fa164504bc6435542ace94329f2c7fab5ced2da0a271887b84b28f858e94fe86

Sharing

Copy URL

Twitter E-mail

General

Target

fa164504bc6435542ace94329f2c7fab5ced2da0a271887b84b28f858e94fe86
Size

182KB
MD5

0d9fc49d42fb401d6bff0437c12b79aa
SHA1

af8fc4f107ed8d01d2c0f697698ccbcb650903f3
SHA256

fa164504bc6435542ace94329f2c7fab5ced2da0a271887b84b28f858e94fe86
SHA512

2e32467c1374fc72300b7779d87ab5037a54d83c164b9fd3476b6dfa6295339f1d6fba818e4e8c48b8b95329c1298327da2e74403717840f0363cda4d55a7883
SSDEEP

1536:OKgqsEzC64u9P3Hidz1fycyDl4xHsdXWgK9ZVix80:OKgqsEme6hfycyDl4BsYg6De

Score

N/A

Malware Config

Signatures

Files

fa164504bc6435542ace94329f2c7fab5ced2da0a271887b84b28f858e94fe86
.exe windows x86

27ad1afc4289cd1ca612f8e4d3e33ff0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendDlgItemMessageA
GetDlgItem
IsMenu
AppendMenuA
GetWindowLongA
wvsprintfA
SetWindowPos
FindWindowA
RedrawWindow
GetWindowTextA
EnableWindow
GetSystemMetrics
IsWindow
CheckRadioButton
UnregisterClassA
SetCursor
GetSysColorBrush
DialogBoxParamA
DestroyAcceleratorTable
DispatchMessageA
TranslateMessage
LoadIconA
EmptyClipboard
SetClipboardData
SetFocus
CharUpperA
OpenClipboard
IsDialogMessageA
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RemoveMenu
InvalidateRect
ChildWindowFromPoint
PostMessageA
DestroyCursor
CreateDialogParamA
GetWindowRect
LoadCursorA
GetSubMenu
SetDlgItemInt
GetWindowPlacement
CharLowerBuffA
EnableMenuItem
CheckMenuRadioItem
GetSysColor
KillTimer
DestroyIcon
DestroyWindow
PostQuitMessage
GetClientRect
MoveWindow
GetSystemMenu
SetTimer
SetWindowPlacement
InsertMenuItemA
GetMenu
CheckMenuItem
SetMenuItemInfoA
SetActiveWindow
DefDlgProcA
RegisterClassA
EndDialog
SetDlgItemTextA
EnumClipboardFormats
GetClipboardData
CloseClipboard
GetClassInfoA
CallWindowProcA
SetWindowLongA
IsDlgButtonChecked
SetWindowTextA
CheckDlgButton
GetActiveWindow
MessageBoxA
wsprintfA
GetDlgItemTextA
SendMessageA
GetCursorPos
TrackPopupMenu
ClientToScreen
DestroyMenu
CreatePopupMenu

comdlg32

GetOpenFileNameA
GetSaveFileNameA

shell32

SHGetPathFromIDListA
DragFinish
DragQueryFileA
DragAcceptFiles
SHBrowseForFolderA
ShellExecuteA
SHGetMalloc
SHGetFileInfoA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA
RegSetValueA
RegCreateKeyA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
RegDeleteKeyA

gdi32

SetTextColor
SetBkMode
DeleteObject
GetStockObject
GetObjectA
SelectObject
CreateFontIndirectA

dbghelp

ImageNtHeader
ImageRvaToSection
ImageRvaToVa

comctl32

ImageList_Destroy
CreateToolbarEx
ImageList_SetBkColor
ImageList_Remove
ImageList_Create
InitCommonControlsEx
ImageList_ReplaceIcon

kernel32

IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
DeleteCriticalSection
GetFileType
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
GetProcAddress
Sleep
GetModuleHandleW
SetUnhandledExceptionFilter
GetStartupInfoA
GetCommandLineA
GetMailslotInfo
WTSGetActiveConsoleSessionId
GetProcessPriorityBoost
GetEnvironmentStrings
MapUserPhysicalPagesScatter
GetVersion
SetHandleCount
RequestDeviceWakeup
GetModuleFileNameW
GetCurrentThreadId
LocalUnlock
TransmitCommChar
GetProcessHandleCount
GetThreadPriorityBoost
LoadLibraryA
InitializeCriticalSectionAndSpinCount
InitAtomTable
GetNamedPipeHandleStateA
GlobalUnlock
CreateMemoryResourceNotification
GetFileInformationByHandle
ClearCommError
DeactivateActCtx
GetWriteWatch
TlsGetValue
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
CreateFileMappingW
UpdateResourceW
PostQueuedCompletionStatus
GlobalCompact
ExitProcess
SetStdHandle
GetFileAttributesExW
FlushViewOfFile
EraseTape

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27ad1afc4289cd1ca612f8e4d3e33ff0

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

advapi32

gdi32

dbghelp

comctl32

kernel32

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 87KB - Virtual size: 87KB

.data Size: 3KB - Virtual size: 11.0MB

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 34KB - Virtual size: 33KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 87KB - Virtual size: 87KB

.data
Size: 3KB - Virtual size: 11.0MB

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 34KB - Virtual size: 33KB