af190b35624eda40f45c52b8d59c7067ea10cbb81b807dd9298388f5057a19c0

Sharing

Copy URL Twitter E-mail

General

Target

af190b35624eda40f45c52b8d59c7067ea10cbb81b807dd9298388f5057a19c0
Size

848KB
MD5

d2fc7e8e9690b684eb06427724aed550
SHA1

49799eb2d8b13a2a986a98aa084b07f358644242
SHA256

af190b35624eda40f45c52b8d59c7067ea10cbb81b807dd9298388f5057a19c0
SHA512

cc059e5984b8f3d285229174834c963f4c5e9e61ca6fc29384ab31446acc6560e7264ebcb68d81f7bcdfb56c3c4f5057f093e31aaec22a362a53ee7def2b8365
SSDEEP

12288:C8gW+wAjKSv1UXmSiS1vZ98KzRDjOKCPnqv1leLLHF0pk5oka5RVBwH7YxDr:1gc4iX7igNh021lePl0CdiiHUl

Score

N/A

Malware Config

Signatures

Files

af190b35624eda40f45c52b8d59c7067ea10cbb81b807dd9298388f5057a19c0
.exe windows x86

0af02a81ad4a73f613d8785e66858487

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFileInfoW

comdlg32

FindTextA
GetSaveFileNameW

comctl32

MakeDragList
ImageList_Read
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_SetImageCount
InitCommonControlsEx
ImageList_SetIconSize

user32

RegisterClassExA
GetKeyboardLayoutNameA
WINNLSGetIMEHotkey
TranslateAcceleratorA
DestroyWindow
CreateWindowExA
RegisterClassA
OpenWindowStationA
CharToOemW
CreateWindowExW
EnumWindowStationsA
DlgDirListComboBoxW
ShowWindow
GetComboBoxInfo
InsertMenuW
SetScrollInfo
DefWindowProcW
ValidateRect
NotifyWinEvent
ToUnicodeEx
MessageBoxW
GrayStringW

kernel32

GetLocaleInfoA
FreeLibrary
GetProcessHeap
DeleteFileA
SetFilePointer
EnumDateFormatsA
OutputDebugStringA
HeapReAlloc
VirtualAlloc
GetConsoleCP
GetCurrentProcessId
WriteConsoleOutputAttribute
SetConsoleCtrlHandler
SetEnvironmentVariableA
GetCommandLineW
OpenMutexA
GetCurrentProcess
RaiseException
GetTickCount
TlsFree
TlsGetValue
GetProcAddress
SetLastError
FlushFileBuffers
SetUnhandledExceptionFilter
HeapFree
InterlockedDecrement
GetACP
GetDateFormatA
SetHandleCount
IsValidCodePage
GetStringTypeW
FreeEnvironmentStringsW
LeaveCriticalSection
InterlockedExchange
HeapCreate
GetStdHandle
SetLocaleInfoW
LoadLibraryW
GetSystemTimeAsFileTime
GetTimeFormatA
SetStdHandle
RtlUnwind
GetConsoleMode
GetTimeZoneInformation
lstrlenA
WideCharToMultiByte
LCMapStringA
GetModuleHandleW
WriteConsoleA
GetLocaleInfoW
MultiByteToWideChar
VirtualQuery
TlsSetValue
InterlockedIncrement
HeapSize
WriteFile
EnumDateFormatsExW
HeapValidate
HeapDestroy
TlsAlloc
CreateMutexA
QueryPerformanceCounter
HeapAlloc
InitializeCriticalSectionAndSpinCount
CloseHandle
GetOEMCP
IsDebuggerPresent
CompareStringW
VirtualFree
UnhandledExceptionFilter
GetModuleFileNameW
OutputDebugStringW
IsBadReadPtr
GetCurrentThread
LCMapStringW
GetFileType
GetCommandLineA
GetEnvironmentStringsW
LoadLibraryA
GetLastError
GetCPInfo
ReadFile
DebugBreak
EnterCriticalSection
GetUserDefaultLCID
ExitProcess
GetStartupInfoW
LoadLibraryExW
Sleep
CompareStringA
IsValidLocale
GetCurrentThreadId
CreateFileA
GetModuleHandleA
EnumSystemLocalesA
TerminateProcess
GetConsoleOutputCP
WriteConsoleW
DeleteCriticalSection
GetModuleFileNameA
GetStringTypeA
GetStartupInfoA

advapi32

RegLoadKeyA
CryptSetProviderW

Sections

.text
Size: 283KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 419KB - Virtual size: 418KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0af02a81ad4a73f613d8785e66858487

Headers

File Characteristics

Imports

shell32

comdlg32

comctl32

user32

kernel32

advapi32

Sections

.text Size: 283KB - Virtual size: 283KB

.rdata Size: 419KB - Virtual size: 418KB

.data Size: 136KB - Virtual size: 163KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 283KB - Virtual size: 283KB

.rdata
Size: 419KB - Virtual size: 418KB

.data
Size: 136KB - Virtual size: 163KB

.rsrc
Size: 8KB - Virtual size: 8KB