29391e8f57ec05f4d497a8b23a8756b24dac8754f0056fc30f869ab7004b5fae

Sharing

Copy URL Twitter E-mail

General

Target

29391e8f57ec05f4d497a8b23a8756b24dac8754f0056fc30f869ab7004b5fae
Size

269KB
MD5

928005ca6f54bf33fc69924869937205
SHA1

322c861e0bd3c715c247e6dffc6831e00c8abf97
SHA256

29391e8f57ec05f4d497a8b23a8756b24dac8754f0056fc30f869ab7004b5fae
SHA512

539802d68c27d37b680b246e95cfb2d0c2d211ad8c1a499e45095cee4e96c5f43a7896be4a9e5d8d4e540fc065c9c883d8e31be657a663db94d5c82ee829283e
SSDEEP

3072:WQAxTzVrpYouXwaCmBlr4QjW7qi9BU4GePrTDKUWFqsbPv3YKZS:/uTBrsXwy7rHW7qi9BUTeD3KVAaPwK

Score

N/A

Malware Config

Signatures

Files

29391e8f57ec05f4d497a8b23a8756b24dac8754f0056fc30f869ab7004b5fae
.exe windows x86

11a1fd2135b941b6ed83ed7c5b0e9956

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
CreateEventA
CreateMutexA
CreateProcessW
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeviceIoControl
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
ExpandEnvironmentStringsA
FileTimeToSystemTime
FindClose
FindFirstFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetCPInfo
GetCommandLineW
GetConsoleOutputCP
GetCurrentThread
GetDateFormatA
GetDriveTypeA
GetFileAttributesW
GetFileSize
GetFileType
GetFullPathNameA
GetLocalTime
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcessHeap
GetShortPathNameA
GetStartupInfoA
GetStringTypeA
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTempPathW
GetThreadLocale
GetTimeZoneInformation
GetWindowsDirectoryA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalHandle
GlobalReAlloc
GlobalUnlock
HeapFree
InitializeCriticalSection
InterlockedCompareExchange
InterlockedExchange
IsBadCodePtr
IsDebuggerPresent
IsValidCodePage
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalFileTimeToFileTime
LockResource
MapViewOfFile
MulDiv
MultiByteToWideChar
ResetEvent
SetCurrentDirectoryA
SetEndOfFile
SetEvent
SetFilePointer
SetFileTime
SetLastError
SetStdHandle
SetThreadLocale
SetThreadPriority
Sleep
TerminateThread
TlsAlloc
TlsGetValue
VirtualAlloc
VirtualProtect
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrcmpiW
lstrcpyA

user32

AdjustWindowRectEx
CallWindowProcA
ClientToScreen
CreatePopupMenu
DestroyIcon
DrawEdge
DrawFrameControl
DrawTextA
EnumThreadWindows
FindWindowA
GetClientRect
GetCursorPos
GetDCEx
GetIconInfo
GetKeyState
GetMenuState
GetMessageA
GetMessagePos
GetPropA
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetWindowPlacement
InflateRect
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
KillTimer
LoadIconA
MessageBoxA
OemToCharA
OpenClipboard
PostMessageA
PostQuitMessage
RedrawWindow
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseDC
RemoveMenu
RemovePropA
SetClassLongA
SetMenu
SetPropA
SetScrollPos
SetScrollRange
SetWindowLongA
SystemParametersInfoA
TranslateMessage
UnhookWindowsHookEx
WinHelpA

gdi32

AbortDoc
BeginPath
CloseEnhMetaFile
CloseMetaFile
CombineRgn
CopyEnhMetaFileA
CopyMetaFileA
CreateBrushIndirect
CreateCompatibleBitmap
CreateDCW
CreateDIBitmap
CreateFontW
CreateHalftonePalette
CreateRectRgn
DeleteDC
DeleteEnhMetaFile
DeleteMetaFile
EnumFontsA
ExtCreatePen
ExtEscape
ExtSelectClipRgn
FrameRgn
GdiFlush
GetBitmapBits
GetClipBox
GetCurrentObject
GetDeviceCaps
GetEnhMetaFileDescriptionA
GetObjectA
GetROP2
GetRegionData
GetStretchBltMode
GetTextExtentExPointW
GetTextExtentPoint32A
GetTextFaceA
GetTextFaceW
GetTextMetricsW
InvertRgn
LPtoDP
LineTo
MaskBlt
MoveToEx
OffsetClipRgn
OffsetViewportOrgEx
Pie
PtInRegion
PtVisible
RealizePalette
Rectangle
SaveDC
SelectClipPath
SelectPalette
SetAbortProc
SetBkColor
SetColorAdjustment
SetDIBColorTable
SetGraphicsMode
SetMapperFlags
SetRectRgn
SetStretchBltMode
SetTextColor
SetTextJustification
SetWindowExtEx
SetWindowOrgEx
SetWorldTransform
StartDocW
StretchBlt
StrokePath
TextOutA
TextOutW
TranslateCharsetInfo
UnrealizeObject

shell32

CommandLineToArgvW
DragFinish
DragQueryFile
DragQueryFileA
DragQueryFileW
DragQueryPoint
ExtractAssociatedIconW
ExtractIconA
ExtractIconExW
ExtractIconW
FindExecutableW
SHAppBarMessage
SHBindToParent
SHBrowseForFolderA
SHBrowseForFolderW
SHChangeNotify
SHCreateDirectoryExA
SHCreateDirectoryExW
SHFileOperationW
SHGetDesktopFolder
SHGetDiskFreeSpaceExW
SHGetFileInfoA
SHGetFileInfoW
SHGetFolderLocation
SHGetFolderPathA
SHGetFolderPathW
SHGetMalloc
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetSpecialFolderPathW
ShellExecuteA
ShellExecuteEx
ShellExecuteExW
Shell_NotifyIconW

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_Draw
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_SetOverlayImage
InitCommonControls
InitializeFlatSB
PropertySheetA
PropertySheetW

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

11a1fd2135b941b6ed83ed7c5b0e9956

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 84KB - Virtual size: 84KB

.rsrc Size: 100KB - Virtual size: 100KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 100KB - Virtual size: 100KB