a5535293bf33d7fb84b0d4aee216994b3c3411e8a85fa2407a3b8872ac7d88a7

Sharing

Copy URL

Twitter E-mail

General

Target

a5535293bf33d7fb84b0d4aee216994b3c3411e8a85fa2407a3b8872ac7d88a7
Size

417KB
MD5

642f793d94f93c2efdb9a0b7670bc33c
SHA1

478acb51d651ed399364fdb70e579140862db089
SHA256

a5535293bf33d7fb84b0d4aee216994b3c3411e8a85fa2407a3b8872ac7d88a7
SHA512

3c033163b2ca3c20fa04a238d75a5db8775a4858f3240cbb86bfb047e7d2b7b4414c772b7e42e31583490d725e39c9eb4c0c17a181042f307e451872e31204eb
SSDEEP

12288:gHA43KWerIFiBUbCVB2yHoeZuurfLOtYdT0Wp+4P:gH13/eWvbCVZpoofLndo0

Score

N/A

Malware Config

Signatures

Files

a5535293bf33d7fb84b0d4aee216994b3c3411e8a85fa2407a3b8872ac7d88a7
.dll windows x86

ab6a3b3f9d7241ac4800a4acf8b4a7f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetShortPathNameW
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultUILanguage
GetSystemInfo
GetSystemWindowsDirectoryW
GetTempFileNameW
GetThreadLocale
GetTickCount
GetUserDefaultLCID
GetVersionExA
GetVersionExW
GetWindowsDirectoryW
GlobalFree
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapSize
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalCompact
LocalFree
GetModuleHandleA
LockResource
MapUserPhysicalPagesScatter
MapViewOfFile
MoveFileExW
MultiByteToWideChar
OutputDebugStringA
RaiseException
ReadConsoleOutputW
ReadFile
ReleaseMutex
RemoveDirectoryW
SearchPathW
SetCurrentDirectoryW
SetEndOfFile
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetThreadLocale
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransmitCommChar
UnhandledExceptionFilter
UnmapViewOfFile
VerSetConditionMask
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteConsoleA
WriteConsoleOutputW
WriteConsoleW
WriteFile
lstrlenW
GetModuleFileNameW
GetModuleFileNameA
GetMailslotInfo
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
CloseHandle
GetLastError
GetFileType
GetFileSize
GetFileAttributesW
GetExitCodeProcess
GetEnvironmentVariableW
GetEnvironmentStringsW
GetEnvironmentStringsA
GetCurrentThreadId
GetCurrentProcessId
GetConsoleScreenBufferInfo
GetConsoleOutputCP
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FreeConsole
FormatMessageW
FlushFileBuffers
FindResourceW
FindResourceExW
FindNextFileW
FindClose
FillConsoleOutputCharacterW
ExitProcess
EnumResourceLanguagesW
EnterCriticalSection
DeviceIoControl
DeleteFileW
DeleteCriticalSection
CreateThread
CreateMutexW
CreateFileA
CreateEventW
CreateDirectoryW
CopyFileW
LocalReAlloc

shell32

SHGetFolderLocation
CommandLineToArgvW
SHGetFolderPathW

user32

UnregisterClassA
SystemParametersInfoW
ShowWindow
SetWindowPlacement
SetFocus
SetDlgItemTextW
SetClassWord
SendMessageW
SendDlgItemMessageW
ReleaseDC
RegisterClassExW
PtInRect
PostQuitMessage
PostMessageW
OemKeyScan
MessageBoxW
LoadImageW
LoadIconW
LoadBitmapW
IsRectEmpty
IsDlgButtonChecked
InvalidateRect
GetWindowLongW
GetSystemMetrics
GetSysColor
GetProcessWindowStation
GetParent
GetIconInfo
GetFocus
GetDC
DrawTextExW
DialogBoxParamW
DestroyWindow
DestroyIcon
DefWindowProcW
CreateWindowExW
CheckMenuRadioItem
CharLowerW
AllowSetForegroundWindow
CheckDlgButton

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

setupapi

SetupQueueCopyIndirectW
CMP_WaitNoPendingInstallEvents
CM_Enumerate_Classes
CM_Get_DevNode_Status
CM_Get_Device_IDW
CM_Get_Device_ID_List_SizeW
CM_Locate_DevNodeW
CM_Query_And_Remove_SubTreeW
CM_Setup_DevNode
SetupCommitFileQueueW
SetupCopyOEMInfW
SetupDefaultQueueCallbackW
SetupDiBuildDriverInfoList
SetupDiCallClassInstaller
SetupDiClassNameFromGuidW
SetupDiCreateDeviceInfoList
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetActualSectionToInstallW
SetupDiGetClassDevsW
SetupDiGetDeviceInstallParamsW
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDriverInfoDetailW
SetupDiOpenClassRegKey
SetupDiOpenDevRegKey
SetupDiOpenDeviceInfoW
SetupDiSetClassInstallParamsW
SetupDiSetDeviceInstallParamsW
SetupDiSetSelectedDevice
SetupFindFirstLineW
SetupFindNextLine
SetupFindNextMatchLineW
SetupGetIntField
SetupGetLineCountW
SetupGetStringFieldW
SetupGetTargetPathW
SetupInitDefaultQueueCallbackEx
SetupInstallFilesFromInfSectionW
SetupInstallFromInfSectionW
SetupOpenAppendInfFileW
SetupOpenFileQueue
SetupOpenInfFileW
SetupTermDefaultQueueCallback

advapi32

AddAccessAllowedAce
AllocateAndInitializeSid
CheckTokenMembership
CloseServiceHandle
ControlService
ConvertStringSecurityDescriptorToSecurityDescriptorW
DeleteService
EqualSid
FreeSid
GetLengthSid
GetTokenInformation
InitializeAcl
InitializeSecurityDescriptor
IsTextUnicode
LsaSetInformationPolicy
LsaStorePrivateData
OpenProcessToken
OpenSCManagerW
OpenServiceW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
SetEntriesInAclW
SetPrivateObjectSecurityEx
SetSecurityDescriptorDacl
SystemFunction024

gdi32

CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectW
CreatePen
DeleteDC
EndDoc
EndPage
GetDeviceCaps
GetObjectW
GetTextMetricsW
SetLayout
StartDocW
StartPage
SwapBuffers

Exports

Exports

HashNotImplemented
Long_Type
Method_Fini
Module_AddObject
ParseString
ThreadsInitialized
vInit

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 197KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab6a3b3f9d7241ac4800a4acf8b4a7f8

Headers

File Characteristics

Imports

kernel32

shell32

user32

version

setupapi

advapi32

gdi32

Exports

Exports

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 197KB - Virtual size: 196KB

.data Size: 108KB - Virtual size: 108KB

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 197KB - Virtual size: 196KB

.data
Size: 108KB - Virtual size: 108KB

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 3KB - Virtual size: 2KB