29d9f5bba28110c97a87dd235f998147829a9f1fa726369ebaf102b9b431ca46

Sharing

Copy URL Twitter E-mail

General

Target

29d9f5bba28110c97a87dd235f998147829a9f1fa726369ebaf102b9b431ca46
Size

786KB
MD5

b3da8a2610ba4e49985b254e9fd39ed0
SHA1

401d5ebed78dc7e989301e814923abcd1db48092
SHA256

29d9f5bba28110c97a87dd235f998147829a9f1fa726369ebaf102b9b431ca46
SHA512

2e3af24853a97c7064c89e58681253be4366e3343baaeb40b6b2a7fddd1d822f0f22fd920ff748f5b77b41642d7bba1743feb144116cbba898d873d8d00e58cd
SSDEEP

24576:ZBEFT87z/taxGGYtWHe+DeR52V/XXNJTH:ZOFT/xwWGR52pXXNR

Score

N/A

Malware Config

Signatures

Files

29d9f5bba28110c97a87dd235f998147829a9f1fa726369ebaf102b9b431ca46
.exe windows x86

cfc37feb32e04e0ef2af86673c8042bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreateStatusWindowA
ImageList_Remove
InitCommonControlsEx
DrawStatusTextA
ImageList_SetOverlayImage
CreatePropertySheetPage
ImageList_SetFlags

user32

ValidateRgn
MsgWaitForMultipleObjects
EqualRect
DrawCaption
RegisterWindowMessageA
CreateAcceleratorTableW
SetCursorPos
CopyAcceleratorTableW
EnumPropsExA
GetCursorPos
GetKeyboardLayout
GetClassInfoExW
UnionRect
SetFocus
SetPropW
UnregisterClassW
DdeDisconnectList
SetLastErrorEx
GetScrollPos
CreateAcceleratorTableA
RegisterClassExA
CreateWindowExA
SetDlgItemInt
GetMessageExtraInfo
CreateCaret
DdeCreateStringHandleA
ExcludeUpdateRgn
SetWindowLongW
ValidateRect
InvalidateRgn
GetScrollBarInfo
EnableMenuItem
TranslateAcceleratorW
PeekMessageA
SendIMEMessageExW
RegisterClassA
InvalidateRect
GetInputDesktop
SetKeyboardState
SystemParametersInfoW
SetWinEventHook
CopyIcon
GetCursorInfo
ShowCursor
SendDlgItemMessageW
IsCharAlphaNumericA
DefWindowProcW
MessageBoxW
GetKeyState
GetClassNameA
CreateDialogIndirectParamA
DefDlgProcW
EnumWindows
LoadImageA
CharLowerW
ShowWindow
CharToOemW
GetWindowRgn
LoadIconA
BlockInput
GetClipboardFormatNameA
DdeSetQualityOfService
DestroyWindow
CreateIconFromResourceEx
DlgDirSelectComboBoxExW

kernel32

SetCurrentDirectoryA
LCMapStringA
GetUserDefaultLCID
GetProcAddress
GetTimeZoneInformation
LeaveCriticalSection
VirtualProtectEx
HeapCreate
LocalCompact
GetModuleHandleA
FreeEnvironmentStringsW
CreateMutexA
GlobalGetAtomNameA
LCMapStringW
lstrcmpW
GetProcessHeaps
HeapSize
VirtualProtect
SetEnvironmentVariableA
VirtualLock
EnterCriticalSection
OpenMutexA
SetLastError
CreatePipe
FlushInstructionCache
FlushFileBuffers
InterlockedExchange
GetTimeFormatA
VirtualQuery
GetEnvironmentStringsW
CompareStringA
GlobalCompact
DeleteCriticalSection
HeapReAlloc
QueryPerformanceCounter
UnlockFile
GetSystemInfo
GetOEMCP
GlobalFindAtomA
LoadLibraryA
TlsFree
GlobalFlags
GetCurrentThreadId
CompareStringW
OpenSemaphoreW
GetConsoleScreenBufferInfo
GetVersionExA
GetStringTypeW
GetDriveTypeW
VirtualFree
GetLongPathNameA
TransactNamedPipe
EnumSystemLocalesA
GetConsoleCursorInfo
GetStdHandle
GetLocaleInfoW
IsValidCodePage
SetEndOfFile
ExitProcess
GetCurrentProcess
GetConsoleOutputCP
AllocConsole
CloseHandle
GetModuleFileNameA
SetConsoleScreenBufferSize
GetStartupInfoA
FreeEnvironmentStringsA
GetDateFormatA
SetFilePointer
TerminateProcess
GetCommandLineA
GetStartupInfoW
GetFileType
IsBadWritePtr
TlsSetValue
SuspendThread
HeapAlloc
ReadFile
SetHandleCount
OpenFileMappingA
GetCommandLineW
RtlUnwind
GetTickCount
WriteFile
GetModuleFileNameW
SetStdHandle
LocalFree
IsValidLocale
GetACP
InitializeCriticalSection
OpenWaitableTimerW
UnhandledExceptionFilter
TlsAlloc
HeapDestroy
VirtualAlloc
MultiByteToWideChar
GetEnvironmentStrings
HeapFree
WideCharToMultiByte
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCPInfo
GetLastError
TlsGetValue
GetCurrentProcessId
TerminateThread
GetStringTypeA
GetCurrentThread

advapi32

CryptGetProvParam
DuplicateToken
AbortSystemShutdownW
RegLoadKeyW
RegEnumKeyW
RevertToSelf
RegSetValueExA
CryptSetProviderExW
RegQueryMultipleValuesA
RegDeleteValueW
RegOpenKeyExW
CryptDuplicateHash
CryptGetHashParam
RegCreateKeyExW
LookupPrivilegeDisplayNameW
RegConnectRegistryA
CryptDeriveKey
CryptSetKeyParam
RegOpenKeyW
CreateServiceA

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 395KB - Virtual size: 395KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfc37feb32e04e0ef2af86673c8042bb

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

Sections

.text Size: 184KB - Virtual size: 183KB

.rdata Size: 395KB - Virtual size: 395KB

.data Size: 141KB - Virtual size: 141KB

.rsrc Size: 64KB - Virtual size: 64KB

.text
Size: 184KB - Virtual size: 183KB

.rdata
Size: 395KB - Virtual size: 395KB

.data
Size: 141KB - Virtual size: 141KB

.rsrc
Size: 64KB - Virtual size: 64KB