7af2cbc1dde7f39d5cb773dd34ac8b1a5e81ddcc099839d94b4a7afb8b43a77f

Sharing

Copy URL Twitter E-mail

General

Target

7af2cbc1dde7f39d5cb773dd34ac8b1a5e81ddcc099839d94b4a7afb8b43a77f
Size

168KB
MD5

07a54b9127faecaaf60ebba7ea06d70e
SHA1

47df9ab8dfd4d62dfa45bb55fdfd03ce23b760e9
SHA256

7af2cbc1dde7f39d5cb773dd34ac8b1a5e81ddcc099839d94b4a7afb8b43a77f
SHA512

04df48c5d230dbf0bc8aa4189f910d72a68fa55e19a5b83d254486d081c6a139d4b21383c26e2138acfed96e088a2593d77db1f4e6c0ce9008cbbf05d4cc7137
SSDEEP

3072:rmNxYWvKLHRZeBeZ3QYW5MvL3jffILW9GLxEPSrLuZusaOwW:rGYWv275Z3QYUQzoiMxEPAuZDbw

Score

N/A

Malware Config

Signatures

Files

7af2cbc1dde7f39d5cb773dd34ac8b1a5e81ddcc099839d94b4a7afb8b43a77f
.exe windows x86

6a23974fc7cc19f4f39409624fe6b04c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFileEx
HeapDestroy
CompareStringW
RegisterWaitForSingleObject
GlobalUnlock
GetSystemInfo
SizeofResource
CloseHandle
FreeLibrary
DeleteFileA
DeleteFileW
SetFilePointer
GetFileAttributesA
LoadResource
InterlockedExchange
GlobalFree
lstrlenW
SetErrorMode
GetThreadLocale
CreateEventW
GetFileAttributesW
GlobalAlloc
GetVersionExA
FormatMessageW
CreateEventA
TryEnterCriticalSection
LockResource
CompareStringA
WaitForSingleObject
SetStdHandle
WaitForMultipleObjectsEx
GlobalLock
SleepEx
WaitForSingleObjectEx
FormatMessageA
GetModuleHandleA
VirtualAlloc
GetTickCount
IsDebuggerPresent
lstrlenA
GetEnvironmentStringsW
GetStartupInfoA

user32

PostMessageW
GetMenuStringW
PtInRect
AllowSetForegroundWindow
DestroyIcon
DefWindowProcW
LoadIconA
RegisterClassW
SetActiveWindow
GetMenu
TrackPopupMenu
DestroyMenu
SetWindowLongW
ShowWindowAsync
OffsetRect
ReleaseCapture
AdjustWindowRectEx
DrawFocusRect
MessageBeep
MoveWindow
GetKeyState
DestroyWindow
CreateWindowExA
SetMenuItemInfoA
GetMenuItemCount
ClientToScreen
GetActiveWindow
CheckMenuItem
CreateWindowExW
SetWindowTextW
SendMessageW
ReleaseDC
GetSubMenu
InflateRect
GetCursorPos
GetClientRect
SetCapture
UnregisterClassA
SetWindowPos
LoadStringW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoUninitialize

advapi32

AllocateAndInitializeSid
LookupAccountSidA
GetTokenInformation
SetSecurityDescriptorDacl
RegDeleteKeyA
QueryServiceStatus
IsValidSid
OpenThreadToken
RegCloseKey
GetSecurityDescriptorDacl
RegCreateKeyExA
RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
GetSidIdentifierAuthority
CheckTokenMembership
RegCreateKeyW

shell32

SHBindToParent

msvcrt

__set_app_type
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
__p__fmode
_controlfp
__dllonexit
_onexit

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a23974fc7cc19f4f39409624fe6b04c

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

shell32

msvcrt

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 132KB - Virtual size: 237KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 132KB - Virtual size: 237KB

.rsrc
Size: 20KB - Virtual size: 19KB