0c7519542ce9dc6114dad1c753d507147b2af53d733cc43fa114e279aec09773

Sharing

Copy URL Twitter E-mail

General

Target

0c7519542ce9dc6114dad1c753d507147b2af53d733cc43fa114e279aec09773
Size

314KB
MD5

851aad2157c4080bb52f33ee661ece70
SHA1

2e979737c521ad4feef1eea361cf96e25617a300
SHA256

0c7519542ce9dc6114dad1c753d507147b2af53d733cc43fa114e279aec09773
SHA512

f9a5c042839ae4ea35bcdd83551a574eec907654e0d8dec35e1565c63561b2c5f5dd78440560daf9eaabd86b4b2e82a86e0bbc7a59ac775b1c2f9f5b7ed893d6
SSDEEP

6144:MGHXLMp6ucbyJnGQqsbJRTItbsdVedTCdc:H3McbyJG3mPcxsdEpC

Score

N/A

Malware Config

Signatures

Files

0c7519542ce9dc6114dad1c753d507147b2af53d733cc43fa114e279aec09773
.exe windows x86

0020e74d86f676ba00b93f2a7420a9ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRect
DdeFreeDataHandle
ReleaseDC
OemToCharA
BeginPaint
CharUpperA
CharToOemA
CharNextA
CharPrevA
DdeCreateStringHandleA
DdeInitializeA
DdeUninitialize
DdeFreeStringHandle
DdeDisconnect
DdeGetLastError
DdeClientTransaction
DdeConnect
GetClassInfoA
GetWindowLongA
GetWindow
GetClassNameA
CharLowerA
GetSysColor
FillRect
SetRect
SetRectEmpty
ScreenToClient
InflateRect
PostMessageA
GetWindowRect
EnableWindow
SetFocus
IsWindowVisible
DialogBoxParamA
GetWindowTextA
GetDlgItem
CreateDialogParamA
ExitWindowsEx
FindWindowA
RegisterWindowMessageA
SendMessageA
GetClientRect
SetWindowTextA
SetDlgItemTextA
LoadBitmapA
GetSystemMetrics
SetWindowPos
UpdateWindow
ShowWindow
DestroyWindow
LoadStringA
wsprintfA
MessageBeep
MessageBoxA
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
SetTimer
PeekMessageA
IsWindow
IsDialogMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
PostQuitMessage
KillTimer
EndDialog
SendDlgItemMessageA
DdeGetData
GetDC
EndPaint

gdi32

CreateBitmap
CreateDIBitmap
GetTextExtentPointA
SetPixel
SetBkColor
CreatePen
DeleteObject
GetObjectA
RealizePalette
SelectPalette
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetDeviceCaps
RestoreDC
Rectangle
GetSystemPaletteEntries
CreateSolidBrush
SaveDC
GetStockObject
LineTo
MoveToEx
CreateCompatibleBitmap
CreatePalette
CreateFontIndirectA

kernel32

GetVersion
_hwrite
OpenFile
lstrcatA
GlobalLock
LoadLibraryA
GlobalFree
FreeResource
SizeofResource
LoadResource
FindResourceA
GetSystemInfo
SetErrorMode
GetModuleHandleA
IsDBCSLeadByte
GetProcAddress
FreeLibrary
GetModuleFileNameA
lstrcpyA
GetWindowsDirectoryA
GlobalAlloc
GetTickCount
LockResource
GlobalUnlock
_lclose
SetCurrentDirectoryA
GetCurrentThread
SetFileAttributesA
WinExec
ReadFile
GetSystemDirectoryA
_lread
_lwrite
_llseek
GetCurrentDirectoryA
HeapReAlloc
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
VirtualAlloc
LCMapStringW
LCMapStringA
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
HeapAlloc
HeapFree
GetSystemTime
GetTimeZoneInformation
ExitProcess
GetCommandLineA
GetStartupInfoA
MoveFileA
SetFilePointer
SetEndOfFile
GetProfileSectionA
GlobalReAlloc
GlobalCompact
GlobalHandle
lstrcmpiA
lstrlenA
lstrcmpA
MulDiv
GetSystemDefaultLCID
Sleep
RemoveDirectoryA
GetFileAttributesA
WriteProfileSectionA
FindNextFileA
FindClose
FindFirstFileA
GetDriveTypeA
DeleteFileA
CloseHandle
WriteFile
CreateFileA
GetDiskFreeSpaceA
CreateDirectoryA
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileTime
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetLocalTime
lstrcpynA
GetPrivateProfileStringA
GetCurrentProcess
MoveFileExA
GetPrivateProfileSectionA
GetFileSize
GetLastError
WritePrivateProfileSectionA
WriteProfileStringA
WritePrivateProfileStringA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

advapi32

RegSetValueExA
RegConnectRegistryA
OpenSCManagerA
CloseServiceHandle
OpenThreadToken
GetTokenInformation
EqualSid
RegEnumValueA
RegDeleteValueA
RegQueryValueExA
AdjustTokenPrivileges
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
InitializeSecurityDescriptor
AllocateAndInitializeSid
SetSecurityDescriptorOwner
RegCreateKeyExA
FreeSid
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 899B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 169KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0020e74d86f676ba00b93f2a7420a9ca

Headers

File Characteristics

Imports

user32

gdi32

kernel32

version

advapi32

comdlg32

shell32

Sections

.text Size: 122KB - Virtual size: 122KB

.rdata Size: 1024B - Virtual size: 899B

.data Size: 14KB - Virtual size: 18KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 169KB - Virtual size: 172KB

.text
Size: 122KB - Virtual size: 122KB

.rdata
Size: 1024B - Virtual size: 899B

.data
Size: 14KB - Virtual size: 18KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 169KB - Virtual size: 172KB