8ec763dafdb24f00738f0c65eff076b1452fd114700c151496f19c8dcde955c3

Sharing

Copy URL Twitter E-mail

General

Target

8ec763dafdb24f00738f0c65eff076b1452fd114700c151496f19c8dcde955c3
Size

676KB
MD5

79b49b124240d632b7f975cd5932d780
SHA1

a162151aabcf4926f81de056c1f8705e86b0295e
SHA256

8ec763dafdb24f00738f0c65eff076b1452fd114700c151496f19c8dcde955c3
SHA512

34055c9d1bb3c61deefbd3b3379a0137d33336dd3b1c0c0571015f7979a0d1458cabeb667f56662ed26ed5fead4bfa73560378117a985e181dd6345cdfd365a8
SSDEEP

12288:QcniiN+TtC4YkcD5G3m4x4U+BQvWb3FSD71wYkz0Kx9CkC11FAKe5GByMA90mS:7dNB4FcDBBkWjA/1ezukyFAKe8ByM

Score

N/A

Malware Config

Signatures

Files

8ec763dafdb24f00738f0c65eff076b1452fd114700c151496f19c8dcde955c3
.exe windows x86

2f10a8aa2c685e350cca70fa1a4800a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
GetWindowPlacement
RegisterClassA
GetActiveWindow
DefWindowProcA
RegisterClassExA
MessageBoxA
DestroyWindow
GetMenuState
OffsetRect
CreateWindowExA
ShowWindow
GetClassInfoExA

shell32

ShellExecuteExW
SHGetFolderPathW
ord155
SHGetPathFromIDListW

comdlg32

GetOpenFileNameW
GetOpenFileNameA

shlwapi

PathStripToRootA
PathIsRelativeA
PathFindFileNameA
PathAppendA
PathSkipRootA
PathAddBackslashA
PathRemoveExtensionA
PathQuoteSpacesA
PathIsUNCA
PathFileExistsA
UrlUnescapeA
PathFindExtensionA

ole32

CLSIDFromProgID
OleIsRunning
StringFromCLSID
OleInitialize
StgOpenStorageOnILockBytes
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterClassObject
WriteClassStm
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes

kernel32

FatalAppExitA
GetEnvironmentStrings
TlsAlloc
GetDriveTypeA
ReadFile
GetCurrentThreadId
GetStringTypeW
InterlockedCompareExchange
GetTimeFormatA
SetConsoleCtrlHandler
GetCPInfo
GetLocaleInfoA
LocalReAlloc
HeapAlloc
RtlUnwind
LoadLibraryA
GetProcAddress
GlobalLock
FreeLibrary
lstrlenW
IsBadReadPtr
InitializeCriticalSection
IsBadCodePtr
SetHandleCount
SetLastError
GetSystemDirectoryA
GetStringTypeA
lstrcpyA
ExitThread
GetModuleFileNameA
FindClose
LCMapStringA
GetCurrentThread
GetUserDefaultLCID
VirtualQuery
FormatMessageA
HeapSize
FreeEnvironmentStringsA
GetTimeZoneInformation
GlobalAlloc
OpenMutexA
WideCharToMultiByte
IsBadWritePtr
GetVolumeInformationA
QueryPerformanceCounter
GetACP
CloseHandle
GetCommandLineA
FindNextFileA
CreateFileA
GetEnvironmentVariableA
GetLastError
SetUnhandledExceptionFilter
InterlockedExchange
HeapReAlloc
FlushFileBuffers
GetCurrentDirectoryA
lstrlenA
IsValidCodePage
CompareStringA
IsDebuggerPresent
SetFilePointer
InterlockedIncrement
GetFullPathNameA
DeleteCriticalSection
GlobalFree
ExitProcess
CreateEventA
SetEnvironmentVariableA
CreateMutexA
FreeResource
GlobalSize
MultiByteToWideChar
EnterCriticalSection
RaiseException
GlobalUnlock
WritePrivateProfileStringA
SystemTimeToFileTime
TlsFree
GlobalDeleteAtom
HeapFree
GetFileType
GetSystemInfo
WriteFile
VirtualAlloc
GetEnvironmentStringsW
VirtualFree
GetFileSize
HeapCreate
SetFileTime
GetStartupInfoA
Sleep
SetStdHandle
HeapDestroy
VirtualProtect
GetExitCodeProcess
CompareStringW
GetLocaleInfoW
GetLocalTime
GetOEMCP
ResumeThread
lstrcmpiA
TlsSetValue
FreeEnvironmentStringsW
GetFileTime
IsDBCSLeadByte
GetCurrentProcess
FileTimeToSystemTime
FindFirstFileA
TlsGetValue
IsValidLocale
SuspendThread
GetVersionExA
UnmapViewOfFile
GlobalFindAtomA
InterlockedDecrement
LocalFree
LeaveCriticalSection
SetEndOfFile
LCMapStringW
GetCurrentProcessId
GetFileAttributesA
GetModuleHandleA
TerminateProcess
UnhandledExceptionFilter
GetTickCount
GetStdHandle
GetSystemTimeAsFileTime
GetDateFormatA
EnumSystemLocalesA
CreateFileW

advapi32

RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
ChangeServiceConfigA
OpenProcessToken
AllocateAndInitializeSid
QueryServiceStatus
LookupPrivilegeValueA
RegDeleteKeyA
CloseServiceHandle
QueryServiceConfigA
AdjustTokenPrivileges
OpenServiceA
RegOpenKeyA
RegCloseKey
RegCreateKeyA
GetUserNameA
RegEnumValueA
OpenThreadToken
OpenSCManagerA
RegEnumKeyExA
RegOpenKeyExA
DeleteService

wininet

InternetTimeFromSystemTime
InternetTimeToSystemTime
HttpSendRequestA

gdi32

Pie
ScaleWindowExtEx
Arc
SetTextColor
GetBkMode
SaveDC
GetClipRgn
ExtTextOutA
SetViewportOrgEx
SetBitmapBits
GetPixel
RestoreDC
PolyBezierTo
PolylineTo
StartPage
CreateRectRgn
FillRgn
StretchBlt
EqualRgn
OffsetViewportOrgEx
IntersectClipRect
UpdateColors
GetTextAlign
PaintRgn
GetTextFaceA
ExcludeClipRect
PlayEnhMetaFile
EndPage
SetROP2
OffsetWindowOrgEx
RectVisible
GetPaletteEntries
CloseMetaFile
GetCharABCWidthsA
Escape
CreateBitmap
CreatePalette
FlattenPath
RectInRegion
GetPath
GetBitmapDimensionEx
CloseFigure
SetRectRgn
CreateHatchBrush
FrameRgn
EndDoc
CreateEllipticRgnIndirect
GetCurrentPositionEx
DPtoLP
GetMapMode
ExtCreateRegion
SetArcDirection
CreateEnhMetaFileA
GetROP2
CreateBitmapIndirect
ExtFloodFill
CreateCompatibleBitmap
CloseEnhMetaFile
GetStretchBltMode
CreateCompatibleDC
Polygon
ScaleViewportExtEx
CreatePenIndirect
Polyline
CreateMetaFileA
SetWindowExtEx
GetPolyFillMode
GetGlyphOutlineA
DeleteMetaFile
GetViewportOrgEx
SetBitmapDimensionEx
GetClipBox
ExtCreatePen
PolyPolygon
CreateICA
SetTextJustification
GetTextExtentPointA
GetCharWidthA
EndPath
StartDocA
GetBoundsRect
GetObjectA
SetPixel
BitBlt
GetRgnBox
SetPixelV
GetTextColor
AbortDoc
SelectClipPath
OffsetRgn
GetTextCharacterExtra
FloodFill
UnrealizeObject
CreateRectRgnIndirect
StrokePath
FillPath
CreateEllipticRgn
CreateDIBitmap
CreateSolidBrush
CreateBrushIndirect
CreateRoundRectRgn
SetMapMode
SelectClipRgn
BeginPath
SetViewportExtEx
GetWindowOrgEx
GetFontData
SetWindowOrgEx
PathToRegion
GetNearestPaletteIndex
DeleteObject
SetTextAlign

comctl32

ImageList_LoadImageA
ImageList_Create
ImageList_ReplaceIcon
ord17
ImageList_Add
ImageList_Destroy
DestroyPropertySheetPage
InitCommonControlsEx

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f10a8aa2c685e350cca70fa1a4800a4

Headers

File Characteristics

Imports

user32

shell32

comdlg32

shlwapi

ole32

kernel32

advapi32

wininet

gdi32

comctl32

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 456KB - Virtual size: 453KB

.data Size: 104KB - Virtual size: 101KB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 456KB - Virtual size: 453KB

.data
Size: 104KB - Virtual size: 101KB

.rsrc
Size: 28KB - Virtual size: 26KB