f358c5d3f9cc4effad1a06e8de82f8f5c79dd0933461fe445e9bd21fc11d44c2

Sharing

Copy URL Twitter E-mail

General

Target

f358c5d3f9cc4effad1a06e8de82f8f5c79dd0933461fe445e9bd21fc11d44c2
Size

857KB
MD5

019f821a0dc307878318044617b31252
SHA1

426ffdcdbf923d307e237896c690da983c26d94d
SHA256

f358c5d3f9cc4effad1a06e8de82f8f5c79dd0933461fe445e9bd21fc11d44c2
SHA512

7964d1f86e6a6a8248ec92300ac4447e48d83e283e616daf3b5780f0e0e41a6be8ebe4b67e5c156779cce99adb119d2bab0a2cb14db7f07f1e28d92ef68d13e2
SSDEEP

24576:Lf7P4oor6PhsbsQNmxHQSnS4kwBeAF2MceXr:LfUXrmh8saYb7Z

Score

N/A

Malware Config

Signatures

Files

f358c5d3f9cc4effad1a06e8de82f8f5c79dd0933461fe445e9bd21fc11d44c2
.exe windows x86

3d42cbde25ca07c2752f97ccf3402099

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetStockObject
SetTextColor
SelectObject
SetBkColor
DeleteObject
SetBkMode

advapi32

RegCreateKeyExA
OpenProcessToken
RegDeleteKeyA
RegCloseKey

oleaut32

SysAllocString
SysFreeString
SysAllocStringLen
SysStringLen
VariantClear

kernel32

GetStdHandle
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
GetLastError
GetModuleHandleA
GetTickCount
GetCommandLineA
GetCurrentThread
GetCurrentThreadId
GetCurrentProcessId
GetVersion
ExitProcess
VirtualAlloc
FindResourceA
Sleep
VirtualFree
FindResourceW
UnmapViewOfFile
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
SetStdHandle
InterlockedExchange
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
LoadLibraryExW
ReadFile
TlsFree
MapViewOfFile
CompareStringA
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCommandLineW
LockResource
SizeofResource
CreateProcessW
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
LCMapStringW
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
DuplicateHandle
FindFirstFileW
ResetEvent
lstrcpyA
FindFirstFileA
lstrcmpA
WriteFile
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetEvent
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
HeapCreate
LeaveCriticalSection
SetEndOfFile
GetConsoleMode
VirtualQuery
WriteConsoleA
SetUnhandledExceptionFilter
TerminateProcess
GetSystemDirectoryA
CreateThread
SetFilePointer
CreateMutexA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
LocalFree
GetOEMCP
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
GetStringTypeA
lstrcmpiA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy

user32

SetCursor
CallWindowProcA
SetWindowTextA
IsWindowVisible
SystemParametersInfoA
GetSysColor
MessageBoxA
GetFocus
GetDesktopWindow
TrackPopupMenu
LoadIconA
ScreenToClient
GetDlgItem
SetWindowLongA
ReleaseCapture
SetCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
BeginPaint
SetFocus
EndPaint
CreateWindowExA
GetWindowLongA
RegisterClassA
SetForegroundWindow
LoadStringA
IsWindowEnabled
TranslateMessage
EnableWindow
UpdateWindow
DestroyWindow
GetClientRect
SendMessageA
ReleaseDC
GetCursorPos
GetDC
DispatchMessageA
SetWindowPos
PostQuitMessage
DestroyMenu

Sections

.text
Size: 828KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d42cbde25ca07c2752f97ccf3402099

Headers

File Characteristics

Imports

gdi32

advapi32

oleaut32

kernel32

user32

Sections

.text Size: 828KB - Virtual size: 1.1MB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 11KB - Virtual size: 10KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 828KB - Virtual size: 1.1MB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 10KB - Virtual size: 9KB