084a02d6e3cceba3fc864b89ba2520649d4ad0a677e4c9272504b61964d2f83a

Sharing

Copy URL Twitter E-mail

General

Target

084a02d6e3cceba3fc864b89ba2520649d4ad0a677e4c9272504b61964d2f83a
Size

764KB
MD5

800e9b2f8c453681d09b34d30b750a80
SHA1

5fe5234a69f6d8c2e7a61ef8bf46177b924ef716
SHA256

084a02d6e3cceba3fc864b89ba2520649d4ad0a677e4c9272504b61964d2f83a
SHA512

14882db11fe01fd5c0ecf60c94890b36d20d7660f0c119d5d8c5b79b509f6af2f3de9a4e882d2d1851417a1f183b65fa7ac432a2f69874541b74bd9edd950789
SSDEEP

12288:JqVGRyXx9QAS1q7e6rjkxz0dksEdfcl7LsTO5uinyg0VSOWl/Jtxcl/JtxsSsPz:0VpxWASobjkpAEdfo7o65uSyg6mgsSoz

Score

N/A

Malware Config

Signatures

Files

084a02d6e3cceba3fc864b89ba2520649d4ad0a677e4c9272504b61964d2f83a
.exe windows x86

2da7c1ee4ea5596ffc001d331275899c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
Sleep
FindResourceA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
lstrlenA
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetPrivateProfileStringA
LeaveCriticalSection
EnterCriticalSection
CloseHandle
CreateMutexA
GetLastError
InterlockedExchange
GetStartupInfoA
InterlockedCompareExchange
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
ExitProcess
GetCurrentThread
SetThreadPriority
GetCurrentProcess
SetPriorityClass
GlobalUnlock
GlobalLock
GlobalAlloc
LockResource
SizeofResource
FindNextFileA
lstrcmpA
FindFirstFileA
DeleteFileA
GetModuleHandleA
GetModuleFileNameA
OutputDebugStringA
lstrcpyA
GetTickCount
LoadResource

user32

MessageBoxA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
ShowWindow
BeginPaint
EndPaint
FindWindowA
PostMessageA
DrawTextA
IsIconic
GetCursorPos
ClientToScreen
InvalidateRect
SendMessageA
SetWindowLongA
DestroyWindow
IsWindow
GetParent
SetPropA
GetWindowLongA
SetWindowRgn
GetWindowRgn
GetWindowRect
MoveWindow
TrackMouseEvent
SetClassLongA
SetCursor
CallWindowProcA
GetPropA
EnableWindow
GetWindowTextA
GetSysColor
GetDC
ReleaseDC
SetRect
GetIconInfo
DrawIcon
FillRect
DrawFocusRect
UnregisterClassA
GetClientRect
SetWindowPos
GetSystemMetrics
UpdateWindow
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA
DefWindowProcA
PostQuitMessage

gdi32

GetObjectA
BitBlt
DeleteDC
SetTextColor
CreateFontA
SetBkMode
GetDIBColorTable
StretchBlt
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreatePen
CreateSolidBrush
CreateRoundRectRgn
SaveDC
CreateRectRgn
SelectClipRgn
RestoreDC
GetPixel
CombineRgn
CreateDIBSection
SetDIBColorTable
LineTo
MoveToEx
RoundRect

gdiplus

GdiplusShutdown
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipCreateBitmapFromStream
GdipDisposeImage
GdipAlloc
GdiplusStartup
GdipFree
GdipCloneImage

msimg32

TransparentBlt
AlphaBlend

msvcp80

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcr80

sprintf
printf
_beginthreadex
memcpy_s
strrchr
_rmdir
_pgmptr
memset
_unlock
_encode_pointer
__dllonexit
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_amsg_exit
_resetstkoflw
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
malloc
free
_invalid_parameter_noinfo
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
??3@YAXPAX@Z
__CxxFrameHandler3
_CxxThrowException
__getmainargs
memcpy

advapi32

RegDeleteKeyA
RegOpenKeyExA

shell32

SHGetPathFromIDListA
SHChangeNotify
ShellExecuteA
SHGetSpecialFolderLocation

ole32

CoUninitialize
CoInitialize
CreateStreamOnHGlobal

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 716KB - Virtual size: 713KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2da7c1ee4ea5596ffc001d331275899c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

gdiplus

msimg32

msvcp80

msvcr80

advapi32

shell32

ole32

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 716KB - Virtual size: 713KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 716KB - Virtual size: 713KB