396f64b1b7f3f61946cfcb0429d350a594f4109af0f8c7f17b639a2ecf839a4c

Sharing

Copy URL Twitter E-mail

General

Target

396f64b1b7f3f61946cfcb0429d350a594f4109af0f8c7f17b639a2ecf839a4c
Size

720KB
MD5

92b1c78527e2b7cbfd0a5a56680bc323
SHA1

2d15e1544799404ad5fe8c90c6a4785c567fa873
SHA256

396f64b1b7f3f61946cfcb0429d350a594f4109af0f8c7f17b639a2ecf839a4c
SHA512

078066df606e25c22e99ad95b6b4a63e5adbb00e9e969d68b01a475a02e049e239f4ff855db434b31cefa7eab9c6d06bfaa387ae7bae4cf1e2a79b36db589222
SSDEEP

12288:/DDmGlmbCl/Eh3dNuCgUp++e0YTFH+8vG0bp6e/RVjIJTl0CwE7KbHecZFM2fTCO:bDmGlF/Eh3LuCgUp++e0YTFH+8vpp6mU

Score

N/A

Malware Config

Signatures

Files

396f64b1b7f3f61946cfcb0429d350a594f4109af0f8c7f17b639a2ecf839a4c
.exe windows x86

45e90369190aaf553baf793650af6a4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetDIBits
ExtEscape
SetDeviceGammaRamp
GetTextExtentExPointW
CombineTransform
CreateFontA
ExtTextOutW
EnumICMProfilesW
GetEnhMetaFileW
GdiSetBatchLimit
UpdateICMRegKeyW
PaintRgn
GetTextCharacterExtra
GetNearestPaletteIndex
SetRectRgn

comdlg32

GetOpenFileNameA
ChooseColorW
FindTextA
PrintDlgA

advapi32

CryptEnumProvidersA
ReportEventA
LookupSecurityDescriptorPartsA
DuplicateTokenEx
RegSetValueW
LookupPrivilegeDisplayNameW
CryptGenRandom
CryptEnumProviderTypesW
RegSaveKeyA
CryptEncrypt
CryptEnumProvidersW
RegFlushKey
RegQueryInfoKeyW
RegCreateKeyW
CryptAcquireContextW

user32

RegisterClassExA
CreateCursor
ChangeDisplaySettingsExA
InternalGetWindowText
GetClassWord
DestroyWindow
OpenWindowStationW
RemoveMenu
IsWindowEnabled
GetMessageExtraInfo
DefWindowProcW
CharLowerA
CreateDialogParamA
SetForegroundWindow
PackDDElParam
CreateCaret
CreateIcon
GetWindowTextA
MessageBoxA
CreateWindowExW
GetSystemMenu
ShowWindow
RegisterClassA
HideCaret
GetFocus
DialogBoxIndirectParamW
SetScrollInfo
GetDlgItemTextW
SendNotifyMessageW

kernel32

TlsFree
VirtualQuery
GetCommandLineA
GetCurrentThread
EnumDateFormatsW
CompareStringA
TlsAlloc
GetCPInfo
TlsSetValue
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
DeleteCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
GetFileType
VirtualAlloc
VirtualQueryEx
ReadConsoleOutputCharacterA
lstrcpynA
FlushInstructionCache
GetModuleHandleA
QueryPerformanceCounter
GetCurrentProcessId
SetConsoleCtrlHandler
GetEnvironmentStringsW
SetStdHandle
FlushFileBuffers
HeapAlloc
CloseHandle
GetStringTypeW
RtlUnwind
GetTimeZoneInformation
FindClose
InterlockedIncrement
WaitForSingleObject
OpenFileMappingW
HeapCreate
GetStringTypeA
SuspendThread
GetStdHandle
MoveFileW
HeapFree
TlsGetValue
GetVersion
GetTickCount
IsBadReadPtr
InterlockedDecrement
GetPrivateProfileStructW
VirtualFree
IsBadWritePtr
RemoveDirectoryA
GlobalFindAtomW
InitializeCriticalSection
InterlockedExchange
GetProcAddress
MultiByteToWideChar
LCMapStringW
SetHandleCount
LCMapStringA
GetOEMCP
LeaveCriticalSection
LocalFlags
GetEnvironmentStrings
HeapDestroy
GetModuleFileNameA
WriteFile
OpenMutexA
CreateWaitableTimerA
DebugBreak
GetSystemTime
SetLastError
GetLastError
FreeEnvironmentStringsW
EnumCalendarInfoW
HeapValidate
SetEnvironmentVariableA
GetACP
GetStartupInfoA
CreateMutexA
OutputDebugStringA
WideCharToMultiByte
ReadFile
GetCurrentThreadId
SetVolumeLabelW
CompareStringW
ExitProcess
GetLocalTime
SetFilePointer
LoadLibraryA
HeapReAlloc

comctl32

ImageList_AddIcon
MakeDragList
ImageList_Remove
InitCommonControlsEx
ImageList_GetBkColor
ImageList_DragEnter
ImageList_SetBkColor
ImageList_Draw
ImageList_GetFlags
GetEffectiveClientRect
ImageList_Create
ImageList_LoadImageW
DrawStatusTextW
ImageList_Copy
ImageList_Replace
DrawStatusTextA
ImageList_Merge
_TrackMouseEvent
ImageList_AddMasked
DrawInsert
ImageList_Add
ImageList_SetIconSize
ImageList_DragShowNolock
CreatePropertySheetPageA
CreatePropertySheetPage

Sections

.text
Size: 316KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45e90369190aaf553baf793650af6a4e

Headers

File Characteristics

Imports

gdi32

comdlg32

advapi32

user32

kernel32

comctl32

Sections

.text Size: 316KB - Virtual size: 315KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 112KB - Virtual size: 113KB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 316KB - Virtual size: 315KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 112KB - Virtual size: 113KB

.rsrc
Size: 28KB - Virtual size: 26KB