28b36040596f523d1ee63c7e028483dd70754aa897f9124aa8c54fead76500b8

Sharing

Copy URL

Twitter E-mail

General

Target

28b36040596f523d1ee63c7e028483dd70754aa897f9124aa8c54fead76500b8
Size

260KB
MD5

05486bf79e8e4e9654180c7d76dc08ff
SHA1

d4383ed79a8ff402d665674e060c699a1a86bc55
SHA256

28b36040596f523d1ee63c7e028483dd70754aa897f9124aa8c54fead76500b8
SHA512

debfdc85417726ebe9e28cb63a581ee6774169fde1b3d4de4658ca4c6e4be4cc68febc6215d96ad157c521def6143a66f2c413aeb71d5dc1fa8c58535407cbdb
SSDEEP

6144:9+ZMZpge+8qnc7OH5elh+lPbbveWiNRb47:9VZpgQwMlmXvehNW

Score

N/A

Malware Config

Signatures

Files

28b36040596f523d1ee63c7e028483dd70754aa897f9124aa8c54fead76500b8
.exe windows x86

9a02c1adcef603c257350b26df14f623

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA

shlwapi

PathFindFileNameA
PathIsRelativeA
PathIsDirectoryA
PathStripToRootA

kernel32

CreateDirectoryW
GetProcAddress
GetSystemDirectoryA
GetOEMCP
FileTimeToLocalFileTime
VirtualAlloc
GetUserDefaultLCID
GetTempPathW
CopyFileA
LockFile
CloseHandle
lstrlenW
GetEnvironmentStringsW
GetModuleHandleW
LeaveCriticalSection
TlsAlloc
ResetEvent
GetTempFileNameW
DeviceIoControl
GetFileSize
LoadLibraryW
GetTimeFormatA
lstrcmpA
HeapSize
FreeLibrary
OpenProcess
InterlockedIncrement
UnhandledExceptionFilter
LCMapStringA
VirtualQuery
DeleteCriticalSection
GetCurrentThreadId
MultiByteToWideChar
GlobalFree
GetExitCodeThread
LockResource
SetLastError
OutputDebugStringA
GetTimeZoneInformation
InitializeCriticalSection
SuspendThread
IsBadCodePtr
SetEnvironmentVariableA
HeapAlloc
IsValidLocale
GetLocalTime
CreateThread
GetSystemInfo
FindNextFileA
DeleteFileW
GetFileType
InterlockedCompareExchange
GetThreadLocale
GetUserDefaultLangID
ExitProcess
FreeEnvironmentStringsA
CopyFileW
TlsFree
SetHandleCount
GetModuleFileNameW
RtlUnwind
CompareStringW
LCMapStringW
GetACP
GetCurrentProcess
GetCPInfo
GetVersionExW
FileTimeToSystemTime
FindFirstFileA
LocalAlloc
ReadFile
LoadLibraryA
ReleaseSemaphore
lstrlenA
GetStartupInfoW
GetEnvironmentStrings
lstrcmpiW
TlsGetValue
GetFileAttributesW
GetProcessHeap
InterlockedExchange
SetErrorMode
IsBadReadPtr
SetEndOfFile
GlobalSize
VirtualProtect
InterlockedDecrement
CreateMutexA
GetFullPathNameW
HeapReAlloc
GetCurrentThread
GetSystemTime
CreateFileA
GetCurrentDirectoryA
GetStartupInfoA
VirtualFree
GlobalReAlloc
SizeofResource
GetDriveTypeA
CreateProcessW
GetStdHandle
FindNextFileW
LoadResource
CreateDirectoryA
HeapFree
QueryPerformanceCounter
GetCommandLineA
UnmapViewOfFile
GetStringTypeW
CreateMutexW
GetCommandLineW
WaitForMultipleObjects
WriteConsoleA
GetVersionExA
GetLocaleInfoA
MulDiv
GetModuleFileNameA
GetFileTime
lstrcmpiA
lstrcpynA
GetVersion
GetStringTypeA
CompareStringA
FlushFileBuffers
TerminateProcess
CreateProcessA
WriteFile
GlobalMemoryStatus
SetFilePointer
HeapCreate
GetCurrentProcessId
WideCharToMultiByte
GetTickCount
WaitForSingleObject
DuplicateHandle
ResumeThread
FindFirstFileW
GetModuleHandleA
GlobalAlloc
GetFullPathNameA
GetSystemTimeAsFileTime
SetEvent
GlobalUnlock
FindClose
SetUnhandledExceptionFilter
HeapDestroy
TerminateThread
SetFileAttributesW
DeleteFileA
CreateEventW
EnterCriticalSection
MapViewOfFile
GetLastError
LocalFree
QueryPerformanceFrequency
SetStdHandle
TlsSetValue
CreateFileW
SetThreadPriority
ExitThread
GetLocaleInfoW
GlobalLock
RaiseException
GetDateFormatA
GetTempPathA
Sleep
FreeEnvironmentStringsW
SetFileTime
UnlockFile

comctl32

InitCommonControlsEx
ImageList_LoadImageA
ImageList_Create
ImageList_Add
ImageList_Draw

wsock32

WSACleanup

user32

LockWindowUpdate
GetClientRect
GetWindow
DefWindowProcW
GetParent
IsWindow
SetScrollInfo
DispatchMessageW
GetDlgCtrlID
GetCursorPos
SetWindowPos
SystemParametersInfoA
PostQuitMessage
RegisterClassW
EnumChildWindows
IsChild
DestroyWindow
DestroyAcceleratorTable
SetWindowTextW
LoadBitmapW
ShowWindow
LoadCursorW
MoveWindow
ReleaseDC
GetWindowPlacement
EnableWindow
RemoveMenu
CopyRect
EnableMenuItem
LoadAcceleratorsW
ModifyMenuW
GetDesktopWindow
EndDialog
GetDlgItemTextW
CreateWindowExW
DeleteMenu
CreateDialogIndirectParamW
GetClassInfoExW
MapDialogRect
CallNextHookEx
EnumWindows
IntersectRect
GetMenuItemID
GetMessageW
UpdateWindow
GetDlgItem
GetKeyNameTextW
SetForegroundWindow
IsDialogMessageW
InflateRect
CloseClipboard
KillTimer
RegisterClassExW
GetWindowTextLengthW
MessageBoxW
SetScrollPos
SetMenuItemInfoW
LoadStringW
GetMenuItemCount

gdi32

SetROP2
GetDeviceCaps
SetTextJustification
MaskBlt
CreateDIBPatternBrushPt
CloseEnhMetaFile
SetTextCharacterExtra
UnrealizeObject
StrokePath
PlayMetaFileRecord
SelectObject
CreatePatternBrush
EndDoc
GetBkColor
ExtCreatePen
SetMapperFlags
ArcTo
StartPage
InvertRgn
PolyPolyline
CreateBitmapIndirect
CreateBitmap
ExtTextOutA
RoundRect
PathToRegion
CreateFontIndirectA
CreateRoundRectRgn
EnumMetaFile
SelectPalette
MoveToEx
GetClipBox
GetOutlineTextMetricsA
PolylineTo
Chord
CreateCompatibleBitmap
CreateEllipticRgn
SelectClipRgn
PolyDraw
SetRectRgn
ResizePalette
DeleteObject
GetStockObject
CreatePolygonRgn
PtVisible
TextOutA
PlayMetaFile
CreateDCA
CreateEnhMetaFileA
EndPage
CreateHalftonePalette
GetDCOrgEx
CreateRectRgn
OffsetRgn
SetWindowExtEx
SetColorAdjustment
GetCurrentObject
BitBlt
SetWindowOrgEx
ResetDCA
GetTextColor
GetCharWidthA
GetTextExtentPoint32A
SetArcDirection
FloodFill

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a02c1adcef603c257350b26df14f623

Headers

File Characteristics

Imports

advapi32

shlwapi

kernel32

comctl32

wsock32

user32

gdi32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 92KB - Virtual size: 90KB

.data Size: 52KB - Virtual size: 64KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 92KB - Virtual size: 90KB

.data
Size: 52KB - Virtual size: 64KB

.rsrc
Size: 32KB - Virtual size: 28KB