44c23c8a6429955512429b97b63b723cc446a9a4a078b644211562a02f692cdf

Sharing

Copy URL Twitter E-mail

General

Target

44c23c8a6429955512429b97b63b723cc446a9a4a078b644211562a02f692cdf
Size

256KB
MD5

80901ce1e9e2e50242b97529c5aeeec0
SHA1

8b84daba47bb8576715a52a8805940561175d609
SHA256

44c23c8a6429955512429b97b63b723cc446a9a4a078b644211562a02f692cdf
SHA512

6f661ac0468013b9f8eb708f4e29d34438021bd15622855c3f19065b3a2959cbf2bf8bb20a417812ce57676c7d09a6e5b11ac053bbf17fa6343ec38e49e61d41
SSDEEP

6144:XSTMOZDsNSGec0V19gXQMzY/NhgNhRgsH:XRMG10VcdANhURgo

Score

N/A

Malware Config

Signatures

Files

44c23c8a6429955512429b97b63b723cc446a9a4a078b644211562a02f692cdf
.exe windows x86

89fa692a358c3362444cf4d582f8b6c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetFileSize
CreateFileA
WriteFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
GetCurrentProcess
lstrlenA
LocalAlloc
CopyFileA
GetProcAddress
GetModuleHandleA
GetLocalTime
DeleteFileA
Sleep
LoadLibraryA
FreeLibrary
LoadLibraryExA
FindResourceExA
LockResource
LoadResource
SizeofResource
EnumResourceLanguagesA
GetLocaleInfoA
GetSystemDefaultLangID
SetLastError
GetCurrentThreadId
CloseHandle
SetEndOfFile
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InitializeCriticalSection
FlushFileBuffers
SetStdHandle
GetSystemInfo
VirtualProtect
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
VirtualQuery
InterlockedExchange
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetFileAttributesA
InterlockedIncrement
GetPrivateProfileStringA
GetLastError
GetVersionExA
GetCurrentDirectoryA
InterlockedDecrement
WaitForSingleObject
GetTimeFormatA
GetDateFormatA
FormatMessageA
LocalFree
GetModuleFileNameA
GetWindowsDirectoryA
CreateDirectoryA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
UnhandledExceptionFilter
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
SetUnhandledExceptionFilter
HeapFree
GetCPInfo
GetOEMCP
GetACP
TlsGetValue
TlsSetValue
RtlUnwind
RaiseException
ExitThread
CreateThread
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapReAlloc
ExitProcess
TerminateProcess
HeapSize
TlsAlloc
TlsFree

user32

SetWindowLongA
RegisterClassExA
DefWindowProcA
CreateWindowExA
CheckRadioButton
IsDlgButtonChecked
LoadStringA
GetDlgCtrlID
SendDlgItemMessageA
EndDialog
ExitWindowsEx
CharNextA
DialogBoxParamA
SetWindowTextA
LoadCursorA
LoadIconA
DestroyWindow
PostMessageA
PostQuitMessage
BeginPaint
GetClientRect
LoadBitmapA
ReleaseDC
EndPaint
GetSystemMetrics
ShowWindow
UpdateWindow
GetWindowLongA
SetDlgItemTextA
GetDlgItem
SendMessageA
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

CreateCompatibleDC
SelectObject
StretchBlt
DeleteDC
GetObjectA
CreateFontIndirectA
DeleteObject
CreateSolidBrush

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

ole32

OleRun
CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

SysAllocString
SysFreeString
VariantClear

setupapi

SetupGetLineTextA
SetupFindNextMatchLineA
SetupFindFirstLineA
SetupOpenInfFileA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupFindNextLine

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.prdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

89fa692a358c3362444cf4d582f8b6c1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

setupapi

Sections

.text Size: 96KB - Virtual size: 94KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 56KB - Virtual size: 52KB

.prdata Size: 72KB - Virtual size: 72KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 56KB - Virtual size: 52KB

.prdata
Size: 72KB - Virtual size: 72KB