18175bc1f3a7984661c31fe2f15a4560f00014c4ba5eda7e6c1cd14c8f5f579d

Sharing

Copy URL

Twitter E-mail

General

Target

18175bc1f3a7984661c31fe2f15a4560f00014c4ba5eda7e6c1cd14c8f5f579d
Size

178KB
MD5

29756253923bedb066b4754e8ac76c46
SHA1

48779bf44621ae869d4fa273bce2f579498f9554
SHA256

18175bc1f3a7984661c31fe2f15a4560f00014c4ba5eda7e6c1cd14c8f5f579d
SHA512

11e1437b694dc565c36ff566163c8814a1db3ab70399022fe922d328020e68d22cd259097a956a063df2568762f8e26d1a53758a90cf5fe6ecc8a0e8ba627781
SSDEEP

3072:Ptn44KzldJMLrivtwFoUaOBgjaN+KKIRnz83dmpPNa8BSVdKO4GeXI89CcYg0IUK:F44KzlAi1YoUlBEsvRqdmpPFjt9DiIpR

Score

N/A

Malware Config

Signatures

Files

18175bc1f3a7984661c31fe2f15a4560f00014c4ba5eda7e6c1cd14c8f5f579d
.exe windows x86

53f43e941f57e5c17a9a08a348c29c26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
CreateEventA
CreateFileA
CreateFileMappingA
CreateMutexA
DeleteCriticalSection
DeleteFileA
DeleteFileW
DuplicateHandle
EnterCriticalSection
ExitThread
ExpandEnvironmentStringsA
FindClose
FlushFileBuffers
FreeResource
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcessId
GetDiskFreeSpaceA
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeProcess
GetExitCodeThread
GetFileSize
GetFileTime
GetFullPathNameA
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcessHeap
GetStartupInfoA
GetStringTypeA
GetStringTypeExA
GetSystemDefaultLCID
GetTempPathW
GetUserDefaultLCID
GetUserDefaultLangID
GetVersionExA
GlobalFindAtomA
GlobalFree
GlobalUnlock
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
IsValidCodePage
LCMapStringA
LocalFileTimeToFileTime
LocalFree
LockResource
OutputDebugStringA
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
TerminateThread
TlsAlloc
TlsGetValue
UnmapViewOfFile
VirtualAlloc
WaitForSingleObject
WriteConsoleA
lstrcmpiA
lstrcmpiW

user32

AdjustWindowRectEx
CallWindowProcA
CreateWindowExA
DestroyWindow
DrawIcon
DrawIconEx
EnableMenuItem
EndDialog
FillRect
GetCursorPos
GetDCEx
GetKeyState
GetMenu
GetMenuItemCount
GetParent
GetScrollPos
GetSysColorBrush
GetWindowLongA
InsertMenuItemA
IsChild
IsWindowEnabled
IsZoomed
KillTimer
PeekMessageA
ReleaseCapture
ScrollWindow
SetActiveWindow
SetClipboardData
SetCursor
SetScrollPos
SetWindowLongA
SetWindowTextA
ShowWindow
TranslateMessage
UpdateWindow
WinHelpA

gdi32

BitBlt
CloseEnhMetaFile
CombineRgn
CreateFontA
CreateICA
CreateICW
CreatePatternBrush
DPtoLP
DeleteObject
Ellipse
EndPage
EnumFontFamiliesW
EnumMetaFile
ExtCreatePen
ExtSelectClipRgn
ExtTextOutA
GetClipBox
GetDCOrgEx
GetDIBits
GetEnhMetaFileHeader
GetMapMode
GetObjectType
GetPixel
GetROP2
GetStockObject
GetTextExtentExPointW
GetTextExtentPoint32W
GetViewportExtEx
GetViewportOrgEx
GetWindowOrgEx
OffsetClipRgn
PlayEnhMetaFile
PolyBezierTo
PolylineTo
RoundRect
ScaleWindowExtEx
SetArcDirection
SetBkMode
SetBrushOrgEx
SetGraphicsMode
SetPixel
SetViewportOrgEx
StartDocA
StartDocW
StrokeAndFillPath

shell32

ExtractIconW
FindExecutableW
SHAddToRecentDocs
SHBindToParent
SHBrowseForFolder
SHBrowseForFolderA
SHBrowseForFolderW
SHFileOperationA
SHGetDesktopFolder
SHGetFileInfo
SHGetFolderLocation
SHGetFolderPathW
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetSettings
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
ShellExecuteExA
ShellExecuteW
Shell_NotifyIconA

comctl32

CreatePropertySheetPageA
CreateToolbarEx
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_GetBkColor
ImageList_GetIcon
ImageList_LoadImageA
ImageList_Read
ImageList_Remove
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_Write
InitCommonControlsEx
PropertySheetA
PropertySheetW

advapi32

AddAccessAllowedAce
ConvertStringSecurityDescriptorToSecurityDescriptorW
CopySid
CryptAcquireContextA
CryptReleaseContext
DeleteService
EqualSid
GetSecurityDescriptorDacl
InitializeAcl
OpenServiceA
OpenServiceW
RegCloseKey
RegDeleteKeyA
RegDeleteValueW
RegEnumKeyA
RegEnumKeyExA
RegFlushKey
RegQueryInfoKeyA
RegQueryInfoKeyW
RegQueryValueExA
SetSecurityDescriptorGroup

ole32

CoCreateInstance
CoDisconnectObject
CoGetClassObject
CoGetMalloc
CoInitializeEx
CoReleaseMarshalData
CoTaskMemAlloc
CoTaskMemRealloc
CreateBindCtx
DoDragDrop
OleFlushClipboard
OleGetClipboard
OleSetClipboard
OleUninitialize
PropVariantClear
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
StringFromCLSID

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53f43e941f57e5c17a9a08a348c29c26

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

ole32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 26KB - Virtual size: 28KB