7c53c76b083fb1e5646c1ab3c9573be688d0e3f373225cf0675b17a0e6ce2e7c

Sharing

Copy URL Twitter E-mail

General

Target

7c53c76b083fb1e5646c1ab3c9573be688d0e3f373225cf0675b17a0e6ce2e7c
Size

413KB
MD5

0c4f77701388ba0de55847352ff851f0
SHA1

576f34ea43574fbcb5fa6c55b1770d309e545346
SHA256

7c53c76b083fb1e5646c1ab3c9573be688d0e3f373225cf0675b17a0e6ce2e7c
SHA512

69ef50c8a5988bf59b12a771c92f78d0e2147c50c5d61371366f45aa4f8569cf890f496129cb369e11f14db027ee2b17fd16209a52a431cb009249c2aeaf610c
SSDEEP

6144:fC/LbODQxgP+m/Cv/ERMYVlzUgI66uLnH4B8nZ4zytbL5:f1DccQ/Relgk7YCZ4zkN

Score

N/A

Malware Config

Signatures

Files

7c53c76b083fb1e5646c1ab3c9573be688d0e3f373225cf0675b17a0e6ce2e7c
.exe windows x64

4855e12264bce2471a6338d39ee1060f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiSetClassInstallParamsA
SetupDiChangeState
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

shlwapi

PathGetArgsA
PathRemoveArgsA
PathUnquoteSpacesA

kernel32

LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
WritePrivateProfileStringA
GetCurrentDirectoryA
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
VirtualProtect
VirtualAlloc
VirtualQuery
RtlUnwindEx
HeapFree
HeapAlloc
LocalAlloc
GetStartupInfoA
GetACP
RaiseException
RtlPcToFileHeader
ExitProcess
HeapReAlloc
HeapSize
LCMapStringA
LCMapStringW
Sleep
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapSetInformation
HeapCreate
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetLocaleInfoA
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
MulDiv
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
FreeLibrary
lstrcatA
GlobalUnlock
GlobalFree
FindResourceA
LoadResource
LockResource
FreeResource
GetCurrentThread
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
SetLastError
FindNextFileA
GetFullPathNameA
FindFirstFileA
FindClose
lstrcpyA
lstrcpynA
LoadLibraryA
WriteFile
DuplicateHandle
lstrcmpiA
GetThreadLocale
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
CreateThread
FormatMessageA
GetModuleHandleA
GetProcAddress
GetSystemInfo
GetCurrentProcess
GetLastError
LocalFree
GetWindowsDirectoryA
GetSystemDirectoryA
SetFileAttributesA
DeleteFileA
GetVersionExA
CreateFileA
CloseHandle
GetModuleFileNameA
GetCommandLineA
GetVolumeInformationA
GetProcessHeap

user32

GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
PostThreadMessageA
LoadCursorA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextA
TabbedTextOutA
LoadStringA
DestroyMenu
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
GetCapture
WinHelpA
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetWindowLongPtrA
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
SetWindowLongPtrA
GetTopWindow
GetForegroundWindow
SetForegroundWindow
MapWindowPoints
UpdateWindow
GetSysColor
CopyAcceleratorTableA
GetSubMenu
AdjustWindowRectEx
GetMenuItemID
GetMenuItemCount
GetClassInfoA
RegisterClassA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
OffsetRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
EndDialog
IsWindow
SetMenuItemBitmaps
GetFocus
GetNextDlgTabItem
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetActiveWindow
IsWindowVisible
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
ValidateRect
PeekMessageA
SetRect
CharNextA
GetSysColorBrush
PtInRect
GetClassNameA
GetCursorPos
MessageBoxA
GetWindowLongA
GetParent
GetLastActivePopup
IsWindowEnabled
SetCursor
PostQuitMessage
PostMessageA
CharUpperA
wsprintfA
GetSystemMetrics
LoadIconA
EnableWindow
GetClientRect
IsIconic
GetSystemMenu
SendMessageA
AppendMenuA
DrawIcon
GetDesktopWindow
GetMenu
UnregisterClassA

gdi32

GetDeviceCaps
ScaleViewportExtEx
GetBkColor
DPtoLP
LPtoDP
GetMapMode
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetStockObject
SelectObject
DeleteDC
Escape
ScaleWindowExtEx
SetWindowExtEx
SetMapMode
RestoreDC
SaveDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetTextColor
CreateBitmap
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
DeleteObject

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
GetNamedSecurityInfoA
BuildExplicitAccessWithNameA
SetEntriesInAclA
SetNamedSecurityInfoA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey

shell32

SHFileOperationA

comctl32

ord17

oledlg

ord8

ole32

OleInitialize
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoTaskMemAlloc
CoGetClassObject
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries

oleaut32

SysStringLen
SysAllocStringByteLen
SysFreeString
VariantChangeType
VariantCopy
SysAllocString
VariantTimeToSystemTime
VariantClear
OleCreateFontIndirect
SysAllocStringLen

Sections

.text
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4855e12264bce2471a6338d39ee1060f

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

Sections

.text Size: 199KB - Virtual size: 199KB

.rdata Size: 80KB - Virtual size: 80KB

.data Size: 10KB - Virtual size: 33KB

.pdata Size: 17KB - Virtual size: 17KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 199KB - Virtual size: 199KB

.rdata
Size: 80KB - Virtual size: 80KB

.data
Size: 10KB - Virtual size: 33KB

.pdata
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 12KB - Virtual size: 12KB