2c9b16d845d42ad0c0280753ac68c8ad6d2e8f9043ca8d2df9d76e17de0e30ee

Sharing

Copy URL Twitter E-mail

General

Target

2c9b16d845d42ad0c0280753ac68c8ad6d2e8f9043ca8d2df9d76e17de0e30ee
Size

164KB
MD5

729303872a24c6eaf0fed41a041f3510
SHA1

ca3565ac043f6dd5b9e0d69270819b4aa029ac42
SHA256

2c9b16d845d42ad0c0280753ac68c8ad6d2e8f9043ca8d2df9d76e17de0e30ee
SHA512

aa6ffc88bd7444fe84512fd7ce4ad34d7256aef411ba6b393fd700c87d365e7351b49d81e26765a1802d2f59a6acbcc326eacfc345b05c187da088f7e6bff114
SSDEEP

3072:oQmEPCWn/KT/UMxWXkltjQQlbOncozoI7h+aS1GF:yWn/KTUMxWUltjQ/lzo0naGF

Score

N/A

Malware Config

Signatures

Files

2c9b16d845d42ad0c0280753ac68c8ad6d2e8f9043ca8d2df9d76e17de0e30ee
.exe windows x86

be036e9e799028fa84681a6bd5d685e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteKeyW
StrToIntW

imm32

ImmAssociateContext

comctl32

ord17

kernel32

LoadResource
FindResourceExW
GetLastError
CreateMutexW
SetLastError
CloseHandle
WaitForSingleObject
OpenMutexW
GetACP
ReadFile
FlushFileBuffers
HeapSize
GetCPInfo
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
SetStdHandle
HeapReAlloc
LCMapStringW
LCMapStringA
GetSystemInfo
VirtualAlloc
VirtualProtect
WideCharToMultiByte
HeapAlloc
GetCalendarInfoW
VirtualQuery
InterlockedExchange
RtlUnwind
LoadLibraryA
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
LockResource
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
WriteFile
GetCurrentProcess
TerminateProcess
GetProcAddress
MultiByteToWideChar
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetVersionExA
GetStartupInfoW
GetModuleHandleA
ExitProcess
GetTimeFormatW
SetTimeZoneInformation
CreateProcessW
GetModuleFileNameW
lstrcmpiW
lstrcmpW
CompareStringW
GetUserDefaultLCID
GetProfileIntW
GetProfileStringW
SetLocalTime
FormatMessageW
MulDiv
GetTimeZoneInformation
TzSpecificLocalTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalAlloc
LocalFree
GetUserDefaultLangID
GetLocalTime
GetDateFormatW
lstrcpynW
lstrlenW
SystemTimeToFileTime
FileTimeToSystemTime
GetLocaleInfoW
GetEnvironmentStrings
SizeofResource
SetFilePointer
GetOEMCP

user32

RegisterWindowMessageW
GetMessageW
IsDialogMessageW
TranslateMessage
DispatchMessageW
CreateDialogParamW
PostQuitMessage
SetForegroundWindow
DestroyIcon
DestroyMenu
DialogBoxParamW
LoadIconW
LoadMenuW
GetSubMenu
LoadImageW
PtInRect
IsWindowVisible
TrackPopupMenu
GetMenuState
DestroyWindow
CheckMenuItem
GetDlgItemTextW
CallWindowProcW
EndDialog
SetCursor
GetWindowTextW
SetWindowTextW
MessageBoxW
CreateWindowExW
SetWindowPos
ShowWindow
IsWindowEnabled
DrawIconEx
GetWindowTextLengthW
EnableWindow
SetDlgItemTextW
GetFocus
SendDlgItemMessageW
GetDlgItem
GetWindowRect
ScreenToClient
MoveWindow
LoadStringW
GetDlgCtrlID
LoadCursorW
GetDC
ReleaseDC
InflateRect
OffsetRect
SetRect
KillTimer
SetTimer
GetClassInfoW
RegisterClassW
SetWindowLongW
DefWindowProcW
SetFocus
NotifyWinEvent
BeginPaint
GetSysColorBrush
FillRect
GetSysColor
DrawTextW
DrawFocusRect
CharUpperW
EndPaint
GetClientRect
InvalidateRect
GetWindowLongW
GetParent
SendMessageW
GetCursorPos

gdi32

GetStockObject
SetROP2
Polygon
SetBkMode
ExtTextOutW
Rectangle
GetCharWidth32W
GetTextExtentPointW
GetTextColor
SetLayout
TextOutW
GetBkColor
SetTextColor
SetBkColor
DeleteObject
LineTo
GetDeviceCaps
MoveToEx
CreatePen
CreateSolidBrush
SelectObject

advapi32

RegEnumKeyW
RegDeleteValueW
RegQueryValueExW
RegOpenKeyW
RegCreateKeyW
RegCloseKey
RegSetValueExW

shell32

Shell_NotifyIconW

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be036e9e799028fa84681a6bd5d685e2

Headers

File Characteristics

Imports

shlwapi

imm32

comctl32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 60KB - Virtual size: 59KB