6a4dab82c2fa9349434b1836064dd5fedbcd61168fce60d27d2d0bcd4dc4080b

Sharing

Copy URL Twitter E-mail

General

Target

6a4dab82c2fa9349434b1836064dd5fedbcd61168fce60d27d2d0bcd4dc4080b
Size

297KB
MD5

83d736c10c0dc8735fcbe416321e6210
SHA1

38fc10e9beb50dfc5a4a19209684d54906061b8a
SHA256

6a4dab82c2fa9349434b1836064dd5fedbcd61168fce60d27d2d0bcd4dc4080b
SHA512

cfb8ae4c2ce18e76f99492d2d3d609e2eed17c699c061d9dc96236d5359e0f5adf0146490f8a9717cb8ae4c9e292fb19d4737ccd0067339e9a33375f6e465a6c
SSDEEP

3072:nSIpDh81/61QqdfrTXyjT6cHaiL9frFQl3ntkJhEzmSWMi0KOqzMKDyU1CW4qwJ:nSIpVsYRiPVlDSWEz9WlWU1Cvqq

Score

N/A

Malware Config

Signatures

Files

6a4dab82c2fa9349434b1836064dd5fedbcd61168fce60d27d2d0bcd4dc4080b
.exe windows x86

18a7205b91028bf292e4a5fba352ce2e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetLastActivePopup
GetGUIThreadInfo
GetClientRect
GetAncestor
SubtractRect
GetGuiResources
CharNextW
CloseClipboard
AttachThreadInput
GetLayeredWindowAttributes
MessageBeep
EnumDisplaySettingsW
GetMenuItemRect
EnumWindowStationsA
FindWindowExA
TrackPopupMenu
GetDlgItem
IsWindow
DestroyWindow
GetWindow
SetMenuContextHelpId
SetMenu
UnregisterClassW
DestroyMenu
LoadCursorW
GetSysColorBrush
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindowThreadProcessId
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
ShowWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
CheckRadioButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
WinHelpW
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
DispatchMessageW
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
AnyPopup
IsWindowVisible
UpdateWindow
EnableWindow
CheckMenuItem
OpenInputDesktop
CreateDesktopW
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
CopyRect
PtInRect
GetMenu
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
SendDlgItemMessageA
SetThreadDesktop
SwitchDesktop
CloseDesktop
SendMessageW
PostMessageW
GetSystemMetrics
IsIconic
GetFocus
GetTopWindow
GetWindowLongW
GetClassNameW
SetWindowLongW
SetWindowPos
SetForegroundWindow
EndDialog
GetNextDlgTabItem
GetParent
IsWindowEnabled
SetFocus
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW

comdlg32

GetFileTitleW

shell32

SHGetFolderPathW
ShellExecuteW

oledlg

OleUIBusyW

ole32

CoRegisterMessageFilter
OleFlushClipboard
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
CoTaskMemAlloc
OleIsCurrentClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoTaskMemFree
StgCreateDocfileOnILockBytes

advapi32

CheckTokenMembership
RegCloseKey
GetNumberOfEventLogRecords
DeregisterEventSource
RegQueryMultipleValuesA
StartServiceCtrlDispatcherA
RegCreateKeyW
GetLengthSid
OpenServiceW
ReadEventLogA
AllocateLocallyUniqueId
LookupPrivilegeValueW
RegOpenKeyExW
RegQueryValueW
RegEnumKeyW
RegOpenKeyW
OpenProcessToken
RegQueryValueExW
AdjustTokenPrivileges
AllocateAndInitializeSid
RegCreateKeyExW
FreeSid
RegSetValueExW
RegDeleteKeyW
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
AccessCheckAndAuditAlarmW

gdi32

CreateBitmap
ColorMatchToTarget
CopyEnhMetaFileA
CreateDCW
ChoosePixelFormat
ArcTo
CreateDCA
CreateCompatibleBitmap
AddFontResourceW
CombineRgn
AddFontResourceExW

opengl32

glLightfv
glLightModelfv
glLightModelf
glHint
glGetString
glGenTextures
glEnd
glEnable
glDisable
glDepthFunc
glCopyTexImage2D
glColor4f
glColor3f
glClearDepth
glClearColor
glClear
glCallList
glBlendFunc
glBegin

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

GetEnvironmentVariableW
CreateDirectoryW
RemoveDirectoryW
GetSystemDirectoryW
GetTempPathW
GetSystemDefaultLangID
SetCurrentDirectoryW
CreateThread
WaitForSingleObject
HeapAlloc
HeapFree
RtlUnwind
RaiseException
HeapReAlloc
Sleep
ExitProcess
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoW
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetSystemDefaultLCID
SetErrorMode
FlushFileBuffers
SetFilePointer
lstrlenA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
GlobalFlags
GetModuleHandleA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
CompareStringW
LoadLibraryA
lstrcmpW
SetEvent
CreateEventW
GetModuleHandleW
GetProcAddress
GetVersionExA
WideCharToMultiByte
SetLastError
GlobalAlloc
FormatMessageW
lstrlenW
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
MultiByteToWideChar
GetCurrentDirectoryW
MoveFileW
GetLastError
LocalFree
OpenProcess
CreateProcessW
GetDriveTypeW
GetExitCodeThread
CompareStringA
GetVersion
FileTimeToSystemTime
FileTimeToLocalFileTime
GetThreadLocale
FormatMessageA
ResetEvent
GetLogicalDriveStringsW
DeleteFileA
MoveFileA
CreateProcessA
GetFileAttributesA
CreatePipe
GetExitCodeProcess
GetDriveTypeA
GetCurrentDirectoryA
SetEnvironmentVariableW
SetEnvironmentVariableA
HeapDestroy
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemInfo
VirtualProtect
GetProcessHeap
GetFileTime
GetVolumeInformationW
DuplicateHandle
UnlockFile
LockFile
GetTimeFormatA
GetDateFormatA
InterlockedIncrement
InterlockedDecrement
GetTimeZoneInformation
CreateFileA
FindClose
FindNextFileW
DeleteFileW
FindFirstFileW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
LocalAlloc
GetCommandLineW
GetTickCount
GetModuleFileNameW
FreeLibrary
LoadLibraryExW
GetPrivateProfileIntW
CloseHandle
WriteFile
ReadFile
GetFileSize
CreateFileW
GetWindowsDirectoryW
GetVersionExW
GetCurrentProcess
WritePrivateProfileStringW
VirtualAlloc
GetTempFileNameW
GetShortPathNameA
SearchPathA
DeleteVolumeMountPointW
WriteConsoleOutputCharacterA
FindFirstChangeNotificationW
GetCPInfo
SizeofResource
LockResource
LoadResource
FindResourceW
SetFileAttributesW
GetPrivateProfileStringW

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18a7205b91028bf292e4a5fba352ce2e

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

oledlg

ole32

advapi32

gdi32

opengl32

version

kernel32

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 122KB - Virtual size: 194KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 122KB - Virtual size: 194KB

.rsrc
Size: 56KB - Virtual size: 55KB