99af57f82002ea766330fd2d7cd00d06539d756f2564df43daaa0970ce9e1565

Sharing

Copy URL Twitter E-mail

General

Target

99af57f82002ea766330fd2d7cd00d06539d756f2564df43daaa0970ce9e1565
Size

150KB
MD5

99d4d4560b67b4c00459630d1d7735d1
SHA1

924f945af918a613a7210702d80e5d3f4f136f6c
SHA256

99af57f82002ea766330fd2d7cd00d06539d756f2564df43daaa0970ce9e1565
SHA512

97fa801c8499b92cf1bcb36f63e8f84c60c7e05432c52800e1235e94c0792186b407031c6de118d7c4c7df649647597f3da2a2c0800fd13afae61f1a51e6d9de
SSDEEP

3072:NNnZPUpmxxGomeQ2RtaJ6K5KVXTViXtI2c4hYUzu6Wg/:NbP2MxGzevtaJ35KVDVidID42au6Wg

Score

N/A

Malware Config

Signatures

Files

99af57f82002ea766330fd2d7cd00d06539d756f2564df43daaa0970ce9e1565
.exe windows x86

ad54fcb0fce94f8f32a31f4b45ee53ae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
_lwrite
WaitForSingleObject
SetEvent
SetCurrentDirectoryW
SetConsoleOutputCP
ResetEvent
MultiByteToWideChar
GlobalMemoryStatusEx
GetTimeFormatW
GetSystemDirectoryW
VirtualAllocEx
GetStartupInfoW
GetModuleHandleA
GetLocalTime
GetLastError
GetDateFormatW
GetCurrentProcess
GetCurrentDirectoryW
FreeConsole
ExpandEnvironmentStringsW
CreateThread
CreatePipe
CreateNamedPipeW
CreateFileW
CreateEventW
CloseHandle
Sleep
GetModuleHandleW
GlobalAlloc
GetCurrentThreadId

user32

AppendMenuW
BroadcastSystemMessageW
LoadCursorW
CharToOemW
DefFrameProcA
DispatchMessageW
DragDetect
DrawIcon
EnableWindow
GetClientRect
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowLongW
GetWindowRect
IsIconic
LoadIconW
LoadStringW
MsgWaitForMultipleObjects
OffsetRect
PeekMessageW
PostMessageW
RedrawWindow
ScreenToClient
SendMessageW
SetMessageQueue
SetTimer
SetWindowLongW
TranslateMessage
WinHelpW
LoadBitmapW

gdi32

GetHFONT
GetICMProfileA
GetLayout
GetObjectW
GetEnhMetaFileHeader
RoundRect
SetTextAlign
UpdateICMRegKeyW
GdiFullscreenControl
GdiAddFontResourceW
FONTOBJ_pvTrueTypeFontFile
FONTOBJ_pifi
EngTransparentBlt
EngLockSurface
CopyMetaFileW
ArcTo
GdiFlush
CloseFigure
GetColorSpace
GetWorldTransform
TextOutW
DeleteMetaFile

comdlg32

CommDlgExtendedError

advapi32

RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegOpenKeyA
RegQueryValueExA
RegSetValueExW

shell32

ExtractIconW
Shell_NotifyIcon
ShellExecuteW
ShellExecuteExW
ShellAboutW
SHQueryRecycleBinW
SHPathPrepareForWriteW
SHLoadNonloadedIconOverlayIdentifiers
SHGetSpecialFolderPathW
ExtractIconEx
FindExecutableA
SHAppBarMessage
SHCreateProcessAsUserW
SHEmptyRecycleBinA
SHFreeNameMappings
SHGetDiskFreeSpaceExA
SHGetIconOverlayIndexW
SHGetPathFromIDListW
SHGetSpecialFolderPathA
Shell_NotifyIconW

shlwapi

StrChrIA
StrCmpNW
StrRChrA
StrRChrIW
StrRStrIA
StrStrIA
StrStrW
StrChrA

msvcrt

_XcptFilter
__CxxFrameHandler
__argc
__dllonexit
__p__commode
__p__fmode
__set_app_type
__setusermatherr
__wargv
__wgetmainargs
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_iob
_onexit
_purecall
_putws
_snwprintf
_vsnwprintf
_wcmdln
_wcsdup
_wcsicmp
_wfopen
_wsetlocale
_wtoi
exit
fclose
fflush
fputws
free
malloc
puts
swprintf
wcslen

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad54fcb0fce94f8f32a31f4b45ee53ae

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

msvcrt

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 32KB - Virtual size: 32KB