917d872a64795f2922f44c05b03cb3cc9c31914dfaec4b783f4cbfdc6d585ec7

Sharing

Copy URL Twitter E-mail

General

Target

917d872a64795f2922f44c05b03cb3cc9c31914dfaec4b783f4cbfdc6d585ec7
Size

103KB
MD5

7a25012e6417477507c062bff2c9eb70
SHA1

48832d633dc413a733e8ec4e2eaf5d3ce931e7c8
SHA256

917d872a64795f2922f44c05b03cb3cc9c31914dfaec4b783f4cbfdc6d585ec7
SHA512

879750f3b7e20c95e1097bd4abfe01db50d85532c478f0abffaf5bc544210d977b11e68ee5a9373fe6ab588395f7086ee93457326408687be8ddc3b316468c61
SSDEEP

3072:yr7WfSUH2UkjB8rlkIxOt0dqCqPnlq29Y:ymKBXjUkIEt0d4V

Score

N/A

Malware Config

Signatures

Files

917d872a64795f2922f44c05b03cb3cc9c31914dfaec4b783f4cbfdc6d585ec7
.exe windows x86

4ac478afe904fe55d52fac7a44ad17b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetWindowLongA
IsWindow
DialogBoxParamA
GetMessageA
PeekMessageA
IsZoomed
PostMessageA
GetWindowTextA
GetCaretPos
CreateWindowExA
SetFocus
CharToOemA
EndPaint
wsprintfA
LoadCursorA
DispatchMessageA
IsCharLowerA

msimg32

vSetDdrawflag
DllInitialize
TransparentBlt
GradientFill

wtsapi32

WTSFreeMemory
WTSSendMessageA
WTSEnumerateSessionsA
WTSSetSessionInformationA
WTSQuerySessionInformationA
WTSVirtualChannelWrite
WTSVirtualChannelClose
WTSSetUserConfigA
WTSOpenServerA
WTSCloseServer
WTSVirtualChannelRead
WTSEnumerateProcessesA
WTSLogoffSession
WTSVirtualChannelOpen
WTSUnRegisterSessionNotification

cabinet

DeleteExtractedFiles
FCIAddFile

dsprop

ReportError
CheckADsError

uxtheme

GetThemeColor
GetThemeTextExtent
DrawThemeEdge
GetThemeBool
GetWindowTheme
GetThemeEnumValue
DrawThemeBackground
CloseThemeData
GetThemeSysSize
IsThemeActive
SetWindowTheme
GetThemeTextMetrics
GetThemeInt

kernel32

CreateMutexA
PurgeComm
FormatMessageA
GetSystemTime
GetCurrentDirectoryA
CloseHandle
GetEnvironmentVariableW
GetProcessHeap
FoldStringA
GetComputerNameA
FileTimeToSystemTime
CompareStringA
GetProcAddress
CreateTimerQueue
GetAtomNameA
GetBinaryTypeA
SetFileAttributesA
VirtualQueryEx
GetModuleHandleA
CreateEventW
IsProcessInJob
CopyFileA
GetProcessTimes
CreateSemaphoreA
FindResourceA
GetFileSize
CreateNamedPipeA

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4ac478afe904fe55d52fac7a44ad17b5

Headers

File Characteristics

Imports

user32

msimg32

wtsapi32

cabinet

dsprop

uxtheme

kernel32

Sections

.text Size: 40KB - Virtual size: 40KB

.data Size: 43KB - Virtual size: 42KB

.kdata Size: 19KB - Virtual size: 19KB

.text
Size: 40KB - Virtual size: 40KB

.data
Size: 43KB - Virtual size: 42KB

.kdata
Size: 19KB - Virtual size: 19KB