8b694da02c4f2b827e9de1860e633f481d24839e6bbcf06c8e1dd71e742c3f94

Sharing

Copy URL Twitter E-mail

General

Target

8b694da02c4f2b827e9de1860e633f481d24839e6bbcf06c8e1dd71e742c3f94
Size

224KB
MD5

96a7835ca341564fe4bfc060361e433a
SHA1

1a492cb1624496d71bc6b96064007915924ad5fe
SHA256

8b694da02c4f2b827e9de1860e633f481d24839e6bbcf06c8e1dd71e742c3f94
SHA512

87e7cb5ab22f52f4db487e9adee6ea9cef8d94c6c1f2b38c88a6371a3e68a83c6d7081f9aaf1aecec729431a6313c918710c16bcc3165a984ebc87ffc999075b
SSDEEP

6144:KV9cMWH3+tubBcmKTv+p66F6NnvxtSshaP1:KV9cV+tehQWovxTe1

Score

N/A

Malware Config

Signatures

Files

8b694da02c4f2b827e9de1860e633f481d24839e6bbcf06c8e1dd71e742c3f94
.exe windows x86

8db89c6154e8a37d8c90da6dd91b69ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CopyFileA
GetSystemDirectoryA
GetSystemDefaultLCID
GetLocaleInfoA
OpenFile
GetVersionExA
FindResourceA
Sleep
FreeLibrary
WideCharToMultiByte
GetModuleFileNameA
GetModuleHandleA
GetShortPathNameA
lstrlenA
MultiByteToWideChar
lstrlenW
GetCommandLineA
GetCurrentThreadId
CreateMutexA
GetLastError
CloseHandle
lstrcpyA
lstrcatA
InitializeCriticalSection
LoadLibraryA
GetProcAddress
lstrcmpiA
IsDBCSLeadByte
lstrcpynA
LoadResource
LoadLibraryExA
SizeofResource
CreateProcessA
InterlockedDecrement
VirtualFree
IsBadCodePtr
IsBadReadPtr
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
IsBadWritePtr
VirtualAlloc
LocalFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
HeapSize
GetCurrentProcess
TerminateProcess
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
WriteFile
ExitProcess
InterlockedIncrement
GetVersion
GetStartupInfoA
RaiseException
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection

user32

PostThreadMessageA
DefWindowProcA
SetTimer
TrackPopupMenu
GetMessageA
PeekMessageA
EnableWindow
GetDlgCtrlID
EndDialog
GetDlgItem
SetWindowTextA
WinHelpA
LoadStringA
GetWindowRect
GetSystemMenu
EnumChildWindows
DialogBoxParamA
GetParent
SetWindowLongA
CallWindowProcA
wsprintfA
KillTimer
DestroyIcon
DispatchMessageA
PostMessageA
CreateWindowExA
RegisterClassA
CharNextA
RegisterWindowMessageA
PostQuitMessage
ReleaseDC
GetSystemMetrics
GetDC
DestroyMenu
EnableMenuItem
InsertMenuA
GetCursorPos
SetForegroundWindow
DestroyWindow
AppendMenuA
CreatePopupMenu
FindWindowA
SendMessageA
GetMenuStringA
GetSubMenu

gdi32

DeleteDC
BitBlt
SetBkColor
SetTextColor
SelectObject
CreateCompatibleBitmap
GetStockObject
GetDIBits
CreateCompatibleDC
DeleteObject

advapi32

AllocateAndInitializeSid
RegQueryInfoKeyA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegEnumValueA
RegOpenKeyA
RegQueryValueExA
FreeSid

shell32

Shell_NotifyIconA
ShellExecuteExA

ole32

CoUninitialize
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoCreateInstance
CoSuspendClassObjects
CLSIDFromProgID

oleaut32

RegisterTypeLi
SysFreeString
SysAllocStringByteLen
SysStringLen
SysAllocString
SysStringByteLen
VariantClear
VarUI4FromStr
LoadTypeLi

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA

hccutils

FindResources
LoadSTRING
LoadBITMAP
LoadIMAGE
GetMyRegKey
LoadDialogString
GetCommonRegKey
EnumDeviceByClass
IsDisplayValid
ReleaseClassDevice

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yrdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8db89c6154e8a37d8c90da6dd91b69ce

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

hccutils

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 16KB - Virtual size: 32KB

.rsrc Size: 4KB - Virtual size: 2KB

.yrdata Size: 76KB - Virtual size: 76KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 16KB - Virtual size: 32KB

.rsrc
Size: 4KB - Virtual size: 2KB

.yrdata
Size: 76KB - Virtual size: 76KB