fa58a5e86bf812d406e52af25e81f1a397ca69664e2780ddb5a7bcfb74efe1dd

Sharing

Copy URL Twitter E-mail

General

Target

fa58a5e86bf812d406e52af25e81f1a397ca69664e2780ddb5a7bcfb74efe1dd
Size

537KB
MD5

0ac8a4ae51a01edff0b1dcc6697489d0
SHA1

8e3fda6e18c057ceee57727c53e3f72bc0b29f04
SHA256

fa58a5e86bf812d406e52af25e81f1a397ca69664e2780ddb5a7bcfb74efe1dd
SHA512

59b135cf9b3cac71574ad8f4229dbdd405fd9ac123a0f504ef0ee0520e811546e9dc9c41dc1a5b41a06adee936bbcd95f2b471b1a7f60abd02ce2f25b854dc9d
SSDEEP

12288:W1jkDjsHHUEoLmxJX0UMc8AWEolcrd+tZnXU9uhvKqFc6iT/SHJBw5XR0m/d921h:WnalcgIlnP4

Score

N/A

Malware Config

Signatures

Files

fa58a5e86bf812d406e52af25e81f1a397ca69664e2780ddb5a7bcfb74efe1dd
.exe windows x86

885aeb60c3202e4dc3fd608c710bd8d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
SetFocus
SetCapture
SendInput
SetForegroundWindow
DefWindowProcW
EndPaint
BeginPaint
GetUpdateRect
RegisterClassW
ClientToScreen
GetWindowRect
GetDesktopWindow
GetDisplayConfigBufferSizes
QueryDisplayConfig
SetDisplayConfig
GetFocus
SetRectEmpty
GetClientRect
DrawTextExW
SetWindowLongW
SetLayeredWindowAttributes
GetDC
ReleaseDC
SetTimer
PtInRect
PostQuitMessage
NotifyWinEvent
ShowWindow
ReleaseCapture
SetWindowPos
InvalidateRect
UpdateWindow
GetCursorPos
LoadImageW
ScreenToClient
LoadCursorW
SetCursor
InflateRect
GetSysColorBrush
FillRect
GetSysColor
SetRect
SystemParametersInfoW
UnregisterDeviceNotification
KillTimer
FindWindowExW
CreateWindowExW
GetWindowLongW
LoadStringW
SendMessageW
GetMessageW
TranslateMessage
DispatchMessageW
SetWindowsHookExW
GetSystemMetrics
CallNextHookEx
GetAsyncKeyState
GetKeyState
PostMessageW
RegisterDeviceNotificationW
UnhookWindowsHookEx

kernel32

LoadLibraryExA
QueryPerformanceCounter
QueryPerformanceFrequency
InterlockedCompareExchange
FreeLibrary
GetProcAddress
DelayLoadFailureHook
InterlockedDecrement
InterlockedIncrement
CreateSemaphoreW
GetLastError
WaitForSingleObject
MulDiv
ReleaseSemaphore
CloseHandle
GetModuleHandleW
LoadLibraryA
GetUserDefaultUILanguage
SizeofResource
LockResource
LoadResource
FindResourceExW
Sleep
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleA
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
InterlockedExchange
GetLocaleInfoW

comctl32

ord345
ImageList_CoCreateInstance
ord344

shlwapi

ord219
SHGetValueW

ole32

CoInitialize
CoUninitialize

imm32

ImmDisableIME

ntdll

WinSqmEndSession
WinSqmStartSession
WinSqmAddToStream

powrprof

PowerDeterminePlatformRole
GetPwrCapabilities

slc

SLGetWindowsInformationDWORD

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
EventUnregister
EventWrite
EventRegister

msvcrt

_controlfp
_except_handler4_common
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
qsort
_ftol2
_CIsin
_CIcos
memset
_vsnwprintf
??2@YAPAXI@Z
_purecall
??3@YAXPAX@Z
strtok
_stricmp

gdi32

SetBkColor
DeleteObject
FillRgn
CreateFontIndirectW
SetTextColor
GetDeviceCaps
FrameRgn
CreateRectRgnIndirect
SelectObject
GetTextExtentPoint32W
CreateDIBSection
CreateRoundRectRgn
GetObjectW

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 473KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

885aeb60c3202e4dc3fd608c710bd8d4

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

comctl32

shlwapi

ole32

imm32

ntdll

powrprof

slc

advapi32

msvcrt

gdi32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 473KB - Virtual size: 472KB

.reloc Size: 30KB - Virtual size: 31KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 473KB - Virtual size: 472KB

.reloc
Size: 30KB - Virtual size: 31KB