783f3b933deeaf3c4be52b35c58561a12326da23ee60936bb8c7f83188ee1c27

Sharing

Copy URL Twitter E-mail

General

Target

783f3b933deeaf3c4be52b35c58561a12326da23ee60936bb8c7f83188ee1c27
Size

454KB
MD5

2aee5ac6f2b542b1c0f8e1d07dd13590
SHA1

ef921f2e24bae0c77ec81e141589b10f8f640e9a
SHA256

783f3b933deeaf3c4be52b35c58561a12326da23ee60936bb8c7f83188ee1c27
SHA512

a739d2b82ede0d44955d64c17937c981208c0b39b43ecfb917129465edf449baa9b94a19cb3a0a9b774094c27dc363147ea5db6f9435fac25daf9260110a4acc
SSDEEP

12288:zECgttERPHF6cY/XnaJ3aRLjmR587sAkOocf:zE7bEJMc2Xu3aER5PA8cf

Score

N/A

Malware Config

Signatures

Files

783f3b933deeaf3c4be52b35c58561a12326da23ee60936bb8c7f83188ee1c27
.exe windows x86

2ada56143160e85831b22961a84aba95

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
GetStringTypeW
LCMapStringW
RtlUnwind
LoadLibraryW
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
WriteFile
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
ExitProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
LeaveCriticalSection
EnterCriticalSection
IsBadReadPtr
HeapValidate
IsProcessorFeaturePresent
SetLastError
GetModuleHandleW
TlsFree
GetCurrentThreadId
TlsSetValue
TlsGetValue
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetFilePointer
RaiseException
SetStdHandle
GetLastError
LocalAlloc
LocalFree
CreateFileA
GetFileSize
GlobalAlloc
GlobalLock
ReadFile
GlobalUnlock
CloseHandle
GetProcAddress
FreeLibrary
GetOEMCP
GetACP
HeapCreate
lstrcatA
CreateDirectoryA
MultiByteToWideChar
LoadLibraryA
HeapAlloc
GetStdHandle
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterA
GetConsoleTitleA
Sleep
SetConsoleTitleA
GetConsoleWindow
lstrcmpiA
TlsAlloc
IsValidCodePage
GetCPInfo
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameW
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DecodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineA
lstrcpynA
GetVersion
GetTickCount
CreateFileW

user32

EnableMenuItem
GetDlgItem
AppendMenuA
GetWindowTextA
GetWindowRect
CallWindowProcA
GetWindowTextW
IsWindow
GetMenu
DdeCreateStringHandleA
GetDC
ReleaseDC
GetWindowLongA
LoadIconA
SendMessageA
InvalidateRect
MessageBoxA
FindWindowA
SetWindowTextA
SetWindowLongA
OffsetRect
SystemParametersInfoA
DeferWindowPos
EndDeferWindowPos
GetDesktopWindow
GetWindow
SetActiveWindow
GetSystemMetrics
BeginDeferWindowPos
DefWindowProcA
BeginPaint
GetClientRect
DrawTextA
EndPaint
PostQuitMessage
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
SetForegroundWindow
SetFocus
GetMessageA
TranslateMessage
DispatchMessageA
EnumDisplayDevicesA
DrawIconEx
LoadBitmapA
SetWindowPos
RegisterWindowMessageA
GetClassNameA
ClientToScreen

gdi32

GetObjectA
CreateCompatibleDC
SelectClipRgn
CreateHalftonePalette
GetPaletteEntries
CreateFontIndirectA
DeleteObject
GetStockObject
TextOutA
ChoosePixelFormat
SetPixelFormat
CreateDCA
GetDeviceCaps
DeleteDC
CreateCompatibleBitmap
SelectObject
SaveDC

comdlg32

ChooseFontA

advapi32

FreeSid
GetFileSecurityA
LookupPrivilegeNameA
IsValidSecurityDescriptor
GetTokenInformation
LookupAccountSidA
AllocateAndInitializeSid
IsValidSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
IsValidAcl
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetNamedSecurityInfoA

shell32

Shell_NotifyIconA
ShellExecuteA

ole32

CoUninitialize
CoCreateInstance
CoInitialize
CoGetClassObject
CreateStreamOnHGlobal
CreateAntiMoniker

oleaut32

OleLoadPicture
OleSavePictureFile

mpr

WNetEnumResourceA
WNetCloseEnum
WNetOpenEnumA

comctl32

ImageList_Destroy

rpcrt4

UuidCreate

secur32

GetUserNameExA

opengl32

wglMakeCurrent
wglCreateContext

imm32

ImmGetDefaultIMEWnd

wsnmp32

ord320

urlmon

CoInternetGetSession

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ada56143160e85831b22961a84aba95

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

mpr

comctl32

rpcrt4

secur32

opengl32

imm32

wsnmp32

urlmon

Sections

.text Size: 116KB - Virtual size: 115KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 4KB - Virtual size: 12KB

.cdata Size: 244KB - Virtual size: 243KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 116KB - Virtual size: 115KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 4KB - Virtual size: 12KB

.cdata
Size: 244KB - Virtual size: 243KB

.rsrc
Size: 21KB - Virtual size: 20KB