a1c1b6d3c43bc4330af8cf548decbf9a413b380547f113f8c55614bd3b87b69c

Sharing

Copy URL Twitter E-mail

General

Target

a1c1b6d3c43bc4330af8cf548decbf9a413b380547f113f8c55614bd3b87b69c
Size

294KB
MD5

bd101501518a4f4e18d2a47a55a4d79f
SHA1

bde6bb3de5850411c3e23cc8e76b195d4b963dc0
SHA256

a1c1b6d3c43bc4330af8cf548decbf9a413b380547f113f8c55614bd3b87b69c
SHA512

3a1190d332884339f6bee9adf2f72be78c087994c8c2ddcd87ab1a538af2875f119342b46a09a1ffc1547a8908cdfda79d5ca081e037ef4daf102b474181037d
SSDEEP

3072:xK+H84m6PjCKm8Ug2kxJYWQaAlfaA+Upm0FfRZr5g2XIzi4JAFEfS8BGkh760/Y+:YG84m6Xm8hIWQaAkNU3fRf0DKiq8KBJ

Score

N/A

Malware Config

Signatures

Files

a1c1b6d3c43bc4330af8cf548decbf9a413b380547f113f8c55614bd3b87b69c
.exe windows x86

28f16cfd9d762260ff9bd730aa32806c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryW
Sleep
HeapFree
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
SetStdHandle
WriteConsoleW
LCMapStringW
GetStringTypeW
HeapReAlloc
HeapSize
FlushFileBuffers
CreateFileW
CloseHandle
FillConsoleOutputAttribute
GetModuleHandleA
GetConsoleScreenBufferInfo
GetLastError
GetStdHandle
MultiByteToWideChar
lstrcatA
SetConsoleCursorPosition
HeapCreate
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
ReadConsoleInputA
FlushConsoleInputBuffer
WaitForSingleObject
GetCurrentProcess
HeapAlloc
lstrlenA
CreateFileA
InterlockedDecrement
FillConsoleOutputCharacterA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
DecodePointer
EncodePointer
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetModuleFileNameW

user32

InvalidateRect
CheckMenuItem
EndPaint
SetCursor
SetTimer
GetWindowRect
InsertMenuItemA
PostQuitMessage
TrackPopupMenu
KillTimer
LoadBitmapA
GetParent
wsprintfA
GetClientRect
SendMessageA
BeginPaint
LoadCursorA
GetMenu
SetWindowLongA
GetDC
GetWindowLongA
GetDlgItem
EndDialog
DefWindowProcA
GetDesktopWindow
GetSysColor
GetCursorPos
CreatePopupMenu
GetClassInfoA
IsWindow
MessageBoxW
SystemParametersInfoA
GetSystemMetrics
SetWindowTextA
LoadImageA
MapWindowPoints

gdi32

CreateSolidBrush
SetTextColor
CreateFontA
CreateFontIndirectA
GdiFlush
DeleteObject
SelectObject
Rectangle
CreatePen
GetObjectA
GetStockObject

comdlg32

GetFileTitleA

advapi32

CloseServiceHandle
OpenServiceA
DeleteService
RegQueryValueExA
OpenSCManagerA
ControlService
RegCloseKey

shell32

SHGetDesktopFolder
SHGetFolderPathW
SHGetFolderPathA

ws2_32

WSAAsyncGetProtoByNumber

psapi

GetModuleInformation

version

GetFileVersionInfoW

shlwapi

PathAppendA

comctl32

ImageList_AddMasked
ImageList_SetBkColor
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_Create
ImageList_GetImageCount

imm32

ImmGetOpenStatus

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.loc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28f16cfd9d762260ff9bd730aa32806c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ws2_32

psapi

version

shlwapi

comctl32

imm32

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 13KB - Virtual size: 20KB

.loc Size: 4KB - Virtual size: 4KB

.rsrc Size: 60KB - Virtual size: 59KB

.reloc Size: 4KB - Virtual size: 88KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 13KB - Virtual size: 20KB

.loc
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 60KB - Virtual size: 59KB

.reloc
Size: 4KB - Virtual size: 88KB