2d66664ce24d687b8c67a14f235d8a54fe7070170302eb249aa417d5766765d1

Sharing

Copy URL Twitter E-mail

General

Target

2d66664ce24d687b8c67a14f235d8a54fe7070170302eb249aa417d5766765d1
Size

390KB
MD5

3e668d1533a43b7c0ae4b136995be2d6
SHA1

761dfeb96d81e012f13d4766cdb645d91c417c0b
SHA256

2d66664ce24d687b8c67a14f235d8a54fe7070170302eb249aa417d5766765d1
SHA512

4df9f36143c6d7de853ab4371beaa0453f4441b89c5b5dde4045019f6701d6374340c36e2cbf007bfd92a1f9278bfff52cb374a3285053bbf422a6698648f6cc
SSDEEP

6144:ChE6gl1IcWv9bQ1Hs+TtwIWzf3Tg9Jz0tYGcz9EEBCoK33OD:cglqcWpQu+TtKfsJzlz9EEBa

Score

N/A

Malware Config

Signatures

Files

2d66664ce24d687b8c67a14f235d8a54fe7070170302eb249aa417d5766765d1
.exe windows x86

31639b40eec2e7af9200ffdc9a6e4011

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringW
lstrcatW
lstrcmpiW
WriteFile
lstrcpynW
lstrlenW
WaitForSingleObject
WaitForMultipleObjects
UnhandledExceptionFilter
TerminateThread
TerminateProcess
Sleep
SetUnhandledExceptionFilter
SetEvent
SetConsoleScreenBufferSize
ResetEvent
QueryPerformanceCounter
OutputDebugStringW
LockResource
LoadResource
LoadLibraryA
LeaveCriticalSection
IsBadWritePtr
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GetWindowsDirectoryW
GetTickCount
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetStdHandle
GetStartupInfoW
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleHandleW
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
FreeLibrary
FreeConsole
FormatMessageW
FindResourceW
ExpandEnvironmentStringsW
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateThread
CreateFileW
CreateEventW
CreateDirectoryW
CloseHandle
AllocConsole
LoadLibraryW
GetCommandLineW
GetStartupInfoA
GlobalAlloc
GetModuleHandleA
GetProcessHeap
HeapAlloc
GetFileAttributesW
lstrcpyW
VirtualAlloc

user32

GetClientRect
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDlgCtrlID
GetLastActivePopup
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoW
GetMenuState
GetMenuStringW
GetParent
GetSubMenu
GetWindow
GetWindowLongW
GetWindowRect
InsertMenuW
IntersectRect
InvalidateRect
InvertRect
IsIconic
IsRectEmpty
KillTimer
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageW
LoadMenuW
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
OffsetRect
PostMessageW
PtInRect
RedrawWindow
RegisterClassExW
RegisterClassW
RegisterWindowMessageW
ReleaseDC
RemoveMenu
ScreenToClient
SendMessageW
SetActiveWindow
SetCapture
SetClassLongW
SetCursor
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemInfoW
SetRect
SetRectEmpty
SetTimer
SetWindowLongW
SetWindowPos
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TrackPopupMenuEx
ValidateRect
WinHelpW
wvsprintfW
GetClassInfoW
GetActiveWindow
FindWindowW
FillRect
EndPaint
EndDeferWindowPos
EnableWindow
DrawTextW
DrawFocusRect
DestroyWindow
DeleteMenu
DeferWindowPos
DefWindowProcW
CreateWindowExW
CreatePopupMenu
CopyRect
ClientToScreen
CheckMenuRadioItem
CheckMenuItem
CharPrevW
CharNextW
CallWindowProcW
BeginPaint
BeginDeferWindowPos
AppendMenuW
IsCharAlphaNumericW
LoadCursorFromFileW
UpdateWindow
IsWindow
GetCaretBlinkTime
IsCharLowerW
GetWindowTextLengthW
InSendMessage
EnableMenuItem
GetClipboardSequenceNumber
GetMessagePos
GetKeyboardLayout
CloseWindowStation
OemKeyScan
GetClipboardData
CloseWindow
CharUpperW
GetThreadDesktop
GetCursor
GetShellWindow
VkKeyScanA
GetSysColor
IsCharAlphaNumericA
CountClipboardFormats
GetClipboardOwner
IsCharUpperW
CharUpperA
GetDlgItem
GetQueueStatus
IsWindowEnabled
GetListBoxInfo
GetMenuCheckMarkDimensions
GetMessageTime
GetAsyncKeyState
IsWindowVisible
GetWindowDC
GetSystemMetrics
GetFocus
ReleaseCapture
DestroyMenu
GetClipboardViewer
CharNextA
IsCharAlphaW
GetMenu
GetKeyState
EnumClipboardFormats
EqualRect

gdi32

SwapBuffers
CreateHalftonePalette
CreateCompatibleDC
SetTextColor
GetLayout
DeleteDC
BitBlt
CreateBitmap
CreateCompatibleBitmap
CreateDCW
CreateDIBitmap
CreateFontIndirectW
CreatePalette
CreatePen
CreatePolygonRgn
DPtoLP
DeleteObject
ExtFloodFill
SelectObject
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectW
GetPixel
GetSystemPaletteEntries
GetTextExtentPoint32W
GetTextExtentPointW
PatBlt
PtInRegion
Rectangle
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetPixel
StretchBlt
EndPage
GetDCBrushColor
GetSystemPaletteUse
CloseMetaFile
GetGraphicsMode
GetStockObject
GetColorSpace
FillPath
PathToRegion
CloseFigure
ExtTextOutW
GdiFlush
RealizePalette
CreateMetaFileW
AbortDoc
CreateSolidBrush
SaveDC

advapi32

RegSetValueExW
RegQueryValueExA
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW
RegQueryValueExW
RegOpenKeyExA
RegSetValueW

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHAppBarMessage
Shell_NotifyIconW

ole32

CoUninitialize
CoTaskMemFree
CoInitializeEx
CoInitialize
CoCreateInstance

msvcrt

_itow
wcstoul
wcsncpy
wcslen
wcscpy
wcscmp
memset
memcpy
_XcptFilter
__CxxFrameHandler
__dllonexit
__p__commode
__p__fmode
__set_app_type
__setusermatherr
__wgetmainargs
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_ltow
_onexit
_purecall
_snwprintf
_wcmdln
_wcsdup
_wcsicmp
_wcsnicmp
_wtoi
_wtol
exit
free
iswctype
memmove
swprintf
towupper
wcschr

Sections

.text
Size: 351KB - Virtual size: 351KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31639b40eec2e7af9200ffdc9a6e4011

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

msvcrt

Sections

.text Size: 351KB - Virtual size: 351KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 10KB - Virtual size: 10KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 351KB - Virtual size: 351KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 18KB - Virtual size: 17KB