2dd52888c8f9ba2a41902874bc70ef2797577be57f2d0773a40c07d615889efd

Sharing

Copy URL Twitter E-mail

General

Target

2dd52888c8f9ba2a41902874bc70ef2797577be57f2d0773a40c07d615889efd
Size

708KB
MD5

1a6130f28160eff077b424403635c862
SHA1

7044ea181c6b69347a8d7397672a170518e426b6
SHA256

2dd52888c8f9ba2a41902874bc70ef2797577be57f2d0773a40c07d615889efd
SHA512

2dc03a9418ac0d9122fe7b2c3ba39e59d9bcafc9f94473193bfcd92a073121234d982e1ecd2af4cfd77cc00ea0f9c0f298b23e151db85b823ad1fb199329c09d
SSDEEP

12288:j35pHF4KNcOk2Ou2IHDZLtsuupRtyDkFU8bQZifcLt0teJW:1pH1NeNu2sZL7QRtyAh3UguW

Score

N/A

Malware Config

Signatures

Files

2dd52888c8f9ba2a41902874bc70ef2797577be57f2d0773a40c07d615889efd
.exe windows x86

13a554ffa9832cfdd8bfd358c928c5e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetPathFromIDList

user32

TranslateMDISysAccel
BeginPaint
GetClassNameA
DestroyWindow
DefWindowProcW
RegisterClassExA
MessageBoxW
CharLowerBuffW
GetKeyboardType
RegisterClassA
InternalGetWindowText
MenuItemFromPoint
ShowWindow
EnumDisplayMonitors
DrawTextA
SetMenuItemInfoA
CreateCaret
CreateWindowExA
EnableWindow
SetWindowLongW
CreateWindowExW
GetWindow

comctl32

ImageList_SetFilter
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_SetFlags
ImageList_GetIconSize
ImageList_GetImageRect
ImageList_DragLeave
ImageList_Copy
DestroyPropertySheetPage
InitMUILanguage
ImageList_BeginDrag
ImageList_SetDragCursorImage

advapi32

RegCreateKeyW
CryptCreateHash
CryptDeriveKey
CreateServiceA
RegRestoreKeyW
CryptSetProvParam
RegRestoreKeyA
CryptSetProviderW
LookupPrivilegeDisplayNameW
CryptSignHashW
DuplicateTokenEx
RegQueryMultipleValuesA
RegQueryValueExW
LookupAccountNameW
CryptSetProviderA
CryptSetHashParam

kernel32

SetStdHandle
GetCPInfo
GetStdHandle
OpenMutexA
SetFilePointer
WriteConsoleOutputAttribute
GetEnvironmentStrings
GetCurrentThread
GetSystemTimeAsFileTime
GetModuleFileNameA
FileTimeToLocalFileTime
LCMapStringA
InterlockedExchange
GetStartupInfoA
GetCommandLineW
ExitProcess
InterlockedDecrement
GetConsoleCP
IsBadWritePtr
GetStringTypeA
GetProfileSectionW
UnhandledExceptionFilter
GetTimeZoneInformation
GetCurrentProcessId
HeapDestroy
SetEnvironmentVariableA
GetStringTypeW
GetProcAddress
GetThreadPriorityBoost
InitializeCriticalSection
CompareStringA
CreateMutexA
VirtualAlloc
LeaveCriticalSection
HeapReAlloc
TlsFree
CompareStringW
GetLocalTime
LoadLibraryA
LCMapStringW
GetFileType
GetStartupInfoW
GetModuleFileNameW
QueryPerformanceCounter
SetHandleCount
GetCurrentThreadId
WideCharToMultiByte
GetVersion
GetModuleHandleA
HeapFree
EnterCriticalSection
InterlockedIncrement
DeleteCriticalSection
TlsGetValue
DebugBreak
TlsAlloc
GetCommandLineA
RtlUnwind
GetSystemTime
ReadFile
GetLastError
HeapCreate
GetEnvironmentStringsW
TlsSetValue
TerminateProcess
FreeEnvironmentStringsW
LocalCompact
FlushFileBuffers
SetLastError
GetSystemDirectoryW
AddAtomA
FreeEnvironmentStringsA
GetCurrentProcess
CloseHandle
HeapAlloc
GetTickCount
WriteFile
MultiByteToWideChar
OpenEventA
VirtualFree
VirtualQuery
CreateSemaphoreW

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 456KB - Virtual size: 452KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13a554ffa9832cfdd8bfd358c928c5e7

Headers

File Characteristics

Imports

shell32

user32

comctl32

advapi32

kernel32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 456KB - Virtual size: 452KB

.data Size: 132KB - Virtual size: 157KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 456KB - Virtual size: 452KB

.data
Size: 132KB - Virtual size: 157KB

.rsrc
Size: 40KB - Virtual size: 39KB