5b856ecaddb774ffb95f1e8df281888aebe1ec1ec2d427fc00d04ac50877e80e

Sharing

Copy URL Twitter E-mail

General

Target

5b856ecaddb774ffb95f1e8df281888aebe1ec1ec2d427fc00d04ac50877e80e
Size

444KB
MD5

9681c5dad3a859175ec3197b21867d10
SHA1

c2f8db034a5036e31a30c94d8bdfb31a5c66d27f
SHA256

5b856ecaddb774ffb95f1e8df281888aebe1ec1ec2d427fc00d04ac50877e80e
SHA512

7169df12df65e912ff7616f16b7703715821892d1eff46049434b546e0ff314fb537a4e619a0f8d72614c38f33813f5269aff058d11cb7b72f2f8a9d7add0e50
SSDEEP

6144:4ecO0aMtRowMlpBZYRyOLB7dEtCTU37SscaJhJmIhP75:T0aLwHNTU37LcaJhJZhP

Score

N/A

Malware Config

Signatures

Files

5b856ecaddb774ffb95f1e8df281888aebe1ec1ec2d427fc00d04ac50877e80e
.exe windows x86

113c147a5e2d18773e5593eb6ed6edcd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegDeleteKeyA
RegSetValueA
RegQueryValueExA
RegSetValueExA
RegOpenKeyA
RegCloseKey
RegEnumKeyExA
RegCreateKeyExA
RegOpenKeyExA
RegCreateKeyA
RegQueryValueA
RegEnumKeyA
RegEnumValueA

kernel32

CreateFileA
OpenFile
UnmapViewOfFile
WriteFile
GetProcAddress
CreateFileMappingA
GetPrivateProfileSectionA
GetWindowsDirectoryA
SearchPathA
ExpandEnvironmentStringsA
DeleteFileA
CloseHandle
FreeLibrary
GetDriveTypeA
SystemTimeToFileTime
GetCurrentDirectoryA
MultiByteToWideChar
WideCharToMultiByte
RemoveDirectoryA
GetSystemDefaultLCID
GlobalSize
LockResource
FindResourceA
LoadResource
CreateDirectoryA
SizeofResource
FreeResource
Sleep
CopyFileA
FindNextFileA
lstrcmpiA
GetCurrentProcess
SetProcessWorkingSetSize
IsBadReadPtr
lstrlenA
lstrcpynA
FindFirstFileA
lstrcatA
MoveFileA
WaitForSingleObject
FindClose
WinExec
FindNextChangeNotification
GetExitCodeThread
TerminateThread
GlobalAlloc
FindFirstChangeNotificationA
FindCloseChangeNotification
SetThreadPriority
GlobalLock
CreateThread
GlobalFree
GlobalHandle
GlobalUnlock
SetCurrentDirectoryA
lstrcpyA
GetFullPathNameA
LocalAlloc
LoadLibraryA
InterlockedExchange
GetLastError
RaiseException
SetErrorMode
LoadLibraryExA
GetFileAttributesA
HeapAlloc
GetCommandLineA
GetVersionExA
GetACP
MulDiv
lstrcmpA
GetModuleHandleA
ExitProcess
GetSystemTime
GetTickCount
GetTempFileNameA
MapViewOfFile
HeapFree
GetStringTypeW
GetStringTypeA
VirtualFree
VirtualAlloc

user32

SetTimer
GetKeyState
GetWindowDC
GetForegroundWindow
GetActiveWindow
SetPropA
RegisterWindowMessageA
KillTimer
RemovePropA
GetMessageTime
LockWindowUpdate
DestroyIcon
SetWindowTextA
LoadImageA
InflateRect
SetActiveWindow
EnableMenuItem
LoadStringA
EndDialog
LoadBitmapA
SetFocus
SendDlgItemMessageA
CallWindowProcA
EnableWindow
CheckDlgButton
IsDlgButtonChecked
DrawFocusRect
DialogBoxParamA
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemCount
CharLowerA
DestroyMenu
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetDoubleClickTime
MoveWindow
GetDCEx
IsWindowEnabled
GetMenuItemID
WinHelpW
EndPaint
InvalidateRgn
GetSystemMetrics
SetCursor
GetWindow
GetWindowThreadProcessId
GetWindowLongA
GetMessagePos
wsprintfA
GetWindowRect
GetDlgItem
GetAsyncKeyState
ScreenToClient
GetClientRect
InvalidateRect
GetParent
GetPropA
PeekMessageA
DefWindowProcA
SendMessageA
PostQuitMessage
MsgWaitForMultipleObjects
LoadIconA
LoadCursorA
CreateWindowExA
GetSystemMenu
DeleteMenu
SetWindowLongA
GetDC
SystemParametersInfoA
ReleaseDC
RegisterClassA
GetDesktopWindow
UpdateWindow
EnumWindows
MessageBoxA
CharPrevA
CharNextA
UnregisterClassA
DestroyWindow
IsWindow
GetWindowTextLengthA
GetWindowTextA
IsWindowVisible
SendMessageTimeoutA
PostMessageA
IsIconic
ShowWindow
SetForegroundWindow
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetWindowPos
GetCursorPos
MapWindowPoints
PtInRect
WindowFromPoint
ReleaseCapture
GetSysColor
FillRect
DrawEdge
BeginPaint
ValidateRect
SetCapture
GetCapture
WinHelpA
MessageBeep

comctl32

ord17
ImageList_Destroy
ImageList_AddMasked
ImageList_ReplaceIcon
PropertySheetA
ImageList_Draw
ImageList_Create
CreateToolbarEx

gdi32

CreateFontIndirectA
GdiSetBatchLimit
DeleteObject
CreateRectRgnIndirect
GdiFlush
CombineRgn
GetSystemPaletteEntries
SelectPalette
RealizePalette
SelectObject
SetTextColor
TextOutA
SetTextAlign
BitBlt
SetBkMode
CreateSolidBrush
GetObjectA
CreatePen
GetStockObject
LineTo
MoveToEx
GetTextExtentPointA
SetBkColor
DeleteDC
CreateCompatibleDC
CreateBitmap
GetPaletteEntries
GetDIBits
GetPixel
SetPixel
CreateDIBSection
CreateCompatibleBitmap
GetTextExtentPoint32A
CreateDIBitmap
CreatePalette
Rectangle
CreateHalftonePalette
TextOutW
SetROP2
GetTextMetricsA
TranslateCharsetInfo
GetTextCharset
GetDeviceCaps

shell32

ExtractIconA
ShellExecuteA
SHFileOperationA
DragQueryFileA
DragFinish
DragAcceptFiles

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

113c147a5e2d18773e5593eb6ed6edcd

Headers

File Characteristics

Imports

advapi32

kernel32

user32

comctl32

gdi32

shell32

ole32

Sections

.text Size: 152KB - Virtual size: 152KB

.data Size: 12KB - Virtual size: 35KB

.rsrc Size: 276KB - Virtual size: 276KB

.text
Size: 152KB - Virtual size: 152KB

.data
Size: 12KB - Virtual size: 35KB

.rsrc
Size: 276KB - Virtual size: 276KB