5ba79266fb2729f2e2374acd61d4711b2646c1cf023e3a3fde8e84b7ddaaed31

Sharing

Copy URL Twitter E-mail

General

Target

5ba79266fb2729f2e2374acd61d4711b2646c1cf023e3a3fde8e84b7ddaaed31
Size

468KB
MD5

731fbbbcd92c48608f031a11f2133ec9
SHA1

5709fd070598bd4bcbc8be416aadab4ff0946d2b
SHA256

5ba79266fb2729f2e2374acd61d4711b2646c1cf023e3a3fde8e84b7ddaaed31
SHA512

893b5366368ba02d3c53540a7e51010a32bb1748712ddbfe57274fb041966685d8deba1c518da44c8717c756a180de78fbb2be9e84ac0e90e8377a2d647496ec
SSDEEP

12288:Hvja493UyLgWETWT4fe3UcTRUtwDzHxtFL7G:PjxUyLgBWT3UcOtAzH8

Score

N/A

Malware Config

Signatures

Files

5ba79266fb2729f2e2374acd61d4711b2646c1cf023e3a3fde8e84b7ddaaed31
.exe windows x86

32eccd53f751ee2892bd2b0a75a89e2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetLastError
FindFirstFileW
FindFirstFileExW
FindNextFileW
FindClose
GetFileAttributesW
CreateDirectoryW
RemoveDirectoryW
DeleteFileW
CopyFileW
GetFullPathNameW
FormatMessageA
LocalFree
UnmapViewOfFile
CloseHandle
MapViewOfFile
CreateFileMappingW
GetFileSize
CreateFileW
HeapAlloc
GetVersion
lstrlenA
InterlockedDecrement
WideCharToMultiByte
CreateFileMappingA
FreeLibrary
GetProcAddress
LoadLibraryW
lstrcatW
GetWindowsDirectoryW
GetModuleFileNameW
CreateProcessW
WaitForSingleObject
GetCurrentThreadId
Process32NextW
TerminateProcess
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
CreateEventW
GetTickCount
CreateMutexW
Sleep
GetCommandLineW
SetFilePointer
ReadFile
SystemTimeToFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryW
SetFileTime
WriteFile
FlushInstructionCache
SizeofResource
lstrlenW
lstrcpyW
GetModuleHandleW
LoadLibraryExW
lstrcmpiW
lstrcpynW
SetCurrentDirectoryW
SetEvent
VirtualProtect
VirtualFree
VirtualAlloc
IsBadCodePtr
IsBadReadPtr
GetPrivateProfileStringA
GetPrivateProfileIntW
DeleteCriticalSection
RtlUnwind
GetSystemInfo
SetEndOfFile
GetLocaleInfoW
LoadLibraryA
CreateFileA
GetOEMCP
SetStdHandle
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
VirtualQuery
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
FlushFileBuffers
IsBadWritePtr
HeapCreate
HeapDestroy
GetProcessHeap
HeapFree
FindResourceExW
FindResourceW
LoadResource
InterlockedIncrement
LockResource
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
GetCurrentProcess
HeapSize
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
GetCPInfo
LCMapStringW
LCMapStringA
GetVersionExA
GetStartupInfoW
GetModuleHandleA
ExitProcess
HeapReAlloc
InterlockedExchange

user32

MoveWindow
GetWindowTextLengthW
SetWindowTextW
GetClientRect
ScreenToClient
ShowWindow
SetTimer
KillTimer
GetDlgItem
MessageBoxW
SendMessageW
IsDialogMessageW
SetWindowPos
MapWindowPoints
PostMessageW
GetWindowLongW
GetWindowRect
CreateDialogParamW
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
IsWindow
GetSystemMetrics
SetForegroundWindow
SetWindowLongW
RegisterClassW
DefWindowProcW
wsprintfW
CharNextW
PostQuitMessage
UnregisterClassW
DestroyWindow
CreateWindowExW
GetParent
GetWindow
SystemParametersInfoW
LoadImageW

gdi32

SetBkColor
ExtTextOutW
DeleteDC
CreateSolidBrush
SetBkMode
DeleteObject

advapi32

RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

ShellExecuteW
ShellExecuteExW

ole32

CoInitialize
CoTaskMemRealloc
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CoCreateInstance

oleaut32

SysAllocString
VariantCopy
VariantInit
VarUI4FromStr
SysFreeString
GetErrorInfo
VariantClear

wininet

FindFirstUrlCacheEntryW
FindNextUrlCacheEntryW
DeleteUrlCacheEntryW
FindCloseUrlCache

shlwapi

PathFileExistsW
PathFindFileNameW

comctl32

InitCommonControlsEx

winmm

timeSetEvent
timeKillEvent

iphlpapi

GetAdaptersInfo

rpcrt4

UuidCreate

psapi

EnumProcessModules
GetModuleFileNameExW

Sections

.text
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

32eccd53f751ee2892bd2b0a75a89e2f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

wininet

shlwapi

comctl32

winmm

iphlpapi

rpcrt4

psapi

Sections

.text Size: 200KB - Virtual size: 199KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 200KB - Virtual size: 200KB

.text
Size: 200KB - Virtual size: 199KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 200KB - Virtual size: 200KB