aa587a103b178a9459ef1b258c722ee626df3853eaa60de2d4ecb3bdb381dd6b

Sharing

Copy URL Twitter E-mail

General

Target

aa587a103b178a9459ef1b258c722ee626df3853eaa60de2d4ecb3bdb381dd6b
Size

476KB
MD5

7d3e16433319e61d0a793f9a8dbaa6bf
SHA1

a85dcb597d84772623def4e9267f7fdcdc63468f
SHA256

aa587a103b178a9459ef1b258c722ee626df3853eaa60de2d4ecb3bdb381dd6b
SHA512

2fd2c3f23248a83e12116872c09ba2f93dcb330c8528b8934f002b252cc478eba40def83ffc2566f2e7822ae4384cf9eca06fa693aae669e89f1683aa0b64183
SSDEEP

12288:9s8I65X4f9cbWu/axAgPH7Yw+eVP3rn8jotmsa761N7toG2RQ:9RWuPubHVP3rmtsa7613sQ

Score

N/A

Malware Config

Signatures

Files

aa587a103b178a9459ef1b258c722ee626df3853eaa60de2d4ecb3bdb381dd6b
.exe windows x86

8220c44b9ec583eaf2d99952e4383a01

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM

Imports

kernel32

GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
GetFileAttributesA
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
ExitProcess
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
HeapCreate
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
GetLocaleInfoW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
IsProcessorFeaturePresent
GetCPInfo
LCMapStringW
WideCharToMultiByte
GetStartupInfoW
HeapSetInformation
GetCommandLineA
MultiByteToWideChar
HeapReAlloc
HeapSize
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
LoadLibraryW
WriteConsoleW
SetStdHandle
GetExitCodeProcess
WaitForSingleObject
CreateFileW
CompareStringW
GetLastError
FormatMessageA
MulDiv
CreateFileA
CloseHandle
CreatePipe
WaitForMultipleObjects
LoadLibraryA
lstrcpyA
CreateProcessA
GetFileSize
GlobalAlloc
GlobalLock
FreeLibrary
GetFileAttributesW
ReadFile
GlobalUnlock
HeapAlloc
lstrcmpiA
LocalFree
GetModuleFileNameA
lstrlenA
Sleep
RtlUnwind
RaiseException
HeapFree
DecodePointer
EncodePointer
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
CreateToolhelp32Snapshot
Process32Next
GetProcAddress
SetLastError
SetEnvironmentVariableA

user32

DispatchMessageA
ShowScrollBar
GetClientRect
CheckMenuItem
GetDC
BeginPaint
wsprintfA
EndPaint
DefWindowProcA
SendMessageA
ReleaseDC
MessageBoxA
SetFocus
DestroyWindow
MoveWindow
ShowWindow
SendDlgItemMessageA
GetWindowLongA
CreateWindowExA
LoadBitmapA
LoadStringA
GetParent
CopyRect
DrawTextA
EndDeferWindowPos
GetMenu
MsgWaitForMultipleObjects
PeekMessageA
GetMessageA
GetFocus
IsDialogMessageA
TranslateMessage
GetDlgCtrlID
GetSystemMetrics
SetWindowPos
InvalidateRect
SetWindowLongA
LoadImageA
DestroyIcon
SetDlgItemTextA
EndDialog
GetDlgItemTextA
GetClassNameA
GetScrollInfo
SetDlgItemInt
DialogBoxParamA
ValidateRect
PostQuitMessage
GetDialogBaseUnits
OpenClipboard
EmptyClipboard
CopyImage
SetClipboardData
CloseClipboard
ReleaseCapture
GetClassLongA
SetClassLongA
GetSystemMenu
EnableMenuItem
GetDlgItem

gdi32

CreatePen
SelectObject
CreateSolidBrush
Rectangle
GetDeviceCaps
CreateFontA
SaveDC
DeleteObject
RestoreDC
GetTextExtentPoint32A
SetTextColor
CreateCompatibleBitmap
GetStockObject
PatBlt
DeleteDC
GetTextExtentPointA
StartDocA
StartPage
SetMapMode
SetWindowExtEx
SetViewportExtEx
SetViewportOrgEx
MoveToEx
LineTo
Polyline
EndPage
EndDoc
CreateCompatibleDC
SetBkMode
TextOutA

comdlg32

ChooseFontA
GetOpenFileNameA
FindTextW

advapi32

CredMarshalCredentialA
AddAce

shell32

SHGetFileInfoA

ole32

OleInitialize
CreateStreamOnHGlobal

oleaut32

OleSavePictureFile
OleLoadPicture

msimg32

GradientFill

shlwapi

StrDupA
StrChrA
PathFindExtensionA
PathFindFileNameA

comctl32

ord17
ImageList_ReplaceIcon
ImageList_Create
ImageList_Add

winhttp

WinHttpGetIEProxyConfigForCurrentUser

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8220c44b9ec583eaf2d99952e4383a01

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

msimg32

shlwapi

comctl32

winhttp

Sections

.text Size: 109KB - Virtual size: 108KB

.rdata Size: 256KB - Virtual size: 256KB

.data Size: 6KB - Virtual size: 14KB

.rsrc Size: 103KB - Virtual size: 103KB

.text
Size: 109KB - Virtual size: 108KB

.rdata
Size: 256KB - Virtual size: 256KB

.data
Size: 6KB - Virtual size: 14KB

.rsrc
Size: 103KB - Virtual size: 103KB