69a216a9f982bfef3498a2bd286f98a2c3e213f4517f4b4dc9a248054a3eec7d

Sharing

Copy URL Twitter E-mail

General

Target

69a216a9f982bfef3498a2bd286f98a2c3e213f4517f4b4dc9a248054a3eec7d
Size

141KB
MD5

45c71c078c5a8310b2344e476610b298
SHA1

e228b8b176bdc2a9687cf84c58e540035bfea019
SHA256

69a216a9f982bfef3498a2bd286f98a2c3e213f4517f4b4dc9a248054a3eec7d
SHA512

4a07d8d65e651fddd29126fb605120cd7888886dea9f610513a8acdecfbe9f50a6443703fa78b0c863c7bcc47bdfaf257d80bb86757f5a1040d5cf73157ee965
SSDEEP

3072:hHxUcp+lH3DZk4UfLufsKa3dOk0X7XpNjAoOpys8cZb39w3Wv7u:Ll+lXDZAfLufs73dOk0XDpNjNOpys8b

Score

N/A

Malware Config

Signatures

Files

69a216a9f982bfef3498a2bd286f98a2c3e213f4517f4b4dc9a248054a3eec7d
.exe windows x86

6a2fc8d37b8a0d3e10059a4768a803d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcsncpy
wcslen
wcscat
iswprint
_purecall
iswctype
wcscmp
wcschr
wcsncmp
wcsrchr
swprintf
wcscpy
memmove

advapi32

RegQueryValueExA
RegOpenKeyExA
InitializeSecurityDescriptor
RegDeleteKeyW
InitializeAcl
SetSecurityDescriptorDacl
SetSecurityDescriptorSacl
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
GetInheritanceSourceW
LookupAccountSidW
GetSidSubAuthorityCount
RegCloseKey
RegOpenKeyW
RegSetValueExW
RegCreateKeyW
RegEnumValueW
RegDeleteValueW
RegEnumKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegUnLoadKeyW
RegLoadKeyW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegConnectRegistryW
RegRestoreKeyW
RegSaveKeyW
RegFlushKey
RegSetValueW
RegSetValueExA
MapGenericMask
GetNamedSecurityInfoW
SetNamedSecurityInfoW
SetSecurityInfo
GetSecurityDescriptorSacl
GetSecurityDescriptorDacl
GetSecurityDescriptorGroup
GetSecurityDescriptorOwner
GetSecurityDescriptorControl
GetSidSubAuthority

kernel32

MulDiv
LoadLibraryW
FreeLibrary
FileTimeToLocalFileTime
FileTimeToSystemTime
GetSystemDefaultLCID
GetDateFormatW
GetTimeFormatW
ExitProcess
SearchPathW
GetFileSize
SetFilePointer
GetLastError
OutputDebugStringW
CreateFileW
WideCharToMultiByte
WriteFile
DeleteFileW
ReadFile
MultiByteToWideChar
lstrcmpW
FormatMessageW
GetThreadLocale
GetModuleHandleW
lstrcpynW
GetCommandLineW
GetProcessHeap
LocalAlloc
GetCurrentProcess
CloseHandle
LocalFree
GetComputerNameW
lstrcmpiW
lstrlenW
lstrcpyW
LocalReAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
GetProcAddress
lstrcatW
LoadLibraryA

gdi32

SetBkColor
GetStockObject
SetAbortProc
StartDocW
StartPage
SetViewportOrgEx
EndPage
EndDoc
AbortDoc
DeleteDC
CreateBitmap
CreatePatternBrush
PatBlt
ExcludeClipRect
SelectClipRgn
DeleteObject
SetTextColor
ExtTextOutW
GetDeviceCaps
CreateFontIndirectW
SelectObject
GetTextMetricsW

user32

SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
WinHelpW
EndDialog
GetWindowLongW
EndPaint
BeginPaint
CreateCaret
SetTimer
SetCapture
SetFocus
CharLowerW
MessageBeep
DestroyMenu
TrackPopupMenuEx
IsClipboardFormatAvailable
EnableMenuItem
GetSubMenu
LoadMenuW
GetKeyState
RegisterClassW
LoadCursorW
RegisterClipboardFormatW
CheckRadioButton
SendMessageW
GetWindowTextW
GetParent
GetDlgItemTextW
IsDlgButtonChecked
GetDlgCtrlID
CallWindowProcW
GetWindowTextLengthW
GetDlgItemInt
PostQuitMessage
GetWindowPlacement
SetWindowTextW
EnableWindow
DialogBoxParamW
DrawMenuBar
InsertMenuItemW
DeleteMenu
SetMenuItemInfoW
GetMenu
GetMenuItemInfoW
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsIconic
DestroyIcon
LoadImageW
GetSysColor
SetCursor
ShowCursor
ShowWindow
SetWindowPlacement
CreateWindowExW
GetProcessDefaultLayout
GetMessageW
ScreenToClient
SetCursorPos
DispatchMessageW
ClientToScreen
GetDesktopWindow
LoadIconW
PostMessageW
SetMenuDefaultItem
InsertMenuW
GetMenuItemID
CheckMenuItem
UpdateWindow
RegisterClassExW
CharNextW
GetClientRect
DestroyWindow
CreateDialogParamW
CheckDlgButton
DrawAnimatedRects
IntersectRect
ModifyMenuW
GetMessagePos
TranslateMessage
TranslateAcceleratorW
LoadAcceleratorsW
SetForegroundWindow
GetLastActivePopup
BringWindowToTop
FindWindowW
LoadStringW
GetWindow
IsDialogMessageW
PeekMessageW
MessageBoxW
CharUpperBuffW
CharUpperW
IsCharAlphaNumericW
CloseClipboard
InvalidateRect
HideCaret
ShowCaret
ScrollWindowEx
SetCaretPos
KillTimer
ReleaseCapture
DestroyCaret
wsprintfW
GetDC
ReleaseDC
DefWindowProcW
SetWindowLongW
SetDlgItemTextW
SendDlgItemMessageW
GetDlgItem
GetWindowRect
GetSystemMetrics
MoveWindow
MapWindowPoints
SetWindowPos
SetScrollInfo

comctl32

ord4
ord2
ord358
ImageList_Destroy
ord359
CreateStatusWindowW
ord329
ord337
ord338
ord334
ord236
ord340
InitCommonControlsEx
ord365
ImageList_SetBkColor
ord363
ImageList_Create
ImageList_ReplaceIcon

comdlg32

GetSaveFileNameW
GetOpenFileNameW
PrintDlgExW

shell32

DragQueryFileW
DragFinish
ShellAboutW

authz

AuthzFreeResourceManager
AuthzFreeContext
AuthzAccessCheck
AuthzInitializeResourceManager
AuthzInitializeContextFromSid

aclui

ord2

ole32

CoCreateInstance
ReleaseStgMedium
CoInitializeEx
CoUninitialize

ulib

?Resize@DSTRING@@UAEEK@Z
?Initialize@ARRAY@@QAEEKK@Z
?NewBuf@DSTRING@@UAEEK@Z
??1DSTRING@@UAE@XZ
??1OBJECT@@UAE@XZ
??0OBJECT@@IAE@XZ
?Compare@OBJECT@@UBEJPBV1@@Z
??0DSTRING@@QAE@XZ
?Initialize@WSTRING@@QAEEPBV1@KK@Z
??0ARRAY@@QAE@XZ
?Initialize@WSTRING@@QAEEPBGK@Z
?Strcat@WSTRING@@QAEEPBV1@@Z

clb

ClbSetColumnWidths
ClbAddData

ntdll

RtlFreeHeap
RtlAllocateHeap

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6a2fc8d37b8a0d3e10059a4768a803d7

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comctl32

comdlg32

shell32

authz

aclui

ole32

ulib

clb

ntdll

Sections

.text Size: 83KB - Virtual size: 82KB

.data Size: 512B - Virtual size: 259KB

.rsrc Size: 57KB - Virtual size: 74KB

.text
Size: 83KB - Virtual size: 82KB

.data
Size: 512B - Virtual size: 259KB

.rsrc
Size: 57KB - Virtual size: 74KB