6d8e9218103147e59d7faa5d62e1f403addd7aa2d62b623595ac56294a53ed95

Sharing

Copy URL Twitter E-mail

General

Target

6d8e9218103147e59d7faa5d62e1f403addd7aa2d62b623595ac56294a53ed95
Size

500KB
MD5

136d6c0809fffc1e315a8e672f9354d6
SHA1

242fdb9f7206f390d28f0924c8bb6cea9b05af6d
SHA256

6d8e9218103147e59d7faa5d62e1f403addd7aa2d62b623595ac56294a53ed95
SHA512

b1367a129ad7ced77950227fb12b222e8161e08b336cca9a8798c2514ed143477491ffeb029768179e09a8af31c3fd15ba51a9db4e2558056ae56f1b10a6b389
SSDEEP

6144:fJgXhwPA+UQWXkMcwOYbpuAzOUHe7oh22GCLJo:x2h0UaBwloAzOEdG

Score

N/A

Malware Config

Signatures

Files

6d8e9218103147e59d7faa5d62e1f403addd7aa2d62b623595ac56294a53ed95
.exe windows x86

0dc1acf5daea7dc70eefcd740fa330d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDoubleClickTime
GetClassNameW
TrackPopupMenuEx
UnionRect
SetRect
GetDC
EqualRect
IsIconic
IsZoomed
InflateRect
IntersectRect
IsRectEmpty
OffsetRect
IsWindowVisible
FrameRect
DrawIconEx
GetSysColor
SetRectEmpty
BeginPaint
EndPaint
GetClientRect
InvalidateRgn
SetWindowTextW
EnableWindow
GetWindowTextW
GetSysColorBrush
RegisterClassExW
GetMessageW
DispatchMessageW
TranslateMessage
PostQuitMessage
wvsprintfW
ReleaseCapture
MonitorFromPoint
SetCapture
SetCursor
PtInRect
GetWindow
DefWindowProcW
KillTimer
LoadStringW
LoadCursorW
UnregisterClassW
RegisterClassW
CreateWindowExW
DestroyWindow
GetCursorPos
ScreenToClient
GetSubMenu
CreatePopupMenu
DestroyMenu
LoadMenuW
DeleteMenu
ClientToScreen
TrackPopupMenu
GetSystemMetrics
SystemParametersInfoW
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
IsWindow
GetWindowDC
ReleaseDC
CopyRect
GetWindowPlacement
OpenIcon
ShowWindow
UpdateWindow
AllowSetForegroundWindow
LockSetForegroundWindow
GetForegroundWindow
GetTopWindow
GetWindowThreadProcessId
AttachThreadInput
SetActiveWindow
SetForegroundWindow
BringWindowToTop
SetFocus
InvalidateRect
wsprintfW
SendMessageW
CopyIcon
GetClassLongW
LoadIconW
LoadImageW
DestroyIcon
MapVirtualKeyW
GetKeyNameTextW
FindWindowW
PostMessageW
SetTimer
GetWindowRect
MoveWindow
GetMonitorInfoW
EnumDisplayDevicesW
EnumDisplaySettingsW
SetWindowPos
GetWindowLongW
SetWindowLongW

shell32

ExtractIconW
ExtractIconExW
SHAppBarMessage

advapi32

RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW

comctl32

InitCommonControlsEx
ImageList_SetOverlayImage
ImageList_Create
ImageList_SetImageCount
ImageList_Remove
ImageList_Destroy
ImageList_GetIcon
ImageList_ReplaceIcon

msimg32

GradientFill

kernel32

GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
VirtualQuery
InterlockedExchange
InitializeCriticalSection
LoadLibraryA
RaiseException
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
GetCurrentProcess
TerminateProcess
ExitProcess
TlsGetValue
TlsSetValue
GetStringTypeW
GetCurrentThread
SetLastError
TlsAlloc
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
ExitThread
Sleep
lstrcpynW
lstrcmpiW
CreateSemaphoreW
OutputDebugStringW
MultiByteToWideChar
GetLastError
CreateThread
SetThreadPriority
TerminateThread
GetTickCount
lstrlenW
GetUserDefaultLangID
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
ReadFile
GlobalLock
GlobalUnlock
FreeResource
LocalAlloc
GlobalAlloc
CreateFileW
WriteFile
CloseHandle
GlobalFree
LocalFree
GetEnvironmentVariableW
lstrcatW
LoadLibraryW
GetProcAddress
FreeLibrary
lstrcpyW
GetVersionExW
HeapFree
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapSize
GetTimeZoneInformation
VirtualProtect
GetSystemInfo
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsFree
lstrcmpW
GetProcessHeap
GetModuleFileNameW
HeapAlloc

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 348KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0dc1acf5daea7dc70eefcd740fa330d0

Headers

File Characteristics

Imports

user32

shell32

advapi32

comctl32

msimg32

kernel32

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 348KB - Virtual size: 348KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 348KB - Virtual size: 348KB