7bce3a572c933112b57f4c38f772c669776c28c3074ed951a1412b3dfee0759f

Sharing

Copy URL Twitter E-mail

General

Target

7bce3a572c933112b57f4c38f772c669776c28c3074ed951a1412b3dfee0759f
Size

590KB
MD5

9a12ab949a7d946e84186fa30a60a076
SHA1

a0314e21f3cff33f77eea1e320ebbcded971b559
SHA256

7bce3a572c933112b57f4c38f772c669776c28c3074ed951a1412b3dfee0759f
SHA512

bc01271d2f10d6e39649c1ff9ef1f934bd22b45dc2a52f98ca7ece0c895adc87d96ffe0c1c6bb3cbe1de5230451713dd887b9530ceae832bc6b5fd7df2c2dc22
SSDEEP

12288:ycCVpl6055x2ZDKbEPpSL+3dGDde9zJC5FlCRLgvVOX:1CBx29FR7+d4C5FlCRLgvVO

Score

N/A

Malware Config

Signatures

Files

7bce3a572c933112b57f4c38f772c669776c28c3074ed951a1412b3dfee0759f
.exe windows x86

fb6d85ecfeb9640d9544f72051fb240e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeaps
WriteFile
lstrcatA
EnumCalendarInfoExA
TlsFree
CreateFileW
GetACP
FindFirstFileW
FillConsoleOutputCharacterA
HeapCreate
SetUnhandledExceptionFilter
GetDateFormatW
TlsSetValue
GetConsoleTitleA
GetUserDefaultLCID
CompareStringW
GetModuleHandleA
VirtualAlloc
GetTimeZoneInformation
WaitNamedPipeA
IsDebuggerPresent
GetOEMCP
MapViewOfFileEx
FlushFileBuffers
DuplicateHandle
GetFullPathNameA
CreatePipe
WriteFileEx
MoveFileW
DeleteCriticalSection
CreateFileA
FreeLibrary
GetFileAttributesA
FreeEnvironmentStringsA
Sleep
lstrcpyn
HeapFree
FreeLibraryAndExitThread
IsBadReadPtr
DebugBreak
GetNumberFormatA
GetCommandLineA
InitializeCriticalSection
VirtualQuery
LCMapStringA
GlobalFix
WideCharToMultiByte
GetLocaleInfoA
MultiByteToWideChar
SetComputerNameW
SetEnvironmentVariableA
GetNumberFormatW
GetStartupInfoA
GetTickCount
LocalFileTimeToFileTime
GetEnvironmentStringsW
SetStdHandle
TerminateProcess
SetHandleCount
FindFirstFileExA
LoadLibraryA
GetLastError
GetStringTypeW
GetFileType
QueryPerformanceCounter
GetTempFileNameW
SetConsoleCtrlHandler
VirtualFree
GetEnvironmentStrings
GetSystemTimeAsFileTime
GetTimeFormatA
SetFilePointer
GetTempPathW
GetCurrentThreadId
InterlockedIncrement
GetCurrentThread
HeapReAlloc
TlsAlloc
CreateMutexA
InterlockedDecrement
GlobalAddAtomW
VirtualProtect
GetCurrentProcess
EnterCriticalSection
RtlUnwind
GetConsoleOutputCP
LCMapStringW
ReadFile
HeapDestroy
OpenWaitableTimerA
GetDateFormatA
WriteConsoleA
SetConsoleTextAttribute
ExitProcess
GetConsoleMode
CreateFileMappingW
OpenMutexA
DeleteAtom
GetCurrentProcessId
TlsGetValue
GetConsoleCP
UnhandledExceptionFilter
FreeEnvironmentStringsW
GlobalSize
CompareStringA
IsValidLocale
GetCPInfo
InterlockedExchange
LoadLibraryExW
WriteConsoleW
EnumSystemLocalesA
LeaveCriticalSection
CloseHandle
HeapAlloc
EnumResourceLanguagesA
InterlockedExchangeAdd
SetLastError
GetStringTypeA
GetLocaleInfoW
LocalShrink
HeapSize
SetConsoleScreenBufferSize
GetProcAddress
GetVersionExA
GetProcessHeap
IsValidCodePage
GetModuleFileNameA
LockResource
GetStdHandle
lstrcmpiW

user32

ImpersonateDdeClientWindow
GetCursorPos
OpenInputDesktop
CallWindowProcA
CharPrevA
CharToOemBuffW
LoadCursorA
SetRect
PeekMessageW
SetClipboardData
RegisterDeviceNotificationW
ModifyMenuW
GetUserObjectSecurity
DefMDIChildProcW
ChangeDisplaySettingsW
DefWindowProcA
RegisterClassA
GetDlgItemTextW
PostMessageA
UnhookWinEvent
RegisterClassExA
CreateWindowExA
IsWindowVisible
ShowWindow
InsertMenuW
BringWindowToTop
CreateDialogParamA
SubtractRect
GetCaretBlinkTime
SendDlgItemMessageW
GetWindowRect
GetSystemMenu
DrawTextW
EnumDisplaySettingsW
DestroyWindow
wvsprintfA
DialogBoxParamA
OpenDesktopW
ScrollDC
MonitorFromWindow
RealChildWindowFromPoint
GetNextDlgGroupItem
GetWindowTextW
GetTabbedTextExtentA
EndMenu
CharPrevW
CharNextExA
DrawStateW
MenuItemFromPoint
MessageBoxW
GetGUIThreadInfo
HideCaret
SetCaretBlinkTime
WinHelpW
CharNextW

shell32

ShellExecuteExA
DragQueryPoint
SHAppBarMessage
DoEnvironmentSubstW

comctl32

ImageList_GetImageCount
InitCommonControlsEx
ImageList_Destroy
ImageList_AddIcon
DrawStatusText
CreateMappedBitmap
ImageList_LoadImageA
ImageList_Write
CreateStatusWindowW
ImageList_DrawIndirect
ImageList_LoadImageW
DrawInsert
ImageList_DrawEx
DrawStatusTextW
CreateStatusWindow
CreateStatusWindowA
ImageList_SetImageCount
ImageList_GetFlags
CreateToolbarEx
ImageList_DragMove
ImageList_DragLeave
ImageList_GetBkColor
ImageList_Copy
ImageList_LoadImage
ImageList_DragEnter
MakeDragList

Sections

.text
Size: 209KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb6d85ecfeb9640d9544f72051fb240e

Headers

File Characteristics

Imports

kernel32

user32

shell32

comctl32

Sections

.text Size: 209KB - Virtual size: 208KB

.rdata Size: 250KB - Virtual size: 250KB

.data Size: 115KB - Virtual size: 141KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 209KB - Virtual size: 208KB

.rdata
Size: 250KB - Virtual size: 250KB

.data
Size: 115KB - Virtual size: 141KB

.rsrc
Size: 14KB - Virtual size: 14KB