f1092a2bf5184f81e6a33aee8fdc8c854dbe40f2f3a3d50e4cbb2cc1c0fe594b

Sharing

Copy URL Twitter E-mail

General

Target

f1092a2bf5184f81e6a33aee8fdc8c854dbe40f2f3a3d50e4cbb2cc1c0fe594b
Size

687KB
MD5

4df1e1ac54aeaf343dad49b162114f20
SHA1

7f9b44be1817fcbd64aedb70e42f4f5024b316f0
SHA256

f1092a2bf5184f81e6a33aee8fdc8c854dbe40f2f3a3d50e4cbb2cc1c0fe594b
SHA512

452d0b770e0f27e187913f846406bd218cf6cd4bae1918cdb14c3f1e983e28241cf913171bc36f178f98d2641bbb508de24b9b4cb9d2494fe9e1aff1193be246
SSDEEP

12288:EgvBq3lYqM7XCnb1F0pRi9QwnUevN34uyulBw7acvaGZCnkKuvo:r8WqMen5FWMibuNIMlGacvaG3Kuo

Score

N/A

Malware Config

Signatures

Files

f1092a2bf5184f81e6a33aee8fdc8c854dbe40f2f3a3d50e4cbb2cc1c0fe594b
.exe windows x86

81ed2bfbf534279c455c6a189fe2b816

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
AdjustWindowRectEx
AllowSetForegroundWindow
GetWindowLongA
GetClientRect
ShowWindow
SetWindowTextA
UpdateWindow
SetWindowPos
SetWindowLongA
SetFocus
SetWindowRgn
TrackPopupMenu
SetDlgItemTextA
SetClassLongA
SetCapture
SendMessageA
ReleaseCapture
RegisterClassExA
RedrawWindow
PtInRect
OffsetRect
MessageBoxA
LoadStringA
LoadIconA
LoadCursorA
LoadBitmapA
IsDlgButtonChecked
InvalidateRect
IntersectRect
GetWindowRect
AnimateWindow
GetSystemMetrics
GetParent
GetKeyState
CloseClipboard
EmptyClipboard
OpenClipboard
SetClipboardData
MoveWindow
GetDlgItemTextA
GetDlgItem
GetDlgCtrlID
GetDC
GetCursorPos
GetCapture
GetActiveWindow
EndDialog
EnableWindow
DrawTextA
DialogBoxParamA
DefWindowProcA
CreateWindowExA
CreatePopupMenu
CheckDlgButton
CallWindowProcA
AppendMenuA
GetMessageExtraInfo
ClipCursor
ReplyMessage
GetCaretPos
AppendMenuW
SetDlgItemInt
GetLastActivePopup
DrawTextExW
GetDlgItemInt
VkKeyScanExA
DlgDirListA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

ExtractAssociatedIconW
ShellAboutW
ShellExecuteA
DuplicateIcon
DragFinish
DragAcceptFiles
FindExecutableW
ExtractIconExA

ole32

OleRegGetUserType
WriteClassStm
CoRevertToSelf
OleConvertIStorageToOLESTREAM

advapi32

QueryServiceConfigA
RegCloseKey
RegOpenKeyA
RegQueryValueExA
GetSecurityDescriptorGroup
RegUnLoadKeyW
OpenEventLogA
DeregisterEventSource
RegCreateKeyExA
RegSetValueExW
ReportEventA
InitializeSid
ObjectDeleteAuditAlarmW

gdi32

ColorCorrectPalette
ArcTo
Arc
GetTextExtentPointA
CreateDCA
CreateCompatibleDC
CreateDIBSection
CopyEnhMetaFileA
AddFontResourceA
RemoveFontResourceA
RoundRect
SelectObject
SetBkColor
SetBkMode
SetPixel
SetTextColor
TextOutA
CreateCompatibleBitmap
BitBlt
GetStockObject
GetPixel
GetObjectA
ExtCreateRegion
CreateSolidBrush
CreateFontIndirectA
CloseFigure

comctl32

ord17

kernel32

SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
DeleteCriticalSection
HeapFree
GetLastError
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
EnterCriticalSection
GetStartupInfoA
GetSystemTimeAsFileTime
InterlockedDecrement
GetACP
GetOEMCP
InterlockedIncrement
WriteFile
CompareStringA
GetModuleFileNameA
SetCurrentDirectoryA
CreateDirectoryA
GlobalAlloc
GlobalLock
GlobalUnlock
FlushFileBuffers
lstrlenA
lstrcpyA
lstrcmpiA
lstrcmpA
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
RaiseException
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
RtlUnwind
LCMapStringA
LCMapStringW
HeapAlloc
HeapReAlloc
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
ReadFile
GetLocaleInfoW
HeapSize
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
LeaveCriticalSection
SetLocaleInfoA
GetVersionExW
DeleteVolumeMountPointA
SetWaitableTimer
GetProfileIntW
EnumTimeFormatsW
FindNextVolumeA
SetCommBreak
UnmapViewOfFile
Sleep
SizeofResource
SetFilePointer
SetFileAttributesA
SetEnvironmentVariableA
SetEndOfFile
MoveFileA
MapViewOfFile
LoadResource
LoadLibraryA
GetTempPathA
GetProcAddress
GetModuleHandleA
GetFileSize
GetFileAttributesA
GetCurrentDirectoryA
GetCommandLineA
FreeLibrary
FindResourceA
ExpandEnvironmentStringsA
ExitProcess
DeleteFileA
CreateThread
CreateProcessA
CreateFileMappingA
CreateFileA
CopyFileA
CloseHandle
VirtualAlloc
VirtualFree
WaitForSingleObject
lstrcatA

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 472KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81ed2bfbf534279c455c6a189fe2b816

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 172KB - Virtual size: 172KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 6KB - Virtual size: 157KB

.rsrc Size: 472KB - Virtual size: 632KB

.text
Size: 172KB - Virtual size: 172KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 6KB - Virtual size: 157KB

.rsrc
Size: 472KB - Virtual size: 632KB