7e7c3f79dd838024cb03ba5353240b24af258f6128d9ec70acbef3c1a2919f17

Sharing

Copy URL Twitter E-mail

General

Target

7e7c3f79dd838024cb03ba5353240b24af258f6128d9ec70acbef3c1a2919f17
Size

428KB
MD5

82b07ed9430767fda210f14722b5f270
SHA1

b0e56b6d82bbcc50cc877308e93b9a8d7904462d
SHA256

7e7c3f79dd838024cb03ba5353240b24af258f6128d9ec70acbef3c1a2919f17
SHA512

5851f447e615475b5714820bc95733264bc391859f96fcde640e75346fbad87c693cf582d7b96aedbc5df725a8bb8ef949b4f3f99bd0d168e532db7af1c82598
SSDEEP

6144:nLKa5VoAJ+xwdR2CpSJFtQ26LrtwC3N5LjLgsCGE2P5adDqcYuTHP9r9uavx+128:LKa5Vo6CEIPq2sOCnLx4B7Huq+UIh

Score

N/A

Malware Config

Signatures

Files

7e7c3f79dd838024cb03ba5353240b24af258f6128d9ec70acbef3c1a2919f17
.exe windows x86

1fcb892bbeae2147b15cf6b35277da6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetSidLengthRequired
GetSidSubAuthority
GetTokenInformation
InitializeSid
IsTokenRestricted
OpenProcessToken
OpenThreadToken
RegCloseKey
RegEnumKeyW
RegOpenKeyExW
RegOpenUserClassesRoot
RegQueryValueW
SetThreadToken
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW

gdi32

CreateBitmap
CreateCompatibleBitmap
CreateICW
CreateSolidBrush
DeleteDC
DeleteObject
EnumMetaFile
ExtTextOutW
GetBitmapBits
GetObjectW
SelectObject
SetBkColor
SetDIBits

kernel32

LoadResource
FindResourceA
VirtualAlloc
CloseHandle
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
FileTimeToLocalFileTime
FreeLibrary
GetCommModemStatus
GetLastError
GetSystemTime
GetVersion
GlobalAlloc
GlobalFree
InitializeCriticalSection
LeaveCriticalSection
LocalAlloc
LocalFree
RtlMoveMemory
RtlZeroMemory
SystemTimeToFileTime
lstrcmpiA
lstrcpyA
lstrlenA
CompareStringW
CreateFileA
CreateProcessA
FileTimeToSystemTime
GetConsoleMode
GetCurrentThreadId
GetExitCodeProcess
GetFileAttributesA
GetFileType
GetNumberOfConsoleInputEvents
GetStdHandle
GetStringTypeW
HeapAlloc
HeapFree
LCMapStringW
MultiByteToWideChar
PeekConsoleInputA
RaiseException
ReadConsoleInputA
ReadFile
SetConsoleMode
SetFilePointer
SetStdHandle
TlsGetValue
TlsSetValue
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
ExitProcess
BeginUpdateResourceA
FindClose
FindFirstFileW
FindResourceW
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentThread
GetFileAttributesW
GetPrivateProfileSectionA
GetProcAddress
GetShortPathNameW
GetSystemWindowsDirectoryW
GlobalLock
GlobalSize
GlobalUnlock
InterlockedCompareExchange
InterlockedExchange
IsBadReadPtr
IsBadStringPtrW
IsBadWritePtr
LoadLibraryW
LockResource
SearchPathW
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
lstrlenW
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleW
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
SetFilePointerEx
GetStringTypeA
LCMapStringA
GetLocaleInfoA
HeapSize
RtlUnwind
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryA
IsDebuggerPresent
VirtualFree
HeapCreate
HeapDestroy
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsAlloc
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
WriteFile
GetModuleHandleA
GetStartupInfoA
GetProcessHeap
GetVersionExA
GetCommandLineA

ole32

StringFromCLSID
ReleaseStgMedium
OleRegGetUserType
OleMetafilePictFromIconAndLabel
OleGetIconOfClass
OleDuplicateData
GetClassFile
CoGetMalloc
CLSIDFromProgID
CLSIDFromString

oleaut32

VarBoolFromUI1

rpcrt4

RpcRevertToSelfEx
I_RpcBindingInqDynamicEndpoint

user32

GetWindowRect
GetWindowTextW
InflateRect
InvalidateRect
IsDialogMessageW
IsDlgButtonChecked
IsWindow
IsWindowEnabled
KillTimer
LoadIconW
LoadStringW
MessageBoxW
PeekMessageW
PostMessageW
PostThreadMessageW
RegisterDeviceNotificationW
RegisterWindowMessageW
ReleaseDC
RemovePropW
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetClipboardViewer
SetDlgItemTextW
SetFocus
SetPropW
SetTimer
SetWindowPos
SetWindowTextW
ShowWindow
GetSystemMetrics
UpdateWindow
IsWindowVisible
GetDlgItemTextW
GetDlgItem
GetDC
GetClipboardFormatNameW
GetClientRect
FillRect
EndDialog
EnableWindow
DrawIcon
DrawFocusRect
DispatchMessageW
DialogBoxIndirectParamW
DestroyWindow
DestroyIcon
CreateWindowExW
CreateIcon
CheckRadioButton
CheckDlgButton
CharPrevW
CharNextW
ChangeClipboardChain
OemToCharBuffA
OemToCharA
CharUpperA
CharToOemBuffA
CharToOemA
CharNextA
GetSysColor
GetForegroundWindow
GetPropW
TranslateMessage
GetFocus

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 325KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fcb892bbeae2147b15cf6b35277da6e

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

oleaut32

rpcrt4

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 325KB - Virtual size: 324KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 325KB - Virtual size: 324KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 2KB - Virtual size: 1KB