12412c7321c2bfb0725d3b58715e2bce967d29697b60e1ebf8319705ac475bcd

Sharing

Copy URL Twitter E-mail

General

Target

12412c7321c2bfb0725d3b58715e2bce967d29697b60e1ebf8319705ac475bcd
Size

294KB
MD5

4e052ac9d6aadd266b8478646e7237e0
SHA1

710c3cd132366c71eed1a35cf67f4e94bc6caf66
SHA256

12412c7321c2bfb0725d3b58715e2bce967d29697b60e1ebf8319705ac475bcd
SHA512

f1b52bba091ac29f7d0c73d665c4608df75c2d46e3d19332e0df128e6885e01456df5c724af87a2eb9e2d2977d6af859683a6c6be9a7196b9243887aba723ac1
SSDEEP

6144:PamJ8LPVA2Ji4aDU5aLJNvnDTpVQP3jFx+QChrdy+NJ:PaL9Ji4+U5aLJNvPp0ZsZr

Score

N/A

Malware Config

Signatures

Files

12412c7321c2bfb0725d3b58715e2bce967d29697b60e1ebf8319705ac475bcd
.exe windows x86

f28c4aa2b2aae6de1887c20a445e4b95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

ord17
FlatSB_ShowScrollBar

kernel32

InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsValidLocale
LeaveCriticalSection
LoadLibraryA
LoadResource
MulDiv
QueryPerformanceCounter
RaiseException
ReadFile
SetEvent
SetLastError
SetProcessWorkingSetSize
SizeofResource
InitializeCriticalSection
VirtualAlloc
VirtualFree
WaitForMultipleObjects
lstrlenA
CloseHandle
CompareStringA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FlushInstructionCache
FreeLibrary
GetACP
GetCurrentProcess
Sleep
GetDateFormatA
HeapFree
HeapAlloc
GetWindowsDirectoryA
GetVersionExA
GetUserDefaultLangID
GetTimeZoneInformation
GetTimeFormatA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetLastError
GetSystemDirectoryA
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetMailslotInfo
GetLocalTime

user32

UpdateWindow
SetFocus
SetDlgItemInt
SetCursor
SetActiveWindow
ScreenToClient
ReleaseDC
RedrawWindow
PostQuitMessage
OffsetRect
MsgWaitForMultipleObjects
MapWindowPoints
KillTimer
TranslateMessage
IsWindow
IsIconic
InvalidateRect
GetWindowRect
GetWindow
GetSubMenu
GetParent
GetForegroundWindow
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
TrackPopupMenu
ShowWindow
SetWindowPos
SetTimer
IsWindowVisible
SetForegroundWindow
GetAsyncKeyState
GetActiveWindow
FillRect
EndPaint
EndDialog
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
CreateCursor
BeginPaint
GetSysColor

gdi32

GetViewportOrgEx
Rectangle
SelectObject
GetStockObject
SetBkMode
SetTextAlign
SetTextColor
SetViewportOrgEx
GetDeviceCaps
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
SetBkColor
BitBlt

advapi32

LsaGetSystemAccessAccount
OpenSCManagerW
SystemFunction004
SetServiceBits
RegCloseKey
QueryServiceStatus
OpenServiceW
CloseServiceHandle

ole32

CoInitializeEx
CoInitializeSecurity
CoCreateInstance
CoMarshalInterface
CoRegisterClassObject
CoResumeClassObjects
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CreateStreamOnHGlobal
StringFromGUID2
CoInitialize

oleaut32

RegisterTypeLi
VariantCopy
VariantClear
VarUI4FromStr
UnRegisterTypeLi
SysStringLen
SysFreeString
SysAllocString
LoadRegTypeLi
LoadTypeLi
VariantInit

shlwapi

GetMenuPosFromID
SHRegisterValidateTemplate
SHSetThreadRef
SHSkipJunction
PathFindExtensionW

msvcrt

_wcsdup
_spawnve
_searchenv
_pctype
_mbsncat
_longjmpex
_adj_fdivr_m32i
__p__commode
__iob_func
___unguarded_readlc_active_add_func
isalpha

Sections

.text
Size: 171KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f28c4aa2b2aae6de1887c20a445e4b95

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

ole32

oleaut32

shlwapi

msvcrt

Sections

.text Size: 171KB - Virtual size: 172KB

.data Size: 40KB - Virtual size: 39KB

.rdata Size: 39KB - Virtual size: 38KB

.bss Size: - Virtual size: 6KB

.idata Size: 26KB - Virtual size: 26KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 171KB - Virtual size: 172KB

.data
Size: 40KB - Virtual size: 39KB

.rdata
Size: 39KB - Virtual size: 38KB

.bss
Size: - Virtual size: 6KB

.idata
Size: 26KB - Virtual size: 26KB

.rsrc
Size: 17KB - Virtual size: 16KB