1271188d15304d521b9d6c39f51e237a2a76cfcd40a55e1e2af3a791adbeb8d9

Sharing

Copy URL Twitter E-mail

General

Target

1271188d15304d521b9d6c39f51e237a2a76cfcd40a55e1e2af3a791adbeb8d9
Size

246KB
MD5

55a31a469e88602189dc5fe0ce5519e0
SHA1

ceb30b02df50234a1007918c4152de2997d90531
SHA256

1271188d15304d521b9d6c39f51e237a2a76cfcd40a55e1e2af3a791adbeb8d9
SHA512

57e7c023b50b8892c61387044e5fd67ae9f50f1fbcd41c98c5b030555f0929f5b0e3cb1f61b17617090fbc56a7cff8a61574e115d7b02df29954d375c9e7df8d
SSDEEP

3072:SCIih+ybbe65o5Ne7zzokLgfHIG/Bdtv8YsRU3Pt4Sr6iTRUY8Wi0iOGd8KojKiV:Sv2+ybSBe7zur/BQq314SQYzi0FeojP

Score

N/A

Malware Config

Signatures

Files

1271188d15304d521b9d6c39f51e237a2a76cfcd40a55e1e2af3a791adbeb8d9
.exe windows x86

bb6f7c942e0f07ab1b5f22beed7721b2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

SheSetCurDrive
RealShellExecuteW
RegenerateUserEnvironment
ShellExecuteW
SheConvertPathW
SheChangeDirW
ShellAboutW
StrChrW
StrRChrW
SheGetDirW
SheShortenPathW

comctl32

ord2
CreateToolbarEx
ord4
CreateStatusWindowW

ntdll

_alldiv
_allmul
RtlExtendedLargeIntegerDivide
_chkstk
RtlExtendedIntegerMultiply
RtlLargeIntegerToChar
RtlMultiByteToUnicodeN
wcscpy
wcslen

user32

MessageBoxW
CallNextHookEx
PostQuitMessage
GetSystemMenu
DefFrameProcW
InternalGetWindowText
GetScrollPos
DrawIcon
SetCursorPos
DefMDIChildProcW
GetActiveWindow
LoadAcceleratorsW
RegisterWindowMessageW
SetWindowsHookW
LoadIconW
RegisterClassW
GetSystemMetrics
FindWindowW
GetLastActivePopup
SetInternalWindowPos
InsertMenuA
GetMenuItemCount
GetMenuItemID
IsDialogMessageW
SetForegroundWindow
DrawMenuBar
DeleteMenu
GetDoubleClickTime
BeginPaint
EndPaint
OffsetRect
SetWindowTextW
GetWindowTextW
RegisterClipboardFormatW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetWindowPos
SetDlgItemTextW
SendDlgItemMessageW
GetDlgItemTextW
CheckDlgButton
IsDlgButtonChecked
EndDialog
GetWindowPlacement
GetInternalWindowPos
GetDesktopWindow
GetCursorPos
CharNextW
IsWindow
InsertMenuW
CreateDialogParamW
DialogBoxParamW
CheckMenuItem
WinHelpW
LoadCursorW
ShowCursor
EnableMenuItem
KillTimer
SetTimer
MsgWaitForMultipleObjects
DefWindowProcW
IsIconic
MessageBeep
CharUpperW
CharLowerW
ClientToScreen
ScreenToClient
SetRect
SetCapture
GetMessageW
GetCapture
PtInRect
ReleaseCapture
DragObject
GetKeyState
SetCursor
CharUpperBuffW
IntersectRect
InflateRect
FrameRect
InvalidateRect
GetWindow
GetParent
PostMessageW
EnableWindow
TranslateMDISysAccel
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
PeekMessageW
GetDC
ReleaseDC
GetClientRect
CreateWindowExW
DestroyWindow
GetWindowRect
MoveWindow
ShowWindow
GetFocus
SetFocus
GetSubMenu
GetMenuStringW
LoadStringW
wsprintfW
GetMenuState
FillRect
GetSysColor
DrawTextW
DrawFocusRect
SetWindowLongW
GetWindowLongW
GetDlgItem
UpdateWindow
SendMessageW
GetMenu
wvsprintfW
GetWindowTextLengthW

advapi32

RegEnumKeyExW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyW
RegQueryValueExW
RegSetValueW
RegOpenKeyExW
RegQueryValueW
RegCloseKey
RegFlushKey

kernel32

LoadLibraryA
VirtualAlloc
HeapAlloc
HeapFree
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetStdHandle
GetFileType
SetHandleCount
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
RtlUnwind
GetCurrentProcess
TerminateProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
CompareStringW
LocalSize
WaitForSingleObject
ExitProcess
ResetEvent
GetDriveTypeW
WriteProfileStringW
FormatMessageW
GetCommandLineW
MoveFileW
DeleteFileW
GetModuleHandleW
IsDBCSLeadByte
EnterCriticalSection
LeaveCriticalSection
GetTickCount
DeleteCriticalSection
GetCurrentThread
InitializeCriticalSection
GetThreadLocale
SetErrorMode
CreateEventW
SetEvent
SetThreadPriority
GetProfileStringW
FindResourceW
LoadResource
SizeofResource
GetLocaleInfoW
FindFirstFileW
MulDiv
GetFileInformationByHandle
CreateFileW
DeviceIoControl
SetFileAttributesW
RemoveDirectoryW
CreateDirectoryExW
CreateDirectoryW
GetDiskFreeSpaceW
CloseHandle
ExitThread
CreateThread
GetCompressedFileSizeW
VerLanguageNameW
lstrcpyA
GlobalFree
GetACP
GlobalAlloc
GlobalReAlloc
GlobalLock
GlobalUnlock
LocalReAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetUserDefaultLCID
GetNumberFormatW
GetTimeFormatW
GetDateFormatW
GetSystemDirectoryW
WideCharToMultiByte
LoadLibraryW
GetProcAddress
FreeLibrary
FindFirstChangeNotificationW
FindCloseChangeNotification
FindNextChangeNotification
LocalFree
lstrcmpW
LocalAlloc
lstrcatW
WritePrivateProfileStringW
GetPrivateProfileStringW
lstrcmpiW
MultiByteToWideChar
GetModuleFileNameW
GetPrivateProfileIntW
lstrcpynW
CopyFileW
GetVolumeInformationW
GetFileAttributesW
FindClose
FindNextFileW
lstrlenW
GetLastError
lstrcpyW

gdi32

TextOutW
GetStockObject
DeleteDC
CreateCompatibleDC
CreateDIBitmap
CreateFontW
GetDeviceCaps
SetBkMode
TranslateCharsetInfo
GetObjectW
CreateFontIndirectW
SetTextColor
PatBlt
ExtTextOutW
GetTextMetricsW
CreateSolidBrush
DeleteObject
SetBkColor
GetTextExtentPoint32W
SelectObject
BitBlt

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb6f7c942e0f07ab1b5f22beed7721b2

Headers

File Characteristics

Imports

shell32

comctl32

ntdll

user32

advapi32

kernel32

gdi32

Sections

.text Size: 140KB - Virtual size: 140KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 7KB - Virtual size: 44KB

.rsrc Size: 69KB - Virtual size: 69KB

.reloc Size: 15KB - Virtual size: 15KB

.text
Size: 140KB - Virtual size: 140KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 7KB - Virtual size: 44KB

.rsrc
Size: 69KB - Virtual size: 69KB

.reloc
Size: 15KB - Virtual size: 15KB