28cce98dc5613b12af7ac815c4011d6e5077cf0115bd6c3f849e9acb150ef1f5

Sharing

Copy URL

Twitter E-mail

General

Target

28cce98dc5613b12af7ac815c4011d6e5077cf0115bd6c3f849e9acb150ef1f5
Size

320KB
MD5

6347a459aa32a36830956f7aa8d18df0
SHA1

4e9a59cbb3d3600bdb6caec48d9925ccc974a783
SHA256

28cce98dc5613b12af7ac815c4011d6e5077cf0115bd6c3f849e9acb150ef1f5
SHA512

07593add78a84376fcc236270d0f695fb58d9bf01906a618d746a15a677015dc605c9726ca9ab136e1d5c8ba124b209682af370943b228c349c6282fdc1b552a
SSDEEP

6144:8GdoCW9MIa6V9mo6Ob+mVthDCpgNwlTr/gV3flnuIlE1W5UWKJE:WCjIapoDymVth+zhEVvluIGo58J

Score

N/A

Malware Config

Signatures

Files

28cce98dc5613b12af7ac815c4011d6e5077cf0115bd6c3f849e9acb150ef1f5
.exe windows x86

95aee70a74273f87f912dd53b7276c43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleOutputW
GetVersionExA
GetCommandLineA
DeleteCriticalSection
LoadLibraryExA
InitializeCriticalSection
VirtualProtect
SetSystemTime
GetVersion
lstrcmpiA
ExitProcess
GetLongPathNameA
GetUserDefaultLangID
FindFirstFileW
CloseHandle
WriteConsoleOutputCharacterA

user32

UnhookWindowsHookEx
DrawTextA
LoadKeyboardLayoutW
TranslateAcceleratorW
EnumDisplayDevicesW
CloseWindow
DialogBoxIndirectParamW
RemovePropA
GetMessageA
OpenInputDesktop
SetActiveWindow
InsertMenuItemA
UnhookWindowsHook
GetMessageExtraInfo
MessageBoxA
WindowFromDC
CloseWindowStation
AttachThreadInput
GetKeyNameTextW
GrayStringW
IsDialogMessageA
ModifyMenuW
SetScrollInfo
GetMessageTime
CharToOemW
CreateWindowExA
EndMenu
GetClipboardData
SetWindowLongA
SendInput
LoadStringA
HideCaret
DestroyCursor
EnumDisplaySettingsExA
ChangeClipboardChain
FindWindowW
GetTabbedTextExtentA
ScrollDC
GetMenuDefaultItem
IsMenu
SendNotifyMessageW
BroadcastSystemMessageA
IsCharLowerW
OffsetRect
SetCaretPos
OpenClipboard
UnionRect
OpenDesktopW
CheckMenuRadioItem
GetClipboardOwner
GetWindowRgn
SetParent
BroadcastSystemMessageW
ReplyMessage
RemovePropW
IsWindowVisible
MoveWindow
IsCharLowerA
DialogBoxParamW
SetClipboardData
SendMessageTimeoutA
GetMenuItemCount
CreateDialogParamW
GetClipboardFormatNameA
CharNextA

gdi32

SetMapMode
SelectClipPath
SetBitmapBits
GetDeviceCaps
CreateDIBSection
SetSystemPaletteUse
GetEnhMetaFileHeader
CreateFontA
RestoreDC
UnrealizeObject
GetTextExtentPoint32W
CopyMetaFileW
SetTextJustification
ChoosePixelFormat

comdlg32

ChooseFontA
ChooseColorA

advapi32

QueryServiceObjectSecurity
GetFileSecurityW
CryptHashData
BuildTrusteeWithSidW
SetNamedSecurityInfoW
RegDeleteValueW
DuplicateTokenEx
BuildSecurityDescriptorW
RegLoadKeyW
RegQueryInfoKeyA
RegEnumKeyW
LogonUserW
OpenEventLogW
SetThreadToken
SetSecurityDescriptorGroup

shell32

ExtractIconExW

ole32

OleGetIconOfClass

oleaut32

SafeArrayGetLBound
SafeArrayGetElement

shlwapi

SHRegWriteUSValueW
PathIsPrefixW
UrlGetPartA
SHRegQueryUSValueW
StrCpyNW
PathIsDirectoryA
StrRStrIW
PathIsRootA
UrlCombineW
StrStrIA
AssocQueryStringW
SHDeleteKeyA
PathIsFileSpecW

setupapi

SetupDiSetClassInstallParamsA
SetupDiGetClassDescriptionExA
SetupDiGetDeviceInstallParamsA

Sections

.text
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

95aee70a74273f87f912dd53b7276c43

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

setupapi

Sections

.text Size: 292KB - Virtual size: 289KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 16KB

.text
Size: 292KB - Virtual size: 289KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 16KB