acef305928ee41152bf4315010ffcdd606f0a78d5536134bae946c2d013a5967

Sharing

Copy URL

Twitter E-mail

General

Target

acef305928ee41152bf4315010ffcdd606f0a78d5536134bae946c2d013a5967
Size

740KB
MD5

095e403b18b278a083330cad5cd52176
SHA1

287a1dcc4e15d701a0e1f860dfc49a4dd3789a37
SHA256

acef305928ee41152bf4315010ffcdd606f0a78d5536134bae946c2d013a5967
SHA512

4cd06541f8922ecb5177efa4fcb3413d6976c299177f2057dcb5af46a1df212843b8efa7e6b06b4acc7bd9e8f3bbd7a53ed24123aa94d4c93e7ef2a1e2217c3f
SSDEEP

12288:9QM7vEAK9MnuO9qOEveVTSc9fdmqgEkuGcKq1Ulnp2sT0b+rx:9QM7RKGnuHOEGRSk1mFJuETzrx

Score

N/A

Malware Config

Signatures

Files

acef305928ee41152bf4315010ffcdd606f0a78d5536134bae946c2d013a5967
.exe windows x86

9e87d7219effb728f1baa9a7484f9a17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoLockObjectExternal
CLSIDFromString
CoDisconnectObject
OleDuplicateData
CoRegisterClassObject
CLSIDFromProgID
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleRun
OleSave
OleLockRunning
CreateBindCtx
OleGetClipboard
OleRegGetUserType
OleCreateFromFile
WriteClassStm
CoGetClassObject
StgCreateDocfile
OleSetContainedObject
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
OleDestroyMenuDescriptor
OleGetIconOfClass
CoFreeUnusedLibraries
CoTaskMemFree
RegisterDragDrop
OleCreateMenuDescriptor
CoCreateInstance
OleSetMenuDescriptor
StringFromGUID2
CoGetMalloc
RevokeDragDrop
IsAccelerator
OleCreateLinkToFile
OleUninitialize
OleInitialize
OleCreateFromData
DoDragDrop
CoRevokeClassObject
OleCreateLinkFromData
OleCreate
OleTranslateAccelerator
CreateDataAdviseHolder
ReleaseStgMedium

advapi32

RegSetValueExA
RegQueryValueExW
RegOpenKeyW
RegQueryValueW
RegCloseKey
RegEnumValueW
RegSetValueExW
RegOpenKeyExA
RegDeleteValueW

shell32

SHGetDesktopFolder
DragQueryFileA
ord155
SHGetSpecialFolderPathA

kernel32

GetUserDefaultLCID
GetStringTypeExA
InterlockedDecrement
GetCurrentProcess
IsDebuggerPresent
GetConsoleMode
GetSystemTime
ExitThread
GetLogicalDrives
HeapReAlloc
MapViewOfFile
VirtualAlloc
SetThreadPriority
GetVolumeInformationA
FileTimeToSystemTime
SetErrorMode
SetEvent
TlsSetValue
CloseHandle
Sleep
InitializeCriticalSection
VirtualProtect
lstrcmpA
CreateThread
GetCurrentThread
SuspendThread
CreateMutexA
CreateDirectoryA
GlobalHandle
LeaveCriticalSection
GetCommandLineA
EnumSystemLocalesA
lstrcpyA
GlobalFindAtomA
GetTickCount
HeapCreate
GetStringTypeA
GetStdHandle
GlobalLock
HeapDestroy
WriteFile
GetSystemTimeAsFileTime
CreateEventA
SetEnvironmentVariableA
GetVersionExA
GetStartupInfoA
FatalAppExitA
LoadLibraryA
VirtualFree
GetFileSize
GetTempPathA
ReadFile
CreateFileMappingA
GlobalGetAtomNameA
GetTimeFormatA
GetProcAddress
WideCharToMultiByte
FormatMessageA
GetCurrentProcessId
CompareStringA
MultiByteToWideChar
GetLocaleInfoW
GetModuleFileNameA
IsValidCodePage
LoadResource
CompareStringW
GlobalReAlloc
WaitForSingleObject
RaiseException
FindClose
HeapSize
GetLastError
lstrcmpiA
CreateFileA
GetFileType
SetEndOfFile
WriteConsoleA
GetOEMCP
RtlUnwind
SetLastError
GetCPInfo
DeleteCriticalSection
GetFileAttributesA
GetConsoleCP
UnhandledExceptionFilter
TerminateProcess
SystemTimeToFileTime
SetConsoleCtrlHandler
GetLocaleInfoA
LocalFileTimeToFileTime
GetCurrentThreadId
EnterCriticalSection
GetModuleHandleA
FlushFileBuffers
GetEnvironmentStrings
GetCurrentDirectoryA
TlsAlloc
GetDriveTypeA
GetProcessHeap
GetACP
GetFileTime
LCMapStringW
TlsFree
ExitProcess
lstrcpynA
FreeEnvironmentStringsA
GetTimeZoneInformation
LCMapStringA
FileTimeToLocalFileTime
SetStdHandle
GetStringTypeW
InterlockedExchange
HeapFree
VirtualQuery
FreeLibrary
FindResourceA
FindResourceExA
DeleteFileA
GlobalUnlock
TlsGetValue
IsValidLocale
GetDateFormatA
WriteConsoleW
LockResource
DuplicateHandle
FindFirstFileA
QueryPerformanceCounter
GetThreadLocale
SetUnhandledExceptionFilter
MoveFileA
GetEnvironmentStringsW
SetHandleCount
SizeofResource
SetFileAttributesA
GlobalFree
InterlockedIncrement
FreeEnvironmentStringsW
GetSystemInfo
SetFilePointer
FindNextFileA
LocalFree
GetLocalTime
HeapAlloc
GetConsoleOutputCP
CreateFileW

comctl32

ImageList_GetIcon
ImageList_AddMasked
ImageList_DragLeave
ImageList_BeginDrag
_TrackMouseEvent
PropertySheetA
CreatePropertySheetPageA
ImageList_Replace
ImageList_Remove
ImageList_DragEnter
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_Draw
ImageList_LoadImageA
ImageList_Write
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_Add
ImageList_GetImageCount
ImageList_Read
ord17
ImageList_Destroy
ImageList_DragShowNolock
ImageList_DragMove
ImageList_ReplaceIcon
DestroyPropertySheetPage
ImageList_Create

gdi32

GetBoundsRect
SetBoundsRect
SelectObject
GetNearestPaletteIndex
CloseFigure
PathToRegion
FillRgn
GetDCOrgEx
GetCurrentPositionEx
GetTextFaceA
SelectPalette
GetTextMetricsA
CreateICA
SetAbortProc
CombineRgn
Ellipse
RectVisible
OffsetViewportOrgEx
PtInRegion
GetBitmapDimensionEx
CreateSolidBrush
Rectangle
GetGlyphOutlineA
SetArcDirection
GetBitmapBits
GetViewportExtEx
PlayEnhMetaFile
SetPolyFillMode
Escape
SetPixelV
SetTextColor
GetBkMode
CreatePolygonRgn
DPtoLP
GetROP2
OffsetClipRgn
PolylineTo
StartDocA
SetBitmapDimensionEx
PtVisible
CreateHatchBrush
OffsetRgn
CreatePalette
GetTextExtentPoint32A

user32

CreateAcceleratorTableA
MessageBoxA
GetIconInfo
PostThreadMessageA
SystemParametersInfoA
TranslateMessage
GetClassLongA
SetWindowPlacement
SetWindowLongA
SetForegroundWindow
DeleteMenu
SetWindowsHookExA
GetSystemMetrics
CreateDialogIndirectParamA
DrawFrameControl
RegisterClassA
DrawIcon
DestroyIcon
MapWindowPoints
EnumChildWindows
GetScrollPos
GetWindowRect
IsChild
GetSysColorBrush
SetFocus
RegisterWindowMessageA
DestroyWindow
UpdateWindow
GetCapture
GetWindowPlacement
GetKeyboardLayoutList
GetMenuItemCount
CallWindowProcA
EndDialog
CreateWindowExA
CharUpperA
GetMenuItemInfoA
SetWindowTextA
ShowWindow
GetLastActivePopup
SetMenuDefaultItem
IsWindowVisible
RegisterClassExA
MoveWindow
DrawTextA
DefWindowProcA
EnableWindow

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 456KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e87d7219effb728f1baa9a7484f9a17

Headers

File Characteristics

Imports

ole32

advapi32

shell32

kernel32

comctl32

gdi32

user32

Sections

.text Size: 112KB - Virtual size: 109KB

.rdata Size: 460KB - Virtual size: 456KB

.data Size: 104KB - Virtual size: 102KB

.rsrc Size: 60KB - Virtual size: 58KB

.text
Size: 112KB - Virtual size: 109KB

.rdata
Size: 460KB - Virtual size: 456KB

.data
Size: 104KB - Virtual size: 102KB

.rsrc
Size: 60KB - Virtual size: 58KB