470f454517d695954fa727d650748da2ff9482d278cbf046be2cc0eb9cb0c732

Sharing

Copy URL

Twitter E-mail

General

Target

470f454517d695954fa727d650748da2ff9482d278cbf046be2cc0eb9cb0c732
Size

616KB
MD5

777b4ad68b6e00e6824f2353ca1fc88c
SHA1

a7dd74813c0e0f7308b0c2d05c38a13be78dc30e
SHA256

470f454517d695954fa727d650748da2ff9482d278cbf046be2cc0eb9cb0c732
SHA512

f4a2b2be239154bcc4e509f45985a17ee2aa20a76c9e2a488bfa834f05cd1a6b22880bc133557540a2b85956f754e20b94fa014290e5cc58d577e045499af869
SSDEEP

12288:lsuTrGY6bTjymxgQ/tqcOHqn2zuNx9Ng5v:zypbnT/UcP2zevNg5

Score

N/A

Malware Config

Signatures

Files

470f454517d695954fa727d650748da2ff9482d278cbf046be2cc0eb9cb0c732
.exe windows x86

4c25c5fb673559ebbe4e68bef275b543

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

comctl32

ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Remove
ImageList_Create
CreateToolbarEx
ord17
ImageList_Add
ImageList_Draw

kernel32

InitializeCriticalSection
TlsAlloc
GetCommandLineW
GetFileAttributesA
FindFirstFileA
WritePrivateProfileSectionA
GetPrivateProfileSectionA
FindClose
FindNextFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
InterlockedExchange
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetStringTypeW
MulDiv
LCMapStringW
LCMapStringA
GetConsoleMode
GetConsoleCP
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetStdHandle
WriteFile
ExitProcess
HeapDestroy
HeapCreate
VirtualAlloc
VirtualFree
FatalAppExitA
DeleteCriticalSection
GetTimeFormatA
GetCurrentThreadId
SetLastError
TlsFree
CreateSemaphoreA
GetStartupInfoA
CreateThread
ResumeThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RaiseException
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
lstrlenW
lstrcpyA
lstrlenA
lstrcatA
GetTickCount
ReadFile
SetFilePointer
WideCharToMultiByte
GetWindowsDirectoryA
ExpandEnvironmentStringsA
GetLocaleInfoW
GetTimeZoneInformation
SetEndOfFile
GetProcessHeap
CompareStringA
SetEnvironmentVariableA
LoadLibraryA
GetProcAddress
GetLocaleInfoA
GetNumberFormatA
GetModuleFileNameA
TlsSetValue
CreateFileA
CreateToolhelp32Snapshot
Process32First
OpenProcess
LocalFree
Process32Next
GetCurrentProcess
GetLastError
CloseHandle
InterlockedIncrement
InterlockedDecrement
TlsGetValue
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetFullPathNameA
GetModuleHandleA
LocalAlloc
lstrcmpA
FormatMessageA
TerminateProcess
GetCommandLineA
SetErrorMode
LoadLibraryExA
FreeLibrary
ExitThread
WaitForSingleObject
ReleaseSemaphore
MultiByteToWideChar
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
DeleteFileA
GetPrivateProfileStringA
WriteProfileStringA
WritePrivateProfileStringA
GetProfileStringA
CreateDirectoryA
SetFileAttributesA
MoveFileA
RemoveDirectoryA
EnterCriticalSection
CreateProcessA
LeaveCriticalSection
GetFileSize
GetFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleW
GetDateFormatA
GetCurrentThread
GetVersion
CompareStringW
GetStringTypeA
FlushFileBuffers

user32

TranslateMessage
DispatchMessageA
SetMenuItemInfoA
DrawMenuBar
LoadStringA
DrawIconEx
InvalidateRgn
GetWindowTextA
ReleaseCapture
MapWindowPoints
GetDlgItemTextA
GetSysColorBrush
ChildWindowFromPoint
GetPropA
TranslateAcceleratorA
IsDialogMessageA
GetMessageA
LoadAcceleratorsA
CreateDialogParamA
RegisterClassExA
LoadImageA
RegisterWindowMessageA
DialogBoxIndirectParamA
DeferWindowPos
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
OffsetRect
UnionRect
PtInRect
BeginPaint
DrawFrameControl
EndPaint
SetPropA
GetWindowLongA
SetWindowLongA
EnableWindow
InflateRect
GetClassNameA
EndDialog
TrackPopupMenu
EnableMenuItem
DeleteMenu
GetSubMenu
InsertMenuA
SetDlgItemTextA
EnumDisplaySettingsA
FindWindowA
WaitForInputIdle
GetWindowThreadProcessId
SetForegroundWindow
FindWindowExA
CreateIconIndirect
GetIconInfo
CloseClipboard
OpenClipboard
EmptyClipboard
SetClipboardData
GetMenu
CheckMenuItem
SetWindowTextA
DialogBoxParamA
SetWindowPos
GetWindowRect
IsIconic
IsZoomed
GetDlgItem
SetTimer
GetParent
GetCursorPos
CreateWindowExA
CallWindowProcA
GetSysColor
GetClientRect
GetSystemMetrics
IntersectRect
InvalidateRect
GetFocus
GetDC
DrawTextA
ReleaseDC
MoveWindow
ShowWindow
ClientToScreen
ScreenToClient
DestroyWindow
DefWindowProcA
PostMessageA
SetFocus
LoadCursorA
SetCursor
SendMessageA
LoadIconA
DestroyIcon
MessageBoxA
PostQuitMessage

gdi32

GetDIBits
CreateDIBSection
SetMapMode
StartDocA
StartPage
EndPage
EndDoc
CreateSolidBrush
GetTextMetricsA
DeleteObject
GetStockObject
GetObjectA
CreateCompatibleDC
GetDeviceCaps
DeleteDC
CreateFontIndirectA
SetBkColor
ExtTextOutA
GetTextExtentPoint32A
SelectObject
SetTextColor
SetBkMode
GdiFlush

comdlg32

ChooseFontA
GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA
FindTextA
PrintDlgA

advapi32

RegSetKeySecurity
RegOpenKeyA
RegGetKeySecurity
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCloseKey
RegDeleteKeyA
RegEnumValueA
RegSetValueExA
RegCreateKeyExA
RegSetValueExW
RegQueryValueExA
RegLoadKeyA
RegCreateKeyA
RegUnLoadKeyA
RegDeleteValueA
RegQueryInfoKeyA
LookupAccountSidA
LookupAccountNameA
RegQueryValueA
RegEnumKeyA
DeleteService
CloseServiceHandle
FreeSid
OpenServiceA
OpenSCManagerA
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextA
EqualSid
GetTokenInformation
AllocateAndInitializeSid
SetSecurityInfo
GetAce
GetSecurityInfo
RevertToSelf
ImpersonateLoggedOnUser
RegOpenKeyExA
OpenProcessToken

shell32

SHBrowseForFolderA
ShellExecuteExA
SHGetFileInfoA
CommandLineToArgvW
ShellExecuteA
SHGetPathFromIDListA
SHGetMalloc

ole32

CoCreateInstance
CoInitialize
CoTaskMemFree
CoUninitialize

oleaut32

SysFreeString
SysStringLen
SysAllocStringByteLen
SysAllocString
SysStringByteLen
VariantInit
VariantClear
VariantChangeType
GetErrorInfo
SetErrorInfo
CreateErrorInfo

shlwapi

SHCreateStreamOnFileA
UrlUnescapeA

Sections

.text
Size: 472KB - Virtual size: 472KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c25c5fb673559ebbe4e68bef275b543

Headers

DLL Characteristics

File Characteristics

Imports

version

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 472KB - Virtual size: 472KB

.rdata Size: 87KB - Virtual size: 1.1MB

.data Size: 15KB - Virtual size: 25KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 472KB - Virtual size: 472KB

.rdata
Size: 87KB - Virtual size: 1.1MB

.data
Size: 15KB - Virtual size: 25KB

.rsrc
Size: 40KB - Virtual size: 39KB