41b7623d3b6b921bea8e804b7c1c9f9316c46f87bfba1def69f1401575434402

Sharing

Copy URL

Twitter E-mail

General

Target

41b7623d3b6b921bea8e804b7c1c9f9316c46f87bfba1def69f1401575434402
Size

63KB
MD5

9279935c7415cdd4935b9f2761f91599
SHA1

aa0e50e079a704e10ee22d04f76a703fa3439f7b
SHA256

41b7623d3b6b921bea8e804b7c1c9f9316c46f87bfba1def69f1401575434402
SHA512

af479ce5bd4fec6e452e966eedd17a3ab97261f6c923efac7d5ee27e00fc858cc95324281bf01ca132f72caa695ad0e907c18b42772b8915b9c30a538e53a72b
SSDEEP

1536:XSa+Y/zejaAMaK3SIO6+GSXT0533rWbp2XUbrRPh7Tk/Ee:ia+RaAMaASc+1XT0xSbRPg

Score

N/A

Malware Config

Signatures

Files

41b7623d3b6b921bea8e804b7c1c9f9316c46f87bfba1def69f1401575434402
.exe windows x86

aa58b1ccbd694970e63350e9e17ba8ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

InvertRect
SetWindowPos
InvertRect
CharUpperW
GetDC
PtInRect
CallNextHookEx
GetSysColor
LoadBitmapA
IsChild
GetDlgItemTextW
InflateRect
PtInRect
BringWindowToTop
CharLowerA
UnionRect
GetScrollPos
TranslateMessage
TranslateMDISysAccel
GetSystemMetrics
CharPrevA
AppendMenuA
GetCaretPos
LoadImageA
CopyRect
GetProcessWindowStation
DrawIcon
ShowWindow
ShowScrollBar
ShowOwnedPopups
ShowCursor

shell32

SHGetFileInfo
SHGetFileInfoA
SHGetFileInfoW

authz

AuthzAccessCheck

apphelp

AllowPermLayer
ApphelpCheckExe
ApphelpCheckIME
ApphelpCheckInstallShieldPackage
ApphelpCheckMsiPackage
ApphelpCheckRunApp
ApphelpCheckShellObject
ApphelpFixMsiPackage
ApphelpFixMsiPackageExe

azroles

AzAddPropertyItem
AzAddPropertyItem

kernel32

_lread
GetLastError
CreateFileA
GetSystemDirectoryA

advapi32

SetTokenInformation
SetSecurityDescriptorDacl
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyExA
RegFlushKey
RegEnumValueA
RegEnumKeyExA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
OpenProcessToken
MapGenericMask
InitializeSecurityDescriptor
GetUserNameA
GetTokenInformation
GetLengthSid
FreeSid
EqualSid
DuplicateTokenEx
CreateProcessAsUserW
AllocateAndInitializeSid
AccessCheck

gdi32

UnrealizeObject
TextOutW
TextOutA
StretchDIBits
StretchBlt
StartPage
StartDocA
SetWindowOrgEx
SetWindowExtEx
SetWinMetaFileBits
SetViewportOrgEx
SetViewportExtEx
SetTextCharacterExtra
SetTextColor
SetTextAlign
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SelectClipRgn
SaveDC
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
Polyline
Polygon
PolyPolyline
PolyBezierTo
PolyBezier
PlayEnhMetaFile
Pie
PatBlt
OffsetViewportOrgEx
OffsetRgn
MoveToEx
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWindowExtEx
GetWinMetaFileBits
GetViewportExtEx
GetTextMetricsA
GetTextFaceA
GetTextExtentPointW
GetTextExtentPointA
GetTextExtentPoint32W
GetTextExtentPoint32A
GetTextExtentExPointW
GetTextExtentExPointA
GetTextColor
GetTextCharacterExtra
GetTextAlign
GetSystemPaletteEntries
GetStretchBltMode
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetOutlineTextMetricsA
GetObjectW
GetObjectA
GetMapMode
GetFontLanguageInfo
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileDescriptionA
GetEnhMetaFileBits
GetDeviceCaps

setupapi

CM_Create_Range_List
CM_Create_Range_List
CM_Delete_Class_Key

cfgmgr32

CMP_Init_Detection
CMP_RegisterNotification
CMP_Report_LogOn

Sections

.text
Size: 1KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 60KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aa58b1ccbd694970e63350e9e17ba8ff

Headers

File Characteristics

Imports

user32

shell32

authz

apphelp

azroles

kernel32

advapi32

gdi32

setupapi

cfgmgr32

Sections

.text Size: 1KB - Virtual size: 13KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 53KB - Virtual size: 60KB

.text
Size: 1KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 53KB - Virtual size: 60KB