f1ed2df9150cd6a8dec75afc8a78cf3e83f5295b260a9c80e3b818aa5f67dc0f

Sharing

Copy URL Twitter E-mail

General

Target

f1ed2df9150cd6a8dec75afc8a78cf3e83f5295b260a9c80e3b818aa5f67dc0f
Size

388KB
MD5

4a318e1a81c717a6a57190f69b5e75a1
SHA1

406526ac3a15596edff4201d6f870263e761f3dc
SHA256

f1ed2df9150cd6a8dec75afc8a78cf3e83f5295b260a9c80e3b818aa5f67dc0f
SHA512

1d7c76e8a58543479240d88b13dcfbe7848747940cdeba3a8c9578a818d18772579da1e1f12bb6c00ac538bb50c23c42e9e5039a140e2608456c8821453ed2db
SSDEEP

12288:e2bBfOvtKa3lp/gK2/0NmsW7uAPO5gN1M:eYfOvkaDo3cNLiO5gN1M

Score

N/A

Malware Config

Signatures

Files

f1ed2df9150cd6a8dec75afc8a78cf3e83f5295b260a9c80e3b818aa5f67dc0f
.exe windows x86

02372378b2878ea3fc03a06ce4cb7836

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddIcon
CreateUpDownControl
ImageList_LoadImage
CreateStatusWindowA
ImageList_GetBkColor
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_GetIcon
InitCommonControlsEx
ImageList_Merge
ImageList_Replace
CreateMappedBitmap
ImageList_Create
ImageList_SetBkColor
CreatePropertySheetPageA
CreateToolbar
ImageList_GetDragImage
CreatePropertySheetPage
ImageList_DrawEx
ImageList_DragMove
MakeDragList
ImageList_Duplicate

user32

MessageBoxW
LoadCursorFromFileA
GetPropW
GetClassInfoA
GetClassLongA
ToAsciiEx
CreateWindowExA
GetScrollPos
DdeClientTransaction
TrackPopupMenuEx
MapVirtualKeyW
EnumDisplayDevicesA
InsertMenuItemA
SetWindowLongW
PostThreadMessageW
ReleaseCapture
UnloadKeyboardLayout
ValidateRgn
DefWindowProcW
DdeFreeDataHandle
CallMsgFilterW
UnregisterDeviceNotification
SetWindowLongA
MonitorFromRect
RegisterClassA
UnregisterHotKey
MapVirtualKeyExA
SetThreadDesktop
GetProcessWindowStation
MessageBoxExW
ToUnicode
ChangeDisplaySettingsExW
GetClassInfoW
LoadCursorW
CreatePopupMenu
MonitorFromWindow
CreateIcon
SendNotifyMessageA
CharUpperBuffW
IsDlgButtonChecked
DrawMenuBar
SetMenuItemInfoW
MapWindowPoints
SetDeskWallpaper
CloseWindowStation
DlgDirListW
PackDDElParam
ShowWindow
WindowFromDC
RegisterClassExA
DestroyWindow
SwitchToThisWindow

kernel32

VirtualQuery
CloseHandle
HeapAlloc
LeaveCriticalSection
LoadLibraryA
OpenWaitableTimerW
GetCalendarInfoW
FindFirstFileExA
SetStdHandle
ExitProcess
WriteFile
PulseEvent
WriteConsoleA
InterlockedExchange
WaitForSingleObjectEx
GetProcAddress
QueryPerformanceCounter
GetCurrentThreadId
GetEnvironmentStrings
GetLocalTime
LockResource
TlsFree
LoadResource
GetConsoleOutputCP
GetWindowsDirectoryA
GetSystemTimeAsFileTime
HeapReAlloc
GetModuleHandleW
IsValidLocale
IsDebuggerPresent
GetStringTypeA
GetThreadPriority
MultiByteToWideChar
GetConsoleCursorInfo
GetOEMCP
SetLocaleInfoA
GlobalHandle
GetLastError
FreeEnvironmentStringsW
SetConsoleTextAttribute
RtlUnwind
Sleep
SetFileAttributesA
GlobalReAlloc
VirtualFree
GetExitCodeThread
GetLocaleInfoA
GetProcessHeap
GetLongPathNameW
MoveFileExA
GetCurrentProcessId
LCMapStringW
FlushFileBuffers
GetTimeFormatA
IsValidCodePage
EnumSystemLocalesA
CreateFileA
SetConsoleCtrlHandler
OpenMutexA
InterlockedCompareExchange
lstrcpyn
GetVersionExA
GetModuleFileNameA
CreateMutexA
GetACP
FindResourceW
SetLastError
TlsSetValue
GetNamedPipeHandleStateA
WriteConsoleW
GetTimeZoneInformation
GetFileType
FreeEnvironmentStringsA
EnterCriticalSection
GetCommandLineA
GetTickCount
GetUserDefaultLCID
ResetEvent
HeapValidate
GetFileTime
GetDateFormatA
InterlockedIncrement
GetConsoleCP
GetLocaleInfoW
GetModuleHandleA
GetSystemInfo
GetCalendarInfoA
VirtualAlloc
SetEnvironmentVariableA
EnumDateFormatsExA
SetFilePointer
HeapDestroy
InterlockedDecrement
GetStartupInfoA
InitializeCriticalSection
LCMapStringA
HeapFree
FindNextChangeNotification
GetProfileStringW
SetHandleCount
TerminateThread
GetStringTypeW
GetDiskFreeSpaceW
GetCurrentThread
HeapCreate
FileTimeToLocalFileTime
GetLogicalDriveStringsA
GetCPInfo
TlsAlloc
GlobalGetAtomNameW
TlsGetValue
GetStdHandle
ReadFile
GetEnvironmentStringsW
WaitCommEvent
HeapSize
GetCurrentProcess
lstrcatW
WideCharToMultiByte
CompareStringW
DeleteCriticalSection
FindResourceExW
SetUnhandledExceptionFilter
lstrcpyW
FreeLibrary
OpenMutexW
LockFileEx
GetTempFileNameA
CopyFileExA
GetConsoleMode
UnhandledExceptionFilter
UnlockFile
TerminateProcess
CompareStringA

advapi32

RegSaveKeyW
LogonUserW
InitializeSecurityDescriptor
CryptSetProviderExW
CryptReleaseContext
CryptDestroyHash
RegQueryValueW
CryptGenRandom
CryptSetProviderExA
CryptSetHashParam
ReportEventW
CryptGetDefaultProviderA
RegEnumKeyExW
RegOpenKeyW
RegQueryValueA
RegCloseKey
CryptAcquireContextW
RegSetValueExW
CryptHashData
CryptEnumProviderTypesW
GetUserNameW

Sections

.text
Size: 148KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02372378b2878ea3fc03a06ce4cb7836

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

Sections

.text Size: 148KB - Virtual size: 146KB

.rdata Size: 100KB - Virtual size: 96KB

.data Size: 96KB - Virtual size: 120KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 148KB - Virtual size: 146KB

.rdata
Size: 100KB - Virtual size: 96KB

.data
Size: 96KB - Virtual size: 120KB

.rsrc
Size: 40KB - Virtual size: 36KB