aad22e3302614a00a57c0710987242d9f8cb8c6d19710564d996da3b97185d85

Sharing

Copy URL Twitter E-mail

General

Target

aad22e3302614a00a57c0710987242d9f8cb8c6d19710564d996da3b97185d85
Size

314KB
MD5

20e0091434362d8d9d629fb94afc3861
SHA1

ba8a0a353da9f5abffef25d4b8a3740378c5b525
SHA256

aad22e3302614a00a57c0710987242d9f8cb8c6d19710564d996da3b97185d85
SHA512

1c0cc9f4747d820566e8f0ab5ecc3cdcb1f10c1747338fe0121661050cd7ea510067b34d86a1c7d8f585ad12d52f2367ac59133019ff06bd352c73c793c25c56
SSDEEP

6144:xGWsOi5zlIk0to1+HLTNA2GgUk0aES4RbaK4fDJNqJxDC:xGWsOcoue/ZMHotVNq

Score

N/A

Malware Config

Signatures

Files

aad22e3302614a00a57c0710987242d9f8cb8c6d19710564d996da3b97185d85
.exe windows x86

0d20076e4755efe473efed58e325d974

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
IsValidCodePage
RaiseException
TlsFree
WideCharToMultiByte
SetFilePointer
GetModuleHandleW
LoadResource
GetModuleFileNameA
GetStringTypeW
GetUserDefaultLCID
GetEnvironmentStringsW
GetEnvironmentStrings
GetCPInfo
EnumSystemLocalesA
GetTimeZoneInformation
SetLastError
FlushFileBuffers
GetModuleFileNameW
GetOEMCP
EnumDateFormatsExW
GetStartupInfoW
FindNextFileA
IsBadWritePtr
InterlockedExchange
GlobalFlags
FindResourceExW
AddAtomA
ExitProcess
VirtualAlloc
GetLocaleInfoA
VirtualProtect
VirtualQuery
IsDebuggerPresent
HeapReAlloc
GetComputerNameA
UnhandledExceptionFilter
FreeEnvironmentStringsW
LCMapStringW
GetThreadContext
GetCurrentProcess
GetCommandLineW
CreateWaitableTimerA
SetHandleCount
lstrcat
SetStdHandle
QueryPerformanceCounter
LoadLibraryA
CreateMutexA
CloseHandle
GetSystemTimeAsFileTime
GetModuleHandleA
GetCurrentProcessId
WriteFile
GetVersionExA
GetStdHandle
CompareStringA
GetTickCount
HeapFree
HeapSize
TlsAlloc
GetCurrentThreadId
GetTimeFormatA
GetSystemDirectoryW
GetTempPathA
HeapDestroy
DeleteCriticalSection
LCMapStringA
OpenMutexA
GetDateFormatA
VirtualFree
IsValidLocale
InitializeCriticalSection
LeaveCriticalSection
GetStringTypeA
HeapCreate
GetLastError
GetCurrentThread
RtlUnwind
GetSystemInfo
SetEnvironmentVariableA
MultiByteToWideChar
TlsGetValue
GetStartupInfoA
GetProcAddress
FreeEnvironmentStringsA
ReadFile
GetACP
GetFileType
TerminateProcess
EnterCriticalSection
HeapAlloc
TlsSetValue
GetLocaleInfoW
lstrlen
EnumDateFormatsA
GetCommandLineA

comctl32

CreateUpDownControl
ImageList_Create
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_Copy
DrawInsert
ImageList_SetBkColor
ImageList_DragEnter
ImageList_Add
CreateToolbar
ImageList_Remove
ImageList_DrawIndirect
ImageList_Destroy
ImageList_GetBkColor
ImageList_Read
ImageList_DragMove
MakeDragList
DrawStatusText
CreateStatusWindowW
InitCommonControlsEx

user32

HideCaret
GetClassInfoW
GetMessageW
GetWindowModuleFileNameW
GetQueueStatus
CallMsgFilterW
RegisterClassA
CallWindowProcA
GetTitleBarInfo
TrackPopupMenu
SetActiveWindow
GetClassInfoA
RegisterClassExA
DefWindowProcA
CreateAcceleratorTableA
GetDlgItemTextW
GetScrollBarInfo
LoadKeyboardLayoutW
RealGetWindowClass

shell32

SHGetDiskFreeSpaceA

advapi32

RegReplaceKeyA
LookupPrivilegeValueA
RegOpenKeyW
CryptVerifySignatureA
GetUserNameA
CryptContextAddRef
InitiateSystemShutdownA
CryptHashSessionKey
DuplicateTokenEx
RegCreateKeyW
RegSetValueA
RegQueryMultipleValuesW
CryptSignHashA
CryptImportKey

gdi32

GetObjectType
GetObjectA
GetOutlineTextMetricsA
LPtoDP
SetMetaFileBitsEx
PolyPolyline
PolyTextOutW
DeleteDC
CreateColorSpaceW
InvertRgn
SetTextCharacterExtra
SetViewportExtEx
CopyEnhMetaFileW
GetTextCharsetInfo
CreateDCW
GetDeviceCaps

Sections

.text
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d20076e4755efe473efed58e325d974

Headers

File Characteristics

Imports

kernel32

comctl32

user32

shell32

advapi32

gdi32

Sections

.text Size: 185KB - Virtual size: 184KB

.rdata Size: 28KB - Virtual size: 35KB

.data Size: 87KB - Virtual size: 86KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 185KB - Virtual size: 184KB

.rdata
Size: 28KB - Virtual size: 35KB

.data
Size: 87KB - Virtual size: 86KB

.rsrc
Size: 13KB - Virtual size: 12KB