c982b1904509238769fee5674135f92f0a678729e24aa02812cbde0f87903a2b

Sharing

Copy URL Twitter E-mail

General

Target

c982b1904509238769fee5674135f92f0a678729e24aa02812cbde0f87903a2b
Size

519KB
MD5

5bf95decf30d97eec25234bd9dcbb6ab
SHA1

80b2594b7e44d0694c21bdbfac6a75d59821b61b
SHA256

c982b1904509238769fee5674135f92f0a678729e24aa02812cbde0f87903a2b
SHA512

655d875f1baa2592b8077992d74434267dbaf8e089c2635470c229a72abddc67f58e3bda2f43bf70a01938da3cd7a43dba3b3ca396493a94990ce6a293ed89d8
SSDEEP

12288:0c1dMYsio6e+x9tkU34HBDHqOGTV9q7wWFnhBKH4:0cRx9+UI3U/G+Y

Score

N/A

Malware Config

Signatures

Files

c982b1904509238769fee5674135f92f0a678729e24aa02812cbde0f87903a2b
.exe windows x86

02e63eb4a672ee07921fc4dfeb3c472e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetViewportOrgEx
SetDIBits
GetTextExtentPointW
GetOutlineTextMetricsA
GetICMProfileW
ExcludeClipRect
ResizePalette
SetPixel
EnumObjects
CancelDC
StartDocW

comctl32

ImageList_Destroy
InitCommonControlsEx
ImageList_DragMove
DestroyPropertySheetPage
CreateStatusWindow
CreatePropertySheetPage
ImageList_DrawIndirect
CreateToolbarEx

comdlg32

GetFileTitleA

kernel32

HeapFree
OutputDebugStringW
TerminateProcess
GetUserDefaultLCID
FlushConsoleInputBuffer
FreeEnvironmentStringsW
GetCPInfo
GetDateFormatA
InterlockedExchange
VirtualAlloc
GetCommandLineA
GetOEMCP
GetCurrencyFormatA
GetEnvironmentStringsW
HeapDestroy
HeapCreate
CloseHandle
QueryPerformanceCounter
VirtualProtect
IsValidCodePage
SetEnvironmentVariableA
ExitProcess
HeapSize
VirtualQuery
HeapReAlloc
GetVersionExA
IsBadWritePtr
DeleteCriticalSection
FreeEnvironmentStringsA
GetCurrentProcess
GetStdHandle
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetStringTypeW
GetModuleHandleA
GetACP
GetStringTypeA
GetPrivateProfileStructA
GetStartupInfoW
MapViewOfFile
OpenMutexA
TlsGetValue
VirtualFree
InitializeCriticalSection
FlushFileBuffers
GetSystemInfo
SetStdHandle
FindResourceA
CreateMutexA
GetProfileSectionA
GetLocaleInfoW
GetStartupInfoA
GetCurrentProcessId
TlsAlloc
GetFileType
SetLastError
GetNamedPipeInfo
RtlUnwind
WriteConsoleOutputA
GetCurrentThread
TlsFree
HeapAlloc
WriteConsoleOutputAttribute
ReadFile
GetFullPathNameW
LCMapStringW
EnterCriticalSection
GetModuleFileNameW
CompareStringA
GetEnvironmentStrings
UnhandledExceptionFilter
LoadLibraryA
GetLastError
TlsSetValue
SetConsoleCP
GlobalFree
GetCurrentThreadId
LCMapStringA
SystemTimeToFileTime
CompareStringW
SetHandleCount
WideCharToMultiByte
GetPrivateProfileStructW
GetLocaleInfoA
GetModuleFileNameA
LocalReAlloc
WriteFile
SetFilePointer
GetTickCount
VirtualUnlock
GetCommandLineW
GetTempFileNameW
MultiByteToWideChar
GetTimeFormatA
WriteConsoleA
GetConsoleMode
EnumSystemLocalesA
GetProcAddress
LeaveCriticalSection
IsValidLocale

user32

CopyAcceleratorTableA
SetWindowLongA
CharToOemW
SetShellWindow
IsWindow
SetCaretBlinkTime
DdeCreateStringHandleA
RegisterClassExA
IsCharUpperW
WaitForInputIdle
EnableScrollBar
EnumDisplaySettingsA
InvertRect
MessageBoxA
DestroyWindow
ToUnicode
ShowWindow
SendIMEMessageExA
SwitchToThisWindow
DrawIconEx
RedrawWindow
IsCharLowerW
RegisterClassA
ValidateRect
SetDlgItemTextW
GetWindowTextLengthA
RegisterClipboardFormatA
GetOpenClipboardWindow
CreateWindowExW
DefWindowProcA

advapi32

CryptImportKey
RegRestoreKeyA
CryptContextAddRef
RegCreateKeyA
LookupAccountNameW
RegOpenKeyA
RegSaveKeyW
CreateServiceW
CreateServiceA
LookupPrivilegeNameW
RegNotifyChangeKeyValue
RegCreateKeyW
CryptExportKey
RegFlushKey
LookupSecurityDescriptorPartsW
LookupPrivilegeValueA
RegDeleteKeyW
CryptHashData
CryptEnumProviderTypesW
RegEnumKeyExA
CryptDeriveKey
CryptEncrypt
RegQueryValueW
LookupPrivilegeDisplayNameW
InitiateSystemShutdownW

Sections

.text
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 81KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02e63eb4a672ee07921fc4dfeb3c472e

Headers

File Characteristics

Imports

gdi32

comctl32

comdlg32

kernel32

user32

advapi32

Sections

.text Size: 302KB - Virtual size: 301KB

.rdata Size: 81KB - Virtual size: 98KB

.data Size: 114KB - Virtual size: 113KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 302KB - Virtual size: 301KB

.rdata
Size: 81KB - Virtual size: 98KB

.data
Size: 114KB - Virtual size: 113KB

.rsrc
Size: 21KB - Virtual size: 20KB