0798c7b0573021c294eba58aa14dc82fd6fc90e211fff024758a4a2077178e80

Sharing

Copy URL Twitter E-mail

General

Target

0798c7b0573021c294eba58aa14dc82fd6fc90e211fff024758a4a2077178e80
Size

312KB
MD5

202cf93e71a5331aa9776f743a158080
SHA1

fe8eedbeb1f0e8662b133bee70dee3b547757304
SHA256

0798c7b0573021c294eba58aa14dc82fd6fc90e211fff024758a4a2077178e80
SHA512

1abed2c879da90e305658f7af2ce9d69f87a5344996b775316b0464235a7ea263c124195eff5a67993782b2fae2610ac3bb4fd771f1f233c6372d2efc954f40e
SSDEEP

6144:Rodvy0+Xrjymo3hmavT26YNQD8cUhrbQZ/YJV2vmD4se1jUj:JNXrOmiQab2w8nhrkZQJSMe1Yj

Score

N/A

Malware Config

Signatures

Files

0798c7b0573021c294eba58aa14dc82fd6fc90e211fff024758a4a2077178e80
.exe windows x86

54f29ae1f779f0f3d11ed2366412cdc2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

LCMapStringW
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
FlushFileBuffers
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
WideCharToMultiByte
FreeEnvironmentStringsW
LoadLibraryW
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
MultiByteToWideChar
TlsGetValue
TlsAlloc
GetStringTypeW
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetModuleFileNameW
GetStdHandle
WriteFile
IsProcessorFeaturePresent
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
GetVersion
CloseHandle
GetModuleHandleA
GetModuleFileNameA
HeapCreate
Sleep
GetProcessHeap
GetCurrentThread
FreeEnvironmentStringsA
GlobalLock
GetEnvironmentStringsW
GetCurrentProcess
UnhandledExceptionFilter
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
DecodePointer
ExitProcess
CreateFileW
GetModuleHandleW
GetProcAddress
LeaveCriticalSection
EnterCriticalSection
HeapFree
GetSystemInfo
GetLastError
DeleteCriticalSection
GlobalUnlock
HeapAlloc
lstrlenA
TlsSetValue

user32

EnableWindow
UpdateWindow
GetDesktopWindow
LoadCursorA
SetDlgItemTextA
SetWindowTextA
GetWindow
RegisterClassW
CreateWindowExW
ShowWindow
CheckDlgButton
LoadStringW
SendMessageW
GetSysColor
LoadIconA
GetClassNameA
RegisterClassExA
LoadImageW
DialogBoxParamW
LoadBitmapA
LoadCursorW
GetClientRect
GetWindowTextLengthA
SendMessageA
GetDC
GetForegroundWindow
LoadIconW
GetWindowTextA
SetWindowLongA
GetWindowLongA
CreateWindowExA
GetClassNameW
ReleaseDC
GetDlgItem

gdi32

CreateFontIndirectW
CreateSolidBrush
GetStockObject
Rectangle
CreateHatchBrush
SetBkColor
SetBkMode
SelectObject

advapi32

AllocateAndInitializeSid
OpenThreadToken
SetNamedSecurityInfoA
InitializeSecurityDescriptor
AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueA

shell32

ShellAboutW
SHGetFileInfoA

ole32

OleGetClipboard
ReleaseStgMedium
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SafeArrayCreateVectorEx

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shlwapi

SHAutoComplete
PathFileExistsW
PathIsRelativeW

comctl32

ImageList_Create
InitCommonControlsEx
ord17
ImageList_Add

imm32

ImmGetOpenStatus
ImmGetConversionStatus
ImmGetContext
ImmReleaseContext

setupapi

SetupDiGetClassDevsA

dxva2

SetMonitorColorTemperature
SetMonitorDisplayAreaSize

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54f29ae1f779f0f3d11ed2366412cdc2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

version

shlwapi

comctl32

imm32

setupapi

dxva2

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 191KB - Virtual size: 191KB

.data Size: 42KB - Virtual size: 50KB

.rsrc Size: 23KB - Virtual size: 23KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 191KB - Virtual size: 191KB

.data
Size: 42KB - Virtual size: 50KB

.rsrc
Size: 23KB - Virtual size: 23KB

.reloc
Size: 7KB - Virtual size: 7KB