29a24e79af5b4a2c8968aaad96675c05c8c9a69975372ad5e65ef535c776e5f0

Sharing

Copy URL Twitter E-mail

General

Target

29a24e79af5b4a2c8968aaad96675c05c8c9a69975372ad5e65ef535c776e5f0
Size

300KB
MD5

58759f562624a99e9486efe566a67830
SHA1

ea478d5113956ca3e279b86b92fbc8e75a516c3c
SHA256

29a24e79af5b4a2c8968aaad96675c05c8c9a69975372ad5e65ef535c776e5f0
SHA512

d336a21742a3a6ff01f61444cd5c3d7b7643ce98f61adebc7309f4524362b5997f3ed44b4ef8506eccf9d5098236516d0cd6be40c3d6ffbde8ec1bc743f0735e
SSDEEP

6144:m3vziKQLrLatwIWVqZD7meXwiWB5RMQ4UXGs3hg3aaT8UqL:m3vzkitwIW4VD4B4REGYhg35

Score

N/A

Malware Config

Signatures

Files

29a24e79af5b4a2c8968aaad96675c05c8c9a69975372ad5e65ef535c776e5f0
.exe windows x86

490c199c2cf505ca9652b32049957171

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

GetModuleFileNameA
CreateFileA
GetExitCodeProcess
DeleteFileA
SetFileAttributesA
MulDiv
RemoveDirectoryA
GetProcessHeap
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
WideCharToMultiByte
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
SetFilePointer
FlushFileBuffers
IsValidCodePage
GetOEMCP
GetACP
ReadFile
GetConsoleMode
GetConsoleCP
WriteFile
CreateProcessA
SetThreadPriority
GetCurrentThread
SetPriorityClass
ResumeThread
GetWindowsDirectoryA
Sleep
GetSystemDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetLastError
GetCurrentProcess
CloseHandle
GetVersionExA
LoadLibraryA
GetProcAddress
FreeLibrary
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
HeapFree
ExitThread
CreateThread
GetCommandLineA
GetStartupInfoA
HeapReAlloc
HeapAlloc
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCPInfo
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
VirtualAlloc
GetFileAttributesA
ExitProcess
HeapSize
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings

user32

GetWindowTextA
MessageBoxW
DialogBoxParamA
DialogBoxParamW
LoadImageA
ShowWindow
GetWindowRect
MapWindowPoints
BeginPaint
LoadIconA
DrawIcon
EndPaint
GetDlgItem
EndDialog
SetTimer
GetClientRect
AdjustWindowRect
MoveWindow
SendMessageW
EnumChildWindows
SetWindowTextW
SetWindowTextA
GetWindowLongA
GetDC
SystemParametersInfoA
ReleaseDC
GetSystemMetrics
SendMessageA
IsWindowUnicode
GetWindowTextW

gdi32

CreateFontA
CreateFontW
CreateFontIndirectA
GetStockObject
SelectObject
GetTextExtentPoint32W
DeleteObject
GetDeviceCaps

advapi32

RegOpenKeyExA
RegQueryInfoKeyA
RegOpenKeyA
RegEnumValueA
RegDeleteValueA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteExA
SHChangeNotify

ole32

CoUninitialize
CoCreateInstance
CoInitialize
StringFromGUID2

Sections

.text
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

490c199c2cf505ca9652b32049957171

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 234KB - Virtual size: 234KB

.rdata Size: 33KB - Virtual size: 32KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 234KB - Virtual size: 234KB

.rdata
Size: 33KB - Virtual size: 32KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 26KB - Virtual size: 25KB