b4d8c152b2b78a5f18111b5fec44ad7e002ba464e915a336af526f017d220755

Sharing

Copy URL Twitter E-mail

General

Target

b4d8c152b2b78a5f18111b5fec44ad7e002ba464e915a336af526f017d220755
Size

336KB
MD5

0aac4cd874452a53130e073e535ed1b0
SHA1

bf2c705717f7e189ef91d4ff86300e73e711cd10
SHA256

b4d8c152b2b78a5f18111b5fec44ad7e002ba464e915a336af526f017d220755
SHA512

f7e36cd9ce4091a475938452eb5a77c09feb4eefc3d754f157fa730add6f841445360e5283d37e8e2fed451444ff28f2ab0b86d672f93da75da0afde4e2c8c50
SSDEEP

6144:ZFIL0vBJ//aFExnjKFsnE/WFYJI0em3FiOQsGSccLZJ92i9:YL0vBJ//UFkOWFX0eCQ1sGSc4

Score

N/A

Malware Config

Signatures

Files

b4d8c152b2b78a5f18111b5fec44ad7e002ba464e915a336af526f017d220755
.exe windows x86

ec160a39061ce6ed0449629034425fda

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

RpcStringFreeA
UuidToStringA

kernel32

GetSystemDefaultLangID
GetVersionExA
GetACP
GetModuleFileNameA
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadCodePtr
HeapReAlloc
VirtualAlloc
IsBadWritePtr
LCMapStringA
MultiByteToWideChar
LCMapStringW
VirtualFree
HeapCreate
WriteFile
GetFileType
GetStdHandle
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
FreeEnvironmentStringsW
FreeEnvironmentStringsA
WideCharToMultiByte
TerminateProcess
HeapAlloc
UnhandledExceptionFilter
FileTimeToLocalFileTime
FileTimeToSystemTime
HeapFree
FindFirstFileA
FindClose
GetVersion
GetCommandLineA
ExitProcess
RtlUnwind
GetStringTypeA
GetStartupInfoA
GetCPInfo
GetOEMCP
GetStringTypeW
CompareStringA
GetTimeZoneInformation
SetEnvironmentVariableA
GetCurrentProcess
GlobalDeleteAtom
CompareStringW
Sleep
GetTickCount
CloseHandle
FreeLibrary
WinExec
GetLastError
CreateMutexA
GetSystemTime
lstrcpynA
GetUserDefaultLangID
GetLocaleInfoA
GlobalAddAtomA
lstrcpyA
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
GetModuleHandleA
lstrcmpA
lstrlenA

user32

GetDlgItem
GetDesktopWindow
DrawIconEx
CreateWindowExA
FindWindowExA
SendMessageA
SetWindowLongA
DefWindowProcA
LoadImageA
GetParent
LoadStringA
RegisterClassA
LoadCursorA
LoadIconA
LockWindowUpdate
MessageBeep
GetDC
KillTimer
PostQuitMessage
GetWindowRect
FindWindowA
GetForegroundWindow
DestroyIcon
wsprintfA
EnumDisplaySettingsA
GetCursorPos
TrackPopupMenuEx
FillRect
GetSysColorBrush
OffsetRect
GetWindowLongA
ReleaseDC
GetMenuItemCount
LoadBitmapA
ChangeDisplaySettingsExA
CreatePopupMenu
GetSubMenu
DestroyMenu
CreateIconIndirect
AppendMenuA
GetIconInfo
DispatchMessageA
GetMessageA
TranslateMessage
MessageBoxA
UnregisterHotKey
RegisterHotKey
SetForegroundWindow
EnableWindow
SetDlgItemTextA
ScrollWindow
ShowWindow
DrawTextA
ScreenToClient
InflateRect
GetSysColor
DialogBoxParamA
InvalidateRect
UpdateWindow
SetRect
SendDlgItemMessageA
EndDialog
MapWindowPoints
SetWindowPos
WindowFromDC
GetSystemMetrics
IntersectRect
SystemParametersInfoA
SetTimer
WinHelpA
PostMessageA
GetAsyncKeyState
IsWindowEnabled
ChangeDisplaySettingsA
EnumChildWindows
GetWindow
GetClassNameA

gdi32

GetStockObject
CreateHatchBrush
SetBkMode
CreateCompatibleBitmap
DeleteDC
SetStretchBltMode
CreateDCA
CreateHalftonePalette
CreatePen
Polygon
SetTextColor
ExcludeClipRect
BitBlt
CreateRectRgn
CreateFontIndirectA
GetTextMetricsA
GetObjectA
CreateCompatibleDC
GetTextExtentPoint32A
ExtEscape
StretchBlt
CreateFontA
SelectClipRgn
IntersectClipRect
SetBrushOrgEx
SelectObject
CreateRectRgnIndirect
PaintRgn
DeleteObject
GetClipBox

advapi32

InitializeAcl
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegEnumValueA
RegEnumKeyExA
AllocateAndInitializeSid
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
AdjustTokenPrivileges
AddAccessAllowedAce
SetSecurityDescriptorDacl
RegCreateKeyExA
FreeSid
RegQueryInfoKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA

shell32

ExtractIconExA
Shell_NotifyIconA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

ole32

CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoUninitialize

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ec160a39061ce6ed0449629034425fda

Headers

File Characteristics

Imports

rpcrt4

kernel32

user32

gdi32

advapi32

shell32

version

ole32

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 16KB - Virtual size: 14KB

.rsrc Size: 172KB - Virtual size: 172KB

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 172KB - Virtual size: 172KB