ae21c94be08a55fa2ccc1cac9ec733350e265346b40f332c80bb5517a8609c7d

Sharing

Copy URL Twitter E-mail

General

Target

ae21c94be08a55fa2ccc1cac9ec733350e265346b40f332c80bb5517a8609c7d
Size

196KB
MD5

6530e1d28595eabc1230c058c7bd6420
SHA1

62b5678383ab698e2f13994bdc3baccd64e0b9bf
SHA256

ae21c94be08a55fa2ccc1cac9ec733350e265346b40f332c80bb5517a8609c7d
SHA512

a72958b5f89a1503131a7675322ffcc12924837034e6af20744cee82aa6c38ee16d5c163e8d5e4b2db4b05f2460b349aabf754d849a2aba5ff9faa3cd44a39ee
SSDEEP

3072:F6H2OGcg5uxUeHqXxP+w63Q3mv+o7wQtEwzeDbDBA/3t6gbSC/dcyZM5DktP8hi8:4WOGf5uxRqh63Fp7wQ+XgdBJeyMVktP0

Score

N/A

Malware Config

Signatures

Files

ae21c94be08a55fa2ccc1cac9ec733350e265346b40f332c80bb5517a8609c7d
.exe windows x86

a6c2f9a17efe1d16ddf4443a13a97097

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42u

ord5467
ord4116
ord2381
ord5080
ord1703
ord1708
ord6051
ord4073
ord1768
ord4401
ord5230
ord2377
ord5157
ord6365
ord4347
ord5275
ord3793
ord4831
ord4435
ord2640
ord2047
ord6372
ord3744
ord5058
ord1720
ord5244
ord2436
ord2116
ord5273
ord2977
ord3142
ord3254
ord4459
ord3131
ord3257
ord2980
ord3076
ord2971
ord3390
ord3825
ord3826
ord3820
ord3074
ord4075
ord4621
ord4418
ord3725
ord807
ord2915
ord2004
ord3284
ord2112
ord554
ord4158
ord1637
ord1143
ord940
ord941
ord942
ord5783
ord4128
ord4292
ord1614
ord2756
ord4197
ord5852
ord536
ord2745
ord1192
ord537
ord472
ord5568
ord2914
ord6142
ord5879
ord1073
ord5446
ord6390
ord5436
ord6379
ord5261
ord4370
ord4847
ord4992
ord4704
ord2506
ord2966
ord1767
ord5237
ord6370
ord5276
ord5059
ord5257
ord2438
ord4419
ord3592
ord641
ord324
ord4229
ord4051
ord2567
ord5286
ord3397
ord4390
ord3569
ord809
ord609
ord556
ord567
ord4270
ord4279
ord5047
ord4768
ord5977
ord6266
ord3871
ord283
ord6871
ord2114
ord6354
ord1088
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord4616
ord3733
ord561
ord815
ord2294
ord6195
ord3087
ord2810
ord2293
ord4219
ord2634
ord3716
ord795
ord2855
ord3792
ord2746
ord6193
ord6597
ord2910
ord1197
ord922
ord860
ord2579
ord4400
ord3724
ord804
ord6211
ord4262
ord3614
ord858
ord2606
ord5784
ord2559
ord5679
ord4272
ord2755
ord4124
ord5871
ord3688
ord3568
ord2854
ord5602
ord2858
ord4078
ord6138
ord2430
ord3649
ord2576
ord4215
ord1854
ord500
ord3696
ord772
ord540
ord861
ord535
ord800
ord4360
ord2522
ord6150
ord3290
ord538
ord1172
ord5856
ord2400
ord2088
ord2859
ord2397
ord6190
ord3591
ord5860
ord6057
ord5567
ord5575
ord5732
ord5674
ord5790
ord5785
ord5869
ord6168
ord6017
ord6185
ord4324
ord6182
ord5752
ord6188
ord2371
ord5755
ord686
ord384
ord1165
ord1634
ord289
ord823
ord323
ord1633
ord5781
ord640
ord613
ord2444
ord2406
ord3658
ord3621
ord825
ord3566
ord6048
ord3687
ord1569

msvcrt

free
memset
malloc
wcscpy
wcslen
_ftol
wcscmp
memcpy
memmove
wcsncpy
wcsstr
rand
_exit
_XcptFilter
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
?terminate@@YAXXZ
_controlfp
__CxxFrameHandler

kernel32

GetModuleHandleW
lstrcatW
WideCharToMultiByte
WinExec
lstrcpyW
GetWindowsDirectoryW
LoadLibraryW
FreeLibrary
SetEvent
SetEnvironmentVariableW
GetStringTypeW
lstrcpynW
GlobalMemoryStatus
SetCommBreak
GetStdHandle
FindNextFileW
MulDiv
GetLocalTime
lstrlenW
lstrcmpiW
FindResourceW
LoadResource
LockResource
GetCPInfo
GetVersion
GetVersionExW
GetStartupInfoW

user32

LoadIconW
GetWindowTextLengthA
RegisterClassW
UpdateWindow
SetScrollInfo
IsIconic
IsDialogMessageA
KillTimer
SetWindowLongW
MessageBeep
SetTimer
PtInRect
ScreenToClient
GetMessagePos
IsWindow
CopyIcon
LoadCursorW
FrameRect
ModifyMenuW
GetMenuItemCount
AppendMenuW
GetSystemMetrics
GetDesktopWindow
GetDC
ReleaseDC
DrawIconEx
DestroyIcon
GetIconInfo
GetSysColor
CopyRect
FillRect
DrawEdge
SetRect
GetMenuItemInfoW
LoadImageW
InflateRect
OffsetRect
DrawFocusRect
GetWindowRect
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
IsMenu
SendMessageW
GetWindowLongW
DestroyCursor
GetClientRect
EnableWindow
GetMenuStringW
GetSubMenu
GrayStringW
DrawTextW
CreateIconIndirect
SystemParametersInfoW
DrawStateW
TabbedTextOutW
LoadBitmapW
GetSysColorBrush
CreateMenu
CreatePopupMenu
GetMenuState
GetMenuItemID

gdi32

DeleteObject
SelectObject
CreateDIBSection
SetPixel
GetPixel
PtVisible
RectVisible
PatBlt
TextOutW
DeleteDC
Escape
Rectangle
GetStockObject
SetTextColor
SetBkColor
CreateBitmap
GetTextMetricsA
RoundRect
Ellipse
GetTextExtentPoint32W
CreateCompatibleBitmap
CreateFontIndirectW
CreateSolidBrush
CreatePen
GetBkMode
GetDeviceCaps
BitBlt
CreateHalftonePalette
CreateCompatibleDC
GetDIBColorTable
ExtTextOutW
GetObjectW
CreatePalette

advapi32

RegCloseKey
RegOpenKeyExW
RegDeleteValueA
RegQueryValueW
RegQueryValueExW

shell32

ShellExecuteExW
ShellExecuteW

comctl32

ImageList_GetIcon
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Draw
ImageList_GetImageCount
_TrackMouseEvent

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6c2f9a17efe1d16ddf4443a13a97097

Headers

File Characteristics

Imports

mfc42u

msvcrt

kernel32

user32

gdi32

advapi32

shell32

comctl32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 4KB

.rsrc Size: 120KB - Virtual size: 116KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 120KB - Virtual size: 116KB