28d2c4e7e7c161092ef282638cb1d6b4fb6bce7eff08e924c3517742a1c95595

Sharing

Copy URL Twitter E-mail

General

Target

28d2c4e7e7c161092ef282638cb1d6b4fb6bce7eff08e924c3517742a1c95595
Size

416KB
MD5

01c5807b855d2106106b30ff4ce0e521
SHA1

38a9c8b55465f5f1dc5054614d79c2992787f5d5
SHA256

28d2c4e7e7c161092ef282638cb1d6b4fb6bce7eff08e924c3517742a1c95595
SHA512

210982bea57de15e0628f77ef3001b63f4db9c0a95e4eb3d0af8523a766c6b64d2c3fdc85dcd80092e6292726c5ed85ec7cfc5c9d6f9fcee96a2aabb31c4adf8
SSDEEP

6144:J5bDf1LN+NG2sG7m8Gw0+VB6tLZkGk0SFke7U1iyg:HbD9Le7sGqzmF50SvUxg

Score

N/A

Malware Config

Signatures

Files

28d2c4e7e7c161092ef282638cb1d6b4fb6bce7eff08e924c3517742a1c95595
.exe windows x86

030e9a7338623ad714129e35c24ec8ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderPathW

kernel32

GetTimeFormatA
QueryPerformanceCounter
SetLastError
VirtualAlloc
GetLocaleInfoW
CreateMutexA
InterlockedDecrement
GetSystemInfo
HeapFree
GetFileAttributesExA
GetCurrentThreadId
VirtualFree
RtlUnwind
WriteConsoleInputW
LeaveCriticalSection
GetCommandLineA
LCMapStringW
WriteFile
GetLocaleInfoA
ReadFile
CreateProcessW
HeapAlloc
IsBadWritePtr
GetTimeZoneInformation
WriteProfileSectionW
ExitProcess
GetCPInfo
LCMapStringA
CloseHandle
EnterCriticalSection
TlsGetValue
VirtualProtect
HeapDestroy
GetFileTime
TlsFree
HeapReAlloc
IsValidLocale
GetCurrentThread
GetUserDefaultLCID
TlsSetValue
SetFilePointer
TerminateProcess
HeapCreate
GetStartupInfoA
SetEvent
CompareStringA
SetStdHandle
IsValidCodePage
GetEnvironmentStringsW
IsBadReadPtr
GetEnvironmentStrings
GetNamedPipeInfo
GetCurrentProcess
SetConsoleCtrlHandler
OutputDebugStringA
SetEnvironmentVariableA
GetVersionExA
GetStringTypeW
InitializeCriticalSection
SetHandleCount
GetStringTypeA
InterlockedIncrement
EnumSystemLocalesA
WriteConsoleOutputW
MultiByteToWideChar
InterlockedExchange
GetSystemTimeAsFileTime
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetFileType
GetOEMCP
HeapValidate
VirtualQuery
GetLastError
DebugBreak
TlsAlloc
GetCurrentProcessId
FlushFileBuffers
DeleteCriticalSection
GetStdHandle
OpenMutexA
UnhandledExceptionFilter
WideCharToMultiByte
FreeEnvironmentStringsW
CompareStringW
FreeEnvironmentStringsA
GetModuleFileNameA
GetACP
GetTickCount
GetDateFormatA

comctl32

ImageList_Create
ImageList_Remove
InitCommonControlsEx
CreateStatusWindowA
ImageList_LoadImageA
ImageList_Copy
ImageList_AddIcon
GetEffectiveClientRect
ImageList_Write
ImageList_SetImageCount
ImageList_GetImageInfo
CreatePropertySheetPageA
ImageList_GetBkColor
ImageList_SetDragCursorImage
ImageList_Destroy
DrawStatusTextW
_TrackMouseEvent
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_LoadImage
ImageList_Draw
ImageList_DragShowNolock
ImageList_SetFilter
ImageList_SetFlags

gdi32

CreateFontA
TextOutA
GdiGetBatchLimit
GetPaletteEntries
StartDocA
GetKerningPairsA
SetAbortProc
AnimatePalette
GetTextFaceW
GetFontData
GetCharWidth32W
OffsetClipRgn
CreateMetaFileW
ExtCreatePen
SetMetaRgn
GetTextExtentPointW
GetRgnBox
GetViewportExtEx
FillPath
PlgBlt
Chord
GetBrushOrgEx

user32

CreateDialogParamA
GetClassInfoW
LoadBitmapW
LoadIconW
EnumWindowStationsW
DdeImpersonateClient
MsgWaitForMultipleObjects
SetWindowContextHelpId
SetMenu
RegisterClassA
GetActiveWindow
GetClipboardSequenceNumber
OemToCharBuffW
TranslateMessage
GetThreadDesktop
BringWindowToTop
SetRect
LoadStringW
SetWindowWord
GetDlgItemTextW
TrackPopupMenu
GetMenuItemInfoW
CloseWindowStation
EndDeferWindowPos
DefWindowProcA
IsWindowVisible
ShowWindow
SetCursor
OemKeyScan
CloseClipboard
CreateIcon
SetWindowPlacement
SendMessageTimeoutA
DestroyWindow
GetKeyNameTextW
DefFrameProcW
RegisterClassExA
MessageBoxIndirectW
AnyPopup
SetMenuInfo
CreateWindowExW
DestroyCursor
SetKeyboardState
DestroyAcceleratorTable
PostQuitMessage
DdeFreeStringHandle
MessageBoxW
GetWindowModuleFileNameA
GetNextDlgGroupItem
GetForegroundWindow

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

030e9a7338623ad714129e35c24ec8ad

Headers

File Characteristics

Imports

shell32

kernel32

comctl32

gdi32

user32

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 96KB - Virtual size: 114KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 96KB - Virtual size: 114KB

.rsrc
Size: 44KB - Virtual size: 40KB