f33c40c8fa4a70190d9c84af54f72fa9364411386d0216c86dc0f5dcff6e0faa

Sharing

Copy URL

Twitter E-mail

General

Target

f33c40c8fa4a70190d9c84af54f72fa9364411386d0216c86dc0f5dcff6e0faa
Size

493KB
MD5

2913ab3cdd1b6d478fd668c74d6cb50d
SHA1

1d03d6fb33144825a735f8d2a2877c9838a135a5
SHA256

f33c40c8fa4a70190d9c84af54f72fa9364411386d0216c86dc0f5dcff6e0faa
SHA512

21980ee49e314c6b4804e3975a2905b4386b5cf1466e219efb44e3fca1e5382dc7a006f19a3d45c050399aae659eb65a132e6d7f86009ba979f7504a4827fb25
SSDEEP

12288:lQ3i4jW5ruOW0qKLrZwQjIw9iqNv6qt3xTEbvXncjjEO:lQ3i4jW5FWCLxIL2ubf+oO

Score

N/A

Malware Config

Signatures

Files

f33c40c8fa4a70190d9c84af54f72fa9364411386d0216c86dc0f5dcff6e0faa
.exe windows x86

52becc7f5dcd0b01730b9285f2603458

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

RealShellExecuteW
SHBrowseForFolderW
DragQueryFile
DragFinish

comctl32

InitCommonControlsEx

gdi32

CreateDCA
EnumFontFamiliesW
GetCharWidth32W
SetBoundsRect
EnumFontsW
GetCharWidthA
SetFontEnumeration
GetLogColorSpaceW
GetColorSpace
DeleteMetaFile
ExtCreatePen
CreateHalftonePalette
CreatePolygonRgn
GetMiterLimit
SetMapMode
GetEnhMetaFileW
GetTextColor
AddFontResourceA
FixBrushOrgEx
GetNearestPaletteIndex
DeleteColorSpace

kernel32

CloseHandle
GetVersionExA
TlsFree
VirtualFree
MultiByteToWideChar
TlsAlloc
CompareStringW
QueryPerformanceCounter
GetStartupInfoW
FindNextFileA
TlsGetValue
GetLocaleInfoA
EnumSystemLocalesA
HeapDestroy
GetCommandLineA
IsValidCodePage
GetSystemTime
GetCurrentThread
WriteFile
EnumCalendarInfoExW
LCMapStringA
HeapAlloc
CreateProcessW
GetCurrentThreadId
CreateMutexA
IsBadWritePtr
GetLastError
GetStringTypeW
VirtualProtect
GetCommandLineW
GetLocaleInfoW
TerminateProcess
GetThreadPriorityBoost
DeleteCriticalSection
RtlUnwind
SetLocaleInfoW
IsValidLocale
GetCompressedFileSizeA
GetStartupInfoA
GetCurrentProcessId
FlushConsoleInputBuffer
SetFilePointer
VirtualAlloc
FreeEnvironmentStringsW
InterlockedDecrement
HeapFree
GetSystemInfo
GetProcAddress
LoadLibraryA
GetTickCount
GetModuleFileNameW
SetLastError
OpenMutexA
EnterCriticalSection
GetNumberFormatW
VirtualQuery
TlsSetValue
LocalFree
GetACP
SetEnvironmentVariableA
GetStringTypeA
GetFileType
CompareStringA
ReadFile
SetHandleCount
GetMailslotInfo
SetThreadPriority
FlushFileBuffers
WriteFileEx
InterlockedExchange
SetConsoleTitleA
GetProcessAffinityMask
WideCharToMultiByte
GetSystemTimeAsFileTime
GetEnvironmentStringsW
SetStdHandle
GetEnvironmentStrings
GetCurrencyFormatA
HeapCreate
GetCPInfo
GetTimeFormatA
HeapReAlloc
GetModuleHandleA
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetTimeZoneInformation
GetOEMCP
GetProfileIntA
HeapSize
GetUserDefaultLCID
RemoveDirectoryW
LeaveCriticalSection
ExitProcess
UnhandledExceptionFilter
GetDateFormatA
GetCurrentProcess
InitializeCriticalSection
LCMapStringW
EnumDateFormatsExA

wininet

GetUrlCacheGroupAttributeW
FindNextUrlCacheEntryW
CreateUrlCacheContainerW
FtpCommandW
UnlockUrlCacheEntryStream
GopherOpenFileW
InternetSecurityProtocolToStringW

advapi32

LookupAccountNameA
RegSetValueExA
RegQueryMultipleValuesW
CryptSignHashW
CryptAcquireContextA
RegEnumValueW
ReportEventA
RegQueryMultipleValuesA
RegRestoreKeyA
CreateServiceA
CryptSignHashA
InitiateSystemShutdownA
CryptEncrypt
RegQueryValueW
RegSaveKeyA
CryptDeriveKey
LookupSecurityDescriptorPartsA

user32

DdeCreateDataHandle
RegisterClassExA
DrawMenuBar
IsCharAlphaNumericA
GetProcessWindowStation
ModifyMenuW
DispatchMessageA
LoadIconW
RegisterClassA
GetWindowInfo
SetActiveWindow
CallMsgFilterW

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52becc7f5dcd0b01730b9285f2603458

Headers

File Characteristics

Imports

shell32

comctl32

gdi32

kernel32

wininet

advapi32

user32

Sections

.text Size: 158KB - Virtual size: 158KB

.rdata Size: 9KB - Virtual size: 30KB

.data Size: 313KB - Virtual size: 313KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 158KB - Virtual size: 158KB

.rdata
Size: 9KB - Virtual size: 30KB

.data
Size: 313KB - Virtual size: 313KB

.rsrc
Size: 10KB - Virtual size: 10KB