8ea7c52594f8afbf9d6550cc830215b84716b6836398990ee42a6603555a2e91

Sharing

Copy URL Twitter E-mail

General

Target

8ea7c52594f8afbf9d6550cc830215b84716b6836398990ee42a6603555a2e91
Size

184KB
MD5

fe62c8356917f2956afcf7445581da6e
SHA1

6c671989e6adf29570613f95e41861f1dfb4e611
SHA256

8ea7c52594f8afbf9d6550cc830215b84716b6836398990ee42a6603555a2e91
SHA512

215670ac60f0e5f05849a8e20619508e5cd9c80a27bd3960621f1466ee381ffa91e3ff6830125f923dfe4b1da6aaea7bd8c36c5a5eaa01939747722cd4f4985f
SSDEEP

1536:0KgqsEzC64u9P3VtbYQuCddycyx5kmg6hoTQRedNKx80:0KgqsEm4UQuCddycyx5kmgcR6U

Score

N/A

Malware Config

Signatures

Files

8ea7c52594f8afbf9d6550cc830215b84716b6836398990ee42a6603555a2e91
.exe windows x86

27ad1afc4289cd1ca612f8e4d3e33ff0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendDlgItemMessageA
GetDlgItem
IsMenu
AppendMenuA
GetWindowLongA
wvsprintfA
SetWindowPos
FindWindowA
RedrawWindow
GetWindowTextA
EnableWindow
GetSystemMetrics
IsWindow
CheckRadioButton
UnregisterClassA
SetCursor
GetSysColorBrush
DialogBoxParamA
DestroyAcceleratorTable
DispatchMessageA
TranslateMessage
LoadIconA
EmptyClipboard
SetClipboardData
SetFocus
CharUpperA
OpenClipboard
IsDialogMessageA
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RemoveMenu
InvalidateRect
ChildWindowFromPoint
PostMessageA
DestroyCursor
CreateDialogParamA
GetWindowRect
LoadCursorA
GetSubMenu
SetDlgItemInt
GetWindowPlacement
CharLowerBuffA
EnableMenuItem
CheckMenuRadioItem
GetSysColor
KillTimer
DestroyIcon
DestroyWindow
PostQuitMessage
GetClientRect
MoveWindow
GetSystemMenu
SetTimer
SetWindowPlacement
InsertMenuItemA
GetMenu
CheckMenuItem
SetMenuItemInfoA
SetActiveWindow
DefDlgProcA
RegisterClassA
EndDialog
SetDlgItemTextA
EnumClipboardFormats
GetClipboardData
CloseClipboard
GetClassInfoA
CallWindowProcA
SetWindowLongA
IsDlgButtonChecked
SetWindowTextA
CheckDlgButton
GetActiveWindow
MessageBoxA
wsprintfA
GetDlgItemTextA
SendMessageA
GetCursorPos
TrackPopupMenu
ClientToScreen
DestroyMenu
CreatePopupMenu

comdlg32

GetOpenFileNameA
GetSaveFileNameA

shell32

SHGetPathFromIDListA
DragFinish
DragQueryFileA
DragAcceptFiles
SHBrowseForFolderA
ShellExecuteA
SHGetMalloc
SHGetFileInfoA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA
RegSetValueA
RegCreateKeyA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
RegDeleteKeyA

gdi32

SetTextColor
SetBkMode
DeleteObject
GetStockObject
GetObjectA
SelectObject
CreateFontIndirectA

dbghelp

ImageNtHeader
ImageRvaToSection
ImageRvaToVa

comctl32

ImageList_Destroy
CreateToolbarEx
ImageList_SetBkColor
ImageList_Remove
ImageList_Create
InitCommonControlsEx
ImageList_ReplaceIcon

kernel32

IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
DeleteCriticalSection
GetFileType
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
GetProcAddress
Sleep
GetModuleHandleW
SetUnhandledExceptionFilter
GetStartupInfoA
GetCommandLineA
GetMailslotInfo
WTSGetActiveConsoleSessionId
GetProcessPriorityBoost
GetEnvironmentStrings
MapUserPhysicalPagesScatter
GetVersion
SetHandleCount
RequestDeviceWakeup
GetModuleFileNameW
GetCurrentThreadId
LocalUnlock
TransmitCommChar
GetProcessHandleCount
GetThreadPriorityBoost
LoadLibraryA
InitializeCriticalSectionAndSpinCount
InitAtomTable
GetNamedPipeHandleStateA
GlobalUnlock
CreateMemoryResourceNotification
GetFileInformationByHandle
ClearCommError
DeactivateActCtx
GetWriteWatch
TlsGetValue
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
CreateFileMappingW
UpdateResourceW
PostQueuedCompletionStatus
GlobalCompact
ExitProcess
SetStdHandle
GetFileAttributesExW
FlushViewOfFile
EraseTape

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27ad1afc4289cd1ca612f8e4d3e33ff0

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

advapi32

gdi32

dbghelp

comctl32

kernel32

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 87KB - Virtual size: 87KB

.data Size: 3KB - Virtual size: 11.0MB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 34KB - Virtual size: 33KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 87KB - Virtual size: 87KB

.data
Size: 3KB - Virtual size: 11.0MB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 34KB - Virtual size: 33KB