61d8d5edd03fe0dea407446911ed8cca1af3f5686d03ea3c12fa41baec6c8105

Sharing

Copy URL Twitter E-mail

General

Target

61d8d5edd03fe0dea407446911ed8cca1af3f5686d03ea3c12fa41baec6c8105
Size

504KB
MD5

79ba0e9eb02b02b4658839247d2ddf6f
SHA1

a3f380a711bd01aff022daa89ee3b79f59633f62
SHA256

61d8d5edd03fe0dea407446911ed8cca1af3f5686d03ea3c12fa41baec6c8105
SHA512

de86aecda8d868aaf210763f8fe8082f6ce8c1595cec7722824ae4e683748330c77e3d1cb63d05f1ff098817c2925fb87471a61a616faae696065d6a6277fac5
SSDEEP

12288:guKaz2qwJH36h8VuKS0AMWV8bZ6QVMVoVV5VVfVVVNVVV8VVVVBVVVVVVZVVVVVO:4g2zJHKh8Vurrab

Score

N/A

Malware Config

Signatures

Files

61d8d5edd03fe0dea407446911ed8cca1af3f5686d03ea3c12fa41baec6c8105
.exe windows x86

4524a808a2ccac2d3f94a99614d760d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_LoadImageW
ImageList_AddIcon
ImageList_SetIconSize
DrawStatusText
ImageList_Add
GetEffectiveClientRect
ImageList_SetBkColor
ImageList_GetIcon
CreatePropertySheetPageW
ImageList_Draw
InitCommonControlsEx
CreateStatusWindow
ImageList_Create
ImageList_Replace
ImageList_DragMove
ImageList_SetOverlayImage
ImageList_SetFilter
ImageList_Copy
CreateStatusWindowW
ImageList_EndDrag
ImageList_Destroy
InitMUILanguage
_TrackMouseEvent

kernel32

GetProcessHeap
IsBadReadPtr
SetUnhandledExceptionFilter
WritePrivateProfileSectionA
GetCurrentThread
GetCurrentProcessId
WriteConsoleInputW
TlsFree
FreeEnvironmentStringsA
GetLastError
GetPrivateProfileStringW
HeapDestroy
WriteConsoleInputA
InterlockedIncrement
CompareStringA
FreeEnvironmentStringsW
CreateFileA
TlsGetValue
FreeLibrary
WriteProfileStringA
LocalCompact
GetModuleHandleA
UnhandledExceptionFilter
GetCommandLineA
SetEnvironmentVariableA
GetACP
GetVersionExA
GetCPInfo
SetPriorityClass
SetFileTime
HeapFree
GetLocaleInfoA
GetEnvironmentStringsW
InterlockedExchange
GetStringTypeW
GetCurrentProcess
GlobalAddAtomA
SetConsoleCtrlHandler
VirtualFree
IsValidCodePage
GetFileType
GetCommandLineW
HeapSize
RtlUnwind
GetStartupInfoA
SetStdHandle
IsValidLocale
TlsSetValue
LCMapStringA
OpenMutexA
CreateSemaphoreW
SetVolumeLabelA
HeapAlloc
lstrlen
VirtualAlloc
SetFilePointer
SetComputerNameW
GetTimeFormatA
SetConsoleOutputCP
AddAtomA
GetPrivateProfileSectionW
GetStartupInfoW
EnumSystemLocalesA
TlsAlloc
GetTickCount
ExitProcess
CompareStringW
GetModuleFileNameA
CreateMutexA
VirtualQuery
CompareFileTime
FlushFileBuffers
EnumResourceNamesA
GetProcAddress
FlushViewOfFile
IsDebuggerPresent
lstrlenW
GetProfileSectionW
lstrcpyW
QueryPerformanceCounter
GetProfileStringA
GetProcAddress
WideCharToMultiByte
RemoveDirectoryW
GetEnvironmentStrings
WriteConsoleW
LCMapStringW
CloseHandle
GetSystemTimeAsFileTime
GetCurrentThreadId
GetConsoleCP
GetThreadLocale
TerminateProcess
Sleep
GetConsoleOutputCP
SetVolumeLabelW
GetConsoleMode
InterlockedDecrement
FindClose
ReadFile
EnterCriticalSection
GetStdHandle
GetOEMCP
SetLastError
GetDateFormatA
TransactNamedPipe
GetModuleFileNameW
GetUserDefaultLCID
SetHandleCount
SetThreadAffinityMask
GetTimeFormatW
ContinueDebugEvent
MultiByteToWideChar
LeaveCriticalSection
HeapReAlloc
GetLocaleInfoW
ResumeThread
RtlZeroMemory
GetTimeZoneInformation
LoadLibraryA
GetStringTypeA
HeapCreate
SetConsoleTitleA
WriteFile
InitializeCriticalSection
WriteConsoleA
DeleteCriticalSection

user32

IsRectEmpty
DrawTextA
MessageBoxA
DrawStateA
RedrawWindow
RegisterClassW
WINNLSGetEnableStatus
CreateWindowStationW
RegisterClipboardFormatA
SetCursor
CharPrevExA
GetIconInfo
GetAltTabInfo
ShowWindow
CreateWindowExW
InvalidateRect
GetProcessDefaultLayout
GetMenuItemID
PaintDesktop
DefFrameProcW
RegisterClassA
GetKeyState
IsWindowVisible
GetKeyboardType
DestroyWindow
SetWindowsHookExW
EnumDisplaySettingsExA
GetCursorInfo
RegisterClassExA
DefWindowProcA
MonitorFromWindow

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4524a808a2ccac2d3f94a99614d760d3

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 256KB - Virtual size: 252KB

.data Size: 112KB - Virtual size: 122KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 256KB - Virtual size: 252KB

.data
Size: 112KB - Virtual size: 122KB

.rsrc
Size: 36KB - Virtual size: 35KB