5180147635f1e4c3fff38b1d436bed3a69ee007c68c0c13ffd168f90be5305cf

Sharing

Copy URL Twitter E-mail

General

Target

5180147635f1e4c3fff38b1d436bed3a69ee007c68c0c13ffd168f90be5305cf
Size

269KB
MD5

6e86ea8fe4b0151c85ef7b3bdb14703e
SHA1

3f40b7c6c038d2ab37779ac98f3ff97c71964f35
SHA256

5180147635f1e4c3fff38b1d436bed3a69ee007c68c0c13ffd168f90be5305cf
SHA512

773f8abfc0e5f6c096e44f135bf4c240b25e49d4cb54cccb063f2c2339f9a8bcc6916ac5eab5d00bc87d1430f7b66f656746586aeb98eb32d4d8167c46a02f0f
SSDEEP

6144:vAQUJgZQma1YeloZUmDLxs59gm5rqOY4ZsMi:ygZQma1YelLods59gmZ+os

Score

N/A

Malware Config

Signatures

Files

5180147635f1e4c3fff38b1d436bed3a69ee007c68c0c13ffd168f90be5305cf
.exe windows x86

178eba7a24cf179ea3ef7320cecd01b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??3@YAXPAX@Z
_purecall
??2@YAPAXI@Z
wcslen
wcsstr
_ftol
free
malloc
wcsncpy
wcschr
iswspace
_errno
wcstoul
_vsnwprintf
wcsncmp
_wcslwr
_ultow
wcsrchr
wcscmp
_wcsicmp
rand
srand
_endthreadex
_beginthreadex
realloc
wcscpy
_c_exit
_exit
_XcptFilter
_cexit
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3

advapi32

RegOpenKeyExA
RegQueryInfoKeyA
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyW
RegCloseKey
GetUserNameW

kernel32

GlobalAlloc
GlobalUnlock
GlobalLock
GlobalSize
SetProcessWorkingSetSize
HeapCreate
HeapDestroy
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryW
GetSystemDirectoryW
GetVersionExW
CloseHandle
CreateFileW
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
WaitForSingleObject
CreateMutexW
GetCurrentThreadId
GetCommandLineW
GetWindowsDirectoryW
LeaveCriticalSection
EnterCriticalSection
ReadFile
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryExW
GetModuleHandleW
GetLocaleInfoA
LockResource
LoadResource
FindResourceExW
FindClose
FindNextFileW
FindFirstFileW
lstrcpynW
lstrlenW
OutputDebugStringW
ResetEvent
WaitForMultipleObjects
SetEvent
CreateEventW
GetSystemDefaultLangID
TerminateThread
CreateThread
IsBadReadPtr
MulDiv
CreateFileA
LCMapStringW
GetModuleFileNameW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
SizeofResource
lstrcpyW
lstrcatW
FindResourceW
GetStringTypeExW
GetStringTypeExA
InterlockedCompareExchange
LoadLibraryA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
GetStartupInfoW
GlobalFree
SetLastError
lstrlenA
GetACP
GetTickCount
Sleep
GetLastError
IsBadWritePtr
DelayLoadFailureHook
RaiseException

gdi32

FillRgn
GetStockObject
CreateSolidBrush
DeleteObject
FillPath
EndPath
LineTo
MoveToEx
SetPolyFillMode
BeginPath
Ellipse
RoundRect
CreatePen
CreateCompatibleBitmap
SetTextColor
SetBkMode
TranslateCharsetInfo
DeleteDC
CreateCompatibleDC
GetRgnBox
CreateRectRgn
GdiFlush
StretchDIBits
SetStretchBltMode
ExtCreateRegion
GetRegionData
CreateFontW
GetDeviceCaps
CreateFontIndirectW
CombineRgn
SetRectRgn
GetSystemPaletteEntries
CreateDIBSection
CreatePalette
CreateHalftonePalette
SetBkColor
EnumFontFamiliesExW
GetTextAlign
ExtTextOutW
GetTextColor
GetTextExtentPointW
TextOutW
GetTextExtentPoint32W
GetNearestPaletteIndex
FrameRgn
GetPaletteEntries
GetObjectW
SelectPalette
RealizePalette
BitBlt
SetMapMode
SelectObject
SetTextAlign
GetTextMetricsW

user32

SetFocus
FindWindowW
FindWindowExW
GetUpdateRect
GetClientRect
GetSysColorBrush
FrameRect
DrawTextW
CharNextW
GetClassNameW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
DrawIconEx
MessageBeep
CallWindowProcW
IsDlgButtonChecked
SendDlgItemMessageW
CheckDlgButton
CheckRadioButton
GetDlgItem
SystemParametersInfoW
SetWindowTextW
MoveWindow
LoadIconW
CreatePopupMenu
PostMessageW
DestroyWindow
IsWindow
SetRectEmpty
GetSysColor
ReleaseDC
GetDC
IsWindowVisible
SetTimer
UpdateLayeredWindow
FillRect
ScrollDC
InflateRect
CopyRect
UpdateWindow
InvalidateRect
EndPaint
BeginPaint
SetWindowPos
SetRect
GetWindowRect
SetWindowRgn
IsWindowEnabled
ShowWindow
KillTimer
DefWindowProcW
SetWindowLongW
GetWindowLongW
CreateWindowExW
RegisterClassW
LoadCursorW
IsRectEmpty
GetWindowRgn
SetCapture
SendMessageW
AllowSetForegroundWindow
ClientToScreen
GetAsyncKeyState
ReleaseCapture
GetSystemMetrics
ScreenToClient
GetCursorPos
ValidateRect
GetCapture
PeekMessageW
EnableWindow
GetDoubleClickTime
SetCursor
RegisterClassExW
SendMessageTimeoutW
GetKeyboardState
RegisterHotKey
UnregisterHotKey
LoadImageW
GetForegroundWindow
PostQuitMessage
DispatchMessageW
TranslateMessage
IsDialogMessageW
GetMessageW
wsprintfW
GetKeyNameTextW
MapVirtualKeyW
IntersectRect
OffsetRect
PtInRect
WinHelpW
DestroyIcon
GetParent
RegisterWindowMessageW
SendNotifyMessageW
DrawEdge
DestroyMenu
keybd_event
GetKeyboardLayout
AppendMenuW
TrackPopupMenu
SetForegroundWindow
MessageBoxW

ole32

CoRegisterClassObject
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoMarshalInterThreadInterfaceInStream
CoGetInterfaceAndReleaseStream
OleInitialize
OleUninitialize
GetClassFile
CoUnmarshalInterface
CoInitialize
CoUninitialize
CoSuspendClassObjects
CoRegisterMessageFilter
CoMarshalInterface
CreateStreamOnHGlobal
CLSIDFromString
StringFromGUID2
CoFreeUnusedLibraries
CoCreateInstance
CoRevokeClassObject

oleaut32

SysAllocString
SysStringLen
VariantInit
SysFreeString
VariantClear
VariantCopy
VariantChangeType
LoadRegTypeLi
SetErrorInfo
RegisterTypeLi
LoadTypeLi
VarI4FromStr

Sections

.text
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

178eba7a24cf179ea3ef7320cecd01b4

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

ole32

oleaut32

Sections

.text Size: 214KB - Virtual size: 214KB

.data Size: 1024B - Virtual size: 3KB

.rsrc Size: 53KB - Virtual size: 58KB

.text
Size: 214KB - Virtual size: 214KB

.data
Size: 1024B - Virtual size: 3KB

.rsrc
Size: 53KB - Virtual size: 58KB