52a9a9f2d6f82ca49fea92eb7c323494b66b9fa73d0c50eb7397cce33a4932e1

Sharing

Copy URL

Twitter E-mail

General

Target

52a9a9f2d6f82ca49fea92eb7c323494b66b9fa73d0c50eb7397cce33a4932e1
Size

892KB
MD5

0a5b8ea6b996f9908d635287025af470
SHA1

f4f16cab88300295c57ae3a2a8256550bb096755
SHA256

52a9a9f2d6f82ca49fea92eb7c323494b66b9fa73d0c50eb7397cce33a4932e1
SHA512

5c3c9b2fa88b0e73f95a2afbe7333b56cf713e98e5e6ca4e2179cff135518bad7cd62d5fc4c3393da37e503052ccdeef4f0ac14eaa5737ba2bd656e866d8c6c7
SSDEEP

24576:aQRvNENgL3cxDgUEesiHYo5OrP5+KtK930UZVTz6t:pEjVgUEesiHYo5OrP5+KtK930UZo

Score

N/A

Malware Config

Signatures

Files

52a9a9f2d6f82ca49fea92eb7c323494b66b9fa73d0c50eb7397cce33a4932e1
.exe windows x86

9d0345959cc92726e2779bac25a80d5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerSetControlDetails
mixerGetNumDevs
mixerGetLineInfoA
mixerGetDevCapsA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerClose
mixerOpen

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInterfaceDetailA

powrprof

SetActivePwrScheme
SetSuspendState
GetActivePwrScheme
ReadGlobalPwrPolicy

kernel32

WriteFile
SetFilePointer
FlushFileBuffers
GetOEMCP
MulDiv
CloseHandle
SetStdHandle
GlobalFlags
GetCPInfo
GetProcessVersion
GlobalGetAtomNameA
lstrcatA
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GetCurrentThreadId
WideCharToMultiByte
GetModuleFileNameA
MultiByteToWideChar
TlsGetValue
InterlockedIncrement
InterlockedDecrement
GlobalAlloc
LocalReAlloc
TlsSetValue
GlobalReAlloc
GlobalLock
GlobalFree
GlobalHandle
GlobalUnlock
LocalAlloc
TlsAlloc
LocalFree
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetLastError
InitializeCriticalSection
lstrcpynA
SetSystemPowerState
lstrcmpA
lstrcmpiA
lstrcpyA
GetVersionExA
GetCurrentProcess
GetSystemPowerStatus
lstrlenA
FreeLibrary
SetProcessShutdownParameters
LoadLibraryA
GetProcAddress
ReleaseMutex
OpenMutexA
CreateMutexA
WaitForSingleObject
GetVersion
CreateEventA
GetTickCount
SetEvent
TerminateThread
ResumeThread
SuspendThread
DeviceIoControl
CreateThread
GetLastError
GetEnvironmentStringsW
GetStdHandle
CreateFileA
SetHandleCount
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
TerminateProcess
HeapReAlloc
HeapSize
GetACP
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapAlloc
HeapFree
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
IsBadReadPtr

user32

SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetForegroundWindow
GetWindow
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetKeyState
CallNextHookEx
PeekMessageA
SetWindowsHookExA
LoadStringA
GetParent
GetLastActivePopup
IsWindowEnabled
SendMessageA
EnableWindow
UnhookWindowsHookEx
GetSystemMetrics
GetWindowRect
SendDlgItemMessageA
GrayStringA
MessageBeep
BeginPaint
EndPaint
wsprintfA
PostQuitMessage
CreateWindowExA
UpdateWindow
LoadCursorA
RegisterClassA
FindWindowA
GetMessageA
TranslateMessage
DispatchMessageA
LoadMenuA
GetSubMenu
SetMenuDefaultItem
GetCursorPos
SetForegroundWindow
TrackPopupMenu
DestroyMenu
LoadIconA
MessageBoxA
IsWindow
PostMessageA
SetDlgItemTextA
DestroyWindow
GetWindowLongA
CreateDialogParamA
PtInRect
GetClassNameA
GetSysColorBrush
SetWindowTextA
DialogBoxParamA
SetTimer
KillTimer
EndDialog
SetWindowPos
SetWindowLongA
SetLayeredWindowAttributes
GetDlgItem
MoveWindow
ShowWindow
DrawTextA
TabbedTextOutA
DefWindowProcA
ClientToScreen
GetDoubleClickTime
IsWindowVisible
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
GetClientRect
CopyRect
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetWindowTextA
GetDlgCtrlID
GetClassLongA
GetDC
ReleaseDC
GetMessagePos
GetMessageTime
GetMenuItemID

gdi32

GetStockObject
DeleteObject
TextOutA
SetBkMode
SelectObject
CreateFontIndirectA
GetTextMetricsA
DeleteDC
GetDeviceCaps
GetObjectA
GetClipBox
CreateBitmap
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
RectVisible
Escape
ExtTextOutA
SetBkColor
SetTextColor
GetTextColor

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

DeregisterEventSource
ReportEventA
RegisterEventSourceA
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
RegCloseKey
RegQueryValueExA
AdjustTokenPrivileges
RegDeleteValueA
LookupPrivilegeValueA
RegCreateKeyExA
RegSetValueExA
OpenProcessToken
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA
ShellExecuteA
Shell_NotifyIconA

comctl32

ord17

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 716KB - Virtual size: 713KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d0345959cc92726e2779bac25a80d5b

Headers

File Characteristics

Imports

winmm

setupapi

powrprof

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 16KB - Virtual size: 33KB

.rsrc Size: 716KB - Virtual size: 713KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 16KB - Virtual size: 33KB

.rsrc
Size: 716KB - Virtual size: 713KB

.rmnet
Size: 60KB - Virtual size: 60KB