a78a455e3ed4887c3c1335cbc79571efa22affdcf7465e5aa22e804590305979

Sharing

Copy URL Twitter E-mail

General

Target

a78a455e3ed4887c3c1335cbc79571efa22affdcf7465e5aa22e804590305979
Size

876KB
MD5

8c11fdcea426af846d8d67faf142c78d
SHA1

dae59d995303dbce101a483c9adcc4bb611bdb38
SHA256

a78a455e3ed4887c3c1335cbc79571efa22affdcf7465e5aa22e804590305979
SHA512

b421869a8055dc8727116df26b861bd47e9a2f6c34b68af0603c3106b9d9edffdff93a351fcbf7479ede6d494bebde9b97edcc05f8908c9bf69465875c946b38
SSDEEP

24576:BDk0aG7ebY7JjkGEZi+sQkdX1kmyylR5zPyJ:BDkBGHKZhj4zzPyJ

Score

N/A

Malware Config

Signatures

Files

a78a455e3ed4887c3c1335cbc79571efa22affdcf7465e5aa22e804590305979
.exe windows x86

afd8ddb1c354cab0791f0cc5903e582d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetConsoleMode
GetStringTypeA
HeapReAlloc
LeaveCriticalSection
SetFilePointer
FreeEnvironmentStringsA
GetEnvironmentStrings
DeleteCriticalSection
FindFirstFileW
HeapFree
IsValidCodePage
HeapAlloc
GetCurrentProcess
InitializeCriticalSection
InterlockedDecrement
CreateMutexA
RtlUnwind
GetModuleFileNameA
GetCurrentProcessId
QueryPerformanceCounter
VirtualAlloc
InterlockedExchange
GetLastError
GetCommandLineA
GetModuleHandleA
InterlockedIncrement
SetConsoleMode
LocalShrink
CopyFileA
GetFileType
TerminateProcess
GetCurrentThread
IsBadWritePtr
WriteConsoleInputA
VirtualQuery
FreeEnvironmentStringsW
ResumeThread
TlsFree
SetHandleCount
HeapDestroy
LoadLibraryA
TlsSetValue
UnhandledExceptionFilter
TlsAlloc
HeapCreate
GetStartupInfoW
GetEnvironmentStringsW
GetModuleFileNameW
GetStartupInfoA
TlsGetValue
GetCPInfo
EnterCriticalSection
LocalSize
WaitForMultipleObjects
GetCommandLineW
VirtualFree
SetThreadIdealProcessor
GetProcAddress
WriteFile
SetLastError
GetSystemTime
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
CloseHandle
ReadConsoleInputA
FlushFileBuffers
GetCurrentThreadId
ExitProcess
GetSystemTimeAsFileTime
OpenMutexA
GetTickCount
GetStdHandle
GetLocalTime
ReadFile
SetStdHandle
GetTimeZoneInformation
CompareStringA
GetDriveTypeA
LCMapStringW
CompareStringW
GetStringTypeW
SetEnvironmentVariableA

gdi32

SetTextAlign
GetObjectW
ExtCreateRegion
GetCharABCWidthsA
DeleteDC
DrawEscape
DeleteObject
SetFontEnumeration
EqualRgn
SetROP2
CreateDCW
GetDeviceCaps
SelectObject

shell32

ShellAboutW
DragQueryFile

advapi32

LookupAccountNameW
RegCreateKeyW
LookupSecurityDescriptorPartsW
CryptEnumProvidersA
CryptSetHashParam
RegQueryValueExA
CryptDestroyHash
CryptSetProvParam
CryptGenRandom
CryptContextAddRef
InitiateSystemShutdownA
RegDeleteKeyW

wininet

SetUrlCacheConfigInfoW

comctl32

ImageList_SetOverlayImage
ImageList_BeginDrag
GetEffectiveClientRect
ImageList_EndDrag
ImageList_SetDragCursorImage
CreateMappedBitmap
ImageList_LoadImageW
ImageList_GetIconSize
CreateStatusWindow
ImageList_GetFlags
ImageList_SetIconSize
ImageList_AddMasked
ImageList_Destroy
ImageList_GetImageCount
CreateUpDownControl
InitCommonControlsEx
ImageList_GetImageRect

user32

TileChildWindows
RegisterClassExA
SetWinEventHook
DefWindowProcA
AttachThreadInput
PaintDesktop
AdjustWindowRectEx
GetInputDesktop
PostThreadMessageW
GetCursorInfo
CharToOemW
DragObject
RegisterClassA
GetMessagePos
PostMessageW
RegisterWindowMessageA
SetTimer
SwitchDesktop
PostThreadMessageA
OemKeyScan
InternalGetWindowText
DestroyWindow
CallWindowProcA
CallWindowProcW
PeekMessageW
MessageBoxW
GetClassInfoExW
CreateWindowExA
IsWindowVisible
RemovePropW
ShowWindow
BroadcastSystemMessageA
CharUpperW
DdeFreeStringHandle

Sections

.text
Size: 308KB - Virtual size: 306KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 400KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afd8ddb1c354cab0791f0cc5903e582d

Headers

File Characteristics

Imports

kernel32

gdi32

shell32

advapi32

wininet

comctl32

user32

Sections

.text Size: 308KB - Virtual size: 306KB

.rdata Size: 400KB - Virtual size: 396KB

.data Size: 140KB - Virtual size: 139KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 308KB - Virtual size: 306KB

.rdata
Size: 400KB - Virtual size: 396KB

.data
Size: 140KB - Virtual size: 139KB

.rsrc
Size: 24KB - Virtual size: 23KB