449c941796fce5f722c98e28697f09d1cf5762963bb080d91e4a1e7c8f091fe5

Sharing

Copy URL

Twitter E-mail

General

Target

449c941796fce5f722c98e28697f09d1cf5762963bb080d91e4a1e7c8f091fe5
Size

464KB
MD5

70ef5c150f9d3d9b5d52c689e9bc7b9a
SHA1

dba1b2e067cb6f57ef3972a5663f2118442c35f8
SHA256

449c941796fce5f722c98e28697f09d1cf5762963bb080d91e4a1e7c8f091fe5
SHA512

54841f92bcd7290ca8f1b8dcf44e79b88fc3b7a8d640cbf1996d2e5e70148644b0c39d892251502e5fc286744de22a0f78d865b15d5ea42ba7e505770488bf18
SSDEEP

12288:xbpOl+wH4en+9ORuVUAXoSYs9iPvoEqp:Q+wYenOuSUAXqs9inNqp

Score

N/A

Malware Config

Signatures

Files

449c941796fce5f722c98e28697f09d1cf5762963bb080d91e4a1e7c8f091fe5
.exe windows x86

f745f85e99d6bb914a154b1e52a86b2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
GetModuleFileNameA
HeapSize
GetTickCount
LeaveCriticalSection
VirtualQuery
FlushFileBuffers
InterlockedExchange
WideCharToMultiByte
TerminateProcess
ExitProcess
CompareStringW
IsBadCodePtr
GetLastError
GetCommandLineW
GetLocaleInfoA
HeapFree
CloseHandle
GetSystemTimeAsFileTime
TlsSetValue
SetStdHandle
TlsGetValue
CompareStringA
QueryPerformanceCounter
GetEnvironmentStringsW
GetVersionExA
GetModuleHandleW
SetFilePointer
UnhandledExceptionFilter
GetStdHandle
RtlUnwind
GetCommandLineA
GetCurrentProcessId
HeapAlloc
TlsAlloc
HeapCreate
GetModuleHandleA
SetUnhandledExceptionFilter
GetEnvironmentStrings
GetFileType
GetDateFormatA
GetCPInfo
HeapDestroy
RaiseException
SetEnvironmentVariableA
GetTimeFormatA
InitializeCriticalSection
GetStartupInfoW
TlsFree
WriteFile
SetLastError
DeleteCriticalSection
LCMapStringW
VirtualAlloc
GetCurrentThreadId
FreeEnvironmentStringsW
LoadLibraryW
LCMapStringA
GetStartupInfoA
FreeEnvironmentStringsA
GetSystemInfo
CreateMutexW
GetOEMCP
ReadFile
GetStringTypeW
HeapReAlloc
SetHandleCount
MultiByteToWideChar
GetCurrentProcess
GetModuleFileNameW
GetTimeZoneInformation
GetProcAddress
VirtualProtect
EnterCriticalSection
LoadLibraryA
VirtualFree
GetACP

comctl32

ImageList_GetIcon
ImageList_ReplaceIcon
DestroyPropertySheetPage
ImageList_DrawEx
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_Create
CreatePropertySheetPageW
ImageList_GetImageCount
InitCommonControlsEx
PropertySheetW
ImageList_GetIconSize
ImageList_Destroy
ImageList_LoadImageW
ord17
ImageList_Draw
ImageList_AddMasked

comdlg32

GetSaveFileNameA
ChooseFontA
GetFileTitleA
GetOpenFileNameA

shell32

SHGetMalloc
DragAcceptFiles
ShellExecuteExA
ExtractIconA
ShellExecuteA
SHBrowseForFolderA
SHGetFileInfoA
SHChangeNotify
DragFinish
ord155
SHGetPathFromIDListA
SHGetSpecialFolderLocation
Shell_NotifyIconA
DragQueryFileA

advapi32

DeregisterEventSource
RegCreateKeyExA
RegDeleteValueA
InitializeSecurityDescriptor
DeleteService
CloseServiceHandle
RegQueryValueExA
GetUserNameA
AllocateAndInitializeSid
RegOpenKeyExA
RegQueryValueExW
ControlService
RegDeleteKeyW
RegOpenKeyExW
GetTokenInformation
RegDeleteValueW
OpenProcessToken
SetSecurityDescriptorDacl
SetServiceStatus
RegSetValueExW
RegCloseKey
RegSetValueExA

user32

GetMenuStringW
DrawFocusRect
IsDlgButtonChecked
EndPaint
GetForegroundWindow
ShowWindow
BeginPaint
SetWindowLongW
BringWindowToTop
GetSystemMetrics
GetSysColorBrush
GetClientRect
SendDlgItemMessageA
LoadImageW
TrackMouseEvent
LoadStringW
GetSysColor
GetWindowDC
GetWindowRect
RegisterClassW
CreateWindowExW
LoadMenuW
SetMenuDefaultItem
FindWindowW
TranslateAcceleratorW
DestroyIcon
DestroyWindow
LoadAcceleratorsW
TrackPopupMenu
GetWindowTextLengthW
EnumChildWindows
KillTimer
DefWindowProcW
MessageBoxW
RegisterClassExW
SetDlgItemTextW
LoadIconW
EnableWindow
IsMenu
AttachThreadInput

ole32

OleIsCurrentClipboard
OleDestroyMenuDescriptor
OleRun
OleFlushClipboard
CreateILockBytesOnHGlobal
CoTaskMemAlloc
IsAccelerator
CLSIDFromString
OleLockRunning
ReleaseStgMedium
CoDisconnectObject
OleTranslateAccelerator
StgCreateDocfileOnILockBytes
RegisterDragDrop
OleInitialize
CreateGenericComposite
OleCreateMenuDescriptor
DoDragDrop
CoTaskMemFree
OleUninitialize
CreateFileMoniker
StgOpenStorageOnILockBytes
CoRegisterClassObject
CreateStreamOnHGlobal
StringFromGUID2
CoGetClassObject

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f745f85e99d6bb914a154b1e52a86b2f

Headers

File Characteristics

Imports

kernel32

comctl32

comdlg32

shell32

advapi32

user32

ole32

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 260KB - Virtual size: 259KB

.data Size: 76KB - Virtual size: 95KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 260KB - Virtual size: 259KB

.data
Size: 76KB - Virtual size: 95KB

.rsrc
Size: 36KB - Virtual size: 35KB