8c5b4a1406c3f1f988d2feba7efc0ef6061b2fc771e4d6b3140031fea5c20842

Sharing

Copy URL Twitter E-mail

General

Target

8c5b4a1406c3f1f988d2feba7efc0ef6061b2fc771e4d6b3140031fea5c20842
Size

423KB
MD5

9309181d5e6be84eed10c051d60fd332
SHA1

d3cc1ef6eeb8e14f9f95413a9976e9fe692e5e43
SHA256

8c5b4a1406c3f1f988d2feba7efc0ef6061b2fc771e4d6b3140031fea5c20842
SHA512

095f6647bdbaf248509e011f725baeb8045dbfd0082bc2ef2c457e3aeb2300aebfe7623b331d81e937ec99d943e9ef3ba71fc8ecd3febcd739d9618317798fb4
SSDEEP

12288:d4VyLhaDiVom4iJIF2GarHKUQDGhfmK2seXnMY:rLhWVm4CIF2GaTKRDGJmlq

Score

N/A

Malware Config

Signatures

Files

8c5b4a1406c3f1f988d2feba7efc0ef6061b2fc771e4d6b3140031fea5c20842
.exe windows x86

25ae2bcaa006c541d875ff23b3639841

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
CryptReleaseContext
RegCloseKey
RegOpenKeyExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegSetValueExW

gdi32

GetDeviceCaps
SetWindowExtEx

winmm

mixerGetLineInfoA
waveOutPrepareHeader
mixerOpen
mixerSetControlDetails
waveOutReset
mixerClose
mixerGetControlDetailsA
waveInGetNumDevs
waveOutGetNumDevs
waveOutWrite
mixerGetLineControlsA

ole32

OleIsCurrentClipboard
OleSaveToStream
OleDestroyMenuDescriptor
CoRegisterClassObject
GetHGlobalFromILockBytes
DoDragDrop
CoTaskMemAlloc
CreateStreamOnHGlobal
OleRegGetMiscStatus
IsAccelerator
SetConvertStg
StgCreateDocfile
OleLockRunning
WriteClassStm
OleRun
CreateDataAdviseHolder
OleTranslateAccelerator
CoGetClassObject
CoFreeUnusedLibraries
StringFromCLSID
OleCreateMenuDescriptor
CLSIDFromProgID
OleRegGetUserType
CoTreatAsClass
GetRunningObjectTable
CLSIDFromString
OleInitialize
CoGetMalloc
WriteClassStg
OleRegEnumVerbs
CoRegisterMessageFilter
OleCreateStaticFromData
OleUninitialize
WriteFmtUserTypeStg
CoRevokeClassObject
CoCreateInstance
ReadFmtUserTypeStg
ReadClassStg

user32

GetDlgItem
GetPropA
SetTimer
HideCaret
MessageBeep
IsRectEmpty
GetFocus
GetWindowTextLengthA
DrawFrameControl
SetWindowPos
SetRect
DestroyWindow
DispatchMessageA
SetParent
GetMessagePos
IsWindowEnabled
BeginPaint
TranslateMessage
GetWindowRect
IntersectRect
IsZoomed
LoadBitmapA
MessageBoxA
EnableMenuItem
GetClassLongA
DestroyAcceleratorTable
GetMenu
EmptyClipboard
SetScrollInfo
ReuseDDElParam
SetClipboardData
CheckMenuItem
LoadAcceleratorsA
CallWindowProcA
LoadStringA
SetWindowsHookExA
GetClassNameA
GetWindow
GetMenuStringA
AppendMenuA
GrayStringA
EnableWindow
DestroyMenu
GetWindowDC
GetClipboardData
IsWindow
TrackPopupMenu
DrawStateA
UpdateWindow
TabbedTextOutA
BeginDeferWindowPos
LoadCursorA
GetSysColor
ShowWindow
GetNextDlgGroupItem
InflateRect
GetDesktopWindow
CreateDialogIndirectParamA
FillRect
InsertMenuA
DestroyCursor
SetCaretPos
DeferWindowPos
MapWindowPoints
DrawTextExA
EndPaint
IsIconic
GetDC
OffsetRect
CreateWindowExA
DrawMenuBar
KillTimer
SetPropA
GetSysColorBrush
DeleteMenu
DefWindowProcA
GetCapture
GetDlgCtrlID
SetActiveWindow
GetDlgItemInt
RegisterClassExA
PostThreadMessageA
PtInRect
GetMenuItemCount
RedrawWindow
RegisterClassA
AdjustWindowRectEx
SetMenu
ShowCaret
LoadMenuA
MoveWindow
DrawFocusRect
EndDeferWindowPos
GetCaretPos
PostMessageA
GetMenuCheckMarkDimensions

kernel32

GetModuleHandleA
TlsGetValue
GetStringTypeW
FlushFileBuffers
TlsFree
WideCharToMultiByte
OpenMutexA
GetCurrentThreadId
TlsSetValue
CreateMutexA
TlsAlloc
VirtualFree
VirtualAlloc
FreeEnvironmentStringsW
ReadFile
GetModuleFileNameA
HeapSize
GetCPInfo
GetTickCount
HeapValidate
HeapAlloc
SetConsoleCtrlHandler
GetEnvironmentStrings
GetACP
GetTimeFormatA
HeapDestroy
WriteFile
InitializeCriticalSectionAndSpinCount
SetEnvironmentVariableA
SetLastError
InterlockedIncrement
CloseHandle
VirtualQuery
GetEnvironmentStringsW
GetOEMCP
GetConsoleMode
GetLocaleInfoA
HeapFree
GetCommandLineA
GetStringTypeA
GetModuleHandleW
GetCurrentProcess
WriteConsoleW
LCMapStringA
OutputDebugStringA
IsDebuggerPresent
GetTimeZoneInformation
IsBadReadPtr
TerminateProcess
GetLastError
DeleteCriticalSection
MultiByteToWideChar
RtlUnwind
DebugBreak
GetCurrentProcessId
HeapCreate
GetModuleFileNameW
OutputDebugStringW
RaiseException
UnhandledExceptionFilter
SetStdHandle
GetFileType
GetDateFormatA
IsValidCodePage
GetProcAddress
InterlockedDecrement
QueryPerformanceCounter
CreateFileA
FreeEnvironmentStringsA
GetStartupInfoA
LeaveCriticalSection
CompareStringA
GetSystemTimeAsFileTime
LCMapStringW
SetUnhandledExceptionFilter
GetStdHandle
ExitProcess
SetFilePointer
HeapReAlloc
LoadLibraryW
GetConsoleCP
Sleep
EnterCriticalSection
WriteConsoleA
CompareStringW
SetHandleCount
InterlockedExchange
LoadLibraryA
GetConsoleOutputCP

Sections

.text
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25ae2bcaa006c541d875ff23b3639841

Headers

File Characteristics

Imports

advapi32

gdi32

winmm

ole32

user32

kernel32

Sections

.text Size: 199KB - Virtual size: 198KB

.rdata Size: 132KB - Virtual size: 131KB

.data Size: 66KB - Virtual size: 84KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 199KB - Virtual size: 198KB

.rdata
Size: 132KB - Virtual size: 131KB

.data
Size: 66KB - Virtual size: 84KB

.rsrc
Size: 25KB - Virtual size: 24KB