c6334a7ddf24250dc74015d63bc0e853c679919e889eb78e989bf0c3910ca276

Sharing

Copy URL Twitter E-mail

General

Target

c6334a7ddf24250dc74015d63bc0e853c679919e889eb78e989bf0c3910ca276
Size

83KB
MD5

5a72ffe583404f46fe15b869bcc86760
SHA1

2f6b48defd7a65010ea58e20dad78f22988d3ef1
SHA256

c6334a7ddf24250dc74015d63bc0e853c679919e889eb78e989bf0c3910ca276
SHA512

de1ebd3439e79cedbd8dbbd151756be9afe7b5321fa5d4258d5365eb92691f6c3f723fd2c8fd06244339ddd39a6d7b67caeec4c0eed053594f72d76a5acd210f
SSDEEP

1536:wgBJfwDk0OtEmo2wImfu9kTdsJJiPhTFmnhu1DL5SwRLRSqxK:VOmnwLUPJiJxmhAl1PSqx

Score

N/A

Malware Config

Signatures

Files

c6334a7ddf24250dc74015d63bc0e853c679919e889eb78e989bf0c3910ca276
.dll windows x86

c299a1d630c096e1fca2c0be9a9a044c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BeginUpdateResourceA
CloseHandle
CopyFileExW
CreateSemaphoreA
DefineDosDeviceW
EnumLanguageGroupLocalesA
EnumTimeFormatsA
ExitProcess
FileTimeToDosDateTime
FindFirstVolumeW
FindVolumeClose
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCommandLineA
GetCurrentDirectoryA
GetLocaleInfoA
GetModuleHandleA
GetOEMCP
GetProcessHeaps
GetProfileIntW
GetProfileStringW
GetStartupInfoA
GetTapeParameters
GetThreadPriority
GetVersionExA
HeapAlloc
HeapCreate
IsDBCSLeadByte
MapViewOfFile
MulDiv
OutputDebugStringW
ResumeThread
SetCommConfig
SetEvent
SetFileApisToANSI
SetLastError
SetLocaleInfoA
SetProcessPriorityBoost
SetThreadAffinityMask
TlsAlloc
UnlockFileEx
VirtualProtectEx

user32

SetTimer
SetScrollInfo
SetDlgItemTextA
SetUserObjectSecurity
ShowWindow
SystemParametersInfoA
RegisterClassExA
SetWindowPos
PostMessageA
MsgWaitForMultipleObjects
ModifyMenuA
LoadImageA
IsZoomed
IsIconic
InvalidateRect
InflateRect
GetWindowDC
GetUpdateRgn
GetMenuCheckMarkDimensions
GetMenu
FrameRect
FindWindowA
EnumWindows
EnableWindow
EnableMenuItem
EmptyClipboard
DialogBoxIndirectParamA
DestroyIcon
DeleteMenu
DeferWindowPos
AppendMenuA
wsprintfA
SendMessageTimeoutA

msi

MsiInstallProductA
MsiInstallMissingFileW
MsiGetUserInfoA
MsiOpenDatabaseW
MsiProvideComponentFromDescriptorA
MsiProvideQualifiedComponentW
MsiSummaryInfoSetPropertyW
MsiGetFileHashA
MsiGetFeatureValidStatesW
MsiGetFeatureStateA
MsiGetFeatureCostW
MsiGetFeatureCostA
MsiGetComponentStateW
MsiDeleteUserDataW
MsiCreateAndVerifyInstallerDirectory
MsiApplyPatchA
MsiMessageBoxA
MsiAdvertiseProductW
MsiAdvertiseProductExW
MsiQueryFeatureStateFromDescriptorA
MsiSummaryInfoPersist
MsiSummaryInfoGetPropertyW
MsiSetExternalUIW
MsiSetComponentStateA
MsiSequenceA
MsiRecordGetStringA
MsiRecordClearData
MsiSummaryInfoSetPropertyA

oleacc

GetOleaccVersionInfo

oledlg

OleUIAddVerbMenuA
OleUIBusyA
OleUIConvertA

dbghelp

SymGetSymFromAddr64
SymFunctionTableAccess64
SymEnumSourceFiles
MiniDumpReadDumpStream

comctl32

GetMUILanguage
ImageList_LoadImageW
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_DrawEx
ImageList_Draw
ImageList_DragLeave
ImageList_AddIcon
ImageList_Add
GetEffectiveClientRect
FlatSB_GetScrollRange
FlatSB_GetScrollPos
DrawStatusTextA
DestroyPropertySheetPage
CreateUpDownControl
CreatePropertySheetPageW
CreatePropertySheetPageA
CreateMappedBitmap
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetImageCount
InitCommonControlsEx
MakeDragList
PropertySheetA
ImageList_Read

comdlg32

dwLBSubclass
ReplaceTextA
PrintDlgExW
GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW
FindTextW

security

SealMessage
QuerySecurityPackageInfoW
QueryContextAttributesW
ApplyControlToken
AcquireCredentialsHandleW

advapi32

StartTraceW
SetUserFileEncryptionKey
RegSetValueW
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyA
ObjectOpenAuditAlarmW
LsaSetInformationPolicy
LsaOpenAccount
LsaClearAuditLog
InitiateSystemShutdownExW
GetServiceDisplayNameW
GetNamedSecurityInfoW
GetFileSecurityA
GetAccessPermissionsForObjectW
EqualPrefixSid
ElfOpenEventLogW
CryptDestroyHash
CryptContextAddRef
ControlTraceA
CommandLineFromMsiDescriptor
ChangeServiceConfig2A
BuildTrusteeWithSidA

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c299a1d630c096e1fca2c0be9a9a044c

Headers

File Characteristics

Imports

kernel32

user32

msi

oleacc

oledlg

dbghelp

comctl32

comdlg32

security

advapi32

Sections

.text Size: 52KB - Virtual size: 52KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 52KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB