16b54fa4a332e5be0402ff93c1526d13acaa723bfba91cad565d7adb91e7b045

Sharing

Copy URL Twitter E-mail

General

Target

16b54fa4a332e5be0402ff93c1526d13acaa723bfba91cad565d7adb91e7b045
Size

724KB
MD5

671514c4410cc3291e959b4abc0b769c
SHA1

d3136c4e559981b8e2defc69a948c9ff287f9719
SHA256

16b54fa4a332e5be0402ff93c1526d13acaa723bfba91cad565d7adb91e7b045
SHA512

8f57dead30cd444dc3bb345a9a075ba5ef7194ebd7bfb6b249b987080367fa25a15fe4016064f11ae3b916e801904c7b3e3cbf5b868f1535c23664397187ef47
SSDEEP

12288:2uNkaUr+jRykzku7IyaZyFh07VV/vuW1lONm2c3x3VxLCy1kicPSmnIc1T:wadjRykA9yq7jvh1lR3dV5Cy1kicPnII

Score

N/A

Malware Config

Signatures

Files

16b54fa4a332e5be0402ff93c1526d13acaa723bfba91cad565d7adb91e7b045
.exe windows x86

730371d79bb973c074228182a835fa1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetPropW
DefWindowProcA
SetMessageExtraInfo
DdeSetUserHandle
EnumDisplaySettingsExA
DefDlgProcW
DdeGetLastError
ShowWindow
SendMessageTimeoutA
GetKBCodePage
EnumDisplaySettingsA
ChildWindowFromPoint
LoadMenuIndirectA
WinHelpA
WinHelpW
MessageBoxA
LoadCursorA
UnhookWindowsHook
TabbedTextOutA
ShowCaret
GetCursor
CreateDesktopW
TrackPopupMenu
GetDlgItemTextW
EnableMenuItem
GetPropA
OpenDesktopW
DestroyWindow
GetSystemMenu
CloseClipboard
ReleaseDC
SubtractRect
SetWindowsHookA
IsCharLowerW
OpenDesktopA
DrawTextExA
FindWindowA
LookupIconIdFromDirectoryEx
CallWindowProcW
GetComboBoxInfo
SetShellWindow
GetUpdateRect
BeginPaint
GetMenuItemID
IsCharUpperA
GetMenuItemInfoA
GetCaretPos
GetSysColor
InvalidateRect
InvalidateRgn
ReuseDDElParam
CreateWindowExW
SetParent
UnionRect
OemToCharBuffA
RegisterClassA
DdeCreateStringHandleW
CreateDialogIndirectParamA
RegisterClassExA
DdeAbandonTransaction
WINNLSGetEnableStatus

kernel32

GetModuleHandleA
InterlockedIncrement
VirtualFree
TlsGetValue
Sleep
GetDiskFreeSpaceW
GetCommandLineW
RtlFillMemory
EnumSystemLocalesA
GetOEMCP
VirtualAlloc
GetSystemTimeAsFileTime
UnhandledExceptionFilter
FlushFileBuffers
GetCurrentDirectoryW
InterlockedDecrement
SetConsoleCtrlHandler
WritePrivateProfileSectionA
GetDateFormatA
DeleteCriticalSection
GetCurrentThread
GetConsoleOutputCP
LCMapStringW
GetConsoleMode
GetLocaleInfoA
LCMapStringA
GetEnvironmentStringsW
GetCurrentThreadId
CreateMutexA
SetSystemTime
QueryPerformanceCounter
GetCurrentProcessId
GetThreadPriorityBoost
SetStdHandle
LockFileEx
FormatMessageA
SetFilePointer
GetCPInfo
TlsFree
CompareStringW
GlobalLock
CloseHandle
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
EnterCriticalSection
CreateFileA
GetCommandLineA
GetStringTypeA
SetUnhandledExceptionFilter
TlsAlloc
TerminateProcess
DebugBreak
HeapSize
GetFileType
HeapFree
GetTempFileNameW
GetTempFileNameA
IsDebuggerPresent
GetUserDefaultLCID
GetTimeZoneInformation
VirtualQuery
ExitProcess
GetModuleFileNameA
HeapAlloc
LoadLibraryExA
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
HeapDestroy
RtlUnwind
GetStartupInfoA
GetACP
OutputDebugStringA
FreeLibrary
WriteFile
GetStartupInfoW
DeleteFiber
WriteConsoleA
SetLastError
GlobalHandle
GetConsoleTitleW
GetLastError
CommConfigDialogW
GetStringTypeW
TlsSetValue
SetConsoleTitleW
GetLogicalDriveStringsA
HeapReAlloc
ReadFile
FreeEnvironmentStringsW
GetConsoleCP
VirtualAllocEx
CompareStringA
ExpandEnvironmentStringsW
IsValidLocale
LeaveCriticalSection
DuplicateHandle
GlobalUnlock
IsValidCodePage
GetModuleHandleW
MoveFileExW
GetTimeFormatA
GetTickCount
SetTimeZoneInformation
GetStdHandle
GetModuleFileNameW
OpenMutexA
SetHandleCount
GetCurrencyFormatW
GetProcAddress
SetEnvironmentVariableA
LocalAlloc
WriteConsoleW
GlobalAddAtomW
CreateDirectoryA
GetMailslotInfo
GetCurrentProcess
HeapCreate

advapi32

RegCreateKeyExW
RegQueryValueA
LookupSecurityDescriptorPartsW
CryptGenRandom
LookupPrivilegeDisplayNameW
CryptGetKeyParam
GetUserNameA
RegDeleteKeyA
GetUserNameW
LookupPrivilegeValueW
RegQueryMultipleValuesA
CryptDuplicateHash
LookupAccountSidW
RegQueryValueW

comctl32

DrawStatusTextA
ImageList_SetFilter
ImageList_SetBkColor
ImageList_SetIconSize
InitCommonControlsEx
_TrackMouseEvent
ImageList_LoadImageA
GetEffectiveClientRect
ImageList_LoadImage
ImageList_Copy
ImageList_DragShowNolock

wininet

FindNextUrlCacheGroup
FtpPutFileEx
InternetGetCookieA
GetUrlCacheConfigInfoW
InternetGoOnlineW
InternetConfirmZoneCrossingA
FtpOpenFileW
InternetHangUp
FindNextUrlCacheEntryA

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 412KB - Virtual size: 411KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

730371d79bb973c074228182a835fa1b

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

wininet

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 412KB - Virtual size: 411KB

.data Size: 132KB - Virtual size: 131KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 412KB - Virtual size: 411KB

.data
Size: 132KB - Virtual size: 131KB

.rsrc
Size: 16KB - Virtual size: 12KB