a9ebbd30a73dcc53b78072318039ea571cabe00020550e52692226203ae6ee86

Sharing

Copy URL Twitter E-mail

General

Target

a9ebbd30a73dcc53b78072318039ea571cabe00020550e52692226203ae6ee86
Size

215KB
MD5

e873e1f36f0b1313dec7c78fd398079c
SHA1

e31e8dcd4857a48f0e17c2401cd73c8149059574
SHA256

a9ebbd30a73dcc53b78072318039ea571cabe00020550e52692226203ae6ee86
SHA512

d26cd7cc4051be5ccef2f9ac301aff674f29dd195d9164bac6f3cad019c3adb42762547b3913a297b019c1d622e7e5c4c8c0e47366d34656c729b6409c2f935c
SSDEEP

3072:cssUilRbK0LR16EHYp90nQWU8smx9ljr6lAO3wIq0g9D9JGnxH:csHilFKQX6+YHOU8saVeAOs0g10

Score

N/A

Malware Config

Signatures

Files

a9ebbd30a73dcc53b78072318039ea571cabe00020550e52692226203ae6ee86
.exe windows x86

77aa1a56783174ea973d73d3d25bd452

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
CreateEventW
CreateFileMappingA
CreateMutexA
CreateThread
DeleteCriticalSection
DisableThreadLibraryCalls
DuplicateHandle
ExitProcess
FindFirstFileA
FindFirstFileW
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetConsoleOutputCP
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStringsW
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetFileTime
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetStartupInfoA
GetStartupInfoW
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemInfo
GetSystemTime
GetTempPathA
GetUserDefaultLCID
GetUserDefaultLangID
GetVersionExA
GetWindowsDirectoryA
GlobalAlloc
GlobalLock
HeapDestroy
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
IsBadCodePtr
IsBadReadPtr
LCMapStringA
LCMapStringW
LoadLibraryExA
LoadLibraryExW
LocalFileTimeToFileTime
LockResource
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
ResetEvent
SetUnhandledExceptionFilter
SizeofResource
TerminateProcess
TerminateThread
TlsAlloc
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjects
WriteConsoleA
lstrcatA
lstrcpyA

user32

CallWindowProcA
CharLowerA
DeleteMenu
DestroyMenu
DestroyWindow
DialogBoxParamA
DispatchMessageA
DrawEdge
DrawFrameControl
DrawTextA
GetClassNameA
GetCursorPos
GetDlgItem
GetForegroundWindow
GetKeyState
GetKeyboardType
GetLastActivePopup
GetMenuItemCount
GetMessagePos
GetParent
GetSubMenu
GetSysColorBrush
GetSystemMenu
GetWindow
GetWindowDC
InsertMenuItemA
MessageBeep
PeekMessageA
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SetClassLongA
SetFocus
SetScrollPos
SetScrollRange
TrackPopupMenu
UpdateWindow
WaitMessage
WindowFromPoint

gdi32

ArcTo
CreateDCA
CreateDIBitmap
CreateRectRgn
DPtoLP
EnumMetaFile
ExcludeClipRect
FrameRgn
GetCharWidthW
GetDIBColorTable
GetDIBits
GetEnhMetaFileDescriptionA
GetPixel
GetROP2
GetRgnBox
GetSystemPaletteEntries
GetTextExtentPoint32W
GetTextExtentPointA
GetTextFaceA
MoveToEx
PatBlt
PlayEnhMetaFile
PolyBezierTo
PtInRegion
PtVisible
SelectClipPath
SelectClipRgn
SetBrushOrgEx
SetGraphicsMode
SetTextCharacterExtra
SetTextColor
SetViewportExtEx
SetWinMetaFileBits

shell32

CommandLineToArgvW
DoEnvironmentSubstW
DragQueryFile
DragQueryPoint
ExtractIconExA
ExtractIconExW
FindExecutableW
SHAddToRecentDocs
SHAppBarMessage
SHBindToParent
SHBrowseForFolder
SHBrowseForFolderA
SHBrowseForFolderW
SHCreateDirectoryExA
SHCreateDirectoryExW
SHGetFileInfoW
SHGetFolderLocation
SHGetSpecialFolderLocation
ShellExecuteExW
ShellExecuteW

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
CreateToolbarEx
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Destroy
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_Read
ImageList_ReplaceIcon
ImageList_SetImageCount
ImageList_Write
InitCommonControlsEx
PropertySheetA

advapi32

AddAccessAllowedAce
AdjustTokenPrivileges
AllocateAndInitializeSid
CryptAcquireContextA
CryptReleaseContext
RegCloseKey
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegQueryValueExW
SetSecurityDescriptorOwner

ole32

CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoGetMalloc
CoInitialize
CoInitializeSecurity
CoSetProxyBlanket
CreateBindCtx
IIDFromString
IsEqualGUID

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

77aa1a56783174ea973d73d3d25bd452

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

ole32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 63KB - Virtual size: 83KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 63KB - Virtual size: 83KB