0f1427c414a8a32d99ad9fdf83dbb7ad3401dcf61c4e46f99265abb6a7c0e435

Sharing

Copy URL Twitter E-mail

General

Target

0f1427c414a8a32d99ad9fdf83dbb7ad3401dcf61c4e46f99265abb6a7c0e435
Size

323KB
MD5

0e86fe63495830e16fc67ef0834ed0a0
SHA1

8ca9765edf206ff93b98ed2aa65829ffd180a159
SHA256

0f1427c414a8a32d99ad9fdf83dbb7ad3401dcf61c4e46f99265abb6a7c0e435
SHA512

27fb71c0164b44af40c83f1ee1aa7db0958992d9a6761ba69963d3a6d4282aea2402a09f35ad0a345be4f86cd9eac8cf97cce3df131c9c13e2159549d626d640
SSDEEP

6144:8po1mrFe9RTT2twZ5ULDcciV6zTAQ1crA21z+WGrZFtsLPaH:8poBv2twbQ200NG5ss

Score

N/A

Malware Config

Signatures

Files

0f1427c414a8a32d99ad9fdf83dbb7ad3401dcf61c4e46f99265abb6a7c0e435
.exe windows x86

39115727c11d619108fbb4ad84a0ad45

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
DrawTextW
SetWindowLongA
SystemParametersInfoA
IntersectRect
OffsetRect
IsIconic
DrawTextExW
LoadCursorW
EqualRect
DestroyWindow
FillRect
InflateRect
GetCursorPos
ReleaseDC
GetSystemMetrics
SendMessageA
InvalidateRect
ExitWindowsEx
SetForegroundWindow
DispatchMessageA
CreateWindowExA
CharPrevA
PostQuitMessage
GetWindowPlacement
DrawFrameControl
MessageBoxA
SetFocus
PeekMessageA
wsprintfA
RegisterClipboardFormatW
GetWindowRect
RegisterClassExA
GetWindowLongA
GetClipboardData
FindWindowExW
EndPaint
ScreenToClient
CharUpperA
SetWindowRgn
GetIconInfo
SendMessageW
BeginPaint
ClientToScreen
LoadIconA
GetDC
PostMessageA
MessageBoxW
TranslateMessage

winmm

timeGetTime

gdi32

GetDCOrgEx
LPtoDP
Pie
CreatePolygonRgn
GetDIBColorTable
GetTextExtentPoint32W
SetGraphicsMode
Polyline
Polygon
SetTextColor
SelectClipRgn
SetTextCharacterExtra
SaveDC
CreateRectRgn
DeleteObject
SetROP2
GetClipBox
GetNearestPaletteIndex
GetTextCharacterExtra
GetDeviceCaps
MoveToEx
EndPath
GetClipRgn
GetDIBits
GetBkColor
SelectObject
RestoreDC
ArcTo
GetStockObject
PatBlt
SelectClipPath
DeleteDC
SetBkColor
GetPaletteEntries
WidenPath
RoundRect
SetStretchBltMode
GetTextAlign
CreateSolidBrush
TextOutW
ResizePalette
LineTo
GetObjectW
StretchDIBits
CreateRoundRectRgn
SetBkMode
SelectPalette
CreateDIBSection
Rectangle
GetBkMode
BeginPath
GetMapMode
CreateBitmap
BitBlt
SetTextAlign
Arc
CreateCompatibleBitmap
MaskBlt
GetTextExtentExPointW
ExtCreatePen
ExtSelectClipRgn
StrokeAndFillPath
CreateFontIndirectW
CreateEllipticRgnIndirect
StretchBlt
StrokePath
RealizePalette
SetArcDirection
PtVisible
CreateCompatibleDC
GdiFlush
CreateDIBitmap
CreatePalette
Ellipse
CreateHalftonePalette
SetPixel

kernel32

lstrcpynA
GetCurrentThreadId
GetACP
HeapReAlloc
QueryPerformanceFrequency
GlobalAlloc
GetSystemTime
GetThreadLocale
GetSystemInfo
ReleaseMutex
GetModuleHandleA
CreateThread
GetLocalTime
WideCharToMultiByte
SystemTimeToFileTime
EnterCriticalSection
LoadLibraryExA
GetProcessHeap
MulDiv
CreateEventA
OpenEventA
DeleteCriticalSection
GlobalUnlock
FindResourceW
GetCommandLineW
CloseHandle
FreeLibrary
HeapFree
GlobalLock
LocalFree
GetCurrentDirectoryA
DeleteFileA
GlobalHandle
WaitForSingleObject
GlobalFree
GlobalSize
GetTimeFormatA
LeaveCriticalSection
lstrlenA
FormatMessageA
OpenMutexA
GetShortPathNameA
HeapAlloc
GetDateFormatA
CreateMutexA
FormatMessageW
lstrcmpiA
SetErrorMode
QueryPerformanceCounter
VirtualAlloc

ole32

CoCreateInstance
CoInitializeEx
CreateStreamOnHGlobal
CoUninitialize
IsEqualGUID

shell32

SHGetFileInfoW
ShellExecuteW

shlwapi

PathRemoveFileSpecA

oleaut32

SysAllocStringByteLen
SysFreeString
OleLoadPicture

comctl32

ImageList_GetIconSize
ImageList_Draw

advapi32

RevertToSelf
RegSetValueExA
RegOpenKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegQueryValueExA
ImpersonateSelf

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

iphlpapi

GetTcpTable
GetUdpTable
IpRenewAddress
NhpAllocateAndGetInterfaceInfoFromStack
GetFriendlyIfIndex
SendARP
GetNetworkParams
AllocateAndGetIpAddrTableFromStack

ipsecsnp

DllCanUnloadNow

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 299KB - Virtual size: 638KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39115727c11d619108fbb4ad84a0ad45

Headers

File Characteristics

Imports

user32

winmm

gdi32

kernel32

ole32

shell32

shlwapi

oleaut32

comctl32

advapi32

version

iphlpapi

ipsecsnp

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 299KB - Virtual size: 638KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 299KB - Virtual size: 638KB

.rsrc
Size: 512B - Virtual size: 4KB