d5fa714976266b9f574d1c9599f7c41bd841b337e112c0919ee0fd50fbd0aeeb

Sharing

Copy URL Twitter E-mail

General

Target

d5fa714976266b9f574d1c9599f7c41bd841b337e112c0919ee0fd50fbd0aeeb
Size

541KB
MD5

0527744059fe933776fd1db0b9f89563
SHA1

a2f055e81f1520677ed75cb5c74158a7faa45e25
SHA256

d5fa714976266b9f574d1c9599f7c41bd841b337e112c0919ee0fd50fbd0aeeb
SHA512

607be902b6e27daf469dfbc084d2e1692e9fc484b263d23c715ba10f99cb3246085fdf4ee0a4bd0bcda727e561ba1bd5164a6edbb2b22f8d0abbf39b940df1c4
SSDEEP

12288:9+BbUu4trl1lh/goEt1zKsFfDjm/cY/B2LV+m0f+G:64hlhTEtFKsFfDjmEmBO+m0G

Score

N/A

Malware Config

Signatures

Files

d5fa714976266b9f574d1c9599f7c41bd841b337e112c0919ee0fd50fbd0aeeb
.exe windows x86

65f5cc7f21435fd0981fd4d58a98f342

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetWindowsDirectoryA
GetShortPathNameW
GetExitCodeProcess
WaitForSingleObject
Sleep
SizeofResource
LockResource
LoadResource
FindResourceA
GetUserDefaultLCID
GetCPInfo
GetSystemTime
SetErrorMode
GlobalSize
GlobalFlags
GetTickCount
WideCharToMultiByte
GetProfileIntA
FormatMessageA
MoveFileA
DeleteFileA
CompareStringW
CompareStringA
SetConsoleCtrlHandler
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
WriteProfileStringA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlushFileBuffers
GetOEMCP
GetACP
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapSize
LCMapStringW
LCMapStringA
GetVersion
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetTimeZoneInformation
HeapReAlloc
RaiseException
HeapAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameA
RemoveDirectoryA
CreateDirectoryA
TerminateProcess
HeapFree
RtlUnwind
GetModuleHandleA
GetThreadSelectorEntry
ReadProcessMemory
FindNextFileA
MultiByteToWideChar
FindFirstFileA
FindClose
GetDriveTypeA
SystemTimeToFileTime
LocalFileTimeToFileTime
GetTempFileNameA
SetFileTime
GetFileAttributesA
CopyFileA
GetDiskFreeSpaceA
SetCurrentDirectoryA
WritePrivateProfileStringA
ReadFile
MoveFileExA
GetShortPathNameA
GetFileSize
SetEnvironmentVariableA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetFilePointer
SetEndOfFile
SetFileAttributesA
GlobalReAlloc
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalFree
GetVersionExA
CreateFileA
lstrcpyA
WriteFile
CreateProcessA
SetThreadPriority
GetCurrentThread
SetPriorityClass
ResumeThread
GetProfileStringA
GetCurrentDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
OpenFile
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
CloseHandle
GetTempPathA
OutputDebugStringA
DebugBreak
ExitProcess
lstrlenA
GetLocaleInfoA
GetLocaleInfoW
GetLastError
GetEnvironmentStrings
GetModuleFileNameA

user32

IsDlgButtonChecked
CheckDlgButton
SetTimer
GetMessageA
KillTimer
ExitWindowsEx
GetClassNameA
SendMessageTimeoutA
DefWindowProcA
OemToCharA
LoadIconA
RegisterClassA
CreateWindowExA
RegisterWindowMessageA
EnableWindow
CheckRadioButton
UpdateWindow
GetSysColor
IsWindowEnabled
FillRect
LoadStringA
SetDlgItemTextA
ShowWindow
GetDlgItem
SendMessageA
SetWindowTextA
DialogBoxParamA
SendDlgItemMessageA
SetFocus
EndDialog
wsprintfA
MapWindowPoints
GetWindowRect
MoveWindow
OffsetRect
GetClientRect
SetWindowPos
GetWindowTextA
PeekMessageA
MessageBoxA
CharLowerA
GetFocus
GetWindowTextLengthA
EnumChildWindows
SystemParametersInfoA
GetParent
CharToOemA
WaitForInputIdle
FindWindowA
EnumThreadWindows
EnumWindows
SetForegroundWindow
ReleaseCapture
LoadCursorA
SetCapture
SetCursor
CharNextA
CharPrevA
PostMessageA
GetPropA
SetPropA
GetDC
ReleaseDC
MessageBeep
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
CreateDialogParamA
LoadBitmapA

gdi32

SetMapMode
SetBkColor
DeleteObject
SelectObject
GetObjectA
DPtoLP
GetMapMode
GetRasterizerCaps
CreateCompatibleDC
GetDeviceCaps
DeleteDC
RemoveFontResourceA
AddFontResourceA
CreateCompatibleBitmap
CreateBitmap
GetPixel
EnumFontFamiliesExA
GetTextMetricsA
GetTextFaceA
CreateFontA
CreateFontIndirectA
GetStockObject
TextOutA
SetTextColor
SetBkMode
SetTextAlign
GetTextExtentPoint32A
CreateRectRgn
Rectangle
CreatePen
CreateSolidBrush
GetTextExtentPointA
SelectClipRgn
BitBlt
SetRectRgn

comdlg32

GetOpenFileNameA
CommDlgExtendedError

advapi32

RegQueryValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyA
RegSetValueA
RegQueryInfoKeyA
RegDeleteValueA
RegEnumValueA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
IsValidSecurityDescriptor
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegEnumKeyA

shell32

SHGetPathFromIDListA
ShellExecuteA
SHGetDesktopFolder
SHFileOperationA
SHGetMalloc
SHChangeNotify

ole32

CLSIDFromString
StringFromCLSID
CLSIDFromProgID
OleSetAutoConvert
OleGetAutoConvert
OleRegGetUserType
CoInitialize
CoCreateInstance
CoUninitialize
OleInitialize
OleUninitialize

version

VerInstallFileA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerFindFileA
VerQueryValueA

lz32

GetExpandedNameA
LZClose
LZOpenFileA

wininet

InternetOpenUrlA
InternetOpenA
InternetCloseHandle

Sections

.text
Size: 292KB - Virtual size: 291KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 60KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

65f5cc7f21435fd0981fd4d58a98f342

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

version

lz32

wininet

Sections

.text Size: 292KB - Virtual size: 291KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 60KB - Virtual size: 67KB

.rsrc Size: 144KB - Virtual size: 144KB

.text
Size: 292KB - Virtual size: 291KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 60KB - Virtual size: 67KB

.rsrc
Size: 144KB - Virtual size: 144KB