8273996c1ef8e561ff65cda5a05dc5a054906951da1f05896c50032634e55592

Sharing

Copy URL Twitter E-mail

General

Target

8273996c1ef8e561ff65cda5a05dc5a054906951da1f05896c50032634e55592
Size

905KB
MD5

004b1d7e816b3c1aa2d8539a6ab43360
SHA1

8148e5da19c9de94acea6074e35e3cf3302dd2ec
SHA256

8273996c1ef8e561ff65cda5a05dc5a054906951da1f05896c50032634e55592
SHA512

c7f0279c22ad569224cae43b859ea7a4f85971d3decf7ca925eba7e6f6674f882d039488802f13b559087a6a94c4a37738678f1afa99c29e108a561d950f656f
SSDEEP

24576:pccDwNFE2lmfjJEriZTBVbCYpKhIHsIaN4:tDwc2mjJmEU2a

Score

N/A

Malware Config

Signatures

Files

8273996c1ef8e561ff65cda5a05dc5a054906951da1f05896c50032634e55592
.exe windows x86

4a034c8a71a0e5b8e7baec6258c5cba0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
GetCurrentThread
GetDevicePowerState
GetCPInfo
GetCurrencyFormatW
MultiByteToWideChar
GetPrivateProfileSectionNamesW
SetupComm
CreateWaitableTimerA
GetComputerNameA
CreateJobObjectW
LocalFlags
GetDateFormatW
_hread
SetThreadPriorityBoost
CreateJobObjectA
GetCommState
FatalAppExitA
WritePrivateProfileStructW
GetACP
CreateSemaphoreA
IsValidCodePage
GetVolumeInformationW
IsBadStringPtrA
GetCPInfoExA
GetVolumeNameForVolumeMountPointW
RequestWakeupLatency
QueueUserAPC
Process32FirstW
ExitProcess
DuplicateHandle
GetCurrentThreadId
InterlockedCompareExchange
GetUserDefaultLangID
Sleep
OpenFileMappingA
SetStdHandle

advapi32

RegEnumKeyW
RegUnLoadKeyW
LookupPrivilegeValueW
RegDeleteValueW
RegFlushKey
RegCreateKeyExW
RegCloseKey
RegConnectRegistryW
RegCreateKeyW
RegEnumValueW
RegSetValueExA
RegSetValueW

user32

SetWindowPos
InsertMenuA
ShowWindow
CreateCursor
DdeFreeDataHandle
GetActiveWindow
GetWindow
GetWindowTextW
SetCursor
UserHandleGrantAccess
GetDC
FillRect
GetWindowTextLengthW
GetGUIThreadInfo
DestroyIcon
MoveWindow
ReleaseDC
MapDialogRect
SetWindowsHookA
PostMessageW
SetScrollInfo
RegisterClipboardFormatA
GetDlgItem
GetScrollInfo
FlashWindowEx
DdeQueryStringA
EqualRect
DestroyWindow
PtInRect
GetDesktopWindow
IsWindow
InvalidateRect
MessageBoxW
GetFocus
EnableWindow
EndDialog
IsCharLowerA
GetWindowRect
IsCharAlphaW
RemoveMenu
GetLastActivePopup
UpdateWindow
CharNextW
EnumDisplayDevicesW

comctl32

ImageList_DrawIndirect

Sections

.text
Size: 349KB - Virtual size: 348KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 291KB - Virtual size: 695KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bss
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4a034c8a71a0e5b8e7baec6258c5cba0

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

Sections

.text Size: 349KB - Virtual size: 348KB

.data Size: 291KB - Virtual size: 695KB

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 257KB - Virtual size: 257KB

.reloc Size: 3KB - Virtual size: 4KB

.bss Size: 512B - Virtual size: 428B

.text
Size: 349KB - Virtual size: 348KB

.data
Size: 291KB - Virtual size: 695KB

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 257KB - Virtual size: 257KB

.reloc
Size: 3KB - Virtual size: 4KB

.bss
Size: 512B - Virtual size: 428B