adc2d3822c9d77eef405d8736f02a8b7f5757b5b41fa67dc6ff6bd7ea4190905

Sharing

Copy URL Twitter E-mail

General

Target

adc2d3822c9d77eef405d8736f02a8b7f5757b5b41fa67dc6ff6bd7ea4190905
Size

400KB
MD5

296e12f48b85ef15e82b0ae7bdc5b750
SHA1

7170280cbd14ca57fe861a85d26a2b026bd1c874
SHA256

adc2d3822c9d77eef405d8736f02a8b7f5757b5b41fa67dc6ff6bd7ea4190905
SHA512

152a3e21e0ac54193be084224d44690fdd5f3987b0c756bf0a5dc593ff1732543fcdf54be0aefa7d93696438124b21024fc9f35d222d31fa4299b785a3667112
SSDEEP

12288:waPmHJNoanNPdzDNDtIso2gCc6jhG3MeStQGAh/4IjNz:WdnNFcsorCcItQGDIjNz

Score

N/A

Malware Config

Signatures

Files

adc2d3822c9d77eef405d8736f02a8b7f5757b5b41fa67dc6ff6bd7ea4190905
.exe windows x86

5e767efdda0ab30172c3403c8fe5057b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GlobalAlloc
GetModuleFileNameA
GetProcAddress
FindClose
GetDiskFreeSpaceA
FindFirstFileA
GetDriveTypeA
FindNextFileA
GetTempFileNameA
GetTempPathA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
_lclose
_llseek
_lread
OpenFile
DeleteFileA
TerminateProcess
OpenProcess
GetSystemDirectoryA
WideCharToMultiByte
MultiByteToWideChar
ReadFile
SetCurrentDirectoryA
GetFullPathNameA
GetCurrentDirectoryA
RemoveDirectoryA
CreateDirectoryA
GetSystemInfo
IsBadCodePtr
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
lstrcpyA
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
InterlockedExchange
InitializeCriticalSection
SetUnhandledExceptionFilter
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
HeapReAlloc
HeapAlloc
SetConsoleCtrlHandler
VirtualFree
HeapFree
HeapCreate
HeapDestroy
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
InterlockedDecrement
InterlockedIncrement
IsBadStringPtrA
IsBadReadPtr
IsBadWritePtr
OutputDebugStringA
FreeLibrary
LoadLibraryA
WritePrivateProfileStringA
CreateMutexA
GetLastError
WaitForSingleObject
ReleaseMutex
CloseHandle
WinExec
CreateProcessA
GetCurrentProcess
MoveFileExA
GetWindowsDirectoryA
GlobalUnlock
GlobalFree
GetVersion
GetUserDefaultLCID
GetVersionExA
GetShortPathNameA
GetLocaleInfoW
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapValidate
SetFileAttributesA
GetFileAttributesA
MoveFileA
GetACP
GetOEMCP
GetCPInfo
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
GetFileType
SetEndOfFile
SetFilePointer
RtlUnwind
RaiseException
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
DebugBreak
GetStdHandle
WriteFile
TlsAlloc
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
SetLastError
GetCurrentThread
GetTimeZoneInformation
VirtualProtect
VirtualAlloc
VirtualQuery
ExitProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
SetEnvironmentVariableW

user32

CharPrevA
CharNextA
GetSystemMetrics
wsprintfA
CharLowerA
CharUpperA
GetActiveWindow
GetLastActivePopup
PeekMessageA
SetWindowTextA
LoadIconA
SendMessageA
BringWindowToTop
SendDlgItemMessageA
InvalidateRect
UpdateWindow
EndDialog
SystemParametersInfoA
GetParent
GetWindowRect
SetWindowPos
IsWindow
CreateDialogParamA
GetSysColor
MessageBoxA
ExitWindowsEx
DestroyWindow
PostQuitMessage
KillTimer
DefWindowProcA
FindWindowA
RegisterClassA
CreateWindowExA
SetTimer
PostMessageA
GetMessageA
TranslateMessage
DispatchMessageA

advapi32

RegOpenKeyExA
LookupPrivilegeValueA
RegEnumValueA
RegEnumKeyExA
RegQueryValueExA
RegFlushKey
RegCreateKeyExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegSetValueA
RegOpenKeyA
RegQueryValueA
RegCreateKeyA
RegSetValueExA
RegCloseKey
OpenProcessToken
AdjustTokenPrivileges

gdi32

SetBkColor
DeleteObject
CreateSolidBrush
SetTextColor

comctl32

ord17

Sections

.text
Size: 240KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5e767efdda0ab30172c3403c8fe5057b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

comctl32

Sections

.text Size: 240KB - Virtual size: 236KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 104KB - Virtual size: 104KB

.text
Size: 240KB - Virtual size: 236KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 104KB - Virtual size: 104KB