2206ac5008726532233b5dfd278e8e83b262f5e995a8643e624ee72068e01628

Sharing

Copy URL Twitter E-mail

General

Target

2206ac5008726532233b5dfd278e8e83b262f5e995a8643e624ee72068e01628
Size

172KB
MD5

55d3f4a611878546ec90806a8b0e6717
SHA1

70b2672083405ed32b8776d54172f60648320908
SHA256

2206ac5008726532233b5dfd278e8e83b262f5e995a8643e624ee72068e01628
SHA512

840abb31f34015de7a8641b1fa64094f03c7f6711d273b312a675331fa9001bfece78db2dd94c9fce295cb922419bfc23e7e7f3a6f53083d6a6e4d2b9988b71d
SSDEEP

3072:QY2ptkd2d0NMJc/yiIeXaRXvwWB2erJ8f/l:QY2ptvd0m2DI7BfB2io

Score

N/A

Malware Config

Signatures

Files

2206ac5008726532233b5dfd278e8e83b262f5e995a8643e624ee72068e01628
.exe windows x86

571d46402eaba9e4f382716efd414ceb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetIcon
ImageList_Create
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Destroy

kernel32

InitializeCriticalSection
DeleteCriticalSection
SizeofResource
GetModuleFileNameW
LoadResource
FindResourceW
GetLastError
LoadLibraryExW
lstrcmpiW
lstrcpynW
GetShortPathNameW
GetModuleHandleW
lstrcatW
ReleaseMutex
Sleep
GetCurrentThreadId
CreateMutexW
GetCommandLineW
HeapDestroy
TerminateThread
CreateEventA
GetModuleFileNameA
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
TryEnterCriticalSection
CreateThread
lstrcpyW
SetEvent
FreeLibrary
GetStartupInfoW
WaitForSingleObject
lstrlenW
WideCharToMultiByte
CreateEventW
CloseHandle
LoadLibraryW
lstrlenA
ResetEvent
MultiByteToWideChar
GetProcAddress

user32

DrawStateW
DrawTextW
EndDialog
DestroyIcon
ScreenToClient
GetDlgCtrlID
SetWindowPlacement
EnableWindow
SetWindowPos
GetWindowRect
GetWindowPlacement
IsWindowEnabled
GetClientRect
SystemParametersInfoW
SendMessageW
GetSysColor
LoadIconW
FillRect
SendDlgItemMessageW
wsprintfW
MessageBoxW
DestroyWindow
DialogBoxParamW
LoadStringW
GetMessageW
PostQuitMessage
CharNextW
DispatchMessageW
PostThreadMessageW
GetMessagePos
CallWindowProcW
InvalidateRect
GetScrollInfo
SetWindowLongW
PostMessageW
GetDlgItem
CreateDialogParamW
ShowWindow

gdi32

SetBkColor
GetStockObject
SetTextColor
DeleteObject
CreateSolidBrush
GetTextColor

advapi32

RegCreateKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueW
RegSetValueExW

ole32

CoRevokeClassObject
CoInitializeEx
CoTaskMemRealloc
CoResumeClassObjects
StringFromCLSID
CoRegisterClassObject
CoUninitialize
CoCreateInstance
CoSuspendClassObjects
CoTaskMemAlloc
CoTaskMemFree

oleaut32

RegisterTypeLi
VarUI4FromStr
LoadTypeLi
SysAllocString
SysFreeString

msvcp60

??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ

msvcrt

wcscat
_wgetenv
sprintf
??2@YAPAXI@Z
exit
wcslen
_exit
_onexit
_XcptFilter
??1type_info@@UAE@XZ
?terminate@@YAXXZ
__dllonexit
getc
_strdup
_except_handler3
strrchr
getenv
strtok
_endthreadex
fputs
calloc
fopen
_iob
printf
fclose
tolower
fprintf
strtoul
strtol
isdigit
wcsncat
_stat
_putenv
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
strcmp
swprintf
wcscmp
toupper
__RTDynamicCast
strlen
free
realloc
malloc
wcscpy
_wcsnicmp
isspace
__CxxFrameHandler
memcpy
memset
_beginthreadex
memcmp
_purecall
strncpy
_vsnprintf
_CxxThrowException

msvcirt

?endl@@YAAAVostream@@AAV1@@Z
??6ostream@@QAEAAV0@PBD@Z
?cout@@3Vostream_withassign@@A

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

571d46402eaba9e4f382716efd414ceb

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

ole32

oleaut32

msvcp60

msvcrt

msvcirt

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 24KB - Virtual size: 23KB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 28KB - Virtual size: 26KB