17b873e127b5bfe4d58abd0dff612dc9e9c12a89bf3faa73fddac2ef19a983e7

Sharing

Copy URL Twitter E-mail

General

Target

17b873e127b5bfe4d58abd0dff612dc9e9c12a89bf3faa73fddac2ef19a983e7
Size

520KB
MD5

2c753f4b183b3f2feffe96f8b6d5b8f8
SHA1

b2b7638e1fe33f3852c45e48d4671bff11914e18
SHA256

17b873e127b5bfe4d58abd0dff612dc9e9c12a89bf3faa73fddac2ef19a983e7
SHA512

cadadbc1b7a6c148620e251c90d54fc80d1311bfb4114c8cb37dd3cf8501d539aaeb4252bbc234339328bce7018909681ebedb7956b45d3b7c2efebfb1b0a9ae
SSDEEP

6144:FbCLC0FgXlvSPGXPOYLnqBj60P4/iQNUFL6d5iVsWvOqYZzaSOZkzukQusPPS7G:FbCLC0FRPGXLX3iTFL6lieGkts

Score

N/A

Malware Config

Signatures

Files

17b873e127b5bfe4d58abd0dff612dc9e9c12a89bf3faa73fddac2ef19a983e7
.exe windows x86

3ecd2f919cbb864eea762cda0fec9a18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegSetValueExA
RegOpenKeyExW
OpenProcessToken
RegDeleteValueA
RegQueryValueExW
RegCloseKey
RegDeleteValueW
RegQueryValueExA
RegSetValueExW
RegOpenKeyExA
SetSecurityDescriptorDacl
ControlService
RegDeleteKeyW

version

VerQueryValueA
GetFileVersionInfoSizeA

kernel32

HeapCreate
GetCurrentThread
LocalReAlloc
SetEnvironmentVariableA
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
HeapReAlloc
GetStartupInfoA
GetStdHandle
GetCurrentThreadId
WriteFile
GetFileSize
CompareStringW
GetFullPathNameA
IsValidLocale
SetLastError
HeapValidate
VirtualAlloc
GetModuleHandleA
TlsAlloc
TlsSetValue
SetEvent
GetSystemInfo
GetCommandLineA
lstrlenW
GetCPInfo
OutputDebugStringA
UnhandledExceptionFilter
GetTimeZoneInformation
RtlUnwind
SystemTimeToFileTime
IsValidCodePage
TlsGetValue
ReadFile
SetEndOfFile
ExitProcess
HeapFree
DeleteCriticalSection
InterlockedExchange
GetVersionExA
SetConsoleCtrlHandler
GetSystemTime
GetThreadLocale
CreateMutexA
GetLocaleInfoA
EnumSystemLocalesA
LoadLibraryA
MoveFileA
SetStdHandle
GetFileType
InterlockedIncrement
CreateEventA
GetTickCount
FreeEnvironmentStringsA
SetFilePointer
IsBadCodePtr
SizeofResource
SetUnhandledExceptionFilter
GetACP
lstrcpynA
RaiseException
LeaveCriticalSection
GetLocaleInfoW
LCMapStringW
HeapDestroy
CreateFileA
IsBadWritePtr
CloseHandle
WideCharToMultiByte
InitializeCriticalSection
LockResource
SuspendThread
FlushFileBuffers
WritePrivateProfileStringA
VirtualQuery
FileTimeToSystemTime
FileTimeToLocalFileTime
GetExitCodeProcess
FindNextFileA
DebugBreak
LCMapStringA
FatalAppExitA
VirtualProtect
InterlockedDecrement
GetSystemTimeAsFileTime
GetCurrentProcess
IsBadReadPtr
GetEnvironmentStrings
GetLastError
GetModuleFileNameA
SetHandleCount
CompareStringA
FreeEnvironmentStringsW
HeapAlloc
TerminateProcess
EnterCriticalSection
GetDateFormatA
LocalFree
CreateThread
VirtualFree
GetProcAddress
LoadResource
GetStringTypeW
FreeResource
GetEnvironmentStringsW
GetTimeFormatA
GetOEMCP
GetUserDefaultLCID
TlsFree
MultiByteToWideChar

comctl32

InitCommonControlsEx
ImageList_GetIcon
ImageList_Destroy
ord17

gdi32

PolyPolyline
CreateDCA
SetTextJustification
GetTextFaceA
DrawEscape
CreateDiscardableBitmap
SaveDC
EndPage
EndDoc
GetClipBox
StartPage
CombineRgn
GetFontData
OffsetClipRgn
GetTextMetricsA
FloodFill
CreateEllipticRgn
GetClipRgn
SetPixelV
ScaleViewportExtEx
ScaleWindowExtEx
MoveToEx
GetCharWidthFloatA
PlgBlt
EnumObjects
GetColorAdjustment
SetMapMode
GetPath
GetCurrentPositionEx
SetPolyFillMode
GetOutlineTextMetricsA
GetDeviceCaps
CreatePalette
DeleteDC
DeleteObject
GetAspectRatioFilterEx
BitBlt
CreatePolyPolygonRgn
AngleArc
CreateFontIndirectA
GetKerningPairsA
GetBrushOrgEx
GetViewportExtEx
WidenPath
StartDocA
Rectangle
OffsetRgn
PolylineTo
FlattenPath
LPtoDP
Polyline
GetCharABCWidthsFloatA
AbortPath
SetPixel
UnrealizeObject
ExtEscape
RealizePalette
CreateEllipticRgnIndirect
OffsetViewportOrgEx
MaskBlt
SetArcDirection
SetMiterLimit
GetCharWidthA
CreateDIBitmap
DPtoLP
RestoreDC
GdiComment
SelectClipRgn
RectVisible
ExcludeClipRect
PolyBezier
AnimatePalette
GetMiterLimit

user32

GetMenu
GetForegroundWindow
EndDialog
GetClientRect
SetWindowRgn
GetDlgItem
DrawIcon
ScreenToClient
MsgWaitForMultipleObjects
DestroyCursor
DrawTextA
DispatchMessageA
RegisterClassA
PostQuitMessage
GetClipboardData
AttachThreadInput
GetNextDlgTabItem
DestroyCaret
GetWindowTextLengthA
GrayStringA
SetCapture
CreateIconIndirect
TranslateMessage
GetCapture
GetActiveWindow
MapWindowPoints
SetWindowsHookExA
InflateRect
GetWindowPlacement
GetWindowTextA
IsChild
GetSystemMetrics
UnhookWindowsHookEx
LoadIconA
SetWindowTextA
HideCaret
GetNextDlgGroupItem
RedrawWindow
SetCursor
SetFocus
GetMenuItemID
EqualRect
SetTimer
RegisterClipboardFormatA
GetWindowRect
IsWindow
CopyRect
GetFocus
GetSysColor
CallWindowProcA
RegisterClassExA
InsertMenuItemA
GetSysColorBrush
DefWindowProcA
SystemParametersInfoA
GetDesktopWindow
CreateMenu
GetKeyState
TrackPopupMenu
GetMenuItemInfoA
DrawMenuBar
DestroyMenu
BringWindowToTop
DrawTextExA
GetWindow

wininet

InternetCloseHandle
InternetGetConnectedState
InternetOpenA
InternetCanonicalizeUrlA

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ecd2f919cbb864eea762cda0fec9a18

Headers

File Characteristics

Imports

advapi32

version

kernel32

comctl32

gdi32

user32

wininet

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 260KB - Virtual size: 259KB

.data Size: 68KB - Virtual size: 70KB

.rsrc Size: 64KB - Virtual size: 61KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 260KB - Virtual size: 259KB

.data
Size: 68KB - Virtual size: 70KB

.rsrc
Size: 64KB - Virtual size: 61KB