ac8926d3934aac2730879f24d45fddd58ee72ba95bc7fe13105dc87e52eb71ee

Sharing

Copy URL Twitter E-mail

General

Target

ac8926d3934aac2730879f24d45fddd58ee72ba95bc7fe13105dc87e52eb71ee
Size

592KB
MD5

0706f9c57e49dd699cd0efba922002b5
SHA1

d9e720c81646f1390afaffecac955afeae706cdb
SHA256

ac8926d3934aac2730879f24d45fddd58ee72ba95bc7fe13105dc87e52eb71ee
SHA512

7fa99845c0978d0adee852bf5c76dd53e54294f3f3c5918a73b578fc8fba6f9b9ed2b180c2c0cf0eaa05735905de7529e8dbc007f77eb5f6f05da346aded9d5f
SSDEEP

12288:e4OIl3x4tbsJeiy4JcLMXYcdlxGjbjWnrUMuQEizz:ibiy4eqUco+v

Score

N/A

Malware Config

Signatures

Files

ac8926d3934aac2730879f24d45fddd58ee72ba95bc7fe13105dc87e52eb71ee
.exe windows x86

f5bc89fe44a665d91ef2f23a6a1a3f22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
OpenFile
lstrcpyA
DeleteCriticalSection
lstrcatA
CreateMutexA
InitializeCriticalSection
GetCommandLineA
LoadLibraryExA
IsDBCSLeadByte
lstrcpynA
SizeofResource
FindResourceA
LoadResource
lstrlenW
GetCurrentProcess
FlushInstructionCache
RaiseException
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
LocalFree
GetStartupInfoA
GetVersion
ExitProcess
TerminateProcess
HeapSize
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetSystemDefaultLCID
CloseHandle
CreateFileA
CopyFileA
GetSystemDirectoryA
Sleep
InterlockedDecrement
InterlockedIncrement
lstrcmpiA
FreeLibrary
GetProcAddress
MultiByteToWideChar
GetFileType
WriteFile
IsBadReadPtr
IsBadCodePtr
SetFilePointer
SetStdHandle
ReadFile
FlushFileBuffers
LoadLibraryA
GetLocaleInfoA
GetVersionExA
GetLastError
OutputDebugStringA
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
WideCharToMultiByte
lstrlenA
GetShortPathNameA
GetModuleHandleA
GetModuleFileNameA

user32

MapWindowPoints
GetIconInfo
ScreenToClient
EndPaint
BeginPaint
InflateRect
DrawFocusRect
FindWindowA
FrameRect
GetCursorPos
WindowFromPoint
PostMessageA
CreateDialogParamA
CallWindowProcA
SetWindowLongA
GetParent
DialogBoxParamA
EnumChildWindows
GetSystemMenu
DefWindowProcA
ShowWindow
GetDlgItem
SetWindowTextA
EndDialog
SendMessageA
EnableWindow
EnableMenuItem
WinHelpA
LoadStringA
GetWindowRect
InvalidateRect
RegisterClassA
GetMessageA
DispatchMessageA
PostQuitMessage
PostThreadMessageA
CharNextA
GetWindowTextA
DestroyIcon
ReleaseCapture
SetCapture
GetDlgCtrlID
IntersectRect
GetDC
ReleaseDC
UnionRect
IsWindowEnabled
CreateWindowExA
GetWindowLongA
DrawTextA
OffsetRect
GetSysColor
CopyRect
MoveWindow
GetClassInfoExA
LoadCursorA
RegisterClassExA
IsWindow
PtInRect
UpdateWindow
CopyImage
DestroyWindow
GetSystemMetrics
SetCursor
KillTimer
SetTimer
MessageBoxA
ExitWindowsEx
SetRectEmpty
GetClientRect
FillRect
SetFocus
wsprintfA

gdi32

SetBkMode
GetTextExtentPoint32A
DeleteObject
SetROP2
BitBlt
StretchBlt
DeleteDC
SelectObject
CreateCompatibleDC
GetObjectA
CreatePen
GetStockObject
Polyline
SetBkColor
CreateCompatibleBitmap
SetTextColor
GetTextMetricsA
CreateFontIndirectA
MoveToEx
Rectangle
CreateSolidBrush
LineTo

comdlg32

GetOpenFileNameA

advapi32

RegCloseKey
RegQueryValueExA
RegSetValueExA
RegOpenKeyA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA
RegQueryValueA
RegDeleteValueA

shell32

ShellExecuteExA

ole32

CoTaskMemFree
CoUninitialize
CoSuspendClassObjects
CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize
CLSIDFromString
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject

oleaut32

LoadTypeLi
VarUI4FromStr
SysAllocStringLen
VariantInit
VariantClear
SafeArrayLock
SafeArrayAccessData
SafeArrayPutElement
SafeArrayUnaccessData
SafeArrayUnlock
SafeArrayCreate
SafeArrayGetElemsize
SysStringByteLen
RegisterTypeLi
LoadRegTypeLi
SysAllocString
SysStringLen
SysAllocStringByteLen
SafeArrayRedim
SysFreeString

comctl32

ImageList_Destroy
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Create
ImageList_Remove
ImageList_ReplaceIcon
ord17
ImageList_Draw
ImageList_GetImageInfo
PropertySheetA
ImageList_Add

hccutils

EnumDeviceByClass
ReleaseClassDevice
LoadIMAGE
LoadCURSOR
DeleteString
GetMyRegKey
LoadBitmapFromFile
SaveString
CreateThisKey
LoadBITMAP
LoadICON
FindResources
LoadDialogString
LoadSTRING
GetHardwareKey
EnumDspDev
StretchBitmap
IsDisplayValid

Sections

.text
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f5bc89fe44a665d91ef2f23a6a1a3f22

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

hccutils

Sections

.text Size: 372KB - Virtual size: 371KB

.rdata Size: 64KB - Virtual size: 60KB

.data Size: 28KB - Virtual size: 47KB

.rsrc Size: 8KB - Virtual size: 7KB

.text Size: 116KB - Virtual size: 116KB

.text
Size: 372KB - Virtual size: 371KB

.rdata
Size: 64KB - Virtual size: 60KB

.data
Size: 28KB - Virtual size: 47KB

.rsrc
Size: 8KB - Virtual size: 7KB

.text
Size: 116KB - Virtual size: 116KB