f732aea8130b62b90df41a225259b95f0afac121e09f61b508cc40975d2f0e2a

Sharing

Copy URL Twitter E-mail

General

Target

f732aea8130b62b90df41a225259b95f0afac121e09f61b508cc40975d2f0e2a
Size

430KB
MD5

5d6b602e3b09eab02edfbdc2ac7eddda
SHA1

64d9ece59c0eac1e0fb01cbb7ff45528600bb0a9
SHA256

f732aea8130b62b90df41a225259b95f0afac121e09f61b508cc40975d2f0e2a
SHA512

59bf68fa013a4de16e593be9209ed7915514806a3256eb03f2192a3a08830d07fb8d84b319f1c3b8d71bd7457d69434e3e5483457f6cca70b3721d97453df82a
SSDEEP

12288:UKa54oNEaqCHv7RaCHNR7fFvZGgsBCU04iLz:UKa54oGPYBzZvZGfcU04iLz

Score

N/A

Malware Config

Signatures

Files

f732aea8130b62b90df41a225259b95f0afac121e09f61b508cc40975d2f0e2a
.exe windows x86

e6ae92cbdebab11a1522f0d1f7ab823e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetSidLengthRequired
GetSidSubAuthority
GetTokenInformation
InitializeSid
IsTokenRestricted
OpenProcessToken
OpenThreadToken
RegCloseKey
RegEnumKeyW
RegOpenKeyExW
RegOpenUserClassesRoot
RegQueryValueW
SetThreadToken
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW

gdi32

CreateBitmap
CreateCompatibleBitmap
CreateICW
CreateSolidBrush
DeleteDC
DeleteObject
EnumMetaFile
ExtTextOutW
GetBitmapBits
GetObjectW
SelectObject
SetBkColor
SetDIBits

kernel32

LoadResource
FindResourceA
VirtualAlloc
CloseHandle
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
FileTimeToLocalFileTime
FreeLibrary
GetCommModemStatus
GetLastError
GetSystemTime
GetVersion
GlobalAlloc
GlobalFree
InitializeCriticalSection
LeaveCriticalSection
LocalAlloc
LocalFree
RtlMoveMemory
RtlZeroMemory
SystemTimeToFileTime
lstrcmpiA
lstrcpyA
lstrlenA
CompareStringW
CreateFileA
CreateProcessA
FileTimeToSystemTime
GetConsoleMode
GetCurrentThreadId
GetExitCodeProcess
GetFileAttributesA
GetFileType
GetNumberOfConsoleInputEvents
GetStdHandle
GetStringTypeW
HeapAlloc
HeapFree
LCMapStringW
MultiByteToWideChar
PeekConsoleInputA
RaiseException
ReadConsoleInputA
ReadFile
SetConsoleMode
SetFilePointer
SetStdHandle
TlsGetValue
TlsSetValue
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
ExitProcess
BeginUpdateResourceA
FindClose
FindFirstFileW
FindResourceW
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentThread
GetFileAttributesW
GetPrivateProfileSectionA
GetProcAddress
GetShortPathNameW
GetSystemWindowsDirectoryW
GlobalLock
GlobalSize
GlobalUnlock
InterlockedCompareExchange
InterlockedExchange
IsBadReadPtr
IsBadStringPtrW
IsBadWritePtr
LoadLibraryW
LockResource
SearchPathW
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
lstrlenW
GetCommandLineA
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleW
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
SetFilePointerEx
GetStringTypeA
LCMapStringA
GetLocaleInfoA
HeapSize
RtlUnwind
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryA
IsDebuggerPresent
VirtualFree
HeapCreate
HeapDestroy
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsAlloc
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
WriteFile
GetModuleHandleA
GetStartupInfoA
GetProcessHeap
GetVersionExA

ole32

StringFromCLSID
ReleaseStgMedium
OleRegGetUserType
OleMetafilePictFromIconAndLabel
OleGetIconOfClass
OleDuplicateData
GetClassFile
CoGetMalloc
CLSIDFromString
CLSIDFromProgID

oleaut32

VarBoolFromUI1

rpcrt4

RpcRevertToSelfEx
I_RpcBindingInqDynamicEndpoint

user32

GetSystemMetrics
GetWindowRect
GetWindowTextW
InflateRect
InvalidateRect
IsDialogMessageW
IsDlgButtonChecked
IsWindow
IsWindowEnabled
KillTimer
LoadIconW
LoadStringW
MessageBoxW
PeekMessageW
PostMessageW
PostThreadMessageW
RegisterDeviceNotificationW
RegisterWindowMessageW
ReleaseDC
RemovePropW
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetClipboardViewer
SetDlgItemTextW
SetFocus
SetPropW
SetTimer
SetWindowPos
SetWindowTextW
GetSysColor
TranslateMessage
UpdateWindow
IsWindowVisible
GetDlgItem
GetDC
GetClipboardFormatNameW
GetClientRect
FillRect
EndDialog
EnableWindow
DrawIcon
DrawFocusRect
DispatchMessageW
DialogBoxIndirectParamW
DestroyWindow
DestroyIcon
CreateWindowExW
CreateIcon
CheckRadioButton
CheckDlgButton
CharPrevW
CharNextW
ChangeClipboardChain
OemToCharBuffA
OemToCharA
CharUpperA
CharToOemBuffA
CharToOemA
CharNextA
GetPropW
GetFocus
GetForegroundWindow
ShowWindow
GetDlgItemTextW

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6ae92cbdebab11a1522f0d1f7ab823e

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

oleaut32

rpcrt4

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 327KB - Virtual size: 327KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 327KB - Virtual size: 327KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 1KB - Virtual size: 1KB