768aa2ce394559ba8fad6dbc8fcc32a2f76b1a390b47d90a86aa38ff1cad07f9

Sharing

Copy URL Twitter E-mail

General

Target

768aa2ce394559ba8fad6dbc8fcc32a2f76b1a390b47d90a86aa38ff1cad07f9
Size

568KB
MD5

2b1130efc8ba2266c3f951b497efad5a
SHA1

23bcd67e167086f4efd0aae4afb66cdfc31ab337
SHA256

768aa2ce394559ba8fad6dbc8fcc32a2f76b1a390b47d90a86aa38ff1cad07f9
SHA512

a8c54f21e6fde18b10107c1bedc9d748b57853260a958c3d767e6f67e156f6d9382a432009c55899578ebb5777473941638f8b1f67703b1b6e657e719a401d1d
SSDEEP

12288:LhlUVgwTtnmqx70XxpgaeKrcywmfn5/mfcZmh2j:LhlUOwBnmZEwzw+FD

Score

N/A

Malware Config

Signatures

Files

768aa2ce394559ba8fad6dbc8fcc32a2f76b1a390b47d90a86aa38ff1cad07f9
.exe windows x86

8050feb6866de8da39055cf5e9b1aa91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

FindExecutableA

kernel32

SetThreadPriority
VirtualQueryEx
LocalUnlock
TlsFree
LoadLibraryA
GetCurrencyFormatA
EnumSystemLocalesA
IsDebuggerPresent
InterlockedDecrement
CreateFileA
SetHandleCount
HeapAlloc
HeapCreate
WriteConsoleW
GetLogicalDriveStringsA
GetLocalTime
CreateWaitableTimerW
WriteFile
SetEnvironmentVariableA
WriteConsoleA
TerminateProcess
SetFilePointer
OpenWaitableTimerW
OpenFileMappingW
FindNextFileW
MoveFileExW
ReadConsoleOutputCharacterA
SetSystemTime
GetProcessHeap
ConvertDefaultLocale
SetConsoleTextAttribute
TlsGetValue
GetLocaleInfoA
GetCurrentProcessId
RtlUnwind
LeaveCriticalSection
SetLastError
SetThreadIdealProcessor
GetFileType
GetOEMCP
VirtualQuery
WritePrivateProfileStructW
VirtualAllocEx
FlushViewOfFile
GetEnvironmentStringsW
GetLogicalDrives
CloseHandle
GetFileAttributesW
MultiByteToWideChar
GetModuleFileNameA
GlobalUnfix
GetThreadPriority
WaitForMultipleObjects
SetStdHandle
CreateDirectoryW
FreeEnvironmentStringsW
DeleteCriticalSection
TlsSetValue
GetStartupInfoA
GetACP
GetStdHandle
GetModuleHandleA
IsValidCodePage
GetEnvironmentVariableA
GetConsoleCP
CompareStringW
CompareStringA
WritePrivateProfileStringW
FillConsoleOutputCharacterW
CreateProcessW
GetCommandLineA
VirtualFree
LoadResource
GetStringTypeA
EnterCriticalSection
GetCurrentProcess
GetDateFormatA
FreeLibrary
GetSystemTimeAsFileTime
GetConsoleOutputCP
ExitProcess
GetTempPathA
QueryPerformanceCounter
InitializeCriticalSection
GetTimeZoneInformation
ExpandEnvironmentStringsW
SetComputerNameA
GetConsoleMode
LCMapStringW
GetSystemDirectoryW
ContinueDebugEvent
GetCalendarInfoA
Sleep
GetTickCount
VirtualProtect
InterlockedIncrement
HeapFree
SuspendThread
GetLocaleInfoW
OpenProcess
GetTimeFormatA
UnlockFileEx
GetCurrentThread
TlsAlloc
SetUnhandledExceptionFilter
GetCPInfo
lstrcpyn
GetLastError
GetUserDefaultLCID
IsValidLocale
WideCharToMultiByte
InterlockedExchange
VirtualAlloc
CreateMutexA
HeapDestroy
GetProcAddress
UnhandledExceptionFilter
FreeEnvironmentStringsA
HeapSize
GetEnvironmentStrings
LCMapStringA
GetLogicalDriveStringsW
FlushFileBuffers
SetConsoleCtrlHandler
SetLocaleInfoW
ReadFile
GetVersionExA
EnumSystemLocalesW
lstrcat
GetCurrentThreadId
OpenMutexA
HeapReAlloc
GetStringTypeW
GetProfileSectionW
EnumCalendarInfoExA
GetThreadTimes

advapi32

RegQueryInfoKeyA
RegRestoreKeyW
StartServiceA
InitiateSystemShutdownW
LookupPrivilegeNameA
LookupPrivilegeDisplayNameW
RegQueryInfoKeyW
CryptEnumProvidersA
RegQueryValueA
CryptEnumProviderTypesW
CryptSetProviderW
AbortSystemShutdownW
RegQueryValueExA
RegQueryMultipleValuesW
RegDeleteValueA
DuplicateToken
CryptSetProvParam
RegRestoreKeyA
RegQueryValueW
CryptReleaseContext
CryptSetProviderA
RegQueryValueExW
RegCreateKeyW
RegEnumKeyExW

comctl32

ImageList_GetIconSize
ImageList_SetFilter
CreateToolbarEx
ImageList_AddIcon
ImageList_SetIconSize
InitCommonControlsEx
ImageList_SetBkColor
ImageList_Merge
CreateMappedBitmap
CreateStatusWindowW
InitMUILanguage
ImageList_DragLeave
ImageList_GetFlags
CreateUpDownControl

wininet

DeleteUrlCacheEntry

gdi32

PlayMetaFileRecord
GdiPlayDCScript
EnumFontFamiliesExA
UpdateColors
StrokePath
SetWorldTransform
GetBrushOrgEx
CopyMetaFileA
FlattenPath
CreatePalette
GetCharWidthFloatW
GetWorldTransform
GetGraphicsMode
GetTextFaceA
GetFontLanguageInfo
DrawEscape
PtInRegion
CopyMetaFileW
EnumMetaFile

user32

MessageBoxA
SendInput
ShowWindowAsync
ShowWindow
RegisterWindowMessageW
GetDlgItem
GetUserObjectInformationW
RegisterClipboardFormatA
VkKeyScanExA
RegisterClassA
CreateDialogParamW
SetCursor
ShowCursor
LoadStringA
SetClassWord
GetScrollBarInfo
PostMessageA
DestroyWindow
EnumPropsA
DdeFreeStringHandle
GetScrollPos
EnumPropsExW
DefWindowProcW
DrawFocusRect
BeginPaint
GetDlgItemInt
wsprintfW
CreatePopupMenu
SetWindowsHookExA
CharUpperA
LoadMenuW
CreateWindowExA
GetClassNameA
GetClipboardData
GetAltTabInfo
IsDialogMessage
IsCharAlphaA
SetThreadDesktop
CreateDesktopW
GetWindowPlacement
ActivateKeyboardLayout
MessageBoxExA
ScrollDC
DdeDisconnect
SwitchDesktop
ClientToScreen
InflateRect
GetIconInfo
CallNextHookEx
GetSysColorBrush
GetTabbedTextExtentA
CreateMDIWindowW
GetGuiResources
GetWindowRect
RegisterClassExA
SetRectEmpty
EnumDisplaySettingsExA
OpenDesktopW
MoveWindow
SetWindowWord

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8050feb6866de8da39055cf5e9b1aa91

Headers

File Characteristics

Imports

shell32

kernel32

advapi32

comctl32

wininet

gdi32

user32

Sections

.text Size: 168KB - Virtual size: 166KB

.rdata Size: 256KB - Virtual size: 254KB

.data Size: 116KB - Virtual size: 133KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 168KB - Virtual size: 166KB

.rdata
Size: 256KB - Virtual size: 254KB

.data
Size: 116KB - Virtual size: 133KB

.rsrc
Size: 24KB - Virtual size: 22KB