887eafe0176ea67b47927a395065b8c28f9aad12d3283c4fd68bde4abe4a238c

Sharing

Copy URL

Twitter E-mail

General

Target

887eafe0176ea67b47927a395065b8c28f9aad12d3283c4fd68bde4abe4a238c
Size

837KB
MD5

2c27cf7430369366ce5ac9f72b80096e
SHA1

198e605b8d9e82439c54b5dffdbaac386d21879c
SHA256

887eafe0176ea67b47927a395065b8c28f9aad12d3283c4fd68bde4abe4a238c
SHA512

7711e2719a32db90195d2c545a34c1d83e5f1a2375fd58f69b87d511dcbb9ad22f00d1b0566362943d891e84791300a0ea5d14fb77f8fafc3c5817b43e166442
SSDEEP

12288:3hS5jmEvp2xMFib63zWBm9DFjnjibnX2qOI9GuSePD5vD09Avuw9XaTAr67Z:3hSsoSMFzw+TubG3B27aThF

Score

N/A

Malware Config

Signatures

Files

887eafe0176ea67b47927a395065b8c28f9aad12d3283c4fd68bde4abe4a238c
.exe windows x86

803a77cc61e748aa56ba201513c33752

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentDirectoryA
VirtualProtect
GetConsoleOutputCP

user32

GetMessagePos
GrayStringW
GetNextDlgTabItem
InvalidateRgn
GetDlgItem
IsDialogMessageW
SendMessageW
GetCursorPos
GetMessageTime
SetWindowTextW
AppendMenuW
CreateWindowExW
GetWindowThreadProcessId
UnhookWindowsHookEx
InvalidateRect
AllowSetForegroundWindow
GetWindowInfo
PostThreadMessageW
SetActiveWindow
InflateRect
SetWindowPlacement
GetFocus
CharUpperW
GetClassNameW
UpdateWindow
GetForegroundWindow
BeginPaint
SetFocus
SetCursorPos
GetMessageW
RegisterClipboardFormatW
GetClassLongW
MessageBoxW
TrackPopupMenu
MapWindowPoints
DefWindowProcW
EndPaint
CheckMenuItem
RedrawWindow
GetSysColor
GetClassInfoW
GetSubMenu
IsChild
GetActiveWindow
GetNextDlgGroupItem
OffsetRect
EndDialog
GetClassInfoExW
MapDialogRect
PeekMessageW
KillTimer
GetMenu

gdi32

CreateFontIndirectW
GetTextColor
SaveDC
MoveToEx
GetTextExtentPoint32W
PtVisible
GetMapMode
SetMapMode
SetPixel
Escape
GetDeviceCaps
DeleteObject
CreatePen
CreateRectRgnIndirect
CreateSolidBrush
RestoreDC
ScaleViewportExtEx
SetViewportOrgEx
DPtoLP
GetBkColor
ExtSelectClipRgn
RectVisible
PatBlt
SetBkMode
CreateBitmap
Polyline
BitBlt
CreateBitmapIndirect
TextOutW
CreateCompatibleBitmap
ExcludeClipRect
GetRgnBox
GetClipBox
GetViewportExtEx
StretchDIBits
SelectPalette
GetWindowExtEx
SetBkColor
ScaleWindowExtEx
LineTo
SetStretchBltMode
SetWindowExtEx
SelectObject
GetPixel
OffsetViewportOrgEx
GetStockObject
ExtTextOutW
CreateCompatibleDC
SetViewportExtEx
StretchBlt
GetObjectW
SetTextColor
DeleteDC

comdlg32

GetFileTitleW

advapi32

RegDeleteValueW
RegQueryValueW
RegEnumKeyW
StartServiceW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
LookupPrivilegeValueW
RegEnumKeyExW
AdjustTokenPrivileges
OpenProcessToken
RegNotifyChangeKeyValue
CloseServiceHandle
OpenServiceW
RegCreateKeyW
OpenSCManagerW
RegDeleteKeyW

shell32

Shell_NotifyIconW
ShellExecuteW
SHGetFolderPathW

ole32

CoTaskMemAlloc
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleUninitialize
CoUninitialize
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
CoInitialize
OleInitialize
CoTaskMemFree
CoFreeUnusedLibraries
CLSIDFromString
CoRevokeClassObject
OleFlushClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoCreateInstance
PropVariantClear

shlwapi

PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathStripToRootW

winmm

PlaySoundW
waveInStart
waveInClose
waveInGetNumDevs
waveInStop
waveInReset
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInOpen
waveInGetDevCapsW

rpcrt4

UuidCreate

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

gdiplus

GdipDrawImageRectRect
GdipFlush
GdipMeasureString
GdipCloneBrush
GdipCreateFontFamilyFromName
GdipFillRectangleI
GdipDrawString
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipAlloc
GdipDrawImagePointRectI
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipDrawImageRect
GdipDeleteFont
GdiplusStartup
GdipDeleteBrush
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectI
GdipCreateSolidFill
GdipCreateFont
GdipCloneImage
GdipSetTextRenderingHint
GdipCreateBitmapFromGraphics
GdipCreateFromHDC
GdipFree
GdipImageRotateFlip
GdipGetImageHeight
GdipGetImageGraphicsContext
GdipGetGenericFontFamilySansSerif
GdipGetFontSize
GdipGetImageWidth
GdipGetImageBounds
GdipCreateBitmapFromResource
GdipFillRectangle

msvcrt

exit

oleacc

ObjectFromLresult

esent

JetMove
JetTerm

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.55
Size: - Virtual size: 183KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aa
Size: 310KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bb
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cc
Size: 512B - Virtual size: 34B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.a46
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asshole
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

803a77cc61e748aa56ba201513c33752

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

winmm

rpcrt4

setupapi

gdiplus

msvcrt

oleacc

esent

Sections

.text Size: 160KB - Virtual size: 160KB

.55 Size: - Virtual size: 183KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 828B

.aa Size: 310KB - Virtual size: 310KB

.bb Size: 155KB - Virtual size: 155KB

.cc Size: 512B - Virtual size: 34B

.a46 Size: 1KB - Virtual size: 1KB

.asshole Size: 196KB - Virtual size: 195KB

.rsrc Size: 1024B - Virtual size: 720B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 160KB - Virtual size: 160KB

.55
Size: - Virtual size: 183KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 828B

.aa
Size: 310KB - Virtual size: 310KB

.bb
Size: 155KB - Virtual size: 155KB

.cc
Size: 512B - Virtual size: 34B

.a46
Size: 1KB - Virtual size: 1KB

.asshole
Size: 196KB - Virtual size: 195KB

.rsrc
Size: 1024B - Virtual size: 720B

.reloc
Size: 4KB - Virtual size: 3KB