a1a5e34380a36336e8ff0c63bfaf3acad3527b8fcb47d0cb622636b9bcf7fb81

Sharing

Copy URL Twitter E-mail

General

Target

a1a5e34380a36336e8ff0c63bfaf3acad3527b8fcb47d0cb622636b9bcf7fb81
Size

121KB
MD5

a2975ae49d1d88e27878e286915e61f6
SHA1

3624f10154018c9744dbb810747433a1f47bcf7b
SHA256

a1a5e34380a36336e8ff0c63bfaf3acad3527b8fcb47d0cb622636b9bcf7fb81
SHA512

96b556bcc26e80bbfa0a7f41f2ded288a745e6e67a5e866351fbafb2ba523d5733115108903c62a47f618ddbf2da76e0366655209cfaaaa85a498cb5499da166
SSDEEP

1536:vPyaAofE5oBCw/2F2TDo/5Tr6JuOgKgOK4u2HSGQ0CdRDFuabPX10bshDm1mbKPa:vPDCw/2FODEBrQuiRG2e0UDFuAj00KS

Score

N/A

Malware Config

Signatures

Files

a1a5e34380a36336e8ff0c63bfaf3acad3527b8fcb47d0cb622636b9bcf7fb81
.exe windows x86

7985ad17c2a034b5826760dc96d7fcc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
ReleaseMutex
GetProcessHeap
GetCurrentProcessId
HeapAlloc
SetLastError
InterlockedCompareExchange
HeapFree
GetModuleFileNameW
CreateThread
SizeofResource
QueryPerformanceCounter
DeleteCriticalSection
SetEvent
GetStartupInfoW
LeaveCriticalSection
InitializeCriticalSection
WideCharToMultiByte
WaitNamedPipeW
IsProcessorFeaturePresent
InterlockedIncrement
VirtualFree
OutputDebugStringW
FlushInstructionCache
CreateEventW
UnhandledExceptionFilter
WaitForMultipleObjects
GetVersionExW
VirtualAlloc
CloseHandle
TerminateProcess
FindResourceW
IsDebuggerPresent
LocalFree
FreeLibrary
InterlockedDecrement
LoadLibraryExW
GetProcAddress
lstrcmpiW
lstrlenW
TerminateThread
Sleep
LoadLibraryA
InterlockedExchange
EnterCriticalSection
FormatMessageW
WaitForSingleObject
GetSystemTimeAsFileTime
MultiByteToWideChar
LoadLibraryW
GetCurrentThreadId
GetModuleHandleW
ExitProcess
LoadResource
SetUnhandledExceptionFilter
GetLastError
ResetEvent
GetVersion
VirtualProtect
BuildCommDCBA
GetModuleHandleA
GetModuleFileNameA
GetPriorityClass
GetTickCount
GetCurrentProcess
lstrlenA
RaiseException

user32

CharNextW
DispatchMessageW
DrawTextW
SetWindowLongW
GetMenuItemCount
LoadCursorW
GetWindowLongW
TranslateMessage
RegisterWindowMessageW
PostQuitMessage
SetTimer
GetSysColorBrush
GetMenuItemInfoW
GetMessageW
CallWindowProcW
DefWindowProcW
SetForegroundWindow
TrackPopupMenu
SetMenuDefaultItem
FillRect
CreatePopupMenu
RegisterClassExW
LoadStringW
GetClassInfoExW
DestroyMenu
DestroyWindow
IsMenu
ReleaseDC
FindWindowW
CreateWindowExW
UnregisterClassA
SetMenuItemInfoW
GetSysColor
GetSubMenu
GetCursorPos
DrawIconEx
GetDC
KillTimer
AppendMenuW
PostMessageW
DestroyIcon
GetSystemMetrics
IsWindow
GetDoubleClickTime
LoadMenuW
LoadImageW
SystemParametersInfoW
DeleteMenu

gdi32

DeleteObject
CreateFontIndirectW
SelectObject
SetBkColor
SetTextColor

advapi32

RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegNotifyChangeKeyValue
RegEnumValueW
RegSetValueExW

shell32

Shell_NotifyIconW

ole32

CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc

oleaut32

VarUI4FromStr

avifil32

EditStreamCut

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7985ad17c2a034b5826760dc96d7fcc8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

avifil32

Sections

.text Size: 64KB - Virtual size: 64KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 37KB - Virtual size: 106KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 64KB - Virtual size: 64KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 37KB - Virtual size: 106KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB