54f8ae17e4edd25deb7506caf67493162f0b76266935cf139a151b9c2f5b67f9

Sharing

Copy URL Twitter E-mail

General

Target

54f8ae17e4edd25deb7506caf67493162f0b76266935cf139a151b9c2f5b67f9
Size

693KB
MD5

05241bb921b74354815bf220f2e0f707
SHA1

5bc7667b51dca75ad832fb0e19c420c1061e8a1c
SHA256

54f8ae17e4edd25deb7506caf67493162f0b76266935cf139a151b9c2f5b67f9
SHA512

6fcbc6bb8526ba5c39d59d5949c5d5a44667256a39efb728df8b4414b4fc1832bf1e8e0c743c95ca9b6a9fe78ca5a3a89395470208e1cdd154a5b669f459d1b0
SSDEEP

12288:Wld4tRnA4tSAJN5lOqMYqum0VYTZs0IAHq9oX3DY4ENBtZKamAT/6:g4tRvtJN5lF80Vymp2qiX3DYbTtO

Score

N/A

Malware Config

Signatures

Files

54f8ae17e4edd25deb7506caf67493162f0b76266935cf139a151b9c2f5b67f9
.exe windows x86

57ad43ef623ff2bd4ba8dce5e683e6cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PeekMessageA
CallWindowProcA
GetClientRect
SendMessageA
InvalidateRect
PostQuitMessage
ReleaseDC
SetWindowPos
IsWindow
DispatchMessageA
EndPaint
GetDC
GetCursorPos
DestroyWindow
GetMessageA
GetParent
UpdateWindow
ShowWindow
SetCapture
TranslateMessage
IsWindowEnabled
IsIconic
RegisterClassA
GetWindowLongA
CreateWindowExA
EnableWindow
BeginPaint
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
ReleaseCapture
SetWindowTextA
CheckMenuItem
wsprintfA
SetTimer
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
EndDialog
SetDlgItemTextA
MessageBoxA
GetSysColor
IsWindowVisible

advapi32

OpenProcessToken
RegSetValueExW
RegQueryValueExA
RegCloseKey

gdi32

SelectObject
SetTextColor
DeleteObject
CreateSolidBrush
SetBkMode

ole32

CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize

kernel32

GetCurrentDirectoryA
LocalAlloc
LoadLibraryExW
FreeEnvironmentStringsW
SetStdHandle
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetEvent
LocalFree
FormatMessageW
GetExitCodeProcess
InitializeCriticalSection
GetCurrentProcess
FindClose
TlsGetValue
FormatMessageA
SetLastError
GetEnvironmentVariableA
GetModuleFileNameW
VirtualProtect
IsDebuggerPresent
FlushFileBuffers
GetModuleFileNameA
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
GetLocalTime
CreateThread
SetUnhandledExceptionFilter
MulDiv
GetSystemDirectoryA
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
LoadResource
VirtualFree
TerminateProcess
WriteConsoleA
VirtualQuery
SetEndOfFile
GetLocaleInfoA
GetModuleHandleA
GetTickCount
GetCommandLineA
GetCurrentProcessId
GetVersion
GetCurrentThread
GetCurrentThreadId
GetLastError
ExitProcess
HeapAlloc
GetProcessHeap
ResetEvent
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
CreateProcessW
HeapCreate
CreateProcessA
SizeofResource
GetModuleHandleW
GlobalLock
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
UnmapViewOfFile
LCMapStringW
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
RemoveDirectoryA
WaitForMultipleObjects
FindNextFileA
CreateFileMappingA
CompareStringA
lstrcpyA
FindFirstFileA
CompareStringW
GetSystemInfo
GetProcAddress
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
IsBadWritePtr
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
InterlockedIncrement

Sections

.text
Size: 645KB - Virtual size: 971KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57ad43ef623ff2bd4ba8dce5e683e6cc

Headers

File Characteristics

Imports

user32

advapi32

gdi32

ole32

kernel32

Sections

.text Size: 645KB - Virtual size: 971KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 645KB - Virtual size: 971KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 18KB - Virtual size: 18KB