c5e86e3ff3cc94e5d3fcc700eb54a6630654f68c1474d7cfe2f433e4084f1a84

Sharing

Copy URL Twitter E-mail

General

Target

c5e86e3ff3cc94e5d3fcc700eb54a6630654f68c1474d7cfe2f433e4084f1a84
Size

121KB
MD5

0c7c9ea5aa912550826e5e7800fc7ef6
SHA1

08bc1894f2c956991ef6119eb8d7a4b0c75898a0
SHA256

c5e86e3ff3cc94e5d3fcc700eb54a6630654f68c1474d7cfe2f433e4084f1a84
SHA512

29889bde971b945af085830b3ab69e95e6f60ef419b3f6d0d8938d7de28bef68dac74f2dbeb1e99ea4ba60bd1cc03ec40f8eeda8faafb6df03bb6ce31159ce7e
SSDEEP

1536:oJfJbBdq6je9qoqVYYyzFNOVX9yHdW0cMTAyrvDk/K5E/afY++0JZQT834i7BdVl:yxbBg6nig0IMTHztQaY0cceNO9R

Score

N/A

Malware Config

Signatures

Files

c5e86e3ff3cc94e5d3fcc700eb54a6630654f68c1474d7cfe2f433e4084f1a84
.exe windows x86

25acb7ec4449b4cf954b7c6c33c0bef9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GetSystemDirectoryA
SetPriorityClass
SetEvent
GetVersionExA
TerminateJobObject
FlushConsoleInputBuffer
GetModuleHandleA
TerminateProcess
GetCurrentProcessId
GetProcessWorkingSetSize
GetCurrentThreadId
CreateMutexA
GetProcessPriorityBoost
SwitchToThread
GetStartupInfoA
CreateEventA
GlobalSize
GetThreadTimes
GetCurrentProcess
GetLastError
GetProcAddress
IsBadReadPtr
VirtualProtect
VirtualProtectEx
VirtualFree
VirtualAlloc
FreeLibrary
CloseHandle
GetProfileIntW
GetCommandLineW
GlobalLock
GetProfileStringW
LocalAlloc
LocalFree
LocalReAlloc
lstrlenW
lstrcatW
WaitForSingleObject
lstrcpynW
CreateThread
GlobalUnlock
WriteProfileStringW
Sleep
lstrcmpW
GlobalReAlloc
GlobalFree
GlobalAlloc
GlobalCompact
GetVersion
DeviceIoControl
FlushInstructionCache
CreateEventW
GetFileTime
ResetEvent
OpenProcess
lstrcpyW
GetExitCodeThread
GetProcessHeap
LoadLibraryA
lstrcpyA
BeginUpdateResourceA

user32

LoadIconW
LoadCursorW
GetSysColorBrush
RegisterClassExW
CharNextW
SetCursor
SetFocus
SetWindowTextW
CheckRadioButton
GetSubMenu
MessageBeep
EndDialog
DialogBoxParamW
GetSysColor
CloseClipboard
CharNextA
GetClipboardData
OpenClipboard
GetDesktopWindow
TrackPopupMenuEx
EnableMenuItem
IsClipboardFormatAvailable
DefWindowProcW
ChildWindowFromPoint
ScreenToClient
GetDlgCtrlID
PostQuitMessage
WinHelpW
DrawTextW
CallWindowProcW
HideCaret
CheckDlgButton
GetWindowTextW
SetDlgItemInt
GetMenu
SendMessageW
SetDlgItemTextW
CheckMenuItem
CheckMenuRadioItem
SetWindowPos
OffsetRect
MapWindowPoints
GetClientRect
EnableWindow
LoadMenuW
SetWindowLongW
GetWindowLongW
CreateDialogParamW
GetDlgItem
DestroyMenu
SetMenu
GetWindowRect
SystemParametersInfoW
DispatchMessageW
TranslateAcceleratorW
IsChild
IsDialogMessageW
GetMessageW
LoadAcceleratorsW
CreateWindowExW
MessageBoxW
LoadStringW
SetProcessDefaultLayout
GetProcessDefaultLayout
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
MessageBoxA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
InvalidateRect

gdi32

SetTextColor
SetBkColor
SetBkMode

advapi32

RegCloseKey
RegEnumKeyExW
RegQueryInfoKeyW
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
DuplicateTokenEx
AllocateAndInitializeSid
ImpersonateSelf
CloseServiceHandle
QueryServiceStatus
QueryServiceConfigW
ChangeServiceConfig2W
QueryServiceConfig2W
ChangeServiceConfigW
RegQueryValueExW
LookupPrivilegeValueW
RegDeleteKeyW
InitiateSystemShutdownExW
RevertToSelf
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
InitializeAcl
GetUserNameW
IsValidSid
GetLengthSid
CopySid
RegOpenCurrentUser
OpenThreadToken
OpenProcessToken
GetTokenInformation
FreeSid
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegDeleteValueW

Sections

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 353KB - Virtual size: 353KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25acb7ec4449b4cf954b7c6c33c0bef9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 788B

.text Size: 353KB - Virtual size: 353KB

.rsrc Size: 1KB - Virtual size: 1KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 788B

.text
Size: 353KB - Virtual size: 353KB

.rsrc
Size: 1KB - Virtual size: 1KB