6aed28517bee05c1ef1162946a3e1f15f215d435f3017fc94af90d87768c65d6

Sharing

Copy URL Twitter E-mail

General

Target

6aed28517bee05c1ef1162946a3e1f15f215d435f3017fc94af90d87768c65d6
Size

366KB
MD5

0b60fa475e3984de10a2addb0d2d0d6a
SHA1

c1e4c7502eaaf3672015b0f420f1f3b475d7db71
SHA256

6aed28517bee05c1ef1162946a3e1f15f215d435f3017fc94af90d87768c65d6
SHA512

95ea5f3118e8409dcf5f3fbdbe5771edbfbcc79489b5a97e64679fde95b6fcbb05e1361add4430b798874211aab2bf3ad1e26b1fc5dd726cec46eb941a16880c
SSDEEP

6144:y3XJct/+4p82GLOMnONV7sgQA+AvZKogO3ZuxAgh4yZ86If3lz:y3XJct4TfAngY8+gtZZc

Score

N/A

Malware Config

Signatures

Files

6aed28517bee05c1ef1162946a3e1f15f215d435f3017fc94af90d87768c65d6
.exe windows x86

acfe68989d838ea8e86f7b23dc24e523

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
LockResource
LoadResource
FindResourceA
MulDiv
WideCharToMultiByte
GetModuleFileNameA
GetSystemDirectoryA
GetTempPathA
GetWindowsDirectoryA
DebugBreak
OutputDebugStringA
FreeLibrary
GetProcAddress
LoadLibraryA
FindClose
FindFirstFileA
GetPrivateProfileStringA
GetLocalTime
lstrcmpA
WriteFile
GetFileSize
SetFileAttributesA
GetFileAttributesA
GlobalHandle
GlobalFree
FreeResource
LCMapStringW
GlobalAlloc
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetVersionExA
GetEnvironmentVariableA
HeapSize
TerminateProcess
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
RaiseException
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
HeapReAlloc
HeapFree
RtlUnwind
LocalFree
InterlockedExchange
GlobalLock
GlobalUnlock
DeleteCriticalSection
HeapDestroy
InitializeCriticalSection
CreateMutexA
GetLastError
GetExitCodeThread
TerminateThread
DeleteFileA
CreateThread
CopyFileA
CreateFileA
ReadFile
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
MultiByteToWideChar
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
lstrcpynA
lstrlenA
InterlockedDecrement
LCMapStringA
Sleep

user32

IsWindowEnabled
EnumWindows
InvalidateRgn
CreateAcceleratorTableA
GetDesktopWindow
GetClassNameA
GetFocus
CopyImage
BeginPaint
CharNextA
wvsprintfA
CharLowerA
SetDlgItemTextA
DefWindowProcA
DestroyCursor
InvalidateRect
IsChild
GetSysColor
LoadImageA
RedrawWindow
IsWindow
GetIconInfo
SendMessageA
ReleaseCapture
WindowFromPoint
ClientToScreen
SetCapture
GetCapture
GetParent
GetActiveWindow
MessageBeep
CreateDialogIndirectParamA
wsprintfA
RegisterWindowMessageA
GetClassInfoExA
LoadCursorA
RegisterClassExA
GetSystemMetrics
CreateDialogParamA
MoveWindow
EnableWindow
SetForegroundWindow
IsWindowVisible
DestroyWindow
PostQuitMessage
IsDialogMessageA
GetWindow
CallWindowProcA
ScreenToClient
GetCursorPos
PeekMessageA
SystemParametersInfoA
MapWindowPoints
SetWindowPos
GetMessageA
TranslateMessage
DispatchMessageA
SetFocus
MessageBoxA
CreatePopupMenu
AppendMenuA
IsMenu
TrackPopupMenu
DestroyMenu
SetWindowTextA
EnumChildWindows
DestroyIcon
LoadIconA
GetDlgItem
ShowWindow
CreateWindowExA
FillRect
GetWindowLongA
SetWindowLongA
LoadStringA
FrameRect
InflateRect
GetWindowTextLengthA
GetWindowTextA
DrawTextA
DrawFocusRect
DrawStateA
CopyRect
OffsetRect
GetDC
GetClientRect
GetWindowRect
ReleaseDC
SetCursor
GetDlgCtrlID
EndPaint

gdi32

RoundRect
StretchBlt
SetStretchBltMode
GetObjectA
SetBkMode
CreatePen
MoveToEx
LineTo
DeleteObject
DeleteDC
SelectObject
CreateCompatibleBitmap
CreateBrushIndirect
GetDeviceCaps
CreateFontIndirectA
CreateSolidBrush
SetBkColor
CreateCompatibleDC
BitBlt
ExtTextOutA
Rectangle
GetStockObject
SetTextColor

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

ShellExecuteA

ole32

CoTaskMemFree
CLSIDFromString
OleUninitialize
StringFromCLSID
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemAlloc
OleInitialize
OleLockRunning
CLSIDFromProgID

oleaut32

VariantChangeType
SysAllocStringLen
SysStringLen
VariantClear
VariantCopy
LoadRegTypeLi
OleCreateFontIndirect
SysFreeString
SysAllocString
GetErrorInfo
CreateErrorInfo
VariantInit

comctl32

ImageList_Create
ImageList_ReplaceIcon
InitCommonControlsEx

msimg32

GradientFill

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.krdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

acfe68989d838ea8e86f7b23dc24e523

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

oleaut32

comctl32

msimg32

version

Sections

.text Size: 180KB - Virtual size: 177KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 16KB - Virtual size: 16KB

.rsrc Size: 72KB - Virtual size: 71KB

.krdata Size: 68KB - Virtual size: 68KB

.text
Size: 180KB - Virtual size: 177KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 72KB - Virtual size: 71KB

.krdata
Size: 68KB - Virtual size: 68KB