d818aa5bb5a2eb293bd29c8753a63d371046db715cc5092d137a2fe3f50ebfee

Sharing

Copy URL

Twitter E-mail

General

Target

d818aa5bb5a2eb293bd29c8753a63d371046db715cc5092d137a2fe3f50ebfee
Size

460KB
MD5

937711b862b188189086d844b7646e30
SHA1

7a4c407cc18aaa406fbe694af70007a1bd3a2607
SHA256

d818aa5bb5a2eb293bd29c8753a63d371046db715cc5092d137a2fe3f50ebfee
SHA512

5b631160637e7a6535b8b4fe9a8c785a224495d8e3d8b059bc40e5708064dc88dc01c8c7c5478b72ed9f8fefa47a14b5f53d55bae49e706df2389468572b6b6b
SSDEEP

12288:o+vTtgQR3c48hjCB+ZVZhAGS2qfxS6iV4V4ST/j:byw3UGB+we8k4WS

Score

N/A

Malware Config

Signatures

Files

d818aa5bb5a2eb293bd29c8753a63d371046db715cc5092d137a2fe3f50ebfee
.exe windows x86

4498033a186a1df1ce630e6eaca45a2d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
OpenProcessToken
LookupAccountNameW
GetSecurityDescriptorSacl
RegEnumKeyW
RegQueryValueW
RegDeleteValueW

comdlg32

GetSaveFileNameA
ChooseFontA
CommDlgExtendedError
ChooseColorA

winmm

waveOutGetNumDevs
timeGetTime
mixerGetLineInfoA
waveOutClose
mixerSetControlDetails
mixerGetControlDetailsA
waveOutGetDevCapsA
waveInGetDevCapsA
timeEndPeriod
waveOutOpen
mixerOpen
mixerGetLineControlsA
mmioAscend
waveOutReset
mmioOpenA
mmioClose
mixerClose
waveOutUnprepareHeader

user32

DefWindowProcW
CreateAcceleratorTableW
AttachThreadInput
DestroyIcon
GetIconInfo
DeferWindowPos
GetWindowTextW
ReleaseCapture
GetSystemMetrics
LoadMenuW
GetWindowThreadProcessId
GetSysColor
IntersectRect
DestroyCursor
EnableMenuItem
RegisterClassExW
IsIconic
GetCursorPos
LoadBitmapW
GetClassLongW
IsDialogMessageW
KillTimer
SetRectEmpty
PtInRect
GetWindowTextLengthW
GetMenuState
LoadStringW
GetMessagePos
PostMessageW
ReuseDDElParam
UnionRect
GetMenuItemInfoW
EnableWindow
IsWindowVisible
MessageBoxW
GetSubMenu
GetMenuStringW
GetFocus
EqualRect
DestroyMenu
BringWindowToTop
GetDlgItem
PeekMessageW
SetTimer
OpenClipboard
DrawEdge
DrawIconEx
GetWindowDC
GetScrollInfo
SetScrollPos
EndPaint
LoadImageW
UnregisterClassW
IsRectEmpty
FindWindowW
GetUpdateRect
LoadIconW
OffsetRect
UnhookWindowsHookEx
MapDialogRect
AdjustWindowRectEx
SetFocus
GetCapture
MessageBeep
GetAsyncKeyState
IsMenu
SetWindowLongW
InsertMenuW
GetActiveWindow
CreateWindowExW
ShowWindow
DestroyWindow
SetMenuDefaultItem
TranslateMessage
IsWindowEnabled
CopyAcceleratorTableW
IsChild
CreateMenu
ReleaseDC
GetKeyState
CallNextHookEx
SendMessageW
GetDC
DeleteMenu
SetMenu
ValidateRect
RemoveMenu
BeginPaint
IsWindow
DrawFrameControl
ShowScrollBar
CreatePopupMenu
SetCursor
InsertMenuItemW
RedrawWindow
RegisterWindowMessageW
MapWindowPoints
UnpackDDElParam
IsDlgButtonChecked
UpdateWindow
MoveWindow
SetDlgItemInt
SetActiveWindow
SetDlgItemTextW
WindowFromPoint
CreateDialogIndirectParamW
SetForegroundWindow
GetParent
PostQuitMessage
SetWindowPlacement
SetScrollInfo
TrackPopupMenu
DrawTextExW
GetWindow
IsZoomed
GetMenu
RegisterClassW
SystemParametersInfoA
WaitMessage
wsprintfW
LoadCursorW

kernel32

GetProcAddress
GetModuleHandleA
GetModuleFileNameW
GetACP
GetCurrentProcessId
EnterCriticalSection
GetOEMCP
CompareStringA
InterlockedExchange
SetFilePointer
ReadFile
LoadLibraryW
HeapAlloc
CompareStringW
HeapCreate
IsBadCodePtr
GetTimeFormatA
ExitProcess
FlushFileBuffers
LCMapStringA
QueryPerformanceCounter
InitializeCriticalSection
GetCurrentThreadId
MultiByteToWideChar
VirtualFree
HeapFree
DeleteCriticalSection
SetEnvironmentVariableA
WriteFile
TlsAlloc
CreateMutexW
GetLocaleInfoA
HeapReAlloc
GetVersionExA
GetLastError
HeapDestroy
VirtualAlloc
SetStdHandle
GetCPInfo
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
RtlUnwind
GetEnvironmentStrings
LeaveCriticalSection
GetStringTypeA
GetCommandLineA
GetModuleHandleW
GetCommandLineW
LoadLibraryA
HeapSize
GetTimeZoneInformation
GetStartupInfoW
VirtualQuery
GetCurrentProcess
GetStartupInfoA
GetTickCount
SetLastError
GetSystemInfo
UnhandledExceptionFilter
GetStdHandle
GetDateFormatA
SetHandleCount
TlsSetValue
CloseHandle
GetStringTypeW
TerminateProcess
WideCharToMultiByte
TlsGetValue
VirtualProtect
GetEnvironmentStringsW
TlsFree
GetModuleFileNameA
LCMapStringW
RaiseException
GetFileType
FreeEnvironmentStringsA
FreeEnvironmentStringsW

gdi32

CreateDIBSection
ExtFloodFill
CreateRectRgn
GetDeviceCaps
OffsetViewportOrgEx
DeleteDC
CreateDCW
PtInRegion
GetStockObject
CreatePolygonRgn
GetTextExtentPoint32W
GetObjectW
SelectObject
EqualRgn
SelectPalette
GetClipBox
CreateCompatibleBitmap
Arc
SetAbortProc
RectVisible

comctl32

ImageList_Create
ImageList_DragLeave
ImageList_GetIconSize
ImageList_Draw
ImageList_SetBkColor
InitCommonControlsEx
ImageList_GetIcon
ImageList_ReplaceIcon
ord17
_TrackMouseEvent
ImageList_DragShowNolock

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4498033a186a1df1ce630e6eaca45a2d

Headers

File Characteristics

Imports

advapi32

comdlg32

winmm

user32

kernel32

gdi32

comctl32

Sections

.text Size: 92KB - Virtual size: 90KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 76KB - Virtual size: 97KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 92KB - Virtual size: 90KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 76KB - Virtual size: 97KB

.rsrc
Size: 28KB - Virtual size: 27KB