68642e0713829f0279677c1b6d478e2061d615ba4d87a7e3bf0827275338524f

Sharing

Copy URL Twitter E-mail

General

Target

68642e0713829f0279677c1b6d478e2061d615ba4d87a7e3bf0827275338524f
Size

316KB
MD5

8978d9580d1986db4008ad428c3ad4c5
SHA1

2dbdd777258db63a8667172edeac4b8e7b9cf54b
SHA256

68642e0713829f0279677c1b6d478e2061d615ba4d87a7e3bf0827275338524f
SHA512

18358e55c0793266ae8430974547c4bf4d8dfc835ccd9e1346fb3471e28685cef0e3c04b0251b6a6160e105250503766b7eafe1f0542cbd4f2c39bd2f6f28cba
SSDEEP

6144:O+ZiEz8IDgsMsIu4whyK9AvrX7+DVuteI5VRPF91:O+ZiEz8I8sTEKY2psVRPF9

Score

N/A

Malware Config

Signatures

Files

68642e0713829f0279677c1b6d478e2061d615ba4d87a7e3bf0827275338524f
.exe windows x86

5c071fba617bddaeade0ab9ec534b2c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetOverlayImage
InitMUILanguage
ImageList_LoadImageW
InitCommonControlsEx
ImageList_Read
ImageList_BeginDrag
ImageList_GetIcon
ImageList_SetImageCount
ImageList_Add
ImageList_SetFilter
ImageList_GetIconSize
ImageList_SetDragCursorImage
ImageList_Write
ImageList_ReplaceIcon
ImageList_Merge
ImageList_GetImageInfo
CreatePropertySheetPageA
ImageList_Destroy
ImageList_GetBkColor

kernel32

TlsFree
WriteConsoleA
GetEnvironmentStringsW
GetFileSize
GetSystemTimeAsFileTime
EnumSystemLocalesA
TerminateProcess
FreeLibrary
GetConsoleOutputCP
GetCurrentThreadId
SetEnvironmentVariableA
CompareStringW
GetUserDefaultLCID
GetModuleFileNameA
GetLocaleInfoW
HeapReAlloc
QueryPerformanceCounter
OpenMutexA
IsValidLocale
InterlockedDecrement
GetStringTypeW
HeapCreate
GetCurrentThread
GetProcessShutdownParameters
VirtualFree
FreeEnvironmentStringsA
UnhandledExceptionFilter
CompareStringA
LeaveCriticalSection
GetProcAddress
FlushFileBuffers
FreeEnvironmentStringsW
GetStartupInfoA
RtlUnwind
VirtualAlloc
HeapDestroy
GetLocaleInfoA
GetVersionExW
LCMapStringA
CreateMutexA
GetStdHandle
EnterCriticalSection
LCMapStringW
GetProcessHeap
TlsSetValue
IsDebuggerPresent
GetTimeZoneInformation
InterlockedExchange
SetConsoleCtrlHandler
SetFilePointer
GetOEMCP
HeapFree
GetDateFormatA
GetLastError
HeapAlloc
GetCPInfo
InterlockedIncrement
GetStringTypeA
HeapSize
SetLastError
GetConsoleCP
GetCurrentProcessId
GetCommandLineA
LoadLibraryA
MultiByteToWideChar
TlsGetValue
WriteConsoleW
GetTimeFormatA
SetHandleCount
DeleteCriticalSection
GetTickCount
SetUnhandledExceptionFilter
CreateFileA
GetConsoleMode
GetFileType
GetExitCodeProcess
InitializeCriticalSection
SetStdHandle
GetModuleHandleA
VirtualQuery
WideCharToMultiByte
IsValidCodePage
GetEnvironmentStrings
GetACP
ReadFile
GetVersionExA
GetCurrentProcess
WriteFile
TlsAlloc
ExitProcess
Sleep
CloseHandle

comdlg32

GetSaveFileNameW
ChooseColorW

user32

CharUpperA
RegisterClassA
EnumPropsW
FindWindowExW
GetUserObjectInformationA
RegisterClassExA
MessageBoxW
GetWindowContextHelpId
CreateDialogParamW
PtInRect
LoadIconA
LoadCursorFromFileW
SetDeskWallpaper
EndPaint
GetUpdateRgn
ChildWindowFromPoint
MessageBeep
SendMessageA
InvalidateRgn
SendNotifyMessageW
DdeSetQualityOfService
RealChildWindowFromPoint
IsCharAlphaNumericA
CharLowerA
CreateDesktopW
ShowCaret
InSendMessageEx
CharUpperBuffW
FreeDDElParam
CountClipboardFormats
TileChildWindows
CharToOemBuffW
GetSysColorBrush
CloseClipboard
CascadeChildWindows
InvalidateRect
CreateWindowExW
MapDialogRect
GetClassNameW
LoadMenuIndirectA
GetProcessWindowStation
DdeCmpStringHandles
WindowFromPoint
WinHelpW
SetThreadDesktop
WaitForInputIdle
ModifyMenuA
MsgWaitForMultipleObjects
CharLowerW
EnumPropsA
SetUserObjectInformationW
SetWindowPlacement
DefDlgProcW
OffsetRect
DefWindowProcA
IsClipboardFormatAvailable
GrayStringW
GetDlgItemTextW
CharPrevExA
DrawCaption
CreateWindowStationA
SetWindowsHookA
DestroyWindow
EnableWindow
ChildWindowFromPointEx
PostThreadMessageW
LoadKeyboardLayoutA
ShowWindow
DefWindowProcW
GetClassLongW
UnregisterClassW

advapi32

CryptCreateHash
LookupPrivilegeNameW
LookupAccountNameA
RegQueryValueW
CryptEnumProvidersA
RegRestoreKeyW
GetUserNameA
RegLoadKeyA
RegLoadKeyW
CryptHashSessionKey
CryptSignHashA
LookupSecurityDescriptorPartsA
RegSetValueExA
CryptAcquireContextW
AbortSystemShutdownA
RegCreateKeyW
CryptEnumProvidersW
ReportEventW
CryptAcquireContextA

gdi32

TranslateCharsetInfo
GetDeviceCaps
BitBlt
CopyMetaFileA
CreateDCW
GetObjectW
SelectObject
DeleteDC

shell32

SHFileOperationW
SHGetDiskFreeSpaceA
SHGetMalloc
ExtractIconW
SHFormatDrive

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c071fba617bddaeade0ab9ec534b2c0

Headers

File Characteristics

Imports

comctl32

kernel32

comdlg32

user32

advapi32

gdi32

shell32

Sections

.text Size: 92KB - Virtual size: 89KB

.rdata Size: 80KB - Virtual size: 77KB

.data Size: 88KB - Virtual size: 115KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 92KB - Virtual size: 89KB

.rdata
Size: 80KB - Virtual size: 77KB

.data
Size: 88KB - Virtual size: 115KB

.rsrc
Size: 52KB - Virtual size: 51KB