCommonRegKey
EnumDeviceByClass
IsDisplayValid
ReleaseClassDevice

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�?MJ�
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c7bba50932587a2fc2533b144ab1613a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

hccutils

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 16KB - Virtual size: 33KB

.rsrc Size: 4KB - Virtual size: 2KB

�?MJ� Size: 228KB - Virtual size: 228KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 16KB - Virtual size: 33KB

.rsrc
Size: 4KB - Virtual size: 2KB

�?MJ�
Size: 228KB - Virtual size: 228KB