29725ca8f19c56e193b371e18190a88be1db5b793bf10c3d45ba201032cabc38

Sharing

Copy URL Twitter E-mail

General

Target

29725ca8f19c56e193b371e18190a88be1db5b793bf10c3d45ba201032cabc38
Size

268KB
MD5

7f3a8410806a2d3abdbb3d9b8a7bbd09
SHA1

2ef4af3556e3aa9cdc1f469d03e2afa89a13720c
SHA256

29725ca8f19c56e193b371e18190a88be1db5b793bf10c3d45ba201032cabc38
SHA512

bf1df94acd11a57e32182581382dc3a8a47e209f26affd1886836491ca19cbc07cca7073486577639a80fddfb8e2066594f7ac22d992bc4996f6c0c17df96180
SSDEEP

6144:k5jiWBuoLfOSTRjtJISI1wwIGkPjeC6hgN:oiWI2ZRBJISmwwa9N

Score

N/A

Malware Config

Signatures

Files

29725ca8f19c56e193b371e18190a88be1db5b793bf10c3d45ba201032cabc38
.exe windows x86

7e2eedd9db7b502a63872e5f454f459e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputCharacterA
lstrcpynA
IsBadStringPtrA
GetCurrentProcess
ExitProcess
PeekNamedPipe
PeekConsoleInputW
CreateFileW
SetVolumeLabelA
GetShortPathNameA
IsDBCSLeadByteEx
ReadDirectoryChangesW
FlushConsoleInputBuffer
SetCommMask
OutputDebugStringW
GetStartupInfoA
ExpandEnvironmentStringsW
RemoveDirectoryA
EnumCalendarInfoA
VirtualQueryEx
GetPrivateProfileSectionW
GetBinaryTypeA
EnumResourceLanguagesW
ClearCommBreak
FindFirstFileW
VirtualAlloc
SetThreadAffinityMask
SetFileTime
CompareStringA
SetConsoleCursorPosition
EnumSystemCodePagesA
TryEnterCriticalSection
WriteFile
OpenFile
GetOverlappedResult
GetEnvironmentStringsW
GetCurrentDirectoryW
GetFullPathNameA
SetThreadLocale
lstrlenA
SetFileAttributesA
FindResourceExA
WriteConsoleOutputCharacterA
ReadConsoleA
CreateDirectoryA
SearchPathW
GetCPInfo
_hread
GetFileAttributesA
WaitNamedPipeA
GetTickCount
WritePrivateProfileStringW
GetSystemTime
ReleaseMutex
PulseEvent
GetUserDefaultLangID
FileTimeToLocalFileTime
SetProcessShutdownParameters
lstrcmpiW
FreeResource
EnumDateFormatsW
VirtualAllocEx
GlobalAddAtomW
CreateNamedPipeW
GetThreadPriority
DebugBreak
GenerateConsoleCtrlEvent
ScrollConsoleScreenBufferA
GetVersionExA
LocalFileTimeToFileTime
GetModuleHandleA

user32

WinHelpA
LoadIconA

gdi32

GetTextExtentExPointA
PolyBezierTo
FrameRgn
AbortDoc
SetColorAdjustment
GetBkMode
EndDoc
GetPaletteEntries
EndPath
CreatePen
OffsetClipRgn
CreateEllipticRgnIndirect
SetArcDirection
EqualRgn
PlayEnhMetaFileRecord
StrokePath
CreateBrushIndirect
GetFontData

advapi32

CreateServiceW
QueryServiceConfigW
GetNamedSecurityInfoA
ControlService
ReportEventA
RegRestoreKeyA
GetSecurityDescriptorGroup
AllocateLocallyUniqueId
OpenServiceW
QueryServiceObjectSecurity
RegNotifyChangeKeyValue
RegQueryValueA
LookupPrivilegeValueA
IsValidSecurityDescriptor
NotifyChangeEventLog
LogonUserW
DestroyPrivateObjectSecurity
GetCurrentHwProfileW
RegEnumValueW
MakeSelfRelativeSD
StartServiceCtrlDispatcherA
RegDeleteKeyW
RegQueryInfoKeyW
CryptImportKey
GetFileSecurityA
RegRestoreKeyW

shell32

Shell_NotifyIconA
DragQueryPoint
SHAddToRecentDocs
SHGetSettings

ole32

CoQueryProxyBlanket
OleFlushClipboard
OleIsRunning
ReadClassStg
CLSIDFromString
CoCreateInstance
PropVariantCopy
CoTreatAsClass

oleaut32

LoadTypeLi
LoadTypeLibEx
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayPutElement
SafeArrayUnaccessData

comctl32

ImageList_LoadImageW
ImageList_DragMove

shlwapi

PathIsSameRootW
PathStripPathA
PathIsURLW
StrCmpIW
StrCmpLogicalW
wvnsprintfW
ChrCmpIW
SHGetValueA
PathAddBackslashW
SHEnumValueW
AssocQueryKeyW
StrRetToStrW
SHRegGetBoolUSValueA
PathParseIconLocationW
PathRemoveExtensionW
SHRegGetUSValueW
PathAddBackslashA

msvcrt

_XcptFilter
exit
_acmdln
__getmainargs
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_exit
_initterm
__setusermatherr

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7e2eedd9db7b502a63872e5f454f459e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

msvcrt

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 248KB - Virtual size: 247KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 248KB - Virtual size: 247KB