a70074f1adc46c16c47ab80cfc424937dc299616850a31c7649313c7a5e0979f

Sharing

Copy URL Twitter E-mail

General

Target

a70074f1adc46c16c47ab80cfc424937dc299616850a31c7649313c7a5e0979f
Size

450KB
MD5

8f00a5e4fdb451cbdf82d527f8927ba5
SHA1

4d86cd6630bbd14b45149bf568f55085bb0211ed
SHA256

a70074f1adc46c16c47ab80cfc424937dc299616850a31c7649313c7a5e0979f
SHA512

844e231e1a55c38f3f5e3fb36224899a7b92bf59a095479b6744ab22f8d1c04d10780b6ed23bad1d80f498c5562ae30d18a6fdac3996e3888a9154e469797d82
SSDEEP

12288:VkiAi9ERyH8YsZC/dbhdiSLLekZR58nRFkWKF:1E9YsqPLvZR58R5M

Score

N/A

Malware Config

Signatures

Files

a70074f1adc46c16c47ab80cfc424937dc299616850a31c7649313c7a5e0979f
.exe windows x86

1f31eb93111db38dc0240eefd6b2433a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
GetProcAddress
GetSystemDirectoryA
GetVersionExA
HeapAlloc
HeapCreate
CreateFileW
FlushFileBuffers
HeapReAlloc
WriteConsoleW
SetStdHandle
LoadLibraryW
HeapSize
GetStringTypeW
LCMapStringW
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
GetModuleFileNameA
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
WriteFile
LeaveCriticalSection
EnterCriticalSection
CreateFileA
GetFileSize
CreateFileMappingA
CloseHandle
MapViewOfFileEx
UnmapViewOfFile
CreateEventA
GetCommState
SetCommState
EscapeCommFunction
Sleep
GetSystemInfo
GlobalMemoryStatus
FindFirstChangeNotificationA
WaitForSingleObject
FindCloseChangeNotification
LocalAlloc
ExitProcess
GetLastError
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
EncodePointer
IsDebuggerPresent
MultiByteToWideChar
SetEvent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DecodePointer
GetStartupInfoW
HeapSetInformation
GetTickCount
SetHandleCount
LoadLibraryA
GetCommandLineA
HeapFree
RtlUnwind
RaiseException

user32

EnumWindows
DefWindowProcA
SendDlgItemMessageW
GetCursorInfo
PostQuitMessage
IsWindow
SendMessageA
MessageBoxA
ReleaseDC
GetDC
SetWindowTextA
GetSystemMetrics
DrawFrameControl
EndDialog
SetWindowLongA
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
SetFocus
GetWindowLongA
DestroyWindow
IsWindowVisible
GetDialogBaseUnits
CreateWindowExA
GetWindowTextLengthA
GetDlgItemTextA
GetForegroundWindow
BeginPaint
EndPaint
GetDlgCtrlID
GetWindowContextHelpId
GetCursorPos
CreatePopupMenu
TrackPopupMenuEx
LoadStringA

gdi32

DeleteObject
FillRgn
CreateSolidBrush
CheckColorsInGamut
CreateCompatibleDC
CreateCompatibleBitmap
EnumICMProfilesA
SelectObject
DeleteDC

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
OpenSCManagerA
CloseServiceHandle
OpenServiceA
ControlService
CredEnumerateA

shell32

SHGetFolderPathA

oleaut32

VariantClear

ws2_32

WSCDeinstallProvider
WSCInstallProvider

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

shlwapi

PathCompactPathA
SHCreateShellPalette
PathFindFileNameA
StrChrA
PathFindExtensionA
PathFileExistsA
wnsprintfA
StrDupA

comctl32

ord16

rpcrt4

RpcStringFreeA
UuidToStringW
UuidToStringA
UuidCreate

imm32

ImmGetConversionStatus
ImmReleaseContext
ImmGetContext

oleacc

GetRoleTextA

setupapi

SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

sensapi

IsNetworkAlive

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 318KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f31eb93111db38dc0240eefd6b2433a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

ws2_32

version

shlwapi

comctl32

rpcrt4

imm32

oleacc

setupapi

sensapi

Sections

.text Size: 95KB - Virtual size: 94KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 318KB - Virtual size: 326KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 95KB - Virtual size: 94KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 318KB - Virtual size: 326KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 10KB - Virtual size: 9KB