e90a3a763df201a65c61a947c422e2264421abb1b1f26b7cf596ee03a874cbaa

Sharing

Copy URL Twitter E-mail

General

Target

e90a3a763df201a65c61a947c422e2264421abb1b1f26b7cf596ee03a874cbaa
Size

144KB
MD5

a25727cf1e617f647a0cac43bf331422
SHA1

0f11ba0579ccf5f0fef1f42957b89c37e537ed37
SHA256

e90a3a763df201a65c61a947c422e2264421abb1b1f26b7cf596ee03a874cbaa
SHA512

0ab2423659d4a5951985826608e0df208703ceafb8600fe10a07173934dd0a063a6620bc85a4fcb7263e1b5319468818d52117a5ad6dd7b10f706cfe33fa42f2
SSDEEP

3072:UNyg2p7ZqlJMoN7kfJBoCLl3d+svxZfAU4OjPELPjPjPjPjPjPjO90Ezmji:+Mi7Ie0DvxN4gG777777O9xzo

Score

N/A

Malware Config

Signatures

Files

e90a3a763df201a65c61a947c422e2264421abb1b1f26b7cf596ee03a874cbaa
.exe windows x86

c028af997466fdc3ce7ac8977deba49b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
ExitProcess
LCMapStringW
LCMapStringA
VirtualQuery
GetEnvironmentStringsW
VirtualProtect
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetCommandLineA
SetHandleCount
GetFileType
GetLocaleInfoA
GetCPInfo
RtlUnwind
InterlockedExchange
LoadLibraryA
GetACP
GetOEMCP
GetStringTypeA
DeviceIoControl
WideCharToMultiByte
MultiByteToWideChar
LocalFree
lstrcpyA
CreateFileA
WriteFile
LocalAlloc
GetProcessHeap
HeapAlloc
HeapFree
lstrlenA
lstrcmpiA
WaitForMultipleObjects
SetEvent
WaitForSingleObject
SearchPathA
CreateProcessA
CloseHandle
GetModuleHandleA
GetProcAddress
GetCurrentProcess
lstrcmpA
CreateMutexA
GetLastError
GetVersionExA
Sleep
CreateEventA
CreateThread
WinExec
GetSystemInfo
GetStringTypeW

user32

GetMessageA
ShowWindow
LoadStringA
TranslateMessage
CreateWindowExA
RegisterClassA
LoadCursorA
DispatchMessageA
LoadImageA
InsertMenuItemA
CharUpperA
GetSysColor
LoadIconA
GetDC
GetMenuCheckMarkDimensions
ReleaseDC
CreatePopupMenu
SystemParametersInfoA
GetCursorPos
TrackPopupMenu
DestroyMenu
PostQuitMessage
SetForegroundWindow
PostMessageA
DefWindowProcA
GetDesktopWindow
GetWindow
GetClassNameA
SendMessageA

gdi32

CreateFontIndirectA
SelectObject
BitBlt
GetTextExtentPoint32A
ExtTextOutA
SetTextAlign
CreateCompatibleDC
DeleteDC
CreatePen
MoveToEx
LineTo
CreateBrushIndirect
Rectangle
GetTextColor
SetTextColor
GetBkMode
SetBkMode
GetTextAlign
DeleteObject

advapi32

RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyA
FreeSid
RegSetKeySecurity
RegDeleteValueA
AllocateAndInitializeSid
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExA
RegCreateKeyExA
GetLengthSid
InitializeAcl
AddAccessAllowedAce
RegCreateKeyA

shell32

Shell_NotifyIconA

setupapi

SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA

winmm

mixerClose
mixerOpen
mixerGetDevCapsA
mixerGetID
waveInGetNumDevs
waveInGetDevCapsA
mixerGetNumDevs

hid

HidD_GetAttributes
HidD_GetPreparsedData
HidP_GetCaps
HidD_GetHidGuid
HidD_FreePreparsedData

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ojsrycl
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lzlvzxb
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c028af997466fdc3ce7ac8977deba49b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

setupapi

winmm

hid

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 12KB - Virtual size: 18KB

.sxdata Size: 4KB - Virtual size: 28B

.rsrc Size: 52KB - Virtual size: 52KB

ojsrycl Size: 32KB - Virtual size: 32KB

lzlvzxb Size: - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 12KB - Virtual size: 18KB

.sxdata
Size: 4KB - Virtual size: 28B

.rsrc
Size: 52KB - Virtual size: 52KB

ojsrycl
Size: 32KB - Virtual size: 32KB

lzlvzxb
Size: - Virtual size: 4KB