aef402a2b1fcb1e3dd3a2b5e130da0ab0fbf99df076faf18194fe9d1b5894fee

Sharing

Copy URL Twitter E-mail

General

Target

aef402a2b1fcb1e3dd3a2b5e130da0ab0fbf99df076faf18194fe9d1b5894fee
Size

332KB
MD5

8e123bdf4b8d45cab9152e9cdd58a285
SHA1

e8d0556d4845383d8dcb44f120c7206fc7ecfed0
SHA256

aef402a2b1fcb1e3dd3a2b5e130da0ab0fbf99df076faf18194fe9d1b5894fee
SHA512

e513cb5d2c71d405c05965af8ef3b7d3cfd08b5fb1b525fda696a0dbc4933e37231cc2016ef74cb20794bea57964d8f695e8200c262e2a6f097875cb288798c6
SSDEEP

6144:FfJ66JwCrdcM//bFqwwNGQzxP2k2D0VSSG4SHdOx:XtJwUHHJLEX9b2D0IV4S9A

Score

N/A

Malware Config

Signatures

Files

aef402a2b1fcb1e3dd3a2b5e130da0ab0fbf99df076faf18194fe9d1b5894fee
.exe windows x86

bdc077ebc37d5f0fc2f1239a127e48a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PolyBezierTo
SetTextColor
GetDIBits
GetROP2
GetObjectA
ScaleViewportExtEx
BitBlt
DeleteDC
CreateDIBitmap
GetDeviceCaps
GetBkMode
GetGlyphOutlineA
SetMetaRgn
CreateDCA
EnumFontsW
StrokePath

kernel32

TerminateThread
SetLocalTime
GetLastError
LoadLibraryA
TlsFree
SetLocaleInfoW
ContinueDebugEvent
SetSystemTime
HeapCreate
GetModuleHandleA
GetACP
IsBadWritePtr
HeapSize
WriteConsoleOutputAttribute
GetTimeFormatA
GetTickCount
GetStdHandle
GetCommandLineA
RtlMoveMemory
InterlockedDecrement
GetThreadContext
ExitProcess
CreateMutexA
GetModuleFileNameA
VirtualQuery
OpenMutexA
lstrcmpA
ReadFile
DebugBreak
EnumDateFormatsW
LCMapStringA
CreateDirectoryA
GetAtomNameW
SetLastError
FormatMessageW
LockFileEx
GetVolumeInformationA
TlsAlloc
CreateFileA
GetUserDefaultLCID
UnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetAtomNameA
WaitForSingleObjectEx
WriteConsoleA
GetDateFormatA
GetCurrentProcessId
GetEnvironmentStrings
SetConsoleCtrlHandler
QueryPerformanceCounter
RtlUnwind
RemoveDirectoryW
GetStartupInfoA
GetPrivateProfileSectionNamesA
HeapFree
GetSystemTimeAsFileTime
GetUserDefaultLangID
WaitForSingleObject
HeapReAlloc
SetFilePointer
EnumDateFormatsExA
OpenWaitableTimerW
IsValidLocale
GetTimeZoneInformation
PulseEvent
SetEndOfFile
WriteConsoleW
lstrcmpW
GetTempPathA
SetHandleCount
GetStartupInfoW
GetNamedPipeInfo
SetTimeZoneInformation
InterlockedExchange
CompareStringW
InterlockedIncrement
GetVolumeInformationW
GetEnvironmentStringsW
CloseHandle
GetConsoleOutputCP
EnumSystemLocalesA
WriteFile
OpenMutexW
GetCurrencyFormatW
GetSystemDefaultLCID
EnumDateFormatsExW
GetVersionExA
VirtualFree
TlsSetValue
GetStringTypeW
LocalShrink
SetEnvironmentVariableA
SetConsoleTextAttribute
GetFileType
FreeLibrary
WritePrivateProfileStructA
FreeEnvironmentStringsW
GetConsoleMode
EnterCriticalSection
GetStringTypeA
LocalReAlloc
SetStdHandle
FreeEnvironmentStringsA
GetConsoleTitleW
GetCurrentThread
GetModuleFileNameW
DeleteFileA
FlushFileBuffers
GetConsoleCP
GetCurrentProcess
GetFileAttributesW
GetThreadPriority
GetCommandLineW
GetProcessHeap
GetLocaleInfoA
VirtualAlloc
LCMapStringW
OpenWaitableTimerA
Sleep
GetCPInfo
CompareStringA
GetOEMCP
HeapAlloc
InitializeCriticalSection
ReleaseMutex
HeapDestroy
lstrcmp
MultiByteToWideChar
DeleteCriticalSection
FindResourceExW
TerminateProcess
FindFirstFileW
GetProcAddress
IsValidCodePage
WritePrivateProfileStructW
TlsGetValue
GetCurrentThreadId
LeaveCriticalSection
SetUnhandledExceptionFilter
GetLocaleInfoW
EnumSystemCodePagesW
SetThreadLocale

shell32

SheChangeDirA
FindExecutableA
SHBrowseForFolderW

advapi32

RegEnumValueA
CryptDecrypt
CryptAcquireContextA
CryptGetDefaultProviderW
RegSetKeySecurity
LookupAccountSidA

comctl32

ImageList_Read
ImageList_SetFlags
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_LoadImageA
MakeDragList
ImageList_GetIconSize
ImageList_AddIcon
ImageList_Draw
ImageList_DrawEx
CreateToolbar
CreatePropertySheetPageA
ImageList_DragLeave

user32

GetMenuContextHelpId
SetSystemCursor
UnpackDDElParam
GetPriorityClipboardFormat
GetMenuCheckMarkDimensions
IsClipboardFormatAvailable
SetThreadDesktop
ShowOwnedPopups
SetDeskWallpaper
PostThreadMessageA
LoadCursorA
UnregisterDeviceNotification
CharNextA
CheckMenuRadioItem
ScrollDC
GetMessagePos
DdeDisconnectList
PackDDElParam
DefWindowProcA
RegisterClassExA
CreateWindowExW
ShowWindow
GetClassWord
GetAsyncKeyState
GetParent
wsprintfA
BroadcastSystemMessage
DestroyWindow
RegisterClassA
GetMenu
CreateWindowStationA
SetUserObjectSecurity
DdeConnectList
MessageBoxW
SetCursor
RegisterWindowMessageW

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdc077ebc37d5f0fc2f1239a127e48a8

Headers

File Characteristics

Imports

gdi32

kernel32

shell32

advapi32

comctl32

user32

Sections

.text Size: 84KB - Virtual size: 82KB

.rdata Size: 80KB - Virtual size: 77KB

.data Size: 92KB - Virtual size: 103KB

.rsrc Size: 72KB - Virtual size: 68KB

.text
Size: 84KB - Virtual size: 82KB

.rdata
Size: 80KB - Virtual size: 77KB

.data
Size: 92KB - Virtual size: 103KB

.rsrc
Size: 72KB - Virtual size: 68KB