51460afb5a296981d489f2121e453412176e387a182faebf40f92a45ce561b52

Sharing

Copy URL Twitter E-mail

General

Target

51460afb5a296981d489f2121e453412176e387a182faebf40f92a45ce561b52
Size

532KB
MD5

9caab846213f5ece419c50387f02a067
SHA1

39c633f4daaa205948dbec07e58c34275af8ff4c
SHA256

51460afb5a296981d489f2121e453412176e387a182faebf40f92a45ce561b52
SHA512

35a63ac2aae16ac8cdf5053c53e3782c65f093c5d9e5b57c977d0a2bd2a19bae5fdd5cfcd401435b98c95dec7155f7c0193155f5b810bc709cbf371367ceaacd
SSDEEP

12288:QeQ2VcZxGRT7DgITo0Jytl2LdSwXe/qAxxXRy/+:1yxGB7DhDMMSR/qp

Score

N/A

Malware Config

Signatures

Files

51460afb5a296981d489f2121e453412176e387a182faebf40f92a45ce561b52
.exe windows x86

45a422e4e8944ec6d0b54ce8e4e02205

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageW
GetAltTabInfo
EnumWindows
EndPaint
SetWindowTextA
DdeNameService
GetShellWindow
DdeUnaccessData
OpenWindowStationW
EnumDisplayDevicesW
GetCursorPos
SetScrollInfo
DdeAccessData
GetWindowWord
IsCharAlphaW
MessageBoxIndirectW
DrawEdge
RegisterClassA
RegisterClassExA

shell32

SHGetFileInfo
ExtractIconExW
DragQueryPoint
ShellExecuteExA

comctl32

CreateUpDownControl
CreateMappedBitmap
ImageList_SetImageCount
ImageList_GetDragImage
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_DragShowNolock
InitCommonControlsEx
ImageList_SetOverlayImage
MakeDragList
ImageList_LoadImageW
ImageList_GetImageCount

advapi32

LogonUserA
CryptVerifySignatureW
RegQueryMultipleValuesW
GetUserNameA
LookupPrivilegeDisplayNameA
CryptReleaseContext
CryptAcquireContextA
CryptContextAddRef
AbortSystemShutdownW
LookupSecurityDescriptorPartsW
CryptEnumProvidersA
LookupSecurityDescriptorPartsA
LogonUserW
CryptGetProvParam
LookupAccountNameA
RegLoadKeyW
LookupAccountSidA
CryptHashData
CryptGetKeyParam
RegSetKeySecurity
LookupPrivilegeDisplayNameW

gdi32

EnumMetaFile
SetBitmapBits
GetRegionData
GetDeviceCaps
AngleArc
GdiPlayDCScript
GetObjectW
CreateEnhMetaFileW
SelectObject
ResizePalette
SetMetaFileBitsEx
GetLogColorSpaceW
CreateCompatibleDC
IntersectClipRect
DeleteDC
GetMetaFileBitsEx
GetCharWidth32W
GetNearestColor
CreateDCA
GetSystemPaletteUse
CopyEnhMetaFileW
PolyTextOutA

kernel32

LoadLibraryW
WriteFile
FreeEnvironmentStringsA
lstrcpyn
GetVersionExW
GetLogicalDriveStringsA
GetACP
SetEnvironmentVariableA
FindNextChangeNotification
GetDiskFreeSpaceExA
GetPrivateProfileSectionNamesA
SetWaitableTimer
GetConsoleMode
SetStdHandle
LocalFlags
GetProcAddress
GetNamedPipeInfo
GetMailslotInfo
SetHandleCount
HeapReAlloc
TerminateProcess
GetSystemDirectoryA
FindNextFileW
IsDebuggerPresent
SetConsoleCtrlHandler
SystemTimeToTzSpecificLocalTime
GetStringTypeA
GetOEMCP
ContinueDebugEvent
FileTimeToDosDateTime
RtlFillMemory
WideCharToMultiByte
TlsGetValue
GetCompressedFileSizeA
HeapFree
SetPriorityClass
DeleteCriticalSection
WriteConsoleA
GetEnvironmentVariableA
GetStdHandle
LocalAlloc
GetLocaleInfoA
OpenWaitableTimerW
GetConsoleCP
IsValidCodePage
EnumResourceLanguagesW
GetVersionExA
GetLastError
GetNumberFormatA
IsValidLocale
lstrcpynA
HeapValidate
FindResourceA
CloseHandle
SetConsoleActiveScreenBuffer
GetFileType
IsBadWritePtr
OpenMutexA
InterlockedDecrement
GetWindowsDirectoryA
QueryPerformanceCounter
RtlUnwind
GetEnvironmentStrings
HeapCreate
lstrlenA
SetFilePointer
TlsAlloc
EnumSystemLocalesA
HeapDestroy
GetAtomNameW
SystemTimeToFileTime
GetUserDefaultLCID
HeapAlloc
UnhandledExceptionFilter
OutputDebugStringW
GetSystemTimeAsFileTime
LoadLibraryA
MultiByteToWideChar
WriteConsoleW
WritePrivateProfileSectionW
GetThreadPriorityBoost
GetDateFormatA
VirtualQueryEx
LeaveCriticalSection
GetCurrentProcessId
RaiseException
TlsSetValue
WriteProfileStringW
GetCommandLineW
VirtualFree
SetConsoleTitleW
GetTickCount
VirtualAlloc
SetSystemTime
GetConsoleOutputCP
lstrcmpA
GetCurrentThreadId
GetModuleFileNameW
DebugBreak
GetTimeFormatA
SetThreadContext
GetCPInfo
FlushFileBuffers
TlsFree
GetTimeZoneInformation
GetConsoleTitleA
GetModuleHandleA
LCMapStringA
ReadFile
SetLastError
GetCommandLineA
LCMapStringW
ReleaseSemaphore
InterlockedExchange
CreateMutexA
ExitProcess
GetProcessHeap
EnterCriticalSection
GetStringTypeW
FreeEnvironmentStringsW
GetModuleFileNameA
GetCurrentThread
LocalReAlloc
WriteConsoleInputW
GetLocaleInfoW
SetConsoleTextAttribute
ReadConsoleInputA
CreateFileA
GetProfileIntA
GetEnvironmentStringsW
InitializeCriticalSection
CompareStringA
GetCurrentProcess
GetStartupInfoW
GetStringTypeExA
OutputDebugStringA
CompareStringW
FreeLibrary
CreateFileMappingA
SetUnhandledExceptionFilter
InterlockedIncrement
IsBadReadPtr
GetStartupInfoA
VirtualQuery
GetSystemTime

Sections

.text
Size: 272KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45a422e4e8944ec6d0b54ce8e4e02205

Headers

File Characteristics

Imports

user32

shell32

comctl32

advapi32

gdi32

kernel32

Sections

.text Size: 272KB - Virtual size: 268KB

.rdata Size: 128KB - Virtual size: 125KB

.data Size: 100KB - Virtual size: 118KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 272KB - Virtual size: 268KB

.rdata
Size: 128KB - Virtual size: 125KB

.data
Size: 100KB - Virtual size: 118KB

.rsrc
Size: 28KB - Virtual size: 25KB