4ee9fb857179cd2019c649ae530bfe96a2f14d77380e889c2122d786b54c9aaf

Sharing

Copy URL Twitter E-mail

General

Target

4ee9fb857179cd2019c649ae530bfe96a2f14d77380e889c2122d786b54c9aaf
Size

459KB
MD5

424cf2800131d323e954eb50cf25f723
SHA1

678e0744c7353f9c60c2e6f9a397676c95673d15
SHA256

4ee9fb857179cd2019c649ae530bfe96a2f14d77380e889c2122d786b54c9aaf
SHA512

8e603b72c9518b0403e4a2668d82770f0014784b2574bf10459faab2a528d395c0ca20830bb900eacc8268a459646a656d60b61f6554263c9b17ba6fdb3667d4
SSDEEP

6144:cJXa0eK0/doUtrEpriSHXozS0lnwmXe1DMpiTMUvaD+4qhGLs6:cJKNlFtrEpNHH0dwCoMphzwhGo

Score

N/A

Malware Config

Signatures

Files

4ee9fb857179cd2019c649ae530bfe96a2f14d77380e889c2122d786b54c9aaf
.dll windows x86

93f158f76c53aff96e7f9aa9866fedd9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdi32

CreateCompatibleDC
CreateFontIndirectW
DeleteDC
DeleteObject
EndDoc
EndPage
ExtTextOutW
GdiFlush
GetDIBits
GetDeviceCaps
GetObjectW
GetStockObject
GetTextExtentPoint32W
GetTextMetricsW
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetTextColor
StartDocW
StartPage
CreateDIBSection

kernel32

GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNumberFormatW
GetOEMCP
GetPrivateProfileSectionW
GetPrivateProfileStringW
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetProfileStringW
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
GetTimeFormatW
GetVersion
GetWindowsDirectoryW
GlobalAlloc
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapFree
FindNextFileW
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MapViewOfFile
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
Process32FirstW
GetFullPathNameW
QueryPerformanceCounter
RaiseException
ReadFile
RemoveDirectoryW
ResumeThread
RtlUnwind
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetFileAttributesW
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
FindClose
WritePrivateProfileStringW
WriteProfileStringW
lstrcatW
lstrlenA
lstrlenW
FileTimeToSystemTime
FileTimeToLocalFileTime
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateToolhelp32Snapshot
CreateThread
CreateProcessW
CreateFileMappingW
CreateFileA
CreateDirectoryW
CloseHandle
GetFileType
GetFileTime
GetFileSize
GetFileAttributesW
GetEnvironmentStringsW
GetEnvironmentStringsA
GetDateFormatW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageW
Process32NextW
FlushFileBuffers
HeapReAlloc
WritePrivateProfileSectionW

advapi32

SetSecurityInfo
RevertToSelf
RegUnLoadKeyW
RegSetKeySecurity
RegQueryValueW
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyExW
RegOpenKeyExA
RegLoadKeyW
RegGetKeySecurity
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyW
RegCreateKeyExW
RegCloseKey
OpenServiceW
OpenSCManagerW
OpenProcessToken
LookupPrivilegeValueW
LookupAccountSidW
LookupAccountNameW
ImpersonateLoggedOnUser
GetTokenInformation
GetSecurityInfo
GetAce
FreeSid
EqualSid
DeleteService
CryptReleaseContext
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptCreateHash
CryptAcquireContextW
CloseServiceHandle
AllocateAndInitializeSid
AdjustTokenPrivileges
RegSetValueW
RegSetValueExW

user32

UnionRect
WaitForInputIdle
TranslateMessage
BeginDeferWindowPos
BeginPaint
CallWindowProcW
CheckDlgButton
CheckMenuItem
ChildWindowFromPoint
ClientToScreen
CloseClipboard
CreateDialogParamW
CreateIconIndirect
CreateWindowExW
DefWindowProcW
DeferWindowPos
DeleteMenu
DestroyIcon
DestroyWindow
DialogBoxIndirectParamW
DialogBoxParamW
DispatchMessageW
DrawFrameControl
DrawIconEx
DrawMenuBar
DrawTextW
EmptyClipboard
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumDisplaySettingsW
FindWindowExW
FindWindowW
GetClassNameW
GetClientRect
GetCursorPos
GetDC
GetDlgItem
GetDlgItemTextW
GetFocus
GetIconInfo
GetMenu
GetMessageW
GetParent
GetPropW
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetWindowLongW
GetWindowRect
GetWindowTextW
GetWindowThreadProcessId
InflateRect
InsertMenuW
IntersectRect
InvalidateRect
InvalidateRgn
IsDialogMessageW
IsDlgButtonChecked
IsIconic
IsZoomed
LoadAcceleratorsW
LoadCursorW
LoadIconW
LoadImageW
LoadStringW
MapWindowPoints
MessageBoxW
MoveWindow
OffsetRect
OpenClipboard
PostMessageW
PostQuitMessage
PtInRect
RegisterClassExW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
ScreenToClient
SendMessageW
SetClipboardData
SetCursor
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemInfoW
SetPropW
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
TrackPopupMenu
TranslateAcceleratorW

Exports

Exports

AsCharBuffer
GetDefaults
InPlaceOr
Method_ClearFreeList
ReleaseThread
WriteUnraisable
destroy_struct

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93f158f76c53aff96e7f9aa9866fedd9

Headers

File Characteristics

Imports

version

gdi32

kernel32

advapi32

user32

Exports

Exports

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 268KB - Virtual size: 267KB

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 268KB - Virtual size: 267KB

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 5KB - Virtual size: 5KB