db4427a5f9ca2ff744528e4b14e087097ca50c21c51ce16a1df1f994354bfd2e

Sharing

Copy URL Twitter E-mail

General

Target

db4427a5f9ca2ff744528e4b14e087097ca50c21c51ce16a1df1f994354bfd2e
Size

317KB
MD5

4c98b4431688ead3cf7b8a8455e453bb
SHA1

5e26e2efcd1a3bd2a671a473051c75ba762d5360
SHA256

db4427a5f9ca2ff744528e4b14e087097ca50c21c51ce16a1df1f994354bfd2e
SHA512

f62e0e2f430fa34b564f6a9ee70042313b8633222426477cc8093948af92edd7f4c71d72f6e6f65176232d403914adee1a5c9ebab1a46d16f5530903486eb2f3
SSDEEP

6144:drx3/k9sULcaOOh04bbC+p1zL8lPL8lG1z97vYMCVuEcBp:d0zf+ACaxLCLndEcBp

Score

N/A

Malware Config

Signatures

Files

db4427a5f9ca2ff744528e4b14e087097ca50c21c51ce16a1df1f994354bfd2e
.exe windows x86

4d959ae5953df25f651fb76b03bd3c52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExW
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExW
RegSetValueExA

ole32

CoUninitialize
CoTaskMemAlloc
CoTaskMemFree

kernel32

FindResourceW
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
InterlockedExchange
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCurrentDirectoryA
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
WaitForMultipleObjects
FindNextFileA
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetProcAddress
GetCPInfo
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
VirtualFree
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
VirtualQuery
GetVersion
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
LoadLibraryExW
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
TlsGetValue
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
SetEvent
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
SetStdHandle
GetLocaleInfoW
MultiByteToWideChar
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
ExpandEnvironmentStringsA
lstrcatA
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindFirstFileW
GetDriveTypeA
LockResource
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
Sleep
FindResourceA
VirtualAlloc
GetOEMCP
lstrcmpiA

user32

ScreenToClient
GetDlgItem
CreateWindowExA
DispatchMessageA
SetWindowTextA
EndDialog
SetWindowLongA
PostMessageA
GetWindowRect
DefWindowProcA
KillTimer
BeginPaint
PeekMessageA
SetFocus
FillRect
SetTimer
GetSubMenu
EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
LoadCursorA
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetKeyState
ClientToScreen
GetClientRect
SendMessageA
GetCursorPos
GetDC
EndPaint
IsWindow
SetWindowPos
PostQuitMessage
GetSysColor
GetFocus
InvalidateRect
CallWindowProcA
SetCursor
LoadIconA
GetDesktopWindow
GetSystemMenu
SetForegroundWindow
ReleaseDC
MoveWindow
MessageBoxA
TranslateMessage
DialogBoxParamA

gdi32

SetBkColor
DeleteObject
GetDeviceCaps
SelectObject
CreateCompatibleDC
SetTextColor
GetStockObject
CreateSolidBrush

oleaut32

VariantInit
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString

msvcrt

exit
_controlfp

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d959ae5953df25f651fb76b03bd3c52

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

user32

gdi32

oleaut32

msvcrt

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 295KB - Virtual size: 295KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 295KB - Virtual size: 295KB

.rsrc
Size: 3KB - Virtual size: 2KB