a4259d073b3fdc228b308b9500067762b2fb6f0ed6449f4d23480adf01cc79fa

Sharing

Copy URL

Twitter E-mail

General

Target

a4259d073b3fdc228b308b9500067762b2fb6f0ed6449f4d23480adf01cc79fa
Size

82KB
MD5

a81bfd4a6767b7f35beb3b21c42da2f5
SHA1

7d2f318ba03ce48dd6fd7465961c1204f2884c4c
SHA256

a4259d073b3fdc228b308b9500067762b2fb6f0ed6449f4d23480adf01cc79fa
SHA512

1805537ae78213ac05228a93e85f9f73fad2f191681467220056d8b3d0de57070ac87564aedc0a5d66122949dd2f26254100c8a628f3aa674d3df039cd3cdb39
SSDEEP

1536:ZiMDX2cyPyBDwvg1a3QlVTmZmbPRs3PSR2HLMJbJY/7hLqG4gPZYjyLTZFZwyKX:ZiMacy6FwotWKWPSRMLMJyhetgBYGLt+

Score

N/A

Malware Config

Signatures

Files

a4259d073b3fdc228b308b9500067762b2fb6f0ed6449f4d23480adf01cc79fa
.exe windows x86

b78cf5fcdcf627afd38fcab4f90c0b7e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree

ntdll

NtAddAtom

gdi32

BitBlt
DeleteObject
DeleteDC
SetBkColor
CreateSolidBrush
SetGraphicsMode
CreateCompatibleDC
GetDeviceCaps
DPtoLP
CreateFontIndirectA
GetTextMetricsA
ModifyWorldTransform
GetObjectA
SelectObject
SetViewportOrgEx
ExtTextOutA
RestoreDC
SetTextColor
SaveDC
SetWindowOrgEx

atl

AtlMarshalPtrInProc

kernel32

CloseHandle
GetSystemDirectoryA
InterlockedDecrement
lstrcpyA
GetModuleHandleA
GetTickCount
HeapAlloc
VirtualAlloc
LocalAlloc
HeapFree
GetProcessHeap
SetEvent
LocalFree
lstrcpynA
lstrlenA
DisableThreadLibraryCalls
HeapSize
GetModuleFileNameA
CreateEventA
GetWindowsDirectoryA
lstrcmpA
GetProcAddress
CreateFileA
HeapReAlloc
LoadLibraryA
InterlockedIncrement
InitializeCriticalSection
lstrcatA
GetDiskFreeSpaceA
CreateThread
DeleteCriticalSection
lstrcmpiA

advapi32

RegEnumValueA
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

advpack

RegInstall

user32

GetWindowRect
EndDialog
CheckDlgButton
ReleaseDC
CharUpperA
InvalidateRect
IsWindow
CreateDialogParamA
MessageBoxA
SetWindowLongA
DialogBoxParamA
wsprintfA
SendDlgItemMessageA
EnableWindow
DestroyIcon
SetWindowTextA
DestroyWindow
IsDlgButtonChecked
GetDC
CharPrevA
DrawTextA
SetDlgItemTextA
LoadBitmapA
MsgWaitForMultipleObjects
GetWindowTextA
LoadImageA
GetClientRect
DispatchMessageA
SetWindowPos
TranslateMessage
IsDialogMessageA
LoadStringA
ShowWindow
PeekMessageA
SendMessageA
GetDlgItem
GetSysColor
GetWindowLongA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.textbss
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b78cf5fcdcf627afd38fcab4f90c0b7e

Headers

DLL Characteristics

File Characteristics

Imports

ole32

ntdll

gdi32

atl

kernel32

advapi32

advpack

user32

version

Sections

.textbss Size: - Virtual size: 1.2MB

.text Size: 512B - Virtual size: 428B

.idata Size: 79KB - Virtual size: 79KB

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 1024B - Virtual size: 816B

.textbss
Size: - Virtual size: 1.2MB

.text
Size: 512B - Virtual size: 428B

.idata
Size: 79KB - Virtual size: 79KB

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 1024B - Virtual size: 816B