e84dbc2b51cd45d81bba0757568988fc0ebc2c657c197c652fbbc6683909e8ad

Sharing

Copy URL Twitter E-mail

General

Target

e84dbc2b51cd45d81bba0757568988fc0ebc2c657c197c652fbbc6683909e8ad
Size

426KB
MD5

4facf2b69e4961f9051bb74994edbf61
SHA1

32d3ce5f601e7740a6d918a7bfd82c4799e9f54c
SHA256

e84dbc2b51cd45d81bba0757568988fc0ebc2c657c197c652fbbc6683909e8ad
SHA512

6f5a0c9ea0a738e7793c5ca00312af3799249f54676ac8714195b25ae5a68cdf5708a5d53ff7ab6b509d68b4a95d11f0bf10854812e1d3327eb7e0b67e8f5ded
SSDEEP

6144:aqO4e7uR48tf8EX1gsz0rg4I0DNkMPzFgOOvqXdChSGF3l0pZhykz:an38tnX1g20r1TNkMKLIXM3apfX

Score

N/A

Malware Config

Signatures

Files

e84dbc2b51cd45d81bba0757568988fc0ebc2c657c197c652fbbc6683909e8ad
.exe windows x86

cf767f7c8fa2e70a423d4d59e2afba07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Module32Next
CommConfigDialogA
ClearCommBreak
GetDateFormatA
CreateTapePartition
DeleteFileA
GlobalDeleteAtom
Module32Next
CommConfigDialogA
ClearCommBreak
GetDateFormatA
CreateTapePartition
DeleteFileA
GlobalDeleteAtom

advapi32

GetServiceKeyNameA
GetSecurityDescriptorLength
ChangeServiceConfig2A
RegSetKeySecurity
RegLoadKeyW
RegOpenKeyA
GetSidIdentifierAuthority
IsValidSid
GetNumberOfEventLogRecords
LsaDeleteTrustedDomain
LsaRetrievePrivateData
RegNotifyChangeKeyValue
UnlockServiceDatabase
ReportEventA
LsaOpenPolicy
BuildExplicitAccessWithNameW
QueryServiceObjectSecurity
SetNamedSecurityInfoW
ControlService
EnumServicesStatusA
CreateRestrictedToken
StartServiceA
ReadEventLogA
RegSaveKeyA
GetFileSecurityA
CreateServiceA
SetServiceObjectSecurity
OpenServiceA
RegCreateKeyW
LogonUserA
SetSecurityDescriptorDacl
EqualPrefixSid
RegQueryValueA
GetNamedSecurityInfoW
RegUnLoadKeyW
AddAuditAccessAce
CreatePrivateObjectSecurity
RegCreateKeyExW
RegisterServiceCtrlHandlerW
RegRestoreKeyW
GetTokenInformation
RegCloseKey
RegReplaceKeyA
SetEntriesInAclA
LsaSetInformationPolicy
AccessCheck
AdjustTokenPrivileges
RegGetKeySecurity
RegCreateKeyExA
BackupEventLogA
RegQueryValueExA
CopySid
OpenSCManagerW
RegisterEventSourceW
LsaAddAccountRights
RegOpenKeyExW
LsaQueryTrustedDomainInfo
SetServiceStatus
DeregisterEventSource
MakeSelfRelativeSD
LookupPrivilegeNameW
LookupAccountNameA
OpenServiceW
AbortSystemShutdownW
LookupPrivilegeDisplayNameW
SetPrivateObjectSecurity
LsaEnumerateAccountsWithUserRight
RegSetValueExW
GetAce
LsaLookupNames
RegQueryMultipleValuesW
EqualSid
OpenProcessToken
SetTokenInformation
OpenBackupEventLogA
FreeSid
SetSecurityDescriptorOwner
GetSecurityDescriptorDacl
QueryServiceConfig2A
GetAuditedPermissionsFromAclW
DeleteService
DuplicateTokenEx
OpenBackupEventLogW
RegUnLoadKeyA
QueryServiceConfig2W
GetServiceDisplayNameW
LogonUserW
CloseEventLog
RegEnumValueA
RegEnumKeyA
LsaCreateTrustedDomainEx
GetAclInformation
GetExplicitEntriesFromAclA

user32

CloseWindow
SetMenuDefaultItem
LoadStringW
CheckMenuRadioItem
PtInRect
FlashWindow
DestroyAcceleratorTable
SetScrollPos
GetTopWindow
ImpersonateDdeClientWindow
PeekMessageA
DdeUninitialize
DlgDirSelectComboBoxExA
GetWindowTextW
CallMsgFilterA
DefDlgProcA
DdeEnableCallback
RemovePropA
CharToOemA
DrawIconEx
RemovePropW
GetCaretBlinkTime
ScreenToClient
GetFocus
OpenClipboard
ExcludeUpdateRgn
DefFrameProcA
CreateDesktopA
SendMessageTimeoutA
DispatchMessageW
InSendMessage
CallNextHookEx
SetMenuItemInfoW
SubtractRect
SendMessageCallbackA
DrawTextExW
IsCharLowerA
CreateMDIWindowA
MapVirtualKeyA
PostQuitMessage
SetForegroundWindow
CharNextExA
SetMenuItemBitmaps
InvertRect
LoadIconW
GetWindowRect
GetClipCursor
GetSysColor
GetNextDlgTabItem
InvalidateRect
SendDlgItemMessageW
ChildWindowFromPoint
GetKeyboardState
GetDlgCtrlID
CreateDialogIndirectParamW
LoadMenuA
SetClassLongA
ToUnicodeEx
MessageBeep
DdeUnaccessData
UnpackDDElParam
CharLowerBuffA
ScrollWindowEx
GetAsyncKeyState
LookupIconIdFromDirectoryEx
InvalidateRgn
MessageBoxIndirectW
VkKeyScanExA
RegisterClassExW
IsChild
CloseWindowStation
ModifyMenuW
GetKeyNameTextA
DrawFocusRect
DialogBoxIndirectParamW
GetWindowWord
GetActiveWindow
EndDeferWindowPos
SetUserObjectSecurity
PostMessageA
CharUpperW
SetScrollRange
DestroyCursor
SendMessageW
DestroyCaret
SetWindowsHookA
ShowCursor
GetInputState
GetClipboardFormatNameW
LockWindowUpdate
ShowOwnedPopups
CreateIconFromResource
GetSubMenu
TranslateMessage
WaitMessage
DestroyMenu
GetMenuDefaultItem
ScrollDC
TranslateAcceleratorW
SwapMouseButton
DrawEdge
DefMDIChildProcW
CountClipboardFormats
MessageBoxIndirectA
OpenDesktopW
GetGUIThreadInfo
GetDCEx
TranslateAcceleratorA
SendMessageCallbackW
DestroyWindow
GetWindowDC
UnhookWindowsHookEx
GetIconInfo
ReuseDDElParam
DrawStateA
GetLastActivePopup
GetNextDlgGroupItem
GetWindowTextLengthA
GetClassLongA
WINNLSEnableIME
CharNextA
GetMessagePos
GetClassWord
SetRect
BlockInput
SetMenuContextHelpId
GetMenuState
EnumDesktopWindows
CreateWindowExW
GetMenuItemRect
DlgDirSelectExW
GetMenuStringW
SetWindowsHookExW
DefMDIChildProcA
CloseDesktop
DdeKeepStringHandle
ChangeDisplaySettingsExW
GetMenuContextHelpId
DdeDisconnectList
MessageBoxExA
DdePostAdvise
DdeClientTransaction
ValidateRect
GetWindow
SetParent
GetWindowLongW
GetCapture
MapDialogRect
GetClassNameA
IsDialogMessageA
SetScrollInfo
ChildWindowFromPointEx
GetPriorityClipboardFormat
ChangeClipboardChain
DdeCreateStringHandleA
AppendMenuA
CreatePopupMenu
EnumPropsExA
CreateMDIWindowW
EnumDisplaySettingsW
GetDlgItemInt
DefDlgProcW
RegisterClassExA
DrawStateW
CharToOemW
DlgDirListComboBoxA
CreateWindowStationW
UnregisterClassA
CreateIconIndirect
SetWindowTextW
SystemParametersInfoW
IsWindowEnabled
SystemParametersInfoA
GetProcessWindowStation
RedrawWindow
GetWindowModuleFileNameA
LoadMenuW
CheckMenuItem
GetClassInfoExW
OpenIcon
SendMessageA
MapWindowPoints
MapVirtualKeyExA
EqualRect
GetSysColorBrush
IsRectEmpty
ClientToScreen
SetDlgItemTextW
RegisterClassW
LoadIconA
FrameRect
MoveWindow
GetKeyboardType
ShowWindow
GetScrollPos
CreateIconFromResourceEx
EnumDisplaySettingsA
GetSystemMetrics
CreateDialogIndirectParamA
CharLowerA
GetKeyboardLayoutNameW
EnumPropsExW
DrawAnimatedRects
SetPropA
SetCapture
IsIconic
GetUserObjectSecurity
LoadMenuIndirectW
GetMessageExtraInfo
SetDlgItemTextA
CreateAcceleratorTableA
SetCursor
GetKeyboardLayout
SetDoubleClickTime
ReleaseDC
LoadCursorA
BringWindowToTop
GetDesktopWindow
DdeCmpStringHandles
DlgDirListA
CharToOemBuffW
ToAscii
ArrangeIconicWindows
GrayStringA
GetClassInfoW
InflateRect
LoadCursorFromFileA
MsgWaitForMultipleObjects
SetWinEventHook
AdjustWindowRectEx
GetDlgItemTextA
GetCursor
IsCharAlphaNumericA
SetCaretBlinkTime
FindWindowExW
SetKeyboardState
ChangeDisplaySettingsExA
DrawMenuBar
DdeCreateDataHandle
SendNotifyMessageA
SendNotifyMessageW
DlgDirListW
LoadBitmapA
IsWindowVisible
CreateCursor
InsertMenuW

msvcrt

_eof

rasapi32

RasEnumDevicesA

Sections

.text
Size: 188KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf767f7c8fa2e70a423d4d59e2afba07

Headers

File Characteristics

Imports

kernel32

advapi32

user32

msvcrt

rasapi32

Sections

.text Size: 188KB - Virtual size: 186KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 2.4MB

.rsrc Size: 40KB - Virtual size: 37KB

.text
Size: 188KB - Virtual size: 186KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 2.4MB

.rsrc
Size: 40KB - Virtual size: 37KB