f13adc46ff31a1f1e4a76f684e2244e7e55ed2974ab166d5b13d90bc955c81fb

Sharing

Copy URL Twitter E-mail

General

Target

f13adc46ff31a1f1e4a76f684e2244e7e55ed2974ab166d5b13d90bc955c81fb
Size

853KB
MD5

a0b0bc88f483fe26217055af3aba75cb
SHA1

f4834198fe9188d47e6f14a20b6e225cd9d908cd
SHA256

f13adc46ff31a1f1e4a76f684e2244e7e55ed2974ab166d5b13d90bc955c81fb
SHA512

c76d1e12589bbd80a31dd2afd0e6f056e6d15d186f7f3d1e754c677bafbdf30d9fdaa8d046d079dea8072be38bc3de41858a405d57dad17fd57aba2237cab3e0
SSDEEP

24576:hP67YzXXo8X3EDf2UaAD9tvCkw9ydY7o:BwstNUXLhwiY7

Score

N/A

Malware Config

Signatures

Files

f13adc46ff31a1f1e4a76f684e2244e7e55ed2974ab166d5b13d90bc955c81fb
.exe windows x86

35e957acd78709d0407b0f7e5604dab1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
FreeLibrary
ExitProcess
LoadLibraryExW
lstrcatW
GetVersion
CreateProcessW
lstrcmpiW
GetFullPathNameW
lstrcpyW
Sleep
SearchPathW
GetSystemDirectoryW
WriteFile
GetPrivateProfileStringW
ExpandEnvironmentStringsW
GetProcAddress
WaitForSingleObject
CopyFileW
CreateDirectoryW
lstrcpynA
GetTempFileNameW
GlobalLock
GetShortPathNameW
lstrcmpW
GetTickCount
lstrcpynW
CreateThread
CreateFileW
ReadFile
MoveFileW
LoadLibraryA
SetErrorMode
WideCharToMultiByte
GetCommandLineW
SetCurrentDirectoryW
FindClose
GetModuleHandleW
HeapAlloc
HeapCreate
GetModuleHandleA
GetTempPathW
CloseHandle
lstrcpyA
GlobalUnlock
RemoveDirectoryW
OpenProcess
SetFilePointer
CompareFileTime
GlobalAlloc
MultiByteToWideChar
LoadLibraryW
WritePrivateProfileStringW
DeleteFileW
SetFileTime
GetVersionExW
SetFileAttributesW
GetFileAttributesW
GetExitCodeProcess
GlobalFree
GetDiskFreeSpaceW
lstrcmpiA
GetWindowsDirectoryW
GetLastError
MulDiv
GetModuleFileNameW
FindNextFileW
GetCurrentProcess
GetFileSize
FindFirstFileW
lstrlenA

user32

DefWindowProcW
CharNextW
GetMessagePos
LoadCursorW
LoadBitmapW
IsWindowVisible
GetSystemMetrics
IsWindow
CloseClipboard
CheckDlgButton
PostQuitMessage
OpenClipboard
SystemParametersInfoW
PeekMessageW
GetSysColor
DispatchMessageW
CharPrevW
EndDialog
ExitWindowsEx
AppendMenuW
TrackPopupMenu
SetWindowTextW
IsWindowEnabled
GetClassInfoW
GetSystemMenu
SetDlgItemTextW
wsprintfA
GetDlgItemTextW
GetWindowRect
SetClassLongW
LoadImageW
MessageBoxIndirectW
SetWindowPos
CharNextA
CharUpperW
DestroyWindow
EmptyClipboard
SendMessageW
CallWindowProcW
ScreenToClient
EndPaint
CreateDialogParamW
GetWindowLongW
SetWindowLongW
FindWindowExW
ShowWindow
wsprintfW
EnableMenuItem
DialogBoxParamW
SetTimer
RegisterClassW
GetDC
CreateWindowExW
FillRect
SendMessageTimeoutW
EnableWindow
SetClipboardData
SetForegroundWindow
InvalidateRect
BeginPaint
CreatePopupMenu
GetClientRect
DrawTextW
SetCursor
GetDlgItem

gdi32

CreateFontIndirectW
SetBkColor
SelectObject
SetBkMode
GetDeviceCaps
CreateBrushIndirect
DeleteObject
SetTextColor

advapi32

RegEnumValueW
RegDeleteValueW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyW
RegCloseKey
RegDeleteKeyW
RegQueryValueExW

shell32

ShellExecuteW
SHGetFileInfoW
SHGetPathFromIDListW
SHFileOperationW
SHBrowseForFolderW
SHGetSpecialFolderLocation

ole32

OleUninitialize
CoCreateInstance
CoTaskMemFree
OleInitialize

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

secur32

QuerySecurityPackageInfoA

wldap32

ord13

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xyue
Size: 512B - Virtual size: 230B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 622KB - Virtual size: 622KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35e957acd78709d0407b0f7e5604dab1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

version

secur32

wldap32

Sections

.text Size: 92KB - Virtual size: 92KB

.xyue Size: 512B - Virtual size: 230B

.rdata Size: 622KB - Virtual size: 622KB

.data Size: 116KB - Virtual size: 6.1MB

.CRT Size: 512B - Virtual size: 8B

.tls Size: 512B - Virtual size: 57B

.rsrc Size: 13KB - Virtual size: 13KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 92KB - Virtual size: 92KB

.xyue
Size: 512B - Virtual size: 230B

.rdata
Size: 622KB - Virtual size: 622KB

.data
Size: 116KB - Virtual size: 6.1MB

.CRT
Size: 512B - Virtual size: 8B

.tls
Size: 512B - Virtual size: 57B

.rsrc
Size: 13KB - Virtual size: 13KB

.reloc
Size: 5KB - Virtual size: 5KB