cc176a6aa271530e80418412a0c302cc399ef65e78ada2207986bf62088352e7

Sharing

Copy URL Twitter E-mail

General

Target

cc176a6aa271530e80418412a0c302cc399ef65e78ada2207986bf62088352e7
Size

182KB
MD5

ec98ab3a97c265ca0a4204a7fa0187ce
SHA1

eda70ec2405fe0e8affd2297245da939b5477129
SHA256

cc176a6aa271530e80418412a0c302cc399ef65e78ada2207986bf62088352e7
SHA512

8a1fac237ce7ba8789db01cecbc177db3f4079dee5f08e39979f2b30554ba919137a3a378851b961aa8b95b4d554a1e73f8bb73e81f11c614f227acf05e23b8a
SSDEEP

3072:O5jS6nRizwh4Gv+kncQHAaYX0+TyP/Sy0cRFYyqH6gbCAs:OtMU/vTncQH1UyPlbFYP6gg

Score

N/A

Malware Config

Signatures

Files

cc176a6aa271530e80418412a0c302cc399ef65e78ada2207986bf62088352e7
.exe windows x86

0121451f61731b76944cdc1515aaf0da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumDisplaySettingsW
WaitForInputIdle
GetClassLongW
GetUpdateRgn
GetUpdateRect
IntersectRect
ValidateRect
GetScrollInfo
SetScrollInfo
ScrollWindowEx
IsWindowEnabled
GetDlgCtrlID
PeekMessageW
MsgWaitForMultipleObjects
CheckRadioButton
SetUserObjectSecurity
GetUserObjectSecurity
GetDesktopWindow
GetWindow
SendMessageTimeoutW
ExitWindowsEx
LoadAcceleratorsW
GetMessageW
TranslateAcceleratorW
IsDialogMessageW
TranslateMessage
DispatchMessageW
CreateDialogParamW
GetDlgItemTextW
RemoveMenu
DrawMenuBar
PostQuitMessage
DrawIconEx
TrackPopupMenu
IsWindow
GetCapture
ReleaseCapture
SetCapture
DrawEdge
RegisterWindowMessageW
LoadMenuW
InsertMenuW
CheckMenuItem
CreateMenu
CheckMenuRadioItem
RedrawWindow
ShowWindowAsync
SetForegroundWindow
FindWindowExW
IsIconic
GetWindowDC
SetMenuItemInfoW
DeleteMenu
CheckDlgButton
IsDlgButtonChecked
InvalidateRgn
FillRect
EnumWindows
GetWindowThreadProcessId
GetWindowTextW
ModifyMenuW
SystemParametersInfoW
CreatePopupMenu
AppendMenuW
TrackPopupMenuEx
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenu
EnableMenuItem
DestroyIcon
SetClassLongW
SetFocus
SetTimer
WindowFromPoint
KillTimer
GetWindowPlacement
LoadStringW
FindWindowW
LoadIconW
LoadImageW
RegisterClassExW
RegisterClassW
SetWindowPlacement
UpdateWindow
InflateRect
SetWindowTextW
DialogBoxIndirectParamW
DefDlgProcW
DialogBoxParamW
SetCursor
InvalidateRect
ChildWindowFromPoint
GetSysColor
GetSysColorBrush
DefFrameProcW
DefMDIChildProcW
FrameRect
GetDC
DrawTextW
ClientToScreen
ReleaseDC
CreateIconIndirect
MapWindowPoints
DestroyWindow
CreateWindowExW
IsWindowVisible
GetFocus
GetPropW
ScreenToClient
GetClassNameW
DeferWindowPos
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
OffsetRect
UnionRect
IsZoomed
GetSystemMetrics
PtInRect
BeginPaint
DrawFrameControl
EndPaint
SetPropW
CallWindowProcW
DefWindowProcW
GetClientRect
CopyRect
GetWindowLongW
GetParent
ShowWindow
SetWindowLongW
GetKeyState
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetCursorPos
SetWindowPos
PostMessageW
SendMessageW
MessageBoxW
EndDialog
GetDlgItem
GetWindowRect
MoveWindow
SetDlgItemTextW
LoadCursorW
EnableWindow

kernel32

GetThreadPriority
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
IsProcessorFeaturePresent
EncodePointer
HeapSetInformation
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
DuplicateHandle
GetCurrentDirectoryW
DeviceIoControl
GetDriveTypeW
VirtualFree
VirtualAlloc
GetFileTime
GetExitCodeThread
WideCharToMultiByte
FindNextFileW
GlobalAddAtomW
GetSystemInfo
Process32NextW
Process32FirstW
GetWindowsDirectoryW
WriteFile
FormatMessageW
GetFullPathNameW
GetFileSize
ExitThread
TlsAlloc
GetPrivateProfileStringW
ExpandEnvironmentStringsA
LoadLibraryA
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
GetStartupInfoA
SetHandleCount
LCMapStringA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetModuleHandleA
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TlsFree
GetModuleFileNameA
ExitProcess
HeapCreate
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateThread
RtlUnwind
RaiseException
HeapSize
HeapReAlloc
HeapDestroy
lstrlenA
SetProcessWorkingSetSize
FindFirstFileW
FindClose
TerminateProcess
GetComputerNameW
GetLocaleInfoW
SetErrorMode
WaitForMultipleObjects
GetTickCount
GlobalMemoryStatus
PulseEvent
MapViewOfFile
IsBadReadPtr
UnmapViewOfFile
QueryPerformanceCounter
QueryPerformanceFrequency
GetVersionExW
Thread32First
Thread32Next
GetThreadContext
LoadLibraryExW
ResumeThread
SuspendThread
OpenThread
SetEnvironmentVariableW
DeleteFileW
GetCurrentThread
SetThreadAffinityMask
Sleep
GetSystemDirectoryW
GetNumberFormatW
ReadFile
SetFilePointer
VirtualQueryEx
GetFileAttributesW
SearchPathW
ExpandEnvironmentStringsW
MultiByteToWideChar
lstrcmpiW
lstrcmpW
GetDateFormatW
ReadProcessMemory
HeapAlloc
HeapFree
GetEnvironmentVariableW
CreateEventW
OpenEventW
SetLastError
CreateFileW
GetCurrentProcess
IsBadStringPtrW
lstrlenW
GetSystemTimeAsFileTime
DeleteCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTimeFormatW
GetSystemTime
SystemTimeToFileTime
FreeLibrary
GetProcAddress
LoadLibraryW
WaitForSingleObject
TerminateThread
CreateToolhelp32Snapshot
Module32FirstW
Module32NextW
GetModuleHandleW
GlobalReAlloc
GlobalLock
GlobalAlloc
SetEvent
FindResourceExW
LoadResource
SizeofResource
FindResourceW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateProcessW
CloseHandle
LocalFree
LocalAlloc
GetThreadSelectorEntry
GetCommandLineW
GetCurrentProcessId
GetProcessId
GetLogicalDrives
EncodeSystemPointer
FreeEnvironmentStringsW
FindNextChangeNotification
InitAtomTable
GetProcessTimes
OpenProcess
FlushFileBuffers
FlushInstructionCache
GetExitCodeProcess
DeleteAtom
GetCommModemStatus
TlsGetValue
GetStdHandle
GetNumaNodeProcessorMask
GetCurrentThreadId
GetModuleFileNameW
CreateTapePartition
CreateFiber
GetProcessHeap
LocalCompact
SetHandleInformation
PeekNamedPipe
GetProcessPriorityBoost
ReadFileScatter
GetFileType
GetAtomNameW
GetVersion
GetComputerNameExW
TransmitCommChar
MapUserPhysicalPagesScatter
PostQueuedCompletionStatus
CancelDeviceWakeupRequest
DeactivateActCtx
LockResource
SetMessageWaitingIndicator
GetProcessHandleCount
IsProcessInJob
GlobalCompact
ConvertFiberToThread
GlobalUnWire
GetCommMask
SetPriorityClass
CreateIoCompletionPort
GetEnvironmentStringsW
RequestDeviceWakeup
SetStdHandle
GetTapeParameters
GetProcessWorkingSetSize
MulDiv
ClearCommError
GetDevicePowerState
GetLastError
DecodePointer
GlobalUnlock
GetProcessAffinityMask
GetMailslotInfo
FlushViewOfFile
GetWriteWatch
GetNamedPipeInfo
DisableThreadLibraryCalls
FreeResource
FreeUserPhysicalPages
GetFileSizeEx
FreeEnvironmentStringsA
EscapeCommFunction
TlsSetValue
GetProcessIoCounters
ConvertThreadToFiber
SetTapeParameters
GlobalDeleteAtom
SetProcessPriorityBoost
GetEnvironmentStrings
ReplaceFileA
GetPriorityClass
GetNamedPipeHandleStateA
ReleaseMutex
SetTapePosition
GetThreadIOPendingFlag
SetFileApisToANSI
ResetEvent
SetCommState
RemoveVectoredExceptionHandler
SetCommBreak
CreateFileMappingW
GetThreadTimes
LocalShrink
GetTapeStatus
FormatMessageA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
CreateFileA
GetTimeZoneInformation
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0121451f61731b76944cdc1515aaf0da

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 3.5MB

.rsrc Size: 48KB - Virtual size: 48KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 3.5MB

.rsrc
Size: 48KB - Virtual size: 48KB