161632f0c8a81ebc45689d5fa85e54fa1674d2d6ec086924a4700a4a8e9bdf49

Sharing

Copy URL Twitter E-mail

General

Target

161632f0c8a81ebc45689d5fa85e54fa1674d2d6ec086924a4700a4a8e9bdf49
Size

188KB
MD5

36d55818a333292ea34b48ffe30f34c0
SHA1

6f9de557c33671861b7e055c727f8a3d475d191b
SHA256

161632f0c8a81ebc45689d5fa85e54fa1674d2d6ec086924a4700a4a8e9bdf49
SHA512

73c9126b6f358550d2c2a77007bce0e638632db5fa291e397e04e109056e10102acbe1397cb690dc529dbcc35ad95a737f14e1254d7a197605b7c3e657af43a5
SSDEEP

3072:gXR9BcI6G7gdPVgk+bdPq0Jlwb/gEAqtoKtFSM9A6x6v:q6G7QP+lhib4DbKHSbp

Score

N/A

Malware Config

Signatures

Files

161632f0c8a81ebc45689d5fa85e54fa1674d2d6ec086924a4700a4a8e9bdf49
.exe windows x86

7bbab81678fec78ee55bec84dc7d4e98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

hccutils

LoadSTRING
InitializeKeyHook
FindResources
LoadSTRINGFromHKCU

kernel32

GetModuleHandleA
CreateProcessA
FreeLibrary
LoadLibraryA
GetVersionExA
CloseHandle
GetLastError
InterlockedDecrement
SearchPathA
CompareFileTime
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
RaiseException
InitializeCriticalSection
DeleteCriticalSection
lstrlenA
lstrcmpiA
InterlockedIncrement
GetModuleFileNameA
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetWindowsDirectoryA
Sleep
CreateMutexA
GetCurrentThreadId
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
GetProcAddress
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetStdHandle
WriteFile
HeapCreate
HeapDestroy
ExitProcess
LCMapStringW
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetCPInfo
GetStartupInfoA
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualProtect
CompareStringA
CompareStringW
GetConsoleCP
SetEnvironmentVariableA
SetFilePointer
SetLastError
RtlUnwind
IsDebuggerPresent
FlushFileBuffers
SetUnhandledExceptionFilter
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
ReadFile
GetConsoleMode
UnhandledExceptionFilter
TerminateProcess
LocalFree
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale

user32

GetKeyboardLayout
MapVirtualKeyA
GetKeyNameTextA
LoadCursorA
GetClassInfoExA
SetWindowLongA
RegisterClassA
CreateWindowExA
GetMessageA
DispatchMessageA
PeekMessageA
RegisterClassExA
CreateDialogParamA
ShowWindow
PostQuitMessage
DefWindowProcA
RegisterHotKey
GetDlgItem
GetDesktopWindow
GetWindowRect
SetWindowTextA
SendMessageA
PostThreadMessageA
CharNextA
MessageBoxA
GetCursorPos
GetWindowLongA
EnumDisplaySettingsA
wsprintfA
UnregisterClassA
CallWindowProcA
DestroyWindow
UnregisterHotKey
IsWindow

advapi32

RegDeleteKeyA
RegQueryInfoKeyA
RegDeleteValueA
RegEnumKeyExA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteExA

ole32

CoRegisterClassObject
CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoSuspendClassObjects
StringFromGUID2
CoUninitialize
CoInitialize
CoRevokeClassObject
CoTaskMemAlloc

oleaut32

VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysStringLen
SysAllocString
SysFreeString
VariantClear

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7bbab81678fec78ee55bec84dc7d4e98

Headers

File Characteristics

Imports

hccutils

kernel32

user32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 116KB - Virtual size: 116KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 16KB - Virtual size: 22KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 116KB - Virtual size: 116KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 16KB - Virtual size: 22KB

.rsrc
Size: 32KB - Virtual size: 32KB