c1092cf02496e1a8c6a7678a8df944146ed50271cf4a9e6050db389773c83200

Sharing

Copy URL Twitter E-mail

General

Target

c1092cf02496e1a8c6a7678a8df944146ed50271cf4a9e6050db389773c83200
Size

396KB
MD5

32d3d924274560fb3c261822c1261880
SHA1

e7601d0f0b59d72854e1bf64f9e8e77022b4c0d5
SHA256

c1092cf02496e1a8c6a7678a8df944146ed50271cf4a9e6050db389773c83200
SHA512

910de2f8347cc8009d70561541f5c75c8ea16d3bd649b8db250242d34dd5f011c3623125a99048785d0c77c101f42fa9dbdb17fb61f106c098418021ffc598ba
SSDEEP

6144:AH4Vg7rMsKjiHmdbtXzUzzdI7ZabyVc4GRUVQ3l460JoHUUF5pl5P:Lg7xHQdAzzdKZSy2FP0JoNF59

Score

N/A

Malware Config

Signatures

Files

c1092cf02496e1a8c6a7678a8df944146ed50271cf4a9e6050db389773c83200
.exe windows x86

6226c340ec9e2665c2b70237edbbd12b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeResource
GetExitCodeProcess
CreateProcessA
SizeofResource
GetTempFileNameA
GetTempPathA
LockResource
LoadResource
FindResourceA
lstrcmpiA
IsDBCSLeadByte
GetFileSize
GetLocaleInfoA
MulDiv
GetCurrentThreadId
GetFileAttributesA
GetProcAddress
LoadLibraryA
GetVersionExA
LocalAlloc
GlobalDeleteAtom
FreeLibrary
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
MultiByteToWideChar
GlobalGetAtomNameA
lstrcmpA
SetLastError
GlobalAlloc
GetModuleFileNameA
SetFilePointer
GetLocalTime
GlobalAddAtomA
SetProcessWorkingSetSize
GetCurrentProcess
ResumeThread
FlushFileBuffers
OutputDebugStringA
GlobalSize
MoveFileA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateNamedPipeA
DisconnectNamedPipe
ConnectNamedPipe
GetCurrentProcessId
HeapAlloc
GetProcessHeap
lstrcpynA
HeapFree
CallNamedPipeA
SuspendThread
SetFileAttributesA
FormatMessageA
WaitCommEvent
IsBadStringPtrA
GetTickCount
OpenFile
SetStdHandle
LCMapStringW
LCMapStringA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
InterlockedIncrement
InterlockedDecrement
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
RaiseException
GetOEMCP
GetACP
GetCPInfo
HeapSize
UnhandledExceptionFilter
TerminateProcess
TlsAlloc
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
RtlUnwind
ExitThread
TlsGetValue
TlsSetValue
CreateThread
ClearCommError
GetCurrentThread
SetThreadPriority
CancelWaitableTimer
ReleaseMutex
WaitForMultipleObjects
SetWaitableTimer
DeviceIoControl
SetEvent
PurgeComm
SetCommState
SetCommTimeouts
EnterCriticalSection
SetupComm
GetCommTimeouts
GetCommState
SetCommMask
LeaveCriticalSection
CreateWaitableTimerA
CreateMutexA
DeleteCriticalSection
InitializeCriticalSection
WaitNamedPipeA
SetNamedPipeHandleState
ResetEvent
TransactNamedPipe
WaitForSingleObject
GetOverlappedResult
CancelIo
ReadFile
CreateEventA
FindFirstFileA
FindNextFileA
FindClose
Sleep
CreateFileA
GetLastError
WriteFile
CloseHandle
GetModuleHandleA
DeleteFileA

user32

CharUpperA
RegisterWindowMessageA
MessageBoxA
SetPropA
SetRect
SendNotifyMessageA
EnumWindows
GetClassNameA
GetPropA
FindWindowA
DefWindowProcA
GetMessageA
RemovePropA
FindWindowExA
SetTimer
EndPaint
BeginPaint
GetUserObjectInformationA
GetProcessWindowStation
IsDialogMessageA
TranslateMessage
LoadImageA
SendDlgItemMessageA
IsWindowVisible
ScreenToClient
MsgWaitForMultipleObjects
PeekMessageA
ValidateRect
GetClientRect
RedrawWindow
PostQuitMessage
GetWindowPlacement
MoveWindow
GetDlgItem
DispatchMessageA
UnregisterClassA
LoadCursorA
RegisterClassA
CreateWindowExA
DialogBoxParamA
AdjustWindowRectEx
DrawTextA
LoadIconA
EnableWindow
EndDialog
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
BringWindowToTop
EnumChildWindows
GetWindowLongA
SystemParametersInfoA
GetDC
ReleaseDC
IsWindowEnabled
GetCursorPos
SetForegroundWindow
TrackPopupMenuEx
EnableMenuItem
DestroyMenu
LoadMenuA
GetSubMenu
SetMenuDefaultItem
SendMessageA
GetDesktopWindow
GetWindowRect
CreateDialogParamA
GetSystemMenu
RemoveMenu
ShowWindow
SetClassLongA
SetWindowTextA
SetDlgItemTextA
SetFocus
InvalidateRgn
PostMessageA
DestroyWindow
KillTimer
IsIconic
GetDlgItemTextA

gdi32

DescribePixelFormat
SetPixelFormat
SwapBuffers
CreateDIBSection
GetDIBits
CreateBitmap
DeleteObject
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
CreateRectRgn
CreateFontIndirectA
GetDeviceCaps
EnumFontsA
GetObjectA
GetStockObject
GetTextExtentPoint32A
PatBlt
GetTextMetricsA

advapi32

RegCloseKey
RegSetValueExA
OpenSCManagerA
CreateServiceA
CloseServiceHandle
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
RegOpenKeyA
RegisterEventSourceA
ReportEventA
DeregisterEventSource
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCreateKeyA
RegCreateKeyExA
RegQueryValueExA

shell32

Shell_NotifyIconA

ole32

CreateStreamOnHGlobal
OleInitialize

oleaut32

OleLoadPicture

comctl32

InitCommonControlsEx

winmm

timeGetTime

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiGetDeviceInstallParamsA
SetupDiDestroyDeviceInfoList
SetupDiOpenDevRegKey
SetupDiGetClassDevsA

version

GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 204KB - Virtual size: 201KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6226c340ec9e2665c2b70237edbbd12b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

winmm

setupapi

version

Sections

.text Size: 204KB - Virtual size: 201KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 100KB - Virtual size: 123KB

.rsrc Size: 16KB - Virtual size: 15KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 204KB - Virtual size: 201KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 100KB - Virtual size: 123KB

.rsrc
Size: 16KB - Virtual size: 15KB

.rmnet
Size: 60KB - Virtual size: 60KB