a15b4af5b1f2fe5f6eaccf86d456611082eebfe77c9f13251d4763049e914c14

Sharing

Copy URL

Twitter E-mail

General

Target

a15b4af5b1f2fe5f6eaccf86d456611082eebfe77c9f13251d4763049e914c14
Size

892KB
MD5

1bef42c95ca61b738b459b9c48f7c1e0
SHA1

1c2119f0c5fac62a54a78dbd9cfa32018a917aa7
SHA256

a15b4af5b1f2fe5f6eaccf86d456611082eebfe77c9f13251d4763049e914c14
SHA512

e58f0bda2985fc7641ab6f69e85a5125b7ce86dffd9e90a29539663d0924f14b32453fdcc8d65389fbb88818083136f12dccda4c8c38058cf957623ee8c2413a
SSDEEP

24576:aQRvNENgL3cxDgUEesiHYo5OrP5+KtK930UZI/Z:pEjVgUEesiHYo5OrP5+KtK930UZq

Score

N/A

Malware Config

Signatures

Files

a15b4af5b1f2fe5f6eaccf86d456611082eebfe77c9f13251d4763049e914c14
.exe windows x86

9d0345959cc92726e2779bac25a80d5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerSetControlDetails
mixerGetNumDevs
mixerGetLineInfoA
mixerGetDevCapsA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerClose
mixerOpen

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInterfaceDetailA

powrprof

SetActivePwrScheme
SetSuspendState
GetActivePwrScheme
ReadGlobalPwrPolicy

kernel32

WriteFile
SetFilePointer
FlushFileBuffers
GetOEMCP
MulDiv
CloseHandle
SetStdHandle
GlobalFlags
GetCPInfo
GetProcessVersion
GlobalGetAtomNameA
lstrcatA
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GetCurrentThreadId
WideCharToMultiByte
GetModuleFileNameA
MultiByteToWideChar
TlsGetValue
InterlockedIncrement
InterlockedDecrement
GlobalAlloc
LocalReAlloc
TlsSetValue
GlobalReAlloc
GlobalLock
GlobalFree
GlobalHandle
GlobalUnlock
LocalAlloc
TlsAlloc
LocalFree
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetLastError
InitializeCriticalSection
lstrcpynA
SetSystemPowerState
lstrcmpA
lstrcmpiA
lstrcpyA
GetVersionExA
GetCurrentProcess
GetSystemPowerStatus
lstrlenA
FreeLibrary
SetProcessShutdownParameters
LoadLibraryA
GetProcAddress
ReleaseMutex
OpenMutexA
CreateMutexA
WaitForSingleObject
GetVersion
CreateEventA
GetTickCount
SetEvent
TerminateThread
ResumeThread
SuspendThread
DeviceIoControl
CreateThread
GetLastError
GetEnvironmentStringsW
GetStdHandle
CreateFileA
SetHandleCount
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
TerminateProcess
HeapReAlloc
HeapSize
GetACP
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapAlloc
HeapFree
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
IsBadReadPtr

user32

SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetForegroundWindow
GetWindow
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetKeyState
CallNextHookEx
PeekMessageA
SetWindowsHookExA
LoadStringA
GetParent
GetLastActivePopup
IsWindowEnabled
SendMessageA
EnableWindow
UnhookWindowsHookEx
GetSystemMetrics
GetWindowRect
SendDlgItemMessageA
GrayStringA
MessageBeep
BeginPaint
EndPaint
wsprintfA
PostQuitMessage
CreateWindowExA
UpdateWindow
LoadCursorA
RegisterClassA
FindWindowA
GetMessageA
TranslateMessage
DispatchMessageA
LoadMenuA
GetSubMenu
SetMenuDefaultItem
GetCursorPos
SetForegroundWindow
TrackPopupMenu
DestroyMenu
LoadIconA
MessageBoxA
IsWindow
PostMessageA
SetDlgItemTextA
DestroyWindow
GetWindowLongA
CreateDialogParamA
PtInRect
GetClassNameA
GetSysColorBrush
SetWindowTextA
DialogBoxParamA
SetTimer
KillTimer
EndDialog
SetWindowPos
SetWindowLongA
SetLayeredWindowAttributes
GetDlgItem
MoveWindow
ShowWindow
DrawTextA
TabbedTextOutA
DefWindowProcA
ClientToScreen
GetDoubleClickTime
IsWindowVisible
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
GetClientRect
CopyRect
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetWindowTextA
GetDlgCtrlID
GetClassLongA
GetDC
ReleaseDC
GetMessagePos
GetMessageTime
GetMenuItemID

gdi32

GetStockObject
DeleteObject
TextOutA
SetBkMode
SelectObject
CreateFontIndirectA
GetTextMetricsA
DeleteDC
GetDeviceCaps
GetObjectA
GetClipBox
CreateBitmap
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
RectVisible
Escape
ExtTextOutA
SetBkColor
SetTextColor
GetTextColor

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

DeregisterEventSource
ReportEventA
RegisterEventSourceA
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
RegCloseKey
RegQueryValueExA
AdjustTokenPrivileges
RegDeleteValueA
LookupPrivilegeValueA
RegCreateKeyExA
RegSetValueExA
OpenProcessToken
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA
ShellExecuteA
Shell_NotifyIconA

comctl32

ord17

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 716KB - Virtual size: 713KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d0345959cc92726e2779bac25a80d5b

Headers

File Characteristics

Imports

winmm

setupapi

powrprof

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 16KB - Virtual size: 33KB

.rsrc Size: 716KB - Virtual size: 713KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 16KB - Virtual size: 33KB

.rsrc
Size: 716KB - Virtual size: 713KB

.rmnet
Size: 60KB - Virtual size: 60KB