a94d139ec209b98cec947231d57a8d05c9a6c9409116439324205f8026d3f0b3

Sharing

Copy URL

Twitter E-mail

General

Target

a94d139ec209b98cec947231d57a8d05c9a6c9409116439324205f8026d3f0b3
Size

672KB
MD5

8c70f7aa814fa97ea85835427131b819
SHA1

47190f462c0b9a93c57cd7f4a2b69153999aee6d
SHA256

a94d139ec209b98cec947231d57a8d05c9a6c9409116439324205f8026d3f0b3
SHA512

67fde056129191c14b86728e668f52b48516e0f230c7cbd31ef34f4ad56612dd661592811214332de93878e563e6689fbc93492f9f271480c20eeaa5c46e255b
SSDEEP

12288:Uwfr/oKvRyH9De3LVwFElZ3mHN7bdeCowvO8L1l:UOLrvIE3LVQElxMN1RFL1l

Score

N/A

Malware Config

Signatures

Files

a94d139ec209b98cec947231d57a8d05c9a6c9409116439324205f8026d3f0b3
.exe windows x86

d86d7770b36784bad67d3b9917d55fd7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
PaintRgn
AddFontResourceA
GetEnhMetaFileBits
ArcTo
GdiSetBatchLimit
GetDIBColorTable
MoveToEx
CreateDCW
LineDDA
GetWindowExtEx
GetDeviceCaps
DeleteDC
SelectObject
GetOutlineTextMetricsW
FillPath
UpdateColors
EqualRgn
GetBkColor
SetViewportOrgEx
CopyEnhMetaFileW
GetLogColorSpaceA
GetObjectW
SetColorSpace
SetFontEnumeration
DeleteObject
EndPath
GetTextExtentPointW

shell32

CheckEscapesW
SHFileOperation
ExtractAssociatedIconExA

user32

CreateWindowExW
DispatchMessageA
TrackPopupMenuEx
LoadAcceleratorsW
FillRect
IsChild
UnhookWinEvent
IsCharAlphaA
ShowWindow
RegisterClipboardFormatW
ShowWindowAsync
GetDlgItemTextW
LoadBitmapW
DestroyAcceleratorTable
GetKeyboardType
SendDlgItemMessageW
GetWindowThreadProcessId
GetActiveWindow
CreateDialogParamW
MessageBoxW
MenuItemFromPoint
RegisterClassA
DdeClientTransaction
DestroyWindow
GetMenuItemInfoW
GetTabbedTextExtentA
DrawIcon
wvsprintfW
RegisterClassExA
MonitorFromRect
GetClassInfoExA
WINNLSGetEnableStatus
DefWindowProcW
LoadImageA

kernel32

HeapReAlloc
GetModuleHandleA
VirtualFreeEx
WideCharToMultiByte
TlsFree
FreeEnvironmentStringsA
VirtualAlloc
GetCurrentThreadId
CreateDirectoryExA
GetSystemTime
HeapDestroy
VirtualQuery
SetConsoleCtrlHandler
EnterCriticalSection
LCMapStringW
GetLastError
SetLastError
IsBadReadPtr
QueryPerformanceCounter
GetFileAttributesW
GetProcAddress
OpenMutexA
DebugActiveProcess
GetCPInfo
SetFilePointer
GetSystemTimeAsFileTime
HeapCreate
TlsSetValue
SetEnvironmentVariableA
GetStdHandle
LeaveCriticalSection
GetStringTypeA
GetModuleFileNameA
GetCurrentProcess
GetCommandLineA
WriteFile
GetACP
InterlockedIncrement
DebugBreak
CompareStringW
GetCurrentThread
FlushFileBuffers
HeapAlloc
MultiByteToWideChar
ReadFile
CloseHandle
GetCurrentProcessId
TlsAlloc
InterlockedDecrement
CompareStringA
SetHandleCount
GetStringTypeExA
LoadLibraryA
SetLocalTime
ExitProcess
CreateWaitableTimerA
CreateMutexA
GetStartupInfoA
VirtualFree
HeapValidate
OutputDebugStringA
GetOEMCP
SetStdHandle
RtlUnwind
GetTimeZoneInformation
GetFileType
TlsGetValue
GetTickCount
TerminateProcess
lstrcpy
GetEnvironmentStringsW
IsBadWritePtr
GetVersion
HeapFree
UnhandledExceptionFilter
GetStringTypeW
FreeEnvironmentStringsW
SetEndOfFile
WaitCommEvent
InterlockedExchange
LCMapStringA
GetEnvironmentStrings
GetLocalTime
DeleteCriticalSection
InitializeCriticalSection

comctl32

CreateToolbarEx
InitMUILanguage
ImageList_GetIcon
ImageList_DragEnter
DrawStatusTextW
_TrackMouseEvent
InitCommonControlsEx
ImageList_Destroy
CreateUpDownControl
ImageList_ReplaceIcon
ImageList_SetDragCursorImage
ImageList_Write
ImageList_Read
ImageList_AddMasked
ImageList_BeginDrag
ImageList_SetIconSize
DestroyPropertySheetPage
CreateToolbar

advapi32

CryptAcquireContextA
InitializeSecurityDescriptor
LookupPrivilegeDisplayNameA
CreateServiceW

Sections

.text
Size: 212KB - Virtual size: 210KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d86d7770b36784bad67d3b9917d55fd7

Headers

File Characteristics

Imports

gdi32

shell32

user32

kernel32

comctl32

advapi32

Sections

.text Size: 212KB - Virtual size: 210KB

.rdata Size: 252KB - Virtual size: 249KB

.data Size: 116KB - Virtual size: 125KB

.rsrc Size: 88KB - Virtual size: 85KB

.text
Size: 212KB - Virtual size: 210KB

.rdata
Size: 252KB - Virtual size: 249KB

.data
Size: 116KB - Virtual size: 125KB

.rsrc
Size: 88KB - Virtual size: 85KB