02bcef19425cf7ce8f293286c3ed97262fcf19da4391ddd2e58d7dd09195543a

Sharing

Copy URL Twitter E-mail

General

Target

02bcef19425cf7ce8f293286c3ed97262fcf19da4391ddd2e58d7dd09195543a
Size

361KB
MD5

827fdd109cd5a7380d69ad85d5ac6ca0
SHA1

f7c97273942629cc7695db4109b8dd56b6deed50
SHA256

02bcef19425cf7ce8f293286c3ed97262fcf19da4391ddd2e58d7dd09195543a
SHA512

9ae7a759ef950e6c91e0bc7fad01b325382aa4dff76a995828fb750b9812325a2f1a1fffe58b23572b36c938f809c748b156941d7fa2d0b0cc786b0afcd81d78
SSDEEP

6144:auUt4HSD/LLDDo8j6uSz+Kj6DNMm7TpAWWoReR+xkeWkHumzXzThG7:auUt4HSTLzDj6VvyNMm79A/ABkeW+VDY

Score

N/A

Malware Config

Signatures

Files

02bcef19425cf7ce8f293286c3ed97262fcf19da4391ddd2e58d7dd09195543a
.exe windows x86

fabdd08091a0ee65a5bb1748a033cc5a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

KillTimer
SetTimer
GetClientRect
MoveWindow
ShowWindow
WinHelpA
EqualRect
DrawTextA
GetIconInfo
GetFocus
GetClassNameA
SetWindowLongA
DdeNameService
DdeFreeDataHandle
IsWindowEnabled
DdeAccessData
DdeQueryStringA
DdeCreateDataHandle
DdeClientTransaction
DdeConnect
DdeCreateStringHandleA
DdeInitializeA
CallWindowProcA
GetMessageA
ClipCursor
SetKeyboardState
GetKeyboardState
ToAscii
ScrollDC
GetSystemMetrics
DdeUnaccessData
MessageBeep
MessageBoxA
FlashWindow
RedrawWindow
ShowScrollBar
CharLowerBuffA
CharLowerA
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
VkKeyScanA
GetKeyboardLayout
CopyAcceleratorTableA
MapVirtualKeyA
CallNextHookEx
GetCapture
CharUpperBuffA
DrawIcon
LoadIconA
GetWindowDC
DefMDIChildProcA
GetScrollInfo
IsMenu
GetMenuState
RemoveMenu
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemID
TrackPopupMenu
RegisterWindowMessageA
SetWindowsHookExA
GetWindowThreadProcessId
LoadAcceleratorsA
DispatchMessageA
TranslateMessage
TranslateMDISysAccel
IsDialogMessageA
LoadMenuA
PostQuitMessage
DefFrameProcA
RegisterClassExA
UnhookWindowsHookEx
ValidateRect
InvertRect
DefWindowProcA
DrawFrameControl
RegisterClassA
CopyImage
CreateIconIndirect
GetWindowRgn
SetWindowRgn
IsRectEmpty
OffsetRect
SetScrollInfo
SystemParametersInfoA
GetForegroundWindow
DdeUninitialize
IntersectRect
SetCapture
GetWindow
GetMessagePos
GetAsyncKeyState
GetWindowLongA
IsClipboardFormatAvailable
EmptyClipboard
SetClipboardData
OpenClipboard
EnumClipboardFormats
GetClipboardFormatNameA
CreateWindowExA
GetClipboardData
DestroyWindow
CloseClipboard
DialogBoxParamA
GetTopWindow
IsZoomed
GetActiveWindow
IsWindow
IsCharAlphaA
IsCharAlphaNumericA
GetDesktopWindow
IsIconic
GetDialogBaseUnits
SetDlgItemInt
GetDlgItemInt
GetSystemMenu
CheckMenuItem
CreatePopupMenu
DestroyMenu
GetMenu
GetSubMenu
GetMenuItemCount
DeleteMenu
EnableMenuItem
AppendMenuA
DrawMenuBar
GetWindowTextA
FrameRect
GetParent
GetSysColor
DrawFocusRect
GetKeyState
LoadCursorA
SetCursor
PeekMessageA
MsgWaitForMultipleObjects
BeginPaint
EndPaint
DrawIconEx
DestroyIcon
LoadImageA
IsWindowVisible
FillRect
DrawEdge
IsDlgButtonChecked
EndDialog
SetFocus
ReleaseCapture
GetWindowPlacement
SetWindowPlacement
GetWindowTextLengthA
CheckDlgButton
SetRect
SendMessageA
GetDlgCtrlID
GetCursorPos
ScreenToClient
SetWindowPos
UpdateWindow
PtInRect
SetWindowTextA
EnableWindow
DdeDisconnect
DdeFreeStringHandle
LoadStringA
IsChild
InsertMenuA
ModifyMenuA
GetNextDlgTabItem
ChildWindowFromPointEx
GetScrollPos
GetScrollRange
SetScrollPos
CreateMenu
SetMenu
FindWindowA
SetScrollRange
IsWindowUnicode
SetActiveWindow
GetMenuStringA
CreateDialogParamA
ReleaseDC
PostMessageA
MapWindowPoints
GetWindowRect
GetDlgItem
GetDC
SendDlgItemMessageA
InvalidateRect
CopyRect
FindWindowExA
SetForegroundWindow
ClientToScreen
ChildWindowFromPoint
WindowFromPoint
BringWindowToTop

comdlg32

ChooseFontA
ChooseColorA
CommDlgExtendedError

ole32

OleUninitialize
CLSIDFromProgID
OleInitialize
CoLockObjectExternal
CoGetClassObject
OleSetContainedObject
ProgIDFromCLSID
CoCreateInstance
RevokeDragDrop
CoGetInterfaceAndReleaseStream
CoTaskMemFree
RegisterDragDrop
ReleaseStgMedium

advapi32

OpenProcessToken
SetThreadToken
CreateRestrictedToken
DuplicateTokenEx
DuplicateToken
EqualSid
LookupPrivilegeValueW
CopySid
CreateWellKnownSid
GetUserNameW
SetTokenInformation
RevertToSelf
RegDisablePredefinedCache
RegQueryValueExW
RegQueryInfoKeyW
RegCloseKey
RegEnumKeyExW
CreateProcessAsUserW
RegCreateKeyExW
RegOpenKeyExW

gdi32

SetTextColor
SelectObject
DeleteObject
GetObjectType
ExcludeClipRect
Polyline
GetTextExtentPointA
GetTextExtentPointW
ExtTextOutW
GetTextCharset
EnumFontFamiliesExA
GetCurrentObject
SetBkColor
GetClipRgn
IntersectClipRect
SetBkMode
SetROP2
GetStockObject
Ellipse
RoundRect
Rectangle
CreatePatternBrush
DeleteDC
CreatePolygonRgn
PtInRegion
CreateFontIndirectA
GetPixel
ExtFloodFill
GetBkColor
SetPixelV
GetDeviceCaps
GetNearestColor
CreateRectRgn
SelectClipRgn
CreatePen
MoveToEx
LineTo
CombineRgn
CreateDIBSection
CreateDIBitmap
GetDIBits
CreateCompatibleBitmap
StretchBlt
SetStretchBltMode
SetBrushOrgEx
CreateCompatibleDC
GetObjectA
BitBlt
GetTextColor

shlwapi

PathRemoveFileSpecW

kernel32

GetCurrentThreadId
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
CreateMutexA
SetErrorMode
FindCloseChangeNotification
FindNextChangeNotification
WaitForMultipleObjects
FindFirstChangeNotificationA
GetEnvironmentVariableA
GetShortPathNameA
CompareFileTime
GetFileTime
ReleaseMutex
GetTimeZoneInformation
LocalAlloc
LocalReAlloc
LocalFree
CopyFileA
MoveFileA
SetLastError
GetTempPathA
EnterCriticalSection
SetStdHandle
GetSystemTimeAsFileTime
CreateThread
TlsGetValue
TlsSetValue
ExitThread
RtlUnwind
HeapFree
HeapAlloc
TerminateProcess
GetModuleHandleA
ExitProcess
GetSystemDefaultLangID
CreateEventA
WaitForSingleObject
LoadLibraryA
GetProcAddress
FreeLibrary
GetCurrentThread
SetThreadPriority
SetEvent
Sleep
WideCharToMultiByte
CloseHandle
MultiByteToWideChar
GetTickCount
FindResourceA
LoadResource
GetLocalTime
LeaveCriticalSection
HeapReAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
SetConsoleCtrlHandler
GetACP
GetOEMCP
GetCPInfo
RaiseException
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
GetCommandLineA
TlsFree
TlsAlloc
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
InitializeCriticalSection
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetStringTypeA
GetStringTypeW
HeapSize
SetUnhandledExceptionFilter
SetEnvironmentVariableA
SetEnvironmentVariableW
VirtualProtect
GetSystemInfo
VirtualQuery
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
CompareStringA
CompareStringW
IsBadReadPtr
IsBadCodePtr
GetFileInformationByHandle
GetVolumeInformationA
PeekNamedPipe
RemoveDirectoryA
GetPrivateProfileStringA
WritePrivateProfileStringA
SetFileAttributesA
GetLogicalDriveStringsA
GetDriveTypeA
GetLocaleInfoA
DeleteFileA
CreateDirectoryA
FlushFileBuffers
ReadFile
SetFilePointer
GetLastError
MulDiv
GlobalSize
WriteFile
FindFirstFileA
FindNextFileA
FindClose
WinExec
GetFileAttributesA
GetFileType
QueryDosDeviceA
GetCurrentProcess
GetDiskFreeSpaceA
LoadLibraryExA
EnumResourceTypesA
EnumResourceNamesA
CreateFileA
QueryPerformanceFrequency
QueryPerformanceCounter
GetVersionExA
lstrcpyW
lstrlenW
lstrcatW
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
GetModuleFileNameA
SetEndOfFile
GetWindowsDirectoryA
GetSystemDefaultLCID
GetCalendarInfoA
WritePrivateProfileStructA
LockFileEx
CreateHardLinkA
GlobalFindAtomA
FindAtomW
BackupWrite
HeapSetInformation
GetStartupInfoW
IsDebuggerPresent
DecodePointer
EncodePointer
GetModuleHandleW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
InterlockedIncrement
InterlockedDecrement
IsValidCodePage
LoadLibraryW
GetConsoleCP
GetConsoleMode
IsProcessorFeaturePresent
WriteConsoleW
CreateFileW
LockResource

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 298KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fabdd08091a0ee65a5bb1748a033cc5a

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

ole32

advapi32

gdi32

shlwapi

kernel32

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 9KB - Virtual size: 20KB

.rsrc Size: 298KB - Virtual size: 300KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 9KB - Virtual size: 20KB

.rsrc
Size: 298KB - Virtual size: 300KB