70ddd8ed4b9b6c1f78dea2d02e27ace6a5de92094b024567ca6f78e35e986452

Sharing

Copy URL Twitter E-mail

General

Target

70ddd8ed4b9b6c1f78dea2d02e27ace6a5de92094b024567ca6f78e35e986452
Size

788KB
MD5

4df3a47f0399e353fc0778e2d3b50660
SHA1

10db6d334d1d671d5479014f41c8fc74098686ed
SHA256

70ddd8ed4b9b6c1f78dea2d02e27ace6a5de92094b024567ca6f78e35e986452
SHA512

28f2104d205376a051d298fea267d7dd1aecea71ac261532f792d86687e056b1800fc0a3d5739b5d434657a4b8dd55b9967c0b4f2d2d06c169e752789820e62c
SSDEEP

6144:MDFoa2dkoRDgvjKa+T7U9vR0mGKKJP112UGC6hPyM8U3bEEFPwbbp8c2j80/:S2dko5grenU5CrKuQW6oMboEFPwbbb0

Score

N/A

Malware Config

Signatures

Files

70ddd8ed4b9b6c1f78dea2d02e27ace6a5de92094b024567ca6f78e35e986452
.exe windows x86

1bcb266035cb3c44ca4b68d794072b30

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleScreenBufferSize
SetEvent
SetUnhandledExceptionFilter
TerminateProcess
TerminateThread
UnhandledExceptionFilter
WaitForMultipleObjects
ResetEvent
WriteFile
WritePrivateProfileStringW
lstrcatW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
QueryPerformanceCounter
OutputDebugStringW
LockResource
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
IsBadWritePtr
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GlobalAlloc
GetWindowsDirectoryW
GetTickCount
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetStdHandle
GetStartupInfoW
GetProcessHeap
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleHandleW
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
FreeLibrary
FreeConsole
FormatMessageW
FindResourceW
ExpandEnvironmentStringsW
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateThread
CreateFileW
CreateEventW
CreateDirectoryW
CloseHandle
AllocConsole
GetModuleHandleA
Sleep
WaitForSingleObject
VirtualAllocEx

user32

WinHelpW
ValidateRect
SystemParametersInfoW
ShowWindow
SetWindowPos
SetRectEmpty
SetMenuItemInfoW
SetForegroundWindow
SetFocus
SetCursor
SetClassLongW
SetCapture
SetActiveWindow
ReleaseDC
ReleaseCapture
RegisterClassExW
LoadMenuW
LoadImageW
LoadCursorW
LoadBitmapW
KillTimer
IsIconic
IntersectRect
GetWindow
GetSubMenu
GetParent
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemCount
GetLastActivePopup
GetFocus
GetDlgItem
GetDesktopWindow
GetDCEx
GetDC
GetClientRect
GetActiveWindow
FindWindowW
FillRect
EndDeferWindowPos
EnableMenuItem
DrawTextW
DrawFocusRect
DeleteMenu
DeferWindowPos
DefWindowProcW
CreatePopupMenu
CopyRect
CheckMenuRadioItem
CheckMenuItem
BeginDeferWindowPos
AppendMenuW
GetSysColor
GetSystemMetrics
LoadIconW
GetDlgCtrlID

gdi32

ExtFloodFill
ExtTextOutW
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectW
GetPixel
GetStockObject
GetSystemPaletteEntries
GetTextExtentPoint32W
GetTextExtentPointW
DeleteObject
PtInRegion
RealizePalette
Rectangle
SelectObject
SelectPalette
CreateCompatibleBitmap
SetBkColor
SetBkMode
SetMapMode
SetPixel
SetTextColor
StretchBlt
DeleteDC
DPtoLP
CreateSolidBrush
CreatePolygonRgn
CreatePen
CreatePalette
CreateHalftonePalette
CreateFontIndirectW
CreateDIBitmap
CreateDCW
PatBlt
DeleteEnhMetaFile
CreateBitmap
BitBlt
AddFontResourceA
DeleteMetaFile
CreateCompatibleDC

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW
RegQueryValueExA
RegOpenKeyExA
RegSetValueW

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHAppBarMessage
Shell_NotifyIconW

ole32

CoUninitialize
CoTaskMemFree
CoInitializeEx
CoInitialize
CoCreateInstance

msvcrt

_ltow
wcstoul
wcsncpy
wcslen
wcscpy
wcscmp
_XcptFilter
__CxxFrameHandler
__dllonexit
__p__commode
__p__fmode
__set_app_type
__setusermatherr
__wgetmainargs
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_itow
_onexit
_purecall
_snwprintf
_wcmdln
_wcsdup
_wcsicmp
_wcsnicmp
_wtoi
_wtol
exit
free
iswctype
memmove
swprintf
towupper
wcschr

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 759KB - Virtual size: 759KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1bcb266035cb3c44ca4b68d794072b30

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

msvcrt

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 759KB - Virtual size: 759KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 759KB - Virtual size: 759KB

.rsrc
Size: 11KB - Virtual size: 11KB