6ffba1421d7e805b0416ceb480c4e43861463624c5c9085d1c1643287d86a0ca

Sharing

Copy URL

Twitter E-mail

General

Target

6ffba1421d7e805b0416ceb480c4e43861463624c5c9085d1c1643287d86a0ca
Size

257KB
MD5

9261aa58bcd8ad089bd83906ab3178b0
SHA1

605d61c063842fdf2991669934a3cfb3d686de7f
SHA256

6ffba1421d7e805b0416ceb480c4e43861463624c5c9085d1c1643287d86a0ca
SHA512

2d014f05ae9cb409088d3ebf5e06a8adf5634fd1ac0e083e54380637b9e89dcdcf04c35c0f92fe94a8620780573b2bb52e4f4924214d2634a407b28291d349a5
SSDEEP

6144:WkCfvkfXIN0OMAORtIatBMmlRmJOPF9lgXZq:Wtvt0OMD5BngXY

Score

N/A

Malware Config

Signatures

Files

6ffba1421d7e805b0416ceb480c4e43861463624c5c9085d1c1643287d86a0ca
.exe windows x86

9136e1d968198700be45309c92c6270d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreatePopupMenu
EnableWindow
EndPaint
FillRect
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItemTextA
GetKeyState
GetSysColor
GetSystemMetrics
GetWindowPlacement
GetWindowRect
LoadBitmapA
DefWindowProcA
MessageBoxA
PostQuitMessage
RegisterClassExA
ReleaseDC
SendDlgItemMessageA
SetActiveWindow
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetLayeredWindowAttributes
SetMenuItemBitmaps
SetScrollPos
SetScrollRange
SetWindowPos
TrackPopupMenu
UpdateWindow
CreateWindowExA
CreateDialogParamA
CloseWindow
ChangeDisplaySettingsA
BeginPaint
AppendMenuA
wsprintfA
SetRect
SendMessageA
SetTimer
KillTimer
DialogBoxParamA
SetWindowLongA
GetWindowLongA
SetWindowTextW
SetWindowTextA
LoadIconA
LoadStringW
LoadStringA
CharUpperW
CharUpperA
DestroyWindow
EndDialog
PostMessageA
ShowWindow
MessageBoxW
GetDlgItem
DialogBoxParamW
SetThreadDesktop
CreateIconFromResourceEx
GetUserObjectInformationW
GetClassWord
GetKeyboardLayoutList
SetScrollInfo
SetSystemCursor
GetCaretPos
IsClipboardFormatAvailable
UnionRect
IsCharAlphaW
wsprintfW
IsDialogMessageW
CheckRadioButton

shell32

ShellExecuteA
SHChangeNotify
ShellExecuteExA
SHGetMalloc

advapi32

GetTokenInformation
RegQueryValueExA
OpenProcessToken
StartServiceA
RegSetValueExA
AdjustTokenPrivileges
CloseServiceHandle
ControlService
CreateServiceA
DeleteService
RegSetValueA
LookupPrivilegeValueA
OpenSCManagerA
OpenServiceA
RegCloseKey
RegCreateKeyA
RegFlushKey
RegOpenKeyExA
RegQueryValueA

gdi32

ChoosePixelFormat
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontA
CreatePen
CreateSolidBrush
DeleteDC
DeleteObject
LineTo
MoveToEx
Polygon
SelectObject
SetBkColor
SetBkMode
SetPixelFormat
SetTextColor
SwapBuffers
TextOutA
CreateBrushIndirect
SetTextAlign
BitBlt

comctl32

ImageList_LoadImageA
ord17

kernel32

InterlockedDecrement
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetSystemTimeAsFileTime
HeapAlloc
SetPriorityClass
SetProcessAffinityMask
SetThreadAffinityMask
SetThreadPriority
TerminateProcess
TerminateThread
UnmapViewOfFile
RtlUnwind
lstrcatA
lstrcmpiA
lstrcpyA
GetThreadPriority
GetSystemInfo
GetSystemDirectoryA
GetProcAddress
GetPriorityClass
GetLocalTime
HeapFree
GetCurrentThread
GetCurrentProcess
GetCommandLineA
FreeUserPhysicalPages
FreeLibrary
FindResourceA
ExitThread
ExitProcess
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
HeapSize
FlushFileBuffers
SetStdHandle
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
HeapReAlloc
HeapCreate
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetFileType
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
SetEnvironmentVariableA
GetTickCount
DeleteCriticalSection
GlobalLock
GetOverlappedResult
EnumResourceNamesW
CreateSemaphoreW
LCMapStringW
LockResource
PeekNamedPipe
WriteConsoleA
GetShortPathNameA
MoveFileWithProgressW
GetEnvironmentVariableW
InitializeCriticalSection
BuildCommDCBAndTimeoutsA
VerLanguageNameA
EnumResourceLanguagesA
EnterCriticalSection
LeaveCriticalSection
GetVersionExA
SetCurrentDirectoryA
CreateProcessA
CloseHandle
WaitForSingleObject
MultiByteToWideChar
WideCharToMultiByte
GetLastError
AreFileApisANSI
GetModuleFileNameA
GetModuleFileNameW
LocalFree
FormatMessageA
FormatMessageW
GetWindowsDirectoryA
SetFileTime
CreateFileW
SetLastError
SetFileAttributesA
RemoveDirectoryA
SetFileAttributesW
RemoveDirectoryW
CreateDirectoryA
CreateDirectoryW
DeleteFileA
DeleteFileW
lstrlenA
GetFullPathNameA
GetFullPathNameW
GetCurrentDirectoryA
GetTempPathA
GetTempFileNameA
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
CreateFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
GetStdHandle
WaitForMultipleObjects
Sleep
VirtualAlloc
VirtualFree
CreateEventA
SetEvent
ResetEvent
GetModuleHandleA
GetStartupInfoA
GetCommandLineW
GetUserDefaultLangID
GetVersion
GlobalAlloc
GlobalFree
GlobalMemoryStatusEx
AllocateUserPhysicalPages
GlobalUnlock
LoadLibraryA
LoadResource
MapUserPhysicalPages
MapViewOfFile
OpenFileMappingA
OpenProcess
QueryPerformanceCounter
QueryPerformanceFrequency
CreateFileMappingA
CreateThread
DeviceIoControl

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9136e1d968198700be45309c92c6270d

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 115KB - Virtual size: 115KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 16KB - Virtual size: 40KB

.rsrc Size: 85KB - Virtual size: 85KB

.text
Size: 115KB - Virtual size: 115KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 16KB - Virtual size: 40KB

.rsrc
Size: 85KB - Virtual size: 85KB