0a78a578c877cb4135d4e7ee4677866558b304efe73939f0289e099624fd9902

Sharing

Copy URL

Twitter E-mail

General

Target

0a78a578c877cb4135d4e7ee4677866558b304efe73939f0289e099624fd9902
Size

1.4MB
MD5

0096eaf7c279f32b3481e47bcd067ba3
SHA1

377b51a9570b7769143d4020a5e91bcfa5bd6805
SHA256

0a78a578c877cb4135d4e7ee4677866558b304efe73939f0289e099624fd9902
SHA512

fb8dbc734c5102b0916f65fe961a6f30c89d631d591cb7658036b6f48be5cea5a48346f38f00c039cfc39d8f5cac24ba8cfe09a86f595397d607edad22a0eb39
SSDEEP

24576:334hqqP/StbVf7x4/ZHG5CILtSEsnFMh0W4rG6MHNMOd2Jm/EMQp3X4lAIfV:334hglkl8J2nFMh0NrgEMQpYl9

Score

N/A

Malware Config

Signatures

Files

0a78a578c877cb4135d4e7ee4677866558b304efe73939f0289e099624fd9902
.exe windows x86

8d76624c19f204c1759beb6bc4e96ec9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Create
PropertySheetA
ImageList_GetImageCount
ImageList_ReplaceIcon

gdi32

CreateRoundRectRgn
CreateBitmapIndirect
Polyline
SetTextAlign
ExtCreateRegion
GetTextExtentPoint32A
RectVisible
GetTextExtentPointW
GetMiterLimit
DeleteObject
GetPaletteEntries
DeleteMetaFile
SetBkMode
CreateDiscardableBitmap
BitBlt
GetBrushOrgEx
SelectPalette

user32

CallWindowProcW
DialogBoxIndirectParamW
IsWindowEnabled
GetFocus
SetClipboardViewer
SetInternalWindowPos
CreateAcceleratorTableW
CopyImage
OpenInputDesktop
CharUpperBuffW
GetClipboardData
PtInRect
DispatchMessageA
GetMessageA
SetForegroundWindow
EndDialog
GetParent
GetMenuItemCount
MoveWindow
TranslateMessage
OffsetRect
GetMessageExtraInfo
GetNextDlgGroupItem
ValidateRect
GetDC
DrawMenuBar
EnumWindows
CreatePopupMenu
OemToCharBuffA
FindWindowExA
GetWindowContextHelpId
SetWindowContextHelpId
MapDialogRect
EndTask
GetForegroundWindow
TranslateAcceleratorW
AppendMenuA
GetSubMenu
SetUserObjectInformationW
ReleaseDC
EndPaint
PeekMessageA
BeginPaint
GetSystemMenu
SetPropW
IsWindowVisible
SetSysColors
CopyRect
CloseWindow
BroadcastSystemMessageA

kernel32

CreateDirectoryW
GetConsoleDisplayMode
SetHandleInformation
TlsAlloc
OpenSemaphoreW
GetModuleHandleExW
lstrcpynW
HeapSize
FileTimeToSystemTime
GetFileInformationByHandle
SetCommTimeouts
GlobalSize
LoadLibraryA
GetComputerNameExW
OpenFile
GetTimeZoneInformation
AreFileApisANSI
DeleteCriticalSection
ContinueDebugEvent
WriteProfileSectionA
GetDiskFreeSpaceExW
GetStartupInfoW
HeapFree
MoveFileExA
GetOEMCP
OpenEventW
GetTimeFormatA
GetFileSize
IsDBCSLeadByte
WaitForSingleObject
FileTimeToLocalFileTime
SearchPathA
ShowConsoleCursor
GetConsoleFontSize
GetTickCount
HeapAlloc
UnmapViewOfFile
HeapValidate
GetModuleHandleExA
LocalUnlock
DosDateTimeToFileTime
GetProfileStringW
GetLongPathNameW
UnlockFile
CreateFileMappingW
SetFileTime
lstrcatA

advapi32

LsaQueryInfoTrustedDomain
RegCreateKeyExA
IsValidSecurityDescriptor
CreateProcessWithLogonW
SetThreadToken
GetSidSubAuthority
OpenEventLogW
SetSecurityDescriptorDacl
QueryServiceConfigW
SystemFunction006
RegEnumKeyExW

msvcrt

_vsnprintf
iswprint
getchar
wprintf
srand
fgetwc
ftell

ntdll

RtlRandomEx
strcpy
memset

Exports

Exports

AfaDdrUzcdmu@16
BhnCwvhQaKac@12
VkpFoqhlvpVm@16
_ModifyRegistry@8
_SaveRegistry@12
WfnSzcTzvslDpup@4
LoyQqgxxqfoQjr@8

Sections

.code
Size: - Virtual size: 7.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 626B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d76624c19f204c1759beb6bc4e96ec9

Headers

File Characteristics

Imports

comctl32

gdi32

user32

kernel32

advapi32

msvcrt

ntdll

Exports

Exports

Sections

.code Size: - Virtual size: 7.5MB

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 7KB - Virtual size: 7KB

.tls Size: 512B - Virtual size: 137B

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 1024B - Virtual size: 626B

.code
Size: - Virtual size: 7.5MB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 7KB - Virtual size: 7KB

.tls
Size: 512B - Virtual size: 137B

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 1024B - Virtual size: 626B