358ca5812097dd6a35aa2c1d5510a2c48ea39a4482bae2676da779ec15046b1e

Sharing

Copy URL Twitter E-mail

General

Target

358ca5812097dd6a35aa2c1d5510a2c48ea39a4482bae2676da779ec15046b1e
Size

764KB
MD5

8dba74fda7c9c2fecae176340e3baf34
SHA1

20ae0d8acbf153e84c2e390a35f74091dce09256
SHA256

358ca5812097dd6a35aa2c1d5510a2c48ea39a4482bae2676da779ec15046b1e
SHA512

976cd64e04e44c6f16cd9ea01557f8c0ff5dd716446ecdb5eff45363372a85688ee398a9c5e6221c85a1f1a52402072ab70d99f962955facf1f17811e71f587b
SSDEEP

12288:QR9nJgLAzUHD91Hq6A5mLCC+nmwwFHKR4fFHxm1LBUqrSvf/1OHG4DVClkae/4s:k9JgEUJEYCC+nmwwFHKCa9B0vneQ

Score

N/A

Malware Config

Signatures

Files

358ca5812097dd6a35aa2c1d5510a2c48ea39a4482bae2676da779ec15046b1e
.exe windows x86

129a760787f5bd03e52a79c191b8462e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
InitializeCriticalSection
FlushFileBuffers
GetLocaleInfoA
GetTimeFormatA
GetStdHandle
GetOEMCP
InterlockedExchange
VirtualAlloc
GetProcAddress
SetHandleCount
AllocConsole
GetCommandLineW
GetCommandLineA
GetLocaleInfoW
GetStringTypeW
TlsAlloc
GetSystemInfo
LCMapStringW
GetCurrentProcessId
WriteFile
SetLastError
CompareStringW
GetTickCount
GetCurrentProcess
WideCharToMultiByte
GetCurrentThreadId
GetStartupInfoW
VirtualQuery
GetModuleFileNameW
RtlUnwind
GetEnvironmentStrings
EnumSystemLocalesA
EnterCriticalSection
CreateMutexA
EnumDateFormatsA
OpenMutexA
SetStdHandle
FreeEnvironmentStringsW
SetFilePointer
EnumCalendarInfoW
GetEnvironmentStringsW
FreeEnvironmentStringsA
HeapAlloc
lstrcmpiW
IsValidCodePage
GetACP
MultiByteToWideChar
GetModuleFileNameA
GetCPInfo
SetVolumeLabelA
HeapSize
GetUserDefaultLCID
GetModuleHandleA
UnhandledExceptionFilter
CompareStringA
GetSystemTimeAsFileTime
HeapValidate
HeapFree
GetLastError
QueryPerformanceCounter
GetLocalTime
HeapReAlloc
CloseHandle
LeaveCriticalSection
IsValidLocale
GetTimeZoneInformation
HeapDestroy
SetEnvironmentVariableA
IsBadWritePtr
GlobalAlloc
GetStartupInfoA
DeleteCriticalSection
lstrcat
LoadLibraryA
VirtualProtect
WritePrivateProfileStringA
ExitProcess
UnlockFileEx
GetVersionExA
HeapCreate
LCMapStringA
GetFileType
TlsGetValue
DuplicateHandle
GetStringTypeA
TlsFree
TerminateProcess
GetDateFormatA
VirtualFree
TlsSetValue
GetCurrentThread

gdi32

RoundRect
GetStockObject
EnumMetaFile
SetDeviceGammaRamp
TranslateCharsetInfo
GetMetaFileW
OffsetClipRgn
SetICMProfileA
EnumFontsW

advapi32

CryptSetProvParam
RegEnumKeyExW
RegSetValueExW
RegQueryValueA

comctl32

ImageList_DragShowNolock
ImageList_DrawEx
InitCommonControlsEx
DrawInsert
ImageList_GetDragImage
ImageList_Merge
ImageList_AddIcon
ImageList_LoadImage
ImageList_GetIconSize
ImageList_DragEnter
CreateStatusWindowA
ImageList_SetFlags
ImageList_DragMove
ImageList_Create
DrawStatusTextW
ImageList_SetFilter
DrawStatusTextA
ImageList_AddMasked
CreatePropertySheetPageA
ImageList_SetBkColor
ImageList_GetFlags

user32

GetKeyNameTextW
DestroyWindow
ChangeMenuA
SystemParametersInfoW
BroadcastSystemMessageW
ToUnicode
LookupIconIdFromDirectory
UnhookWindowsHookEx
InvalidateRgn
SetScrollRange
OpenIcon
DefWindowProcA
SetParent
LoadIconA
DrawStateW
UnregisterClassW
DrawTextExW
GetMessageW
GetAsyncKeyState
IsWindowVisible
DialogBoxParamA
GetMenuContextHelpId
CopyImage
RegisterClassA
DlgDirSelectExW
MapVirtualKeyA
SystemParametersInfoA
EndTask
CharLowerBuffA
LoadAcceleratorsA
MonitorFromPoint
LoadAcceleratorsW
OpenInputDesktop
GetCaretBlinkTime
SetMessageExtraInfo
EnumDesktopWindows
GetKeyboardType
IsZoomed
EnumClipboardFormats
ShowWindow
CreateWindowExW
SetSystemCursor
ScreenToClient
DdeQueryStringA
SetCaretBlinkTime
SetWindowsHookW
CharToOemBuffW
SetDlgItemInt
CreateDesktopW
RealGetWindowClass
SetWindowsHookExA
SetDebugErrorLevel
DlgDirSelectExA
CreateDialogParamW
GetUserObjectInformationA
PostMessageW
LoadKeyboardLayoutW
MessageBoxW
RegisterClassExA
AnimateWindow

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

129a760787f5bd03e52a79c191b8462e

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

comctl32

user32

Sections

.text Size: 176KB - Virtual size: 173KB

.rdata Size: 408KB - Virtual size: 407KB

.data Size: 132KB - Virtual size: 133KB

.rsrc Size: 44KB - Virtual size: 42KB

.text
Size: 176KB - Virtual size: 173KB

.rdata
Size: 408KB - Virtual size: 407KB

.data
Size: 132KB - Virtual size: 133KB

.rsrc
Size: 44KB - Virtual size: 42KB