023ba3b3c9fe4867b3dc9cc651b39b6391dd78269c653d3c21e7637c531c89c2

Sharing

Copy URL Twitter E-mail

General

Target

023ba3b3c9fe4867b3dc9cc651b39b6391dd78269c653d3c21e7637c531c89c2
Size

591KB
MD5

88c3e5a92410b2096287ed2e1fd7ce76
SHA1

58032bd98cbf6b45a75efa34c9888635606b90ec
SHA256

023ba3b3c9fe4867b3dc9cc651b39b6391dd78269c653d3c21e7637c531c89c2
SHA512

9005de8af69b58e23650338f67a72fbe212ffb6f04f673abf289cc2e5e038dc0ca818835f883f9533b1d157ab1642ce17ed08ea603739f5eece64a5057d7ca21
SSDEEP

12288:mTe7FgeEhMFcaCDG0GjbeEP4BWKLAFvytYxVTgsUtxwVHYSZCq2u9hcmjReOuIKf:geREhScfG0SSEPCWBFvXxVeSB

Score

N/A

Malware Config

Signatures

Files

023ba3b3c9fe4867b3dc9cc651b39b6391dd78269c653d3c21e7637c531c89c2
.exe windows x86

821eac0e17f204af1dde10bb5d3dc30e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
CreateICW
SetEnhMetaFileBits
PtInRegion
SelectClipPath
DeleteDC
PolyDraw
CreateDIBitmap
FillPath
GetICMProfileA
GetDeviceCaps
GetEnhMetaFilePaletteEntries
GetObjectA
CreateEnhMetaFileA
LineTo
TextOutW
SwapBuffers
UnrealizeObject
CreateDIBPatternBrushPt
GetTextCharacterExtra
MoveToEx
CreateDCA
SetStretchBltMode

comctl32

ImageList_GetImageInfo
DrawStatusTextW
ImageList_AddIcon
InitMUILanguage
CreatePropertySheetPage
ImageList_SetImageCount
_TrackMouseEvent
CreatePropertySheetPageA
ImageList_LoadImage
CreateStatusWindow
InitCommonControlsEx
ImageList_SetOverlayImage
MakeDragList
GetEffectiveClientRect
ImageList_GetIconSize
ImageList_ReplaceIcon
DrawInsert
ImageList_GetImageRect
ImageList_Duplicate
ImageList_Draw
DrawStatusText
ImageList_GetIcon
ImageList_SetDragCursorImage
ImageList_DrawEx

shell32

SHFileOperation

advapi32

RegSetValueA
LookupPrivilegeDisplayNameW
GetUserNameA
RegOpenKeyA
CryptHashData
RegDeleteKeyA
LookupPrivilegeNameW
RegQueryValueW
LookupPrivilegeValueA
CryptDuplicateHash
CryptVerifySignatureA
AbortSystemShutdownA

kernel32

GetStringTypeA
WideCharToMultiByte
GetLongPathNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
GetTimeZoneInformation
SetUnhandledExceptionFilter
Sleep
GetCommandLineA
TlsAlloc
GetConsoleOutputCP
CreateMutexA
GetSystemDirectoryA
HeapFree
RtlUnwind
CompareStringA
EnterCriticalSection
FlushFileBuffers
GetStringTypeW
LCMapStringA
SetConsoleCtrlHandler
HeapReAlloc
VirtualQuery
FreeLibrary
GetModuleHandleA
UnhandledExceptionFilter
SetStdHandle
WriteConsoleW
GetCurrentProcessId
InterlockedDecrement
HeapDestroy
CloseHandle
GetEnvironmentStringsW
OpenMutexA
GetModuleHandleW
VirtualFree
GetCurrentThreadId
HeapSize
QueryPerformanceCounter
SetLastError
FreeEnvironmentStringsW
ReadFile
CreateFileA
InterlockedIncrement
GetUserDefaultLCID
HeapCreate
WriteConsoleA
GetTimeFormatA
GetCurrentProcess
GetCPInfo
InterlockedExchange
GetProcAddress
TlsGetValue
GetConsoleCP
GetDateFormatA
GetConsoleMode
GetModuleFileNameW
GetTickCount
SetHandleCount
LeaveCriticalSection
TlsFree
EnumSystemLocalesA
GetLastError
MultiByteToWideChar
SetConsoleTitleA
GetLocaleInfoW
DeleteCriticalSection
GetStartupInfoA
GetACP
GetFileType
SetEnvironmentVariableA
IsValidCodePage
HeapAlloc
TerminateProcess
LCMapStringW
GetCurrentThread
ExitProcess
GetSystemTimeAsFileTime
SetFilePointer
GetStartupInfoW
WriteFile
CompareStringW
VirtualAlloc
GetCommandLineW
IsValidLocale
GetStdHandle
TlsSetValue
GetLocaleInfoA
LoadLibraryA
GetModuleFileNameA
IsDebuggerPresent

comdlg32

GetSaveFileNameW

user32

RegisterHotKey
RegisterClassExA
DestroyWindow
GetLastActivePopup
LoadMenuA
CreateWindowExW
CreateIconFromResourceEx
SetMenu
AppendMenuW
IsCharLowerW
GetKeyboardLayoutList
GetTopWindow
MessageBoxA
RegisterClassA
CharPrevExA
DefWindowProcW
ShowWindow
LookupIconIdFromDirectoryEx
ChangeClipboardChain
WINNLSGetIMEHotkey

Sections

.text
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

821eac0e17f204af1dde10bb5d3dc30e

Headers

File Characteristics

Imports

gdi32

comctl32

shell32

advapi32

kernel32

comdlg32

user32

Sections

.text Size: 153KB - Virtual size: 152KB

.rdata Size: 252KB - Virtual size: 280KB

.data Size: 120KB - Virtual size: 119KB

.rsrc Size: 65KB - Virtual size: 64KB

.text
Size: 153KB - Virtual size: 152KB

.rdata
Size: 252KB - Virtual size: 280KB

.data
Size: 120KB - Virtual size: 119KB

.rsrc
Size: 65KB - Virtual size: 64KB