4f0501d47b82348ddb9ccb6be2af5e23eaba210b9632915adb7524178707a1e2

Sharing

Copy URL

Twitter E-mail

General

Target

4f0501d47b82348ddb9ccb6be2af5e23eaba210b9632915adb7524178707a1e2
Size

150KB
MD5

45efea6368e9617c88738149f5542c5a
SHA1

961d54c0e911badda0d4a8c2e575fc1003045fe7
SHA256

4f0501d47b82348ddb9ccb6be2af5e23eaba210b9632915adb7524178707a1e2
SHA512

4e53910038d5d27c25a67607992b602b04f9aab6af6dcea4bd66bbd5dbdacef547a416682619afdbee45b7c471ee6d7fd8ce6c7fd4f37211e92a324cd06a4054
SSDEEP

3072:IT4J2bv7sIvu8FJm60EljbD55+RYZm7lg0c3/POX5LPeFN9:XS7sID7ljbDOYB/Ie

Score

N/A

Malware Config

Signatures

Files

4f0501d47b82348ddb9ccb6be2af5e23eaba210b9632915adb7524178707a1e2
.exe windows x86

463f95e6e2246a2fc15c4c4a613315fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
CreateFileA
CreateProcessW
DeleteCriticalSection
DisableThreadLibraryCalls
DuplicateHandle
EnumCalendarInfoA
ExpandEnvironmentStringsA
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindFirstFileW
FindNextFileA
FindNextFileW
FindResourceA
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetConsoleOutputCP
GetCurrentDirectoryA
GetDriveTypeA
GetEnvironmentStrings
GetExitCodeProcess
GetFileAttributesA
GetFileSize
GetFullPathNameA
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleHandleA
GetOEMCP
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeExA
GetSystemDefaultLCID
GetSystemDirectoryA
GetSystemTime
GetTickCount
GetTimeZoneInformation
GlobalFindAtomA
GlobalFree
GlobalLock
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
InterlockedCompareExchange
InterlockedIncrement
IsBadReadPtr
IsDBCSLeadByte
IsDebuggerPresent
LCMapStringA
LeaveCriticalSection
LoadLibraryW
LoadResource
MoveFileA
MulDiv
MultiByteToWideChar
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
RaiseException
RemoveDirectoryA
ResetEvent
RtlUnwind
SetCurrentDirectoryA
SetEnvironmentVariableA
SetFileAttributesW
SetFileTime
SetThreadPriority
SystemTimeToFileTime
TerminateProcess
VirtualAlloc
lstrcatA
lstrcmpiA
lstrlenA
lstrlenW

user32

AdjustWindowRectEx
BeginPaint
CallWindowProcA
CheckMenuItem
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DeleteMenu
DestroyIcon
DestroyMenu
DestroyWindow
DrawFrameControl
DrawIconEx
DrawTextA
EndDialog
EndPaint
EnumThreadWindows
EnumWindows
EqualRect
GetClassInfoA
GetClientRect
GetCursorPos
GetDCEx
GetFocus
GetForegroundWindow
GetIconInfo
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMessageA
GetMessagePos
GetScrollInfo
GetSysColor
GetSysColorBrush
GetSystemMenu
GetWindowLongA
GetWindowPlacement
GetWindowRect
InsertMenuA
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
KillTimer
LoadCursorA
LoadIconA
LoadStringA
MessageBeep
MessageBoxA
OffsetRect
PeekMessageA
PostMessageA
PtInRect
RedrawWindow
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
SendMessageA
SetCapture
SetClipboardData
SetCursor
SetPropA
SetRect
SetScrollPos
SetWindowPlacement
SetWindowPos
SetWindowTextA
SetWindowsHookExA
ShowWindow
TranslateMessage
UnhookWindowsHookEx
WinHelpA

gdi32

AddFontResourceA
Arc
ArcTo
CloseMetaFile
CombineRgn
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateEnhMetaFileA
CreateFontIndirectA
CreateFontW
CreatePen
CreatePenIndirect
CreateRectRgnIndirect
DeleteDC
DeleteMetaFile
DeleteObject
Ellipse
EnumEnhMetaFile
EnumFontFamiliesExW
EnumFontFamiliesW
EnumFontsA
EnumMetaFile
ExcludeClipRect
FillPath
GetCharWidthW
GetCharacterPlacementA
GetClipBox
GetClipRgn
GetCurrentObject
GetCurrentPositionEx
GetDCOrgEx
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetMapMode
GetMetaFileBitsEx
GetOutlineTextMetricsA
GetStretchBltMode
GetTextCharsetInfo
GetTextExtentExPointW
GetTextExtentPointW
GetViewportExtEx
GetViewportOrgEx
InvertRgn
LPtoDP
LineDDA
OffsetClipRgn
OffsetRgn
OffsetViewportOrgEx
Pie
PlayEnhMetaFile
PlayMetaFile
PlayMetaFileRecord
Polygon
PolylineTo
PtInRegion
PtVisible
RealizePalette
RectVisible
RoundRect
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SelectPalette
SetArcDirection
SetBkMode
SetBrushOrgEx
SetDIBitsToDevice
SetEnhMetaFileBits
SetGraphicsMode
SetROP2
SetRectRgn
SetTextJustification
SetWindowExtEx
SetWindowOrgEx
TextOutA
TextOutW
TranslateCharsetInfo

shell32

DragQueryFileA
DragQueryPoint
ExtractAssociatedIconW
ExtractIconExA
ExtractIconExW
ExtractIconW
FindExecutableW
SHAddToRecentDocs
SHBrowseForFolder
SHBrowseForFolderW
SHCreateDirectoryExA
SHCreateDirectoryExW
SHFileOperationA
SHFileOperationW
SHGetDesktopFolder
SHGetFileInfo
SHGetFileInfoA
SHGetFileInfoW
SHGetFolderPathW
SHGetPathFromIDList
SHGetPathFromIDListW
SHGetSettings
SHGetSpecialFolderLocation
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
ShellExecuteA
ShellExecuteEx
ShellExecuteExA
ShellExecuteW
Shell_NotifyIconW

comctl32

DestroyPropertySheetPage
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_Draw
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetIcon
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_SetImageCount
ImageList_Write
InitCommonControls
InitializeFlatSB
PropertySheetW

advapi32

AddAccessAllowedAce
AdjustTokenPrivileges
AllocateAndInitializeSid
CheckTokenMembership
ControlService
ConvertStringSecurityDescriptorToSecurityDescriptorW
CopySid
CryptCreateHash
CryptDestroyHash
CryptGenRandom
CryptHashData
CryptReleaseContext
DeleteService
FreeSid
GetLengthSid
GetSecurityDescriptorDacl
GetUserNameA
InitializeAcl
InitializeSecurityDescriptor
InitiateSystemShutdownA
IsValidSid
LookupPrivilegeValueW
OpenProcessToken
OpenSCManagerA
OpenSCManagerW
OpenThreadToken
QueryServiceStatus
RegCloseKey
RegCreateKeyExW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueA
RegEnumKeyA
RegEnumKeyExA
RegEnumKeyExW
RegEnumKeyW
RegEnumValueA
RegOpenKeyExA
RegOpenKeyW
RegQueryValueA
RegQueryValueExA
RegQueryValueExW
RegSetValueExA
RegSetValueExW
RevertToSelf
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner

msvcrt

_CIlog
_CIpow
_EH_prolog
__dllonexit
__p__wenviron
__set_app_type
__unDName
_atoi64
_dup
_dup2
_exit
_fullpath
_makepath
_mbslwr
_pctype
_popen
_setjmp
_setjmp3
_strdate
_waccess
_wtol
atoi
clock
fflush
fread
fsetpos
getwc
isdigit
iswalnum
iswprint
localeconv
strcoll
wcscmp
wcstod
wcsxfrm

oleaut32

GetActiveObject
GetErrorInfo
LoadTypeLib
RegisterTypeLib
SafeArrayAccessData
SafeArrayCreate
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SetErrorInfo
SysAllocStringByteLen
SysFreeString
SysReAllocStringLen
SysStringByteLen
SysStringLen
VariantChangeType
VariantClear
VariantCopy
VariantCopyInd

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

463f95e6e2246a2fc15c4c4a613315fa

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

msvcrt

oleaut32

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 84KB - Virtual size: 83KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 84KB - Virtual size: 83KB

.rsrc
Size: 16KB - Virtual size: 16KB