57acd2c721fceb2616b3efa2696407df07cc3473797cb663b051cb925aeeea5c

Sharing

Copy URL

Twitter E-mail

General

Target

57acd2c721fceb2616b3efa2696407df07cc3473797cb663b051cb925aeeea5c
Size

390KB
MD5

03c075b3e3575a990f7b533454803d92
SHA1

c8b8d381628566522338aaf40db55a8c0d2bf96d
SHA256

57acd2c721fceb2616b3efa2696407df07cc3473797cb663b051cb925aeeea5c
SHA512

5ad927c2d4a688b263b4911bf346391b153002791871533b6cd7e8bb5e26cc1bed24111d39b0be48daf92194dac1bf5aecbe319e93e15423d034957d7d806ff4
SSDEEP

6144:T4Ef65YH2IvTcN3Zav3nNQhWsM6mLvmEgRLu/hX6WX0lL2r/yCoNa:TC5YH2IbVNQwsM6nEfsWqL2TyCsa

Score

N/A

Malware Config

Signatures

Files

57acd2c721fceb2616b3efa2696407df07cc3473797cb663b051cb925aeeea5c
.exe windows x86

aafe7f61840f4a4f425aeecd084bea28

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

GetVersionExA
WaitForSingleObject
CreateFileW
WriteConsoleW
SetStdHandle
HeapReAlloc
LoadLibraryW
GetConsoleMode
GetConsoleCP
SetFilePointer
HeapSize
LCMapStringW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
WideCharToMultiByte
FreeEnvironmentStringsW
MultiByteToWideChar
GetStringTypeW
GetSystemDirectoryA
GetLastError
GetEnvironmentStringsW
GlobalLock
GlobalUnlock
HeapCreate
LocalFree
GetModuleFileNameA
lstrcpyA
MoveFileExA
CreateFileA
GetFileSize
CreateFileMappingA
CloseHandle
MapViewOfFileEx
UnmapViewOfFile
LocalAlloc
CreateEventA
GetCommState
SetCommState
EscapeCommFunction
Sleep
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
FlushFileBuffers
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
GetProcAddress
LoadLibraryA
DecodePointer
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RaiseException
RtlUnwind
HeapFree
HeapAlloc
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent

user32

DefWindowProcA
GetSubMenu
IsWindowEnabled
GetDlgItem
LoadMenuA
LoadStringA
GetDlgItemTextA
GetWindowTextLengthA
IsWindow
GetWindowContextHelpId
RegisterClipboardFormatA
MessageBoxW
BeginPaint
GetDlgCtrlID
GetCursorPos
CreatePopupMenu
TrackPopupMenuEx
SendMessageA
EndPaint
GetDesktopWindow
GetDC
GetMenuCheckMarkDimensions
IsWindowVisible
SetWindowTextA
GetDialogBaseUnits
GetWindowTextA
GetForegroundWindow

gdi32

EnumFontsA
DeleteDC
PatBlt
CreateSolidBrush
FillRgn
DeleteObject
CreateCompatibleDC
CreateBitmap
SelectObject

advapi32

RegOpenKeyExA
RegCloseKey
RegSetValueExA
OpenSCManagerA
CryptAcquireContextA
CryptGenKey
CryptEncrypt
RegCreateKeyExA
RegQueryValueExA

shell32

DragQueryFileW
DragQueryFileA

ole32

ReleaseStgMedium
OleGetClipboard
CreateILockBytesOnHGlobal
CoInitialize

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shlwapi

PathIsRelativeW
PathFileExistsW
PathStripPathW
wnsprintfA
StrDupA
PathFindFileNameA
PathFindExtensionA
StrToIntExA
StrChrA

imm32

ImmGetConversionStatus
ImmReleaseContext
ImmGetContext

winhttp

WinHttpCreateUrl

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList

rasdlg

RasPhonebookDlgA

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.relo
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aafe7f61840f4a4f425aeecd084bea28

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

version

shlwapi

imm32

winhttp

setupapi

rasdlg

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 22KB - Virtual size: 22KB

.data Size: 5KB - Virtual size: 14KB

.relo Size: 240KB - Virtual size: 239KB

.cdata Size: 32KB - Virtual size: 31KB

.text2 Size: 15KB - Virtual size: 15KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 22KB - Virtual size: 22KB

.data
Size: 5KB - Virtual size: 14KB

.relo
Size: 240KB - Virtual size: 239KB

.cdata
Size: 32KB - Virtual size: 31KB

.text2
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 24KB - Virtual size: 23KB