cacb8589e3de8f392852b34b412e7fb0fc265133f7cbd241e3c3e84331143ea9

Sharing

Copy URL Twitter E-mail

General

Target

cacb8589e3de8f392852b34b412e7fb0fc265133f7cbd241e3c3e84331143ea9
Size

881KB
MD5

5c5fdc86446ac2792b493e3d484b7939
SHA1

4d08bed1f07e160827821a49be346de80cb79258
SHA256

cacb8589e3de8f392852b34b412e7fb0fc265133f7cbd241e3c3e84331143ea9
SHA512

c05d908d1d2aa60129d03dfbd05b60fbf65405befbe451f8da01a70eee6d3ba006a8d31c443248ee1c6ea1d71618f53b2950d4936cf6c620517a6a097f41f37a
SSDEEP

12288:XQs7WgPJtNDVBpDTmun+FfrL0cJGSKzQj:XbWgh3DVvDXn+RnJdKz

Score

N/A

Malware Config

Signatures

Files

cacb8589e3de8f392852b34b412e7fb0fc265133f7cbd241e3c3e84331143ea9
.exe windows x86

71a4e2cd7dc1fd2be759286654658e45

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
ProcessIdToSessionId
ReadFile
ReleaseMutex
SearchPathW
SetErrorMode
SetThreadExecutionState
WaitForSingleObject
LocalFree
WriteFile
_lclose
_llseek
_lread
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpyW
LocalAlloc
LeaveCriticalSection
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GetVolumeNameForVolumeMountPointW
GetVersionExW
GetUserDefaultUILanguage
GetUserDefaultLCID
GetTempPathW
GetTempFileNameW
GetSystemDirectoryW
GetShortPathNameW
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleFileNameW
GetLogicalDrives
GetLogicalDriveStringsW
GetLocaleInfoW
GetExitCodeThread
GetCurrentThreadId
GetCommandLineW
FreeLibrary
ExpandEnvironmentStringsW
ExitThread
ExitProcess
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateThread
CreateMutexW
CreateFileW
CloseHandle
VirtualAllocEx
LoadLibraryA
GlobalAlloc
GetDriveTypeW
GetVersion
Sleep
GetTickCount
LoadLibraryW
GetFileAttributesA
lstrlenA
GetCurrentProcessId
GetModuleHandleA
GetCommandLineA
GetStartupInfoA
lstrlenW
GetFileAttributesW
GetModuleHandleW
GetProcessHeap
HeapAlloc
WideCharToMultiByte
GetLastError

user32

GetMenuItemInfoW
GetMessagePos
GetMessageW
GetNextDlgTabItem
GetPropW
GetSubMenu
GetSystemMenu
GetTopWindow
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextW
IntersectRect
InvalidateRect
IsChild
IsDialogMessageW
IsIconic
IsWindowEnabled
KillTimer
LoadCursorW
LoadImageW
LoadMenuW
LoadStringW
LockWindowUpdate
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MonitorFromRect
MoveWindow
PeekMessageW
PostMessageW
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassExW
RegisterClassW
RegisterDeviceNotificationW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropW
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetCapture
SetCursor
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemInfoW
SetPropW
SetRect
SetTimer
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
UnregisterClassW
UnregisterDeviceNotification
WaitMessage
WinHelpW
WindowFromPoint
wsprintfW
wvsprintfW
GetMenuItemCount
GetKeyboardLayout
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgCtrlID
GetDesktopWindow
GetCursorPos
GetClientRect
GetCapture
FindWindowW
FillRect
EnumDisplayMonitors
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
DrawTextW
DrawIconEx
DrawIcon
DrawFocusRect
DrawEdge
DispatchMessageW
DialogBoxParamW
DestroyMenu
DeferWindowPos
DefWindowProcW
DefDlgProcW
CreateWindowExW
CreatePopupMenu
CreateDialogParamW
ClientToScreen
ChildWindowFromPoint
CheckDlgButton
CharUpperW
CharUpperBuffW
CallWindowProcW
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AppendMenuW
UpdateWindow
IsWindowVisible
LoadBitmapW
GetSysColor
LoadIconA
GetSystemMetrics
LoadBitmapA
DestroyWindow
SendMessageA
GetParent
DestroyIcon
IsWindow
GetMenu
GetDlgItem
LoadIconW
GetDC
SetWindowLongW
EnableMenuItem
GetLastActivePopup

gdi32

CancelDC
DeleteDC
GdiFlush
CloseFigure
AddFontResourceW
GetEnhMetaFileW
SetTextAlign
FlattenPath
DeleteObject
EndPage
EndPath
SetBkMode
GetColorSpace
CreateMetaFileW
GetBkColor
CreateHalftonePalette
DeleteEnhMetaFile
GdiGetBatchLimit
GetFontLanguageInfo
GetLayout
GetGraphicsMode
GetBkMode
EndDoc
GetEnhMetaFileA
CreateMetaFileA
FillPath
CreateSolidBrush
GetDCBrushColor
AbortDoc
SetTextColor
DeleteColorSpace
BitBlt
CreateCompatibleBitmap
CreateFontIndirectW
CreatePalette
CreateRectRgn
CreateRoundRectRgn
ExcludeClipRect
ExtTextOutW
GetDIBits
GetDeviceCaps
GetObjectW
GetStockObject
GetTextExtentPoint32W
GetTextExtentPointW
PatBlt
RealizePalette
SelectClipRgn
SelectPalette
SetBkColor
StretchDIBits
CloseMetaFile
BeginPath
CreateCompatibleDC
AbortPath
SelectObject

advapi32

RegOpenKeyA
RegQueryValueExA

shlwapi

PathAppendW

winmm

timeGetTime

Sections

.text
Size: 724KB - Virtual size: 723KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zzz0
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

71a4e2cd7dc1fd2be759286654658e45

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

winmm

Sections

.text Size: 724KB - Virtual size: 723KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 19KB - Virtual size: 19KB

.zzz0 Size: 19KB - Virtual size: 18KB

.rsrc Size: 98KB - Virtual size: 98KB

.text
Size: 724KB - Virtual size: 723KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 19KB - Virtual size: 19KB

.zzz0
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 98KB - Virtual size: 98KB