83241c0b03fe13b650635888eaf2d7003485ce14f3858d51d65112f69b93ae9b

Sharing

Copy URL Twitter E-mail

General

Target

83241c0b03fe13b650635888eaf2d7003485ce14f3858d51d65112f69b93ae9b
Size

856KB
MD5

920c05bc4c77a42378af457f1c940120
SHA1

46b908c88941eff5b236f7f67ddfc1bdabe98445
SHA256

83241c0b03fe13b650635888eaf2d7003485ce14f3858d51d65112f69b93ae9b
SHA512

469439b17cd2bdd41097f86b1ecb76fad78c947f1829a4e6355311985fb2e5597413aea4e46de4241edf28a2b14a319e6cb62f1c70d876e8238202fc1cf8d4bc
SSDEEP

12288:8nTbz/7wxP5P4f2wG2nzROz6aV0O8tYliSE0O1Dv4:s/7wxBPDwG2nzQzqO8t31r4

Score

N/A

Malware Config

Signatures

Files

83241c0b03fe13b650635888eaf2d7003485ce14f3858d51d65112f69b93ae9b
.exe windows x86

fdc2a33b12240d0cb9f62c131caf0278

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

FreeSid
GetTokenInformation
AddAccessAllowedAce
SetSecurityDescriptorDacl
OpenThreadToken
OpenProcessToken
OpenProcessToken
RegSetValueExA
RegSetValueExA
InitializeAcl
RegSetValueExW
RegEnumKeyExW
RegSetValueExW
AdjustTokenPrivileges
AllocateAndInitializeSid
CloseServiceHandle
GetLengthSid
RegEnumKeyExW
RegQueryValueExW
RegEnumKeyExW
InitializeSecurityDescriptor
RegOpenKeyExA
RegOpenKeyW
RegSetValueExA
RegDeleteValueW
RegSetValueExA
RegCreateKeyExW
OpenProcessToken

kernel32

LocalLock
GetModuleFileNameW
GetPrivateProfileSectionNamesA
Heap32Next
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
lstrcmpW
SetFilePointer
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
FindResourceW
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
GetConsoleOutputCP
SetThreadContext
QueryPerformanceCounter
QueryPerformanceCounter
GetComputerNameW
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
WaitForMultipleObjects
QueryPerformanceCounter
QueryPerformanceCounter
GetNamedPipeHandleStateA
QueryPerformanceCounter
LocalCompact
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
HeapWalk
QueryPerformanceCounter
QueryPerformanceCounter
CopyFileExW
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
GetFullPathNameW
GlobalDeleteAtom
_lread
MoveFileExA
QueryPerformanceCounter
QueryPerformanceCounter
SetProcessAffinityMask
FileTimeToSystemTime
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
SetThreadExecutionState
PeekConsoleInputA
QueryPerformanceCounter
BuildCommDCBAndTimeoutsA
SetFileApisToANSI
QueryPerformanceCounter
LocalShrink
ReleaseMutex
BeginUpdateResourceW
QueryPerformanceCounter
GlobalFree
QueryPerformanceCounter
WaitForMultipleObjectsEx
QueryPerformanceCounter
QueryPerformanceCounter
GetExitCodeThread
QueryPerformanceCounter
QueryPerformanceCounter
SetConsoleTextAttribute
GlobalGetAtomNameW
UpdateResourceA
WaitNamedPipeA
QueryPerformanceCounter
LCMapStringW
OpenFile
FindFirstFileA
QueryPerformanceCounter
_hread
CallNamedPipeW
QueryPerformanceCounter
QueryPerformanceCounter
FormatMessageA
EnumDateFormatsExA
SetFileApisToOEM
RaiseException
QueryPerformanceCounter
GetNamedPipeHandleStateW
QueryPerformanceCounter
IsBadWritePtr
QueryPerformanceCounter
EnumSystemLocalesA
QueryPerformanceCounter
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetPrivateProfileSectionA
QueryPerformanceCounter
QueryPerformanceCounter
SwitchToThread
QueryPerformanceCounter
PeekNamedPipe
GetLogicalDriveStringsA
GetShortPathNameW
OpenEventA
SetFilePointer
QueryPerformanceCounter
QueryPerformanceCounter
GetLastError
VirtualProtectEx
GetDateFormatA
SetInformationJobObject
QueryPerformanceCounter
SetUnhandledExceptionFilter
QueryPerformanceCounter
WriteProfileStringW
MoveFileA
LocalAlloc
GetMailslotInfo
FindFirstFileExW
PurgeComm
QueryPerformanceCounter
QueryPerformanceCounter
GetThreadPriorityBoost
QueryPerformanceCounter
VirtualFreeEx
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
GetFullPathNameW
QueryPerformanceCounter
QueryPerformanceCounter
GetStartupInfoA
QueryPerformanceCounter
DeleteFileW
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
GetEnvironmentVariableW
CloseHandle
GetProcessHeaps
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter

user32

SendMessageCallbackA
GetClientRect
DdeInitializeA
SetWindowsHookW
SendIMEMessageExW
InSendMessageEx
OemToCharA
CreateMenu
DdeAbandonTransaction
IsIconic
IsIconic
SetScrollPos
IsIconic
EnumDisplaySettingsA
OemToCharA
IsIconic
GetSysColorBrush
LoadMenuA
SetWindowTextW
GetSysColorBrush
LookupIconIdFromDirectoryEx
GetSysColorBrush
TranslateMDISysAccel
RedrawWindow
GetClientRect
CreateWindowStationA
CheckRadioButton
GetSysColorBrush
LoadIconA
DialogBoxIndirectParamA
TrackMouseEvent
SendNotifyMessageA
IsIconic
LoadIconA
SendMessageW
GetClientRect
GetMessageExtraInfo
LoadIconA
GetWindowInfo
ToUnicodeEx
MessageBoxIndirectA
LoadIconA
GetClientRect
GetClientRect
OpenDesktopA
GetClientRect
LoadIconA
GetSysColorBrush
SetCursor
IsIconic
GetClientRect
DdeReconnect
DispatchMessageA
DragObject
LoadIconA
FrameRect
TileChildWindows
GetClientRect
LoadIconA
GetCaretPos
MessageBoxA
RegisterWindowMessageW
LoadIconA
DdeQueryConvInfo
UnloadKeyboardLayout
GetTabbedTextExtentW
GetUserObjectInformationW
DispatchMessageW
LoadIconA
ReleaseCapture
SetWindowContextHelpId
CopyRect
GetMenuStringW
SetCaretBlinkTime
LoadIconA
LoadIconA
DdeInitializeA
GetSysColorBrush
GetCaretBlinkTime
DefFrameProcW
GetClientRect
LoadIconA
LookupIconIdFromDirectoryEx
SetDoubleClickTime
LookupIconIdFromDirectoryEx
GetClientRect
GetClientRect
SetMenuInfo
GetSysColorBrush
GetClassInfoA
GetClientRect
IsIconic
IsIconic
ActivateKeyboardLayout
ChangeMenuW
LoadIconA
SetRect
LoadIconA
IsIconic
GetClassLongW
DefDlgProcA
ScrollWindowEx
RegisterClassA
IsIconic
GetUserObjectSecurity
GetClientRect
LoadIconA
CheckMenuRadioItem
DispatchMessageW
DestroyAcceleratorTable
GetClientRect
CloseClipboard
BeginDeferWindowPos
GetWindowLongA
WINNLSGetEnableStatus
LoadIconA
IsIconic
DdeQueryStringW
GetClientRect
EndDialog
SetMenuInfo
EnumPropsExA
GetKeyNameTextW
LoadIconA
GetDlgItemTextW
IsIconic
IsIconic
SendMessageCallbackW
GetClientRect
VkKeyScanExW
EnumPropsExA
FindWindowExW
ShowWindow
CreateDialogIndirectParamA
LoadIconA
GetSysColorBrush
GetClientRect
GetSysColorBrush
GetClientRect
GetClientRect
GetClipboardData
OpenInputDesktop
IsIconic
PostQuitMessage
IsIconic
GetMessageW
LoadImageA
GetSysColorBrush
LoadIconA
GetSysColorBrush
SetWindowLongW
GetClientRect
DrawIconEx
SetCaretBlinkTime
GetClientRect
LoadIconA
GetSysColorBrush
GetClientRect
GetClientRect
IsIconic
IsIconic
GetSysColorBrush
GetWindowPlacement
GetClientRect
IsIconic
OemKeyScan
GetSysColorBrush
GetClientRect

gdi32

SaveDC
GdiGetBatchLimit
GetObjectType
OffsetViewportOrgEx
EnumFontsA
GetObjectType
GetObjectType
ExtFloodFill
SetStretchBltMode
CloseFigure
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
CreateScalableFontResourceA
DeleteObject
GetStockObject
GetTextExtentExPointA
EndPath
GetPath
GetObjectType
ColorCorrectPalette
GetRelAbs
CreatePen
EndPage
GetObjectType
GetObjectType
CreateBrushIndirect
GetTextExtentExPointA
SetTextJustification
SetMetaFileBitsEx
GetObjectType
GdiEndDocEMF
GetObjectType
GetPixel
CreateBrushIndirect
GetObjectType
GetObjectType
GdiPlayPageEMF
ExtSelectClipRgn
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
CopyEnhMetaFileA
FillRgn
ResizePalette
GetObjectType
SetWindowExtEx
GetObjectType
GetObjectType
CreateDIBPatternBrush
GetObjectType
GetObjectType
UpdateICMRegKeyA
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
SetDIBitsToDevice
SwapBuffers
GetObjectType
GetObjectType
ScaleWindowExtEx
GetObjectType
OffsetClipRgn
GetObjectType
GetMetaFileW
StartDocA
CreateMetaFileW
GetFontUnicodeRanges
GetEnhMetaFileA
GetSystemPaletteEntries
ExtCreateRegion
CreateDCA
GetObjectType
SetSystemPaletteUse
StartDocA
EnumICMProfilesW
EndPage
PlayMetaFile
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetFontData
GetObjectType
EqualRgn
GdiStartPageEMF
GetKerningPairsA
GetObjectType
GetTextMetricsW
GetObjectType
CopyMetaFileW
Pie
GdiDeleteSpoolFileHandle
EnumICMProfilesA
GetObjectType
CreateRectRgnIndirect
DescribePixelFormat
GetObjectType
GetObjectType
GetCharacterPlacementA
GdiStartPageEMF
GetObjectType
LPtoDP
EnumFontsW
GetObjectType
GetObjectType
GetEnhMetaFileA
GetClipBox
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetCharacterPlacementW
GetObjectType
AbortDoc
SetPixel
GetObjectType
SetEnhMetaFileBits
GetObjectType
SetTextAlign
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
GetObjectType
SetMetaFileBitsEx
CheckColorsInGamut
GetObjectType
StartPage
CreateICA
CreatePen
GetObjectType
GetObjectType
PolylineTo
GetPath
PolyDraw
gdiPlaySpoolStream
ColorCorrectPalette
GetObjectType

Sections

.iual
Size: 314KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.paah
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oixf
Size: 12KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ojtv
Size: 12KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 504KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fdc2a33b12240d0cb9f62c131caf0278

Headers

File Characteristics

Imports

advapi32

kernel32

user32

gdi32

Sections

.iual Size: 314KB - Virtual size: 380KB

.paah Size: 4KB - Virtual size: 8KB

.oixf Size: 12KB - Virtual size: 64KB

.ojtv Size: 12KB - Virtual size: 64KB

.vmp0 Size: 504KB - Virtual size: 1.6MB

.iual
Size: 314KB - Virtual size: 380KB

.paah
Size: 4KB - Virtual size: 8KB

.oixf
Size: 12KB - Virtual size: 64KB

.ojtv
Size: 12KB - Virtual size: 64KB

.vmp0
Size: 504KB - Virtual size: 1.6MB