1ef4087ae8f440060e97345e423fcc44d8770a2803f33d737b096aa677c46242

Sharing

Copy URL Twitter E-mail

General

Target

1ef4087ae8f440060e97345e423fcc44d8770a2803f33d737b096aa677c46242
Size

687KB
MD5

962d7e3aeb73853862c7ef9a1b031cf3
SHA1

324ab1734a5f2ac070f7424230688ac2774fb81b
SHA256

1ef4087ae8f440060e97345e423fcc44d8770a2803f33d737b096aa677c46242
SHA512

b69bd3998900d3c05f888bba34c073a514df7f97f65be556d5024b9f7f526ac5fcfd3b768cdb89f8f5f6e0b23b4a489e474c5bb2c90b7a0f1ea65571a2e1936b
SSDEEP

12288:GWd1S2sBuFS92tNRHzleqYoa7xlhN94BYPq5f6Dm2M:XmH0NRHpaz79nC5fOfM

Score

N/A

Malware Config

Signatures

Files

1ef4087ae8f440060e97345e423fcc44d8770a2803f33d737b096aa677c46242
.exe windows x86

2e79f35fcf2dca99aa2b322415a958d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
SetFilePointer
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GetLocaleInfoA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
HeapSize
ExitProcess
Sleep
HeapReAlloc
HeapCreate
GetModuleFileNameA
GetStdHandle
WriteFile
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
IsProcessorFeaturePresent
LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
VirtualFree
VirtualAlloc
CloseHandle
OpenMutexW
SetLastError
LockResource
lstrcpynW
lstrlenA
lstrcpynA
GetCommandLineW
WriteConsoleW
GetConsoleOutputCP
CreateFileA
FlushFileBuffers
lstrcmpW
GetCurrentProcessId
GetCurrentProcess
FlushInstructionCache
lstrcpyW
GetModuleFileNameW
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
FreeLibrary
LoadLibraryW
lstrcmpiW
GetModuleHandleW
GetProcAddress
InterlockedDecrement
GetLastError
InterlockedIncrement
lstrlenW
GetCurrentThreadId
GetVersionExW
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
FreeEnvironmentStringsW
RaiseException

user32

RegisterClassExW
LoadBitmapW
SetWindowPos
LoadImageW
ShowWindow
GetDC
LoadStringA
PostQuitMessage
LoadStringW
SetMenuDefaultItem
LoadCursorW
GetClassInfoExW
SetMenu
GetMenu
RemoveMenu
AppendMenuW
CreatePopupMenu
GetWindowRect
TranslateAcceleratorW
PostThreadMessageW
GetSubMenu
PeekMessageW
PtInRect
IsMenu
SetWindowsHookExW
GetClassNameW
OffsetRect
CallNextHookEx
GetKeyState
CharLowerW
UnhookWindowsHookEx
InflateRect
SystemParametersInfoW
SetRectEmpty
GetSystemMetrics
RegisterWindowMessageW
GetSysColorBrush
GetSysColor
ReleaseDC
GetWindowDC
GetMessagePos
WindowFromPoint
MessageBeep
DrawEdge
FrameRect
ModifyMenuW
TrackPopupMenuEx
MonitorFromPoint
GetMonitorInfoW
DrawFrameControl
DrawTextW
GetFocus
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
CallWindowProcW
FillRect
GetActiveWindow
GetWindowThreadProcessId
GetParent
SetFocus
IsWindowEnabled
IsWindowVisible
InvalidateRect
UpdateWindow
MapWindowPoints
ScreenToClient
GetClientRect
PostMessageW
SendMessageW
DestroyMenu
DestroyWindow
CharNextW
DefWindowProcW
IsWindow
GetWindowLongW
SetWindowLongW
CreateWindowExW
UnregisterClassA

gdi32

GetObjectW
CreateFontIndirectW
CreateCompatibleBitmap
SetBkMode
SelectObject
CreateCompatibleDC
DeleteObject
SetTextColor
SetBrushOrgEx
SetBkColor
PatBlt
CreateBitmap
DeleteDC
CreatePatternBrush
CreateDIBSection
GetStockObject
BitBlt
GetCurrentObject

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyExW

ole32

CoUninitialize
CoTaskMemFree
CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize

oleaut32

VarUI4FromStr

comctl32

ImageList_LoadImageW
ord8
ImageList_Create
CreateStatusWindowW
ImageList_DrawIndirect
ImageList_Draw
InitCommonControlsEx
ImageList_GetImageCount
ImageList_Destroy
ImageList_AddMasked

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e79f35fcf2dca99aa2b322415a958d0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 106KB - Virtual size: 105KB

.rdata Size: 26KB - Virtual size: 25KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 311KB - Virtual size: 311KB

.text
Size: 106KB - Virtual size: 105KB

.rdata
Size: 26KB - Virtual size: 25KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 311KB - Virtual size: 311KB