17de6fe87d4bf3baed79bfa6bfb5b297142147f64a5e9b1437a4c341da9a9fb2

Sharing

Copy URL Twitter E-mail

General

Target

17de6fe87d4bf3baed79bfa6bfb5b297142147f64a5e9b1437a4c341da9a9fb2
Size

468KB
MD5

9b3a0570d04268c7bc58d1865042b417
SHA1

3cea26296cd2df7c957021562a5d22b0e3a840a2
SHA256

17de6fe87d4bf3baed79bfa6bfb5b297142147f64a5e9b1437a4c341da9a9fb2
SHA512

9ee67312d05893ae6dbd12357ae47671213b66f2100e0452b1282cf9ffd1318a3a2955473be964da61adad0f12ceb5ef77df922b8bfce5a59f4cbd7485e0d360
SSDEEP

12288:sF3i/33OtyfJVMgvCDNAzJSE8hpN7e5D:E033myfJVMCCMJSEiT4D

Score

N/A

Malware Config

Signatures

Files

17de6fe87d4bf3baed79bfa6bfb5b297142147f64a5e9b1437a4c341da9a9fb2
.exe windows x86

d388b1a63513c0b621ac32e9406015e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveFileSpecA
PathAddBackslashA
PathQuoteSpacesA
PathFileExistsA
PathRemoveExtensionA
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathAppendA
PathIsUNCA

advapi32

AdjustTokenPrivileges
CreateServiceA
RegCreateKeyA
RegEnumKeyA
RegSetValueA
OpenSCManagerA
RegOpenKeyExA

user32

DestroyAcceleratorTable
ShowWindow
LoadBitmapW
RegisterClassExW
DefWindowProcW
CreateWindowExW
RegisterClassW
LoadCursorW
LoadIconW
DestroyIcon
LoadStringW
MessageBoxW
LoadAcceleratorsW
DestroyWindow

comctl32

DestroyPropertySheetPage
ImageList_GetIcon
PropertySheetW
ImageList_Draw
CreatePropertySheetPageW
ImageList_AddMasked
InitCommonControlsEx

gdi32

SetBkMode
CreateDCW
SelectPalette
DeleteDC
SetWindowExtEx
GetObjectW
GetBkColor
CreateCompatibleDC
SelectObject
GetDIBits
GetTextMetricsA
LineTo
TextOutW
GetClipBox
GetStockObject
GetDeviceCaps
DPtoLP
DeleteObject
Polyline
Ellipse
MoveToEx
CreateSolidBrush
SetTextAlign
StrokePath
GetTextExtentPoint32W

kernel32

GetCurrentProcessId
VirtualProtect
InterlockedExchange
GetLastError
GetModuleFileNameA
WideCharToMultiByte
GetProcAddress
SetFileAttributesW
GetDateFormatA
GetSystemInfo
SetEnvironmentVariableA
SetStdHandle
TlsAlloc
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetModuleFileNameW
IsBadCodePtr
SetLastError
FindClose
GetVersionExA
SetHandleCount
LoadResource
GetCurrentThread
FreeLibrary
VirtualQuery
VirtualAlloc
LoadLibraryA
TlsSetValue
FreeEnvironmentStringsA
LoadLibraryW
CreateMutexW
LeaveCriticalSection
VirtualFree
MulDiv
IsBadReadPtr
EnterCriticalSection
GetSystemTimeAsFileTime
GetTimeZoneInformation
RtlUnwind
GetVersionExW
GetThreadLocale
QueryPerformanceCounter
GetACP
GetTickCount
CreateThread
SetEvent
GetOEMCP
TlsFree
MultiByteToWideChar
HeapFree
LocalReAlloc
GetStartupInfoA
HeapSize
GetModuleHandleA
CompareStringA
GetModuleHandleW
CreateProcessW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeCriticalSection
GetThreadPriority
lstrlenW
DeleteCriticalSection
FreeEnvironmentStringsW
GetCPInfo
CloseHandle
GetStringTypeW
CompareStringW
LCMapStringW
GetCommandLineA
GetLocaleInfoA
ExitProcess
CreateFileA
ReadFile
WriteFile
HeapReAlloc
HeapDestroy
RaiseException
TlsGetValue
FlushFileBuffers
GetFileType
GetTimeFormatA
SetFilePointer
TerminateProcess
HeapAlloc
GetCurrentProcess
GlobalLock
GetCommandLineW
GetStartupInfoW
GetCurrentThreadId
GetStdHandle
SetThreadPriority
HeapCreate
LCMapStringA

ole32

CoTaskMemFree
OleCreateFromFile
OleSetMenuDescriptor
OleRegGetMiscStatus
CLSIDFromString
OleLockRunning
OleIsCurrentClipboard
OleCreateFromData
OleGetIconOfClass
OleSave
OleCreate
OleRegEnumVerbs
OleUninitialize
OleCreateLinkFromData
OleIsRunning
CoFreeUnusedLibraries
OleCreateLinkToFile
StgIsStorageFile

version

VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d388b1a63513c0b621ac32e9406015e1

Headers

File Characteristics

Imports

shlwapi

advapi32

user32

comctl32

gdi32

kernel32

ole32

version

Sections

.text Size: 88KB - Virtual size: 86KB

.rdata Size: 260KB - Virtual size: 257KB

.data Size: 76KB - Virtual size: 92KB

.rsrc Size: 40KB - Virtual size: 38KB

.text
Size: 88KB - Virtual size: 86KB

.rdata
Size: 260KB - Virtual size: 257KB

.data
Size: 76KB - Virtual size: 92KB

.rsrc
Size: 40KB - Virtual size: 38KB