5ac3e7b665a1f604d5df08b2a59896bd7b90aaf1e8046fa48cc3ac679d9a9917

Sharing

Copy URL Twitter E-mail

General

Target

5ac3e7b665a1f604d5df08b2a59896bd7b90aaf1e8046fa48cc3ac679d9a9917
Size

301KB
MD5

392b6ef4c213f865c591f64d35f9a8c0
SHA1

7f4dac4b7e49606fc92575aee51b20d01fc84be6
SHA256

5ac3e7b665a1f604d5df08b2a59896bd7b90aaf1e8046fa48cc3ac679d9a9917
SHA512

9c9af2ed30fef317b61dd65ec1a638d826cc92364753d3be7edb0bda7bd1f648178e8277752dd287dd61e0c4ad5a8cb12ab78f05eba89a2e4f5684c26d7def02
SSDEEP

6144:PWPGXqNcZm4MS0jFwMX3TRucXiPRjmG4ojZHWztMf/Fmd+QJDsUkoAWRO+t:nXqqTMxj33NucucG4ojZHGMftmdXFsU/

Score

N/A

Malware Config

Signatures

Files

5ac3e7b665a1f604d5df08b2a59896bd7b90aaf1e8046fa48cc3ac679d9a9917
.exe windows x86

62251b6930b0054030fa367231a54bea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStructW
CommConfigDialogW
WriteFileGather
GetModuleHandleA
OpenEventA
VirtualUnlock
SetLocalTime
MoveFileExW
GetTempPathA
GetLocalTime
CreateFileMappingA
GetThreadTimes
ReadConsoleInputA
GetConsoleCP
HeapReAlloc
GenerateConsoleCtrlEvent
GetConsoleMode
LocalFlags
WriteTapemark
LockFile
GetVersionExA
GetProcAddress
BuildCommDCBAndTimeoutsA
GetStringTypeA
SetConsoleWindowInfo
FreeEnvironmentStringsA
GetNamedPipeHandleStateW
GetLargestConsoleWindowSize
FindResourceA
ReadProcessMemory
SetTapePosition
FindCloseChangeNotification
GetShortPathNameW
HeapValidate
GlobalSize
GetStartupInfoA
lstrlenA
FindFirstFileExW
OpenSemaphoreW
GetTempFileNameW
GlobalReAlloc
OutputDebugStringA
GetDefaultCommConfigA
FindFirstChangeNotificationA
GetHandleInformation
SetConsoleScreenBufferSize
EnumSystemCodePagesA
GetStringTypeW
HeapCreate
ResetWriteWatch
VerLanguageNameW
MoveFileExA
SetThreadExecutionState
Thread32First
GetCommandLineW
SetCommState
LocalFree
GetFileType
ClearCommError
GetShortPathNameA
CreateFileMappingW
QueryDosDeviceW
ReadConsoleA

user32

CharLowerW
IsDialogMessageW
MsgWaitForMultipleObjectsEx
FindWindowExW
GetClientRect
RemoveMenu
CharLowerBuffA
GetLastActivePopup
DefFrameProcW
wvsprintfA
GetNextDlgGroupItem
wsprintfW
GetKeyNameTextW
CreateCaret
DrawStateA
InsertMenuA
GetDCEx
UpdateWindow
FillRect
GetMenuState
CallMsgFilterW
IsClipboardFormatAvailable
EnumPropsExW
RegisterClassExA
ScreenToClient
WindowFromDC
PostThreadMessageW
ChildWindowFromPointEx
EnumChildWindows
TranslateMessage
DialogBoxParamW
SetDebugErrorLevel
AttachThreadInput
DrawTextW
GetClassInfoExA
GetKeyboardLayoutNameA
ClipCursor
GetDoubleClickTime

gdi32

SetICMMode
GetMetaFileA
GetWorldTransform
OffsetViewportOrgEx
GetCharacterPlacementA
PlayEnhMetaFileRecord
CreateSolidBrush
ResetDCW
EnumEnhMetaFile
GetObjectA
SetEnhMetaFileBits
GetTextCharacterExtra
CloseEnhMetaFile
GetTextFaceW
GetAspectRatioFilterEx
DeleteEnhMetaFile
CreateFontW
GetBkMode
CreateICA
GetClipBox
RectInRegion
CreateHatchBrush
Arc
PatBlt
GetCurrentPositionEx

comdlg32

ChooseColorA
PrintDlgW
ReplaceTextA

advapi32

RegisterServiceCtrlHandlerW
BuildImpersonateExplicitAccessWithNameW
GetSidSubAuthority
CryptGetDefaultProviderA
RegSetValueExW
MakeSelfRelativeSD
QueryServiceConfigA
CryptVerifySignatureA
GetMultipleTrusteeOperationA
OpenEventLogA
EnumServicesStatusW
OpenServiceA
LogonUserA
LogonUserW
GetEffectiveRightsFromAclW
RegEnumValueW
DuplicateToken
StartServiceW
CryptSetKeyParam
CryptDecrypt
InitializeSecurityDescriptor
RegReplaceKeyA
SetAclInformation
RegDeleteValueA
DeleteAce
RegDeleteKeyW
AbortSystemShutdownA
RegSetValueA
IsTextUnicode
ImpersonateSelf
CryptSignHashA
QueryServiceLockStatusA

shell32

SHGetPathFromIDListA
SHGetDataFromIDListA
DragQueryPoint
Shell_NotifyIconA
SHGetFileInfoW
SHGetSpecialFolderPathA

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3

Sections

.text
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62251b6930b0054030fa367231a54bea

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 276KB - Virtual size: 276KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 18KB - Virtual size: 17KB

.text
Size: 276KB - Virtual size: 276KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 18KB - Virtual size: 17KB