6e4149db410f3cd4d182d46744712dba33ed0e3eaaa4a9349b5ea94e557f5c42

Sharing

Copy URL Twitter E-mail

General

Target

6e4149db410f3cd4d182d46744712dba33ed0e3eaaa4a9349b5ea94e557f5c42
Size

736KB
MD5

642860715472eac6d84ff16a1d796131
SHA1

f88dc284a4bf0819b69846edbf6f7b7f3154ef4b
SHA256

6e4149db410f3cd4d182d46744712dba33ed0e3eaaa4a9349b5ea94e557f5c42
SHA512

303c30966e398ecf9bf2c4af20bd1b8010f6cea35522c539c5f7f8b14b85c92131a10372eb98a5dcf5e872df67b659d5c9f4df15672c1b4a90304bfd2300e8d9
SSDEEP

12288:CGK/3s1CW1EfqAa4YW5Xi+zdFqoEbgMeBNpEgOXdX/a0xuywoDjDeoC:CGK/8pENlJrNEsM2/Ed5iouywoDjP

Score

N/A

Malware Config

Signatures

Files

6e4149db410f3cd4d182d46744712dba33ed0e3eaaa4a9349b5ea94e557f5c42
.exe windows x86

4eb55755cea8f7bc6dc51cc178a088bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_ReplaceIcon
_TrackMouseEvent
InitCommonControlsEx

user32

SetCursor
SetDlgItemInt
GetMessageA
ValidateRect
GetDesktopWindow
GrayStringA
CreateWindowExA
IsDialogMessageA
CreateDialogIndirectParamA
EndPaint
LoadAcceleratorsA
EnumChildWindows
DefWindowProcA
ReleaseCapture
GetMenu
IsWindowVisible
GetWindowDC
SetFocus
SendMessageA
SetTimer
ReleaseDC
LoadStringA
UnregisterClassA
ClientToScreen
CreateDialogParamA
BeginPaint
MapWindowPoints
DestroyIcon
GetForegroundWindow
ScreenToClient
TranslateMessage
GetWindowRect
SetMenuDefaultItem
CopyRect
IsRectEmpty
TabbedTextOutA
ExitWindowsEx
GetCapture
AppendMenuA
IntersectRect
DestroyWindow
SetClipboardData
DispatchMessageA
SetForegroundWindow
GetCursorPos
ShowWindow
FindWindowA
RegisterClassA
AdjustWindowRectEx
GetMenuStringA
IsChild
UnionRect
FillRect
GetSubMenu
MessageBoxA
LoadBitmapA
RegisterClassExA
GetDC
InsertMenuA
SetWindowPos
PtInRect
InflateRect
EnableWindow
EnumWindows
SetWindowTextA
PeekMessageA
SetCapture
GetKeyboardState
GetWindowTextA
MoveWindow
GetIconInfo
BringWindowToTop
IsWindow
GetParent
PostMessageA
GetWindowTextLengthA
GetDlgItem
SetRect
OffsetRect
WinHelpA
GetClipboardData
GetSysColor
DrawTextA
EqualRect
LockWindowUpdate
GetSystemMetrics

shell32

ord155
SHGetDesktopFolder

oleaut32

LoadTypeLi

gdi32

CreateHatchBrush
PolyPolyline
WidenPath
DeleteObject
PolyBezierTo
CreateBitmapIndirect
RectVisible
GetViewportOrgEx
MaskBlt
GetMiterLimit
ExtCreatePen
EnumMetaFile
GetRgnBox
CreatePolyPolygonRgn
GetColorAdjustment
RectInRegion
GetTextCharacterExtra
EnumObjects
GetRegionData
CreatePolygonRgn
DPtoLP
GetStockObject
ExtEscape
GetViewportExtEx
GetPath
SetStretchBltMode
AbortPath
SelectPalette
StartDocA
CreatePenIndirect
AbortDoc
Arc
ExcludeClipRect
GetDeviceCaps
GetTextMetricsA
GetBkMode
DrawEscape
SetAbortProc
AnimatePalette
PlayMetaFileRecord
SetBitmapBits
CreateDCA
GetClipRgn
StrokeAndFillPath
DeleteMetaFile
GetNearestPaletteIndex
ExtCreateRegion
StretchDIBits
SetMapperFlags
CreateDIBitmap
GetBitmapDimensionEx
SetViewportOrgEx
SetTextCharacterExtra
GdiComment
GetStretchBltMode
GetKerningPairsA
GetCharABCWidthsFloatA
GetObjectType
CreateRectRgn
ExtSelectClipRgn
ArcTo
GetPolyFillMode
SetMiterLimit
SetPixel
SetColorAdjustment
AngleArc
GetObjectA
SetBitmapDimensionEx
CreateDIBPatternBrushPt
CreatePen
SetViewportExtEx
CloseFigure
OffsetViewportOrgEx
GetBkColor
UpdateColors
CreateDiscardableBitmap
SetBrushOrgEx
GetCharWidthFloatA
CreatePalette
DeleteDC
GetWindowExtEx
RealizePalette
SetBoundsRect
InvertRgn
SetPixelV
GetBrushOrgEx
GetMapMode
GetAspectRatioFilterEx
ResetDCA
CreateFontA
CreateEllipticRgnIndirect
FlattenPath
GetCurrentPositionEx
IntersectClipRect
FillRgn
SetROP2
CreateHalftonePalette
SelectClipRgn
PolyDraw
PlgBlt
PtInRegion
GetTextExtentPoint32A
CreateICA
GetCharABCWidthsA

ole32

CoRegisterClassObject
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
OleIsCurrentClipboard
CoGetClassObject
CoGetMalloc
StringFromCLSID
OleFlushClipboard
CoTaskMemFree
OleLockRunning
GetHGlobalFromILockBytes
OleInitialize
CoInitializeSecurity
CLSIDFromProgID
OleLoad
OleSetClipboard
CoCreateInstance
StringFromGUID2
CoRevokeClassObject
OleCreateFromData
CoTaskMemAlloc
CreateStreamOnHGlobal

kernel32

GetFileType
Sleep
ReadFile
GetProcAddress
LeaveCriticalSection
GetModuleFileNameA
SetConsoleCtrlHandler
EnumSystemLocalesA
GetUserDefaultLCID
HeapReAlloc
SetHandleCount
GetModuleHandleA
TerminateProcess
HeapCreate
WriteFile
InitializeCriticalSection
SetFilePointer
EnterCriticalSection
GetEnvironmentStringsW
WriteConsoleW
GetCPInfo
GetLocaleInfoA
GetStringTypeW
IsDebuggerPresent
FatalAppExitA
CreateMutexA
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
TlsAlloc
TlsSetValue
FreeEnvironmentStringsA
GetTimeZoneInformation
QueryPerformanceCounter
HeapFree
IsValidLocale
GetACP
GetConsoleCP
LCMapStringA
GetStdHandle
GetOEMCP
GetLocaleInfoW
GetStringTypeA
VirtualFree
UnhandledExceptionFilter
InterlockedExchange
GetLastError
GetCurrentThread
GetVersionExA
VirtualQuery
GetTickCount
DeleteCriticalSection
IsValidCodePage
HeapDestroy
HeapSize
GetCurrentProcess
WriteConsoleA
ExitProcess
CloseHandle
GetDateFormatA
GetCurrentProcessId
VirtualAlloc
RaiseException
SetLastError
HeapAlloc
GetEnvironmentStrings
FreeLibrary
GetCurrentThreadId
InterlockedDecrement
GetConsoleMode
RtlUnwind
GetStartupInfoA
TlsGetValue
CreateFileA
SetUnhandledExceptionFilter
GetTimeFormatA
LoadLibraryA
GetProcessHeap
GetCommandLineA
GetSystemTimeAsFileTime
CompareStringW
InterlockedIncrement
SetEnvironmentVariableA
TlsFree
FreeEnvironmentStringsW
CompareStringA
FlushFileBuffers
SetStdHandle
GetConsoleOutputCP

advapi32

RegQueryValueExA
CreateServiceA
RegOpenKeyExA
RegCreateKeyA
InitializeSecurityDescriptor
RegDeleteValueA
OpenServiceA
RegEnumKeyA
ControlService
RegCreateKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA
RegQueryValueA
RegSetValueExA
OpenProcessToken
RegCloseKey
LookupPrivilegeValueA
RegOpenKeyA
RegSetValueA
CloseServiceHandle
RegDeleteKeyA
OpenSCManagerA
DeleteService

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 458KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4eb55755cea8f7bc6dc51cc178a088bd

Headers

File Characteristics

Imports

comctl32

user32

shell32

oleaut32

gdi32

ole32

kernel32

advapi32

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 460KB - Virtual size: 458KB

.data Size: 100KB - Virtual size: 96KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 460KB - Virtual size: 458KB

.data
Size: 100KB - Virtual size: 96KB

.rsrc
Size: 56KB - Virtual size: 54KB