ab623df15bf1b5550884e7bf9f4cbbfe3503b83dc13eb5a800017cc567649381

Sharing

Copy URL Twitter E-mail

General

Target

ab623df15bf1b5550884e7bf9f4cbbfe3503b83dc13eb5a800017cc567649381
Size

163KB
MD5

640cfce2222140cb792628937b888620
SHA1

653d267cc1d1bcd873b4a3a0c16e5a86c694b6fd
SHA256

ab623df15bf1b5550884e7bf9f4cbbfe3503b83dc13eb5a800017cc567649381
SHA512

9c360f2019eb03b70b90aaa9ba868a41f4ec9bef4620e6bbc4732c1b4308cb8f0ddbe171e471a275e9a86b50fbdac23d4fd546e1a35ad5b00dea15e198683735
SSDEEP

3072:+wfGKRiYbPvsbs/0dhQXsGq0lJWW5DTJqqtsDC5t22Mo:BfGssbsAhQ8Gb8i22F

Score

N/A

Malware Config

Signatures

Files

ab623df15bf1b5550884e7bf9f4cbbfe3503b83dc13eb5a800017cc567649381
.exe windows x86

cd66dbd4e273cf9e6532b74bbca40463

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharLowerBuffA
SetDlgItemTextA
GetWindowInfo
OemToCharW
KillTimer
GetWindowRgn
GetProcessWindowStation
DrawCaption
ToAsciiEx
GetTabbedTextExtentA
SetThreadDesktop
EnumDisplayMonitors
GetKeyNameTextW
FindWindowW
SendMessageCallbackW
GetDCEx
InsertMenuW
DestroyWindow
CallWindowProcW
GetMenuItemInfoW
GetMessageA
GetLastInputInfo
GetMenuItemRect
EnableWindow
CheckMenuRadioItem
WinHelpW
WindowFromDC
GetClipboardViewer
GetAltTabInfoA
EmptyClipboard
TabbedTextOutW
GetDlgCtrlID
OemToCharA
GetMenuContextHelpId
GetSystemMenu
CreateDialogIndirectParamA
ShowCursor
LockWorkStation
RealGetWindowClassW
UnloadKeyboardLayout
GetMenuItemID
GetScrollRange
CallWindowProcA
OemToCharBuffA
SetCaretPos
AdjustWindowRectEx
GetWindowTextLengthW
LoadMenuIndirectA
SetWindowPlacement
ValidateRect
GetListBoxInfo
GetClipboardData
GetDlgItemTextW
ActivateKeyboardLayout
GetDlgItem
InflateRect
LoadBitmapA
GetScrollPos
GetMessagePos
GetUserObjectSecurity
SetDlgItemInt
ScreenToClient
CharLowerBuffW
GetWindowPlacement
FlashWindowEx
LoadAcceleratorsW
GetShellWindow
GetClipCursor
EnumDesktopWindows
InvalidateRect
GetUserObjectInformationW
SwitchDesktop
GetKeyboardLayout
CloseWindowStation
WaitForInputIdle
EnumThreadWindows
GetClassInfoExA
WindowFromPoint
ChildWindowFromPointEx
GetSysColorBrush
ShowScrollBar
SetPropW
DrawFrameControl
LoadImageA
RemoveMenu
SetDebugErrorLevel
OpenClipboard
wvsprintfA
GetWindowRect
CreateAcceleratorTableA
CreateIcon
MoveWindow
GetKeyboardType
PostThreadMessageW
EnumPropsA
GetComboBoxInfo
CharNextA
IsRectEmpty
PrivateExtractIconsW
LoadKeyboardLayoutW
RealGetWindowClassA
EnableScrollBar
GetMenuItemInfoA
EnumPropsExW
IsCharUpperW
TranslateMessage
DefFrameProcW
ChildWindowFromPoint
LoadCursorA
RemovePropW
MapDialogRect
RegisterHotKey
SetCursorPos
IsCharUpperA
MonitorFromPoint
GetKeyboardLayoutNameW
CopyAcceleratorTableA
CharToOemBuffA
DialogBoxParamA
DefWindowProcA
SetCaretBlinkTime
PrintWindow
GetClassNameW
GetCursor
OffsetRect
RegisterWindowMessageA
FlashWindow
CharToOemA
SetWindowWord
RegisterDeviceNotificationW
ToUnicodeEx
DialogBoxIndirectParamW
LoadBitmapW
DestroyIcon
FillRect
SetWindowPos
GetMenu
EndPaint
ChangeDisplaySettingsW
TranslateAcceleratorW
SetMenuItemInfoA
GetMessageTime
DdeNameService
CopyRect
GetWindow
GetSysColor
GetWindowModuleFileNameA
SetMenu

shell32

ShellAboutW
DoEnvironmentSubstW
Shell_NotifyIconA
Shell_NotifyIconW
ExtractIconExA
FindExecutableA

ole32

OleRegGetMiscStatus
IIDFromString
OleCreateLinkFromDataEx
CLSIDFromProgIDEx
HICON_UserFree
CreateILockBytesOnHGlobal
StgCreateDocfile
CoCreateInstanceEx
CoTaskMemFree
CreateAntiMoniker
CoRevokeMallocSpy
CoLoadLibrary
GetRunningObjectTable

advapi32

ObjectOpenAuditAlarmA
CreatePrivateObjectSecurity
RegNotifyChangeKeyValue
RegQueryInfoKeyA
RegCreateKeyW
RegCloseKey
RegEnumKeyW
RevertToSelf
ObjectCloseAuditAlarmA
RegQueryValueW

gdi32

CreateDCA
CancelDC
CreateDIBitmap
AddFontMemResourceEx
CreateColorSpaceW
Chord
CreateDCW
CloseEnhMetaFile
CreateDIBPatternBrush
AddFontResourceExW

comctl32

ImageList_DrawIndirect
PropertySheetW
ImageList_EndDrag
ImageList_LoadImageW
InitMUILanguage
ImageList_SetIconSize
ImageList_SetDragCursorImage
CreatePropertySheetPageA
CreateStatusWindowW
GetMUILanguage

oleaut32

SetErrorInfo

kernel32

ExitProcess
HeapFree
GetCPInfo
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetModuleHandleW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeFormatA
InterlockedDecrement
InterlockedIncrement
RtlUnwind
GetACP
GetLastError
GetOEMCP
ReadConsoleInputW
LoadLibraryW
GetAtomNameW
GetVersionExA
SetCriticalSectionSpinCount
GetModuleHandleA
GlobalAddAtomW
IsBadStringPtrA
GetMailslotInfo
GetDiskFreeSpaceW
GetPrivateProfileStringA
QueryInformationJobObject
GetCompressedFileSizeA
Sleep
AddVectoredExceptionHandler
OpenJobObjectW
ReadConsoleInputA
GetConsoleProcessList
GlobalFindAtomW
SetFileApisToANSI
IsWow64Process
GetEnvironmentStrings
FlushFileBuffers
GetFullPathNameA
CommConfigDialogW
WriteFileGather
GetProcessShutdownParameters
GlobalGetAtomNameW
WriteConsoleOutputA
CreateRemoteThread
GlobalGetAtomNameA
SuspendThread
GetCurrentProcessId
OpenProcess
VirtualAllocEx
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
WideCharToMultiByte
GetTimeZoneInformation
HeapAlloc
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
VirtualFree
QueryPerformanceCounter
SetFilePointer
GetTickCount
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
VirtualAlloc
HeapReAlloc
GetVersion
LoadLibraryA
RaiseException
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
HeapSize
CloseHandle
CreateFileA
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd66dbd4e273cf9e6532b74bbca40463

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

comctl32

oleaut32

kernel32

Sections

.text Size: 96KB - Virtual size: 96KB

.rdata Size: 42KB - Virtual size: 42KB

.data Size: 5KB - Virtual size: 32KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 96KB - Virtual size: 96KB

.rdata
Size: 42KB - Virtual size: 42KB

.data
Size: 5KB - Virtual size: 32KB

.rsrc
Size: 18KB - Virtual size: 17KB