e4935fa76f85ac556d2a5d604e8c0110e071b42810262cf9e15e3a8a94fc4ff7

Sharing

Copy URL Twitter E-mail

General

Target

e4935fa76f85ac556d2a5d604e8c0110e071b42810262cf9e15e3a8a94fc4ff7
Size

197KB
MD5

948fce678e0a0b8d262a68d2c48c48a8
SHA1

8d7d83582ebe663fd06af43f942b5cf3a420ca4c
SHA256

e4935fa76f85ac556d2a5d604e8c0110e071b42810262cf9e15e3a8a94fc4ff7
SHA512

600c320af4699fef22b13ec6bc175be3e707b47f2a7f816b1278498866826118dca3e1677eaca87725979dccfbaf44cb7c8afb00a755e2de506bf75116a3c2d2
SSDEEP

3072:MdjvLZgH7UBc6RbiCK+FAH23JBKT5YDo1zXS1/DjAExMr7202P16/PQTXVbg:ky05K6TBKTRChfZY202dGGXa

Score

N/A

Malware Config

Signatures

Files

e4935fa76f85ac556d2a5d604e8c0110e071b42810262cf9e15e3a8a94fc4ff7
.exe windows x86

36a8b8206074ea3662416a09da8c68df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AdjustTokenPrivileges
GetTokenInformation
LookupPrivilegeValueA
RegOpenKeyA
RegCloseKey
OpenProcessToken
GetKernelObjectSecurity
FreeSid
RegQueryValueExA
AllocateAndInitializeSid
RegSetValueExA
EqualSid
RegCreateKeyA
SetKernelObjectSecurity
IsValidSecurityDescriptor
MapGenericMask

comctl32

CreateToolbarEx
PropertySheetA
ImageList_Destroy
ImageList_GetImageCount
ImageList_Create
CreatePropertySheetPageA
ImageList_ReplaceIcon
ImageList_Add

comdlg32

PrintDlgA

gdi32

GetObjectA
GetDeviceCaps
SetMapMode
EndDoc
SetBkMode
StartDocA
CreateBrushIndirect
GetStockObject
CreateFontIndirectA
StartPage
SelectObject
DeleteObject
SetTextColor
EndPage

kernel32

GetStdHandle
GetConsoleOutputCP
FileTimeToSystemTime
HeapDestroy
FreeEnvironmentStringsA
HeapAlloc
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
LocalAlloc
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
FreeLibrary
LocalFree
InterlockedDecrement
FormatMessageA
SetLastError
IsDebuggerPresent
ExitProcess
GetModuleFileNameA
EnumSystemLocalesA
SetConsoleCtrlHandler
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
FatalAppExitA
GetModuleHandleA
DeleteCriticalSection
SetUnhandledExceptionFilter
SetEnvironmentVariableA
TerminateProcess
WriteConsoleA
GetVersion
LeaveCriticalSection
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
FlushFileBuffers
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetDateFormatA
GetUserDefaultLCID
CompareStringW
CompareStringA
IsValidLocale
GetProcAddress
GetTimeZoneInformation
GetFileType
TlsSetValue
CreateFileA
GetCurrentThreadId
InterlockedIncrement
GetLastError
LCMapStringW
lstrlenA
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
FileTimeToLocalFileTime
GetEnvironmentStrings
GetCurrentProcessId
GetCommandLineW
WideCharToMultiByte
HeapSize
GetCommandLineA
GetCurrentThread
RaiseException
TlsFree
SetFilePointer
CloseHandle
GetACP
GetModuleHandleW
IsValidCodePage
HeapCreate
VirtualFree
Sleep
VirtualAlloc
GetTimeFormatA

shell32

ShellExecuteA

user32

SetFocus
GetMessageA
SetDlgItemTextA
GetParent
ReleaseDC
PostMessageA
EndDialog
LoadMenuA
ReleaseCapture
PostQuitMessage
DefWindowProcA
ShowWindow
LoadBitmapA
DeferWindowPos
BeginDeferWindowPos
GetWindowRect
InflateRect
InvertRect
UpdateWindow
SetCapture
SetMenuItemInfoA
ScreenToClient
MessageBoxA
ChildWindowFromPoint
SetWindowLongA
GetWindowLongA
TranslateMessage
DialogBoxParamA
GetSysColor
CheckDlgButton
GetDC
EndDeferWindowPos
InsertMenuA
SetWindowTextA
GetMenu
LoadStringA
DrawIconEx
IsZoomed
SendMessageA
GetClientRect
GetDlgItem
WinHelpA
MoveWindow
IsIconic
RegisterClassA
InvalidateRect
LoadAcceleratorsA
GetSubMenu
CreateWindowExA
LoadCursorA
LoadIconA
TrackPopupMenu
TranslateAcceleratorA
GetSysColorBrush
DispatchMessageA
wsprintfA
GetFocus
EnableWindow
GetCursorPos
DialogBoxIndirectParamA
SetCursor

uxtheme

SetWindowTheme

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

36a8b8206074ea3662416a09da8c68df

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

comctl32

comdlg32

gdi32

kernel32

shell32

user32

uxtheme

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 148KB - Virtual size: 147KB

.reloc Size: 1024B - Virtual size: 28KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 148KB - Virtual size: 147KB

.reloc
Size: 1024B - Virtual size: 28KB