3f9844f4c6058d7f060b7642981cfc7d8d39c7f0254921ceab1608206992ff97

Sharing

Copy URL Twitter E-mail

General

Target

3f9844f4c6058d7f060b7642981cfc7d8d39c7f0254921ceab1608206992ff97
Size

716KB
MD5

b2df4e196913527459c46e73be096c1b
SHA1

1a2ff990fe99bdb72e11167eeec56a9ce84a0cf8
SHA256

3f9844f4c6058d7f060b7642981cfc7d8d39c7f0254921ceab1608206992ff97
SHA512

1579b11df1454a8ff8ea1f04f213aa3a9e36f331feded1834f9e89ef56ff6b95b7edb377af6116e4acaa9bc8254d4b067ffd8389923a61f4c626f7e9c645cfc3
SSDEEP

12288:Yz/FV7QQJZ/osBGpuEWb1528lFDpcYOdhrCpuVFEQDO2nbV20EiCy5Y:YzV/louEWHDKYOCpuVDO2523C5

Score

N/A

Malware Config

Signatures

Files

3f9844f4c6058d7f060b7642981cfc7d8d39c7f0254921ceab1608206992ff97
.exe windows x86

afa97dc9a31b3167556689dc4a55655e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueA
RegCreateKeyA
RegDeleteValueA
CryptSetProviderW
ReportEventW
RegOpenKeyExA
RegReplaceKeyW
CryptSetKeyParam
CryptSignHashW

gdi32

CreateDCA
GetTextMetricsW
CreatePolygonRgn
SelectObject
GetTextExtentPoint32A
GetDeviceCaps
GdiFlush
CreateHalftonePalette
Pie
DeleteDC
GetColorSpace
EnumFontFamiliesA
GetTextExtentExPointW
PolylineTo
DeleteObject
GetObjectW

user32

TrackPopupMenu
MessageBoxW
DefWindowProcA
ShowWindow
SetDebugErrorLevel
DdeSetQualityOfService
CopyRect
EnumDisplaySettingsA
RegisterClassA
SetLastErrorEx
ReleaseDC
DdeQueryConvInfo
ToUnicodeEx
GetMessageTime
GetUserObjectSecurity
TranslateMessage
LoadAcceleratorsA
DdeConnectList
GetWindowThreadProcessId
IsDialogMessageW
DestroyWindow
GetClipboardData
EqualRect
OemToCharBuffA
CallWindowProcA
IsCharAlphaNumericW
RegisterHotKey
LockWindowUpdate
CallWindowProcW
AttachThreadInput
RegisterClassExA
GetCursorInfo
WINNLSEnableIME
CreateWindowExA
GetClipboardViewer

kernel32

TlsFree
WriteConsoleOutputCharacterW
InterlockedIncrement
FreeEnvironmentStringsA
HeapCreate
GetEnvironmentStringsA
SetFilePointer
lstrcmpi
TerminateProcess
CreateNamedPipeW
QueryPerformanceCounter
LoadLibraryA
GetFileType
GetCurrentThreadId
WriteFile
GetLongPathNameW
IsBadWritePtr
GetTimeZoneInformation
OpenMutexA
GetStartupInfoA
GetModuleFileNameA
TlsSetValue
HeapReAlloc
GetStringTypeA
GetModuleHandleA
FlushFileBuffers
HeapDestroy
ReadFile
GetSystemTime
CompareStringA
MultiByteToWideChar
GetOEMCP
WideCharToMultiByte
GetStringTypeW
InitializeCriticalSection
HeapAlloc
VirtualQuery
GetUserDefaultLCID
GetVersion
GetTickCount
EnterCriticalSection
CompareStringW
VirtualFree
IsValidLocale
GetEnvironmentStrings
GetCommandLineW
GetCurrentThread
GetCommandLineA
GetEnvironmentStringsW
HeapFree
SetConsoleCtrlHandler
TlsGetValue
GetSystemTimeAsFileTime
DeleteCriticalSection
LoadResource
UnhandledExceptionFilter
SetLastError
VirtualAlloc
InterlockedExchange
ExitProcess
GetModuleFileNameW
GetCurrentProcess
RtlUnwind
CloseHandle
GetCPInfo
SetEnvironmentVariableA
SetHandleCount
WaitNamedPipeA
LeaveCriticalSection
FreeEnvironmentStringsW
GetStdHandle
GetLocalTime
GetLastError
GetProfileStringA
TlsAlloc
EnumResourceLanguagesA
GetProcessShutdownParameters
GetProcAddress
CreateMutexA
InterlockedDecrement
LCMapStringW
SetStdHandle
GetCurrentProcessId
LCMapStringA
GetStartupInfoW

comctl32

ImageList_LoadImageA
CreateMappedBitmap
ImageList_DrawEx
CreateStatusWindowA
ImageList_ReplaceIcon
ImageList_GetBkColor
ImageList_Add
ImageList_SetFlags
_TrackMouseEvent
ImageList_AddIcon
InitCommonControlsEx
CreateToolbarEx
ImageList_AddMasked
ImageList_GetFlags
ImageList_SetOverlayImage
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_Merge
DrawStatusText
ImageList_GetDragImage
ImageList_EndDrag

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afa97dc9a31b3167556689dc4a55655e

Headers

File Characteristics

Imports

advapi32

gdi32

user32

kernel32

comctl32

Sections

.text Size: 136KB - Virtual size: 135KB

.rdata Size: 392KB - Virtual size: 390KB

.data Size: 132KB - Virtual size: 135KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 136KB - Virtual size: 135KB

.rdata
Size: 392KB - Virtual size: 390KB

.data
Size: 132KB - Virtual size: 135KB

.rsrc
Size: 52KB - Virtual size: 51KB