4bda48122298d39afc06e4f8a8e31f6fafbe350755328bad95c0541fae11b322

Sharing

Copy URL Twitter E-mail

General

Target

4bda48122298d39afc06e4f8a8e31f6fafbe350755328bad95c0541fae11b322
Size

264KB
MD5

a005ba6bffb7bc8707532c2309f89920
SHA1

6ec73d859a5cd91cf64977d92a4d4d6a31dfe44f
SHA256

4bda48122298d39afc06e4f8a8e31f6fafbe350755328bad95c0541fae11b322
SHA512

a0915fe95d135f5906a9f59ecae3c5730fbb306d5bcd5e90113cc916f7386041f43bab635fc02f37aa5ef16f4fa824750a3e92e70c3287d9f17bc8fd6644dbc0
SSDEEP

3072:EdTEskvu9sD/knEmxGSP/xkuUB/wgTxx8DEtD5ySdXjGXnQU9kQBqSkNrtISyJPI:eT/UnmDd2P62qXnQU9kekIG86Qjm

Score

N/A

Malware Config

Signatures

Files

4bda48122298d39afc06e4f8a8e31f6fafbe350755328bad95c0541fae11b322
.exe windows x86

b7858dbe8d4469b0e2ca2238baf31c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreatePropertySheetPageA
PropertySheetA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

timeGetTime

msimg32

AlphaBlend

kernel32

SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetFileType
GetACP
GetCPInfo
GetStdHandle
WriteFile
ExitProcess
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
HeapCreate
HeapDestroy
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
InterlockedDecrement
InterlockedIncrement
HeapAlloc
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
RtlUnwind
HeapSize
GetLocaleInfoW
SetFilePointer
SetStdHandle
SetErrorMode
CloseHandle
LockResource
CreateFileMappingA
FindFirstFileA
ReadFile
SizeofResource
LoadResource
UnmapViewOfFile
MapViewOfFile
FreeResource
FindResourceA
CreateFileA
GetCurrentThreadId
CreateProcessA
Sleep
GetLastError
FreeLibrary
GetVersionExA
GetCurrentProcess
GetSystemDirectoryA
LoadLibraryA
GetModuleHandleA
GetPrivateProfileStringA
WriteConsoleW
GetProcAddress
SetThreadLocale
lstrcatA
GetWindowsDirectoryA
GetSystemDefaultLCID
GetLocaleInfoA
lstrcpyA
GetModuleFileNameA
lstrcmpiA
GetCommandLineA
GlobalFree
GlobalUnlock
GlobalAlloc
GlobalLock
lstrcpynA
lstrlenA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
GetOEMCP

user32

SetTimer
PostQuitMessage
TrackPopupMenu
GetSubMenu
SetForegroundWindow
DeleteMenu
LoadMenuA
SetFocus
GetForegroundWindow
GetAsyncKeyState
EnableMenuItem
DestroyMenu
DialogBoxParamA
ModifyMenuA
GetWindowThreadProcessId
GetPropA
RemovePropA
SetPropA
UpdateWindow
InsertMenuItemA
CreatePopupMenu
CheckMenuItem
ShowWindow
ExitWindowsEx
EnumWindows
MoveWindow
EnumDisplaySettingsExA
EnumDisplaySettingsA
ChangeDisplaySettingsA
GetSystemMetrics
WinHelpA
GetMessageA
LoadIconA
RegisterWindowMessageA
TranslateMessage
MessageBoxA
CreateWindowExA
DispatchMessageA
FindWindowA
GetClassNameA
GetWindowRect
GetDesktopWindow
DrawIcon
MessageBeep
GetWindow
GetSystemMenu
CharPrevA
GetWindowTextA
SetWindowLongA
SetWindowPos
EnumChildWindows
DeferWindowPos
BeginDeferWindowPos
SetWindowTextA
EndDeferWindowPos
DrawTextA
DrawIconEx
DrawEdge
DrawStateA
OffsetRect
CheckMenuRadioItem
GetMenuItemInfoA
GetMenuItemCount
SystemParametersInfoA
InsertMenuA
LoadImageA
SetMenuItemInfoA
DestroyIcon
GetDlgItemInt
SendDlgItemMessageA
FillRect
wsprintfA
CharNextA
GetDlgItem
EndDialog
CheckDlgButton
IsDlgButtonChecked
PostMessageA
CheckRadioButton
EnableWindow
SetDlgItemTextA
EndPaint
SetCursor
GetWindowDC
SetCapture
KillTimer
CopyImage
GetParent
IsWindowEnabled
GetClientRect
SendMessageA
BeginPaint
PtInRect
GetUpdateRect
GetDC
GetWindowLongA
ReleaseDC
DefWindowProcA
GetSysColor
GetCursorPos
ReleaseCapture
IsWindowVisible
MapWindowPoints
LoadCursorA
CopyRect
RegisterClassA
InvalidateRect
AttachThreadInput

gdi32

GetStockObject
SetBkMode
CreateSolidBrush
GetObjectA
CreatePen
Ellipse
GetCurrentObject
CreateFontIndirectA
LineTo
MoveToEx
GetTextMetricsA
GetTextExtentPoint32A
CreateDCA
GetDeviceCaps
GetTextColor
GetPixel
BitBlt
CreatePatternBrush
CreateRectRgn
SelectClipRgn
GetPaletteEntries
CreateBitmap
SetBkColor
Polygon
SetTextColor
PatBlt
ExtEscape
CreateDIBSection
ExtTextOutA
Rectangle
UpdateColors
CreateDIBitmap
SetStretchBltMode
SelectPalette
RealizePalette
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
DeleteObject
CreatePalette
StretchBlt
ExtSelectClipRgn
DeleteDC

advapi32

RegDeleteValueA
GetUserNameA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA

shell32

FindExecutableA
Shell_NotifyIconA

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b7858dbe8d4469b0e2ca2238baf31c5b

Headers

File Characteristics

Imports

comctl32

version

winmm

msimg32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 8KB - Virtual size: 18KB

.rsrc Size: 108KB - Virtual size: 108KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 8KB - Virtual size: 18KB

.rsrc
Size: 108KB - Virtual size: 108KB