38f8986ebd0858fcb7381ec234e4584d545c814bd4437862326ebe5fd26c7e80

Sharing

Copy URL Twitter E-mail

General

Target

38f8986ebd0858fcb7381ec234e4584d545c814bd4437862326ebe5fd26c7e80
Size

616KB
MD5

8347055035eefc2b2e3019f892ff17f0
SHA1

98e77de3d6364dc0ff29e4458dc34ec50c7e4f3c
SHA256

38f8986ebd0858fcb7381ec234e4584d545c814bd4437862326ebe5fd26c7e80
SHA512

f57665907a8f72912fa2ec6b26c6d742ff7481c884e0fa14089840f306e0be7a94012067d23bf8b7bad405b4460d6809cc78d127685e231c0fd812088dc7ba02
SSDEEP

12288:JdmcXzQaLc1D/siqp7Kv/34H1mlAn3jqtmB7cCFFFF1FFFBBeBeBeB:J4ckaLc1bsiH3Lm3umB7RIII

Score

N/A

Malware Config

Signatures

Files

38f8986ebd0858fcb7381ec234e4584d545c814bd4437862326ebe5fd26c7e80
.exe windows x86

fa5460bfb470f88c5acdac23960baec4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
CreateFontIndirectA
DeleteObject
GetDeviceCaps
GetStockObject
CreateCompatibleDC
SelectObject
CreateSolidBrush

ole32

CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoInitialize

oleaut32

SysAllocString
SysFreeString
SysAllocStringLen
SysStringLen
VariantClear

advapi32

RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey
RegSetValueExA

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
RtlUnwind
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
CreateProcessW
HeapCreate
CreateProcessA
SizeofResource
InterlockedExchange
GetCurrentThreadId
GetACP
lstrcpynA
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
GetLastError
LeaveCriticalSection
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
RemoveDirectoryA
ExpandEnvironmentStringsA
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
lstrcpyA
FindNextFileW
lstrcmpA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
GetStartupInfoW
GetModuleHandleW
CreateDirectoryA
LCMapStringW
GetFileSize
GetStartupInfoA
DeleteFileA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetVersion
SetEndOfFile
GetConsoleMode
GlobalAlloc
lstrcmpiA
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
LoadLibraryExA
CreateThread
GetModuleHandleA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
GetSystemTime
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
GlobalLock
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
SetEvent
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
GetCPInfo
SetStdHandle
GetLocaleInfoW
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindFirstFileW
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime

user32

PostQuitMessage
SetWindowPos
IsWindow
DispatchMessageA
GetDC
GetCursorPos
SetCursor
CallWindowProcA
GetClientRect
InvalidateRect
DrawTextA
IsWindowVisible
SystemParametersInfoA
GetSysColor
MessageBoxA
ReleaseDC
SetForegroundWindow
GetDesktopWindow
LoadCursorA
ScreenToClient
GetDlgItem
CreateWindowExA
CheckMenuItem
SetWindowTextA
EndDialog
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
GetMessageA
PeekMessageA
SetFocus
EndPaint
FillRect
SetTimer
GetSubMenu
RegisterClassA
LoadStringA
GetWindow
TranslateMessage
EnableWindow
SetCapture
SetWindowLongA
ShowWindow
UpdateWindow
GetParent
DestroyWindow
TrackPopupMenu
MoveWindow
SendMessageA
UnregisterClassA
SendMessageW

Sections

.text
Size: 456KB - Virtual size: 456KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa5460bfb470f88c5acdac23960baec4

Headers

File Characteristics

Imports

gdi32

ole32

oleaut32

advapi32

kernel32

user32

Sections

.text Size: 456KB - Virtual size: 456KB

.rdata Size: 72KB - Virtual size: 72KB

.data Size: 83KB - Virtual size: 86KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 456KB - Virtual size: 456KB

.rdata
Size: 72KB - Virtual size: 72KB

.data
Size: 83KB - Virtual size: 86KB

.rsrc
Size: 2KB - Virtual size: 2KB