1be70aadab1048bf2cbf71ee7fdb951cf47f04065674e6ad83d114a670f5a170

Sharing

Copy URL Twitter E-mail

General

Target

1be70aadab1048bf2cbf71ee7fdb951cf47f04065674e6ad83d114a670f5a170
Size

164KB
MD5

5664b9abe1b27ac646d149a4e0383d3a
SHA1

95ae306087d40d64757c8328d5ecad288025a254
SHA256

1be70aadab1048bf2cbf71ee7fdb951cf47f04065674e6ad83d114a670f5a170
SHA512

478e753a03a9bcb5040acd1122d1f274cef481711d0e9858474c84f36e9dbdc5d5eddab5ee205ff3ab4d8a33872251f0d130ace7f12cf017efe510424576fb7e
SSDEEP

3072:ASpYdBUSchnEDRjIs+IrRiSv4Z9QkDIUCeTxnMwwYeIfB4cOS8oCRcLYB3IMgHZp:1edBUSeWjwwRiMGDIUCe1nMwuIfB4cOy

Score

N/A

Malware Config

Signatures

Files

1be70aadab1048bf2cbf71ee7fdb951cf47f04065674e6ad83d114a670f5a170
.exe windows x86

231aceafd51f91613266e30e167004a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconA
SHGetSpecialFolderLocation
SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetFolderPathA
SHFileOperationA
SHGetFolderPathA
SHGetFileInfoA
SHGetSpecialFolderLocation
Shell_NotifyIconA
SHGetFileInfoA
SHGetDiskFreeSpaceA
DragQueryFileA
SHGetDesktopFolder

advapi32

RegLoadKeyA
RegEnumKeyA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
RegDeleteValueA
RegDeleteValueA
RegEnumKeyA

user32

DrawEdge
GetCursorPos
EnableScrollBar
GetFocus
TrackPopupMenu
SetTimer
GetPropA
CharLowerA
CallWindowProcA
EndDeferWindowPos
DrawIcon
GetParent
GetDC
SystemParametersInfoA
GetScrollInfo
BeginDeferWindowPos
SetWindowLongA
GetDlgItem
GetDesktopWindow
GetDCEx
GetScrollPos
FrameRect
GetMessagePos
IsMenu
GetForegroundWindow
DispatchMessageW
SetCursor
CreateMenu
GetCursor
CharLowerBuffA
DeferWindowPos
ShowWindow
EndPaint
EnableWindow
EnumWindows
DefWindowProcA
SetWindowTextA
GetSysColorBrush
RegisterClassA
GetSubMenu
GetKeyState
CreateIcon
EnumThreadWindows
GetKeyNameTextA
GetScrollRange
GetMenu
HideCaret
CallNextHookEx
GetClientRect
GetWindow
IsDialogMessageA
CheckMenuItem
GetCapture
GetMenuState
GetWindowTextA
GetMenuStringA
DrawFrameControl
MessageBoxA
GetClipboardData
EqualRect
GetLastActivePopup
IsWindowVisible
DrawTextA
DispatchMessageA
BeginPaint
FillRect
GetIconInfo
DrawMenuBar
DrawIconEx
CreateWindowExA
IsChild
CharNextA
GetMenuItemInfoA
GetClassLongA
GetMenuItemCount
GetSysColor
CreatePopupMenu
ShowScrollBar
GetMenuItemID
ClientToScreen
GetClassInfoA
DefFrameProcA
EnableMenuItem
FindWindowA
DefMDIChildProcA
CharToOemA
EnumChildWindows
IsWindowEnabled
GetActiveWindow
SetWindowPos
SetWindowLongA
EndDeferWindowPos
GetCapture
GetIconInfo
GetMenuStringA
CallWindowProcA
GetClientRect
GetDlgItem
FillRect
EnableWindow
GetMenuState
DrawFrameControl
IsWindowVisible
EndPaint
DrawIconEx
EqualRect
CharLowerBuffA
SystemParametersInfoA
GetCursor
RegisterClassA
IsWindowEnabled
BeginDeferWindowPos
CreateIcon
EnumWindows
CreatePopupMenu
CharNextA
SetWindowPos
GetFocus
SetTimer
SetWindowPos
GetFocus
GetMenuState
GetClassInfoA
DrawIcon
GetCursorPos
GetIconInfo
SetTimer
GetKeyState
GetCursor
BeginDeferWindowPos
SetWindowLongA
GetDC
GetDesktopWindow
CharLowerA
DispatchMessageA
FrameRect
EnumChildWindows
CharToOemA
DrawFrameControl
GetWindow
RegisterClassA
EndDeferWindowPos
GetActiveWindow

comdlg32

FindTextA
GetOpenFileNameA
GetOpenFileNameA
FindTextA
ChooseColorA
GetFileTitleA
GetOpenFileNameA
FindTextA
ChooseColorA
GetFileTitleA

ole32

CoReleaseMarshalData
CoCreateGuid
CLSIDFromProgID

gdi32

SetPixel
CreatePalette
GetDIBits
LineTo
SaveDC
CreateDIBSection

comctl32

ImageList_Add
ImageList_Remove
ImageList_Read
ImageList_Write
ImageList_Draw
ImageList_Destroy
ImageList_Create
ImageList_Remove
ImageList_Destroy
ImageList_Read
ImageList_Draw
ImageList_GetBkColor
ImageList_Destroy
ImageList_Write
ImageList_DragShowNolock
ImageList_Draw
ImageList_Add
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Create
ImageList_Remove
ImageList_Read
ImageList_DragShowNolock
ImageList_Add

shlwapi

SHQueryValueExA
SHSetValueA
PathIsContentTypeA
PathFileExistsA

msvcrt

time
memmove
exit
memset
memcmp
rand
sprintf
fabs
ceil
swprintf
log10
atol
tolower
memcpy
mbstowcs
_acmdln
strlen
abs
fabs
sin
wcstol
calloc
wcschr
memset
sprintf
strcmp
malloc
calloc
log10
tolower
exp
sin
atol
strlen
exit
sqrt
sprintf
memcpy
wcsncmp
_acmdln
log
fabs
wcsncmp
mbstowcs
calloc
tolower
exp
abs
clock
memcpy
sprintf
pow
memset
wcscspn
atol
wcschr

oleaut32

OleLoadPicture

version

GetFileVersionInfoA
VerInstallFileA
VerQueryValueA
VerInstallFileA
VerFindFileA

kernel32

GetVersion
lstrcmpA
DeleteCriticalSection
GlobalAddAtomA
VirtualAlloc
HeapAlloc
GetFileSize
GetStartupInfoA
GetModuleHandleA
VirtualAllocEx
lstrlenA
Sleep
LoadLibraryExA
GetLastError
WideCharToMultiByte
GetCurrentThreadId
GetCurrentThread
CreateThread
GetVersionExA
ExitThread
GetCurrentProcess
GetDateFormatA
GetThreadLocale
InitializeCriticalSection
GetACP
GetProcAddress
CompareStringA
ResetEvent

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 116KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

231aceafd51f91613266e30e167004a1

Headers

File Characteristics

Imports

shell32

advapi32

user32

comdlg32

ole32

gdi32

comctl32

shlwapi

msvcrt

oleaut32

version

kernel32

Sections

.text Size: 45KB - Virtual size: 44KB

.bss Size: 116KB - Virtual size: 231KB

.edata Size: 2KB - Virtual size: 1KB

.text
Size: 45KB - Virtual size: 44KB

.bss
Size: 116KB - Virtual size: 231KB

.edata
Size: 2KB - Virtual size: 1KB