2a3c801c288a121bb8074c96a3a7a6b3b7985654e9f14ae44c5f81ce8ad12788

Sharing

Copy URL Twitter E-mail

General

Target

2a3c801c288a121bb8074c96a3a7a6b3b7985654e9f14ae44c5f81ce8ad12788
Size

816KB
MD5

8c104e60e74f0f6de1aea8c9d8deb694
SHA1

1b28d832566202db2b27e64257b4b995e8ae0bf3
SHA256

2a3c801c288a121bb8074c96a3a7a6b3b7985654e9f14ae44c5f81ce8ad12788
SHA512

7e12a4d726e9d4847ce9fffb6f21fd12a15c5d1166eb8ba4cd663a8f645b349b0394ee76011cf6c47bb7b8daf0efe75bd2c79f59fae5b007fb817f06544396da
SSDEEP

12288:OdlVagy9QYn+XgPYuEbuiSSpSBxEnwAhXCW9/SslIuPKNhzHMMEVB:O7c39pnVYuECNSoPPAb/Yu+zHM

Score

N/A

Malware Config

Signatures

Files

2a3c801c288a121bb8074c96a3a7a6b3b7985654e9f14ae44c5f81ce8ad12788
.exe windows x86

5cbfabc0aab017c12f500ae7a2c875e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DragObject
DdeCreateStringHandleA
DlgDirListComboBoxW
SetWindowsHookA
LoadCursorW
TileChildWindows
RealGetWindowClass
GetClassInfoA
DestroyWindow
LoadIconA
RegisterClassA
GetCursorInfo
SetWindowContextHelpId
OpenDesktopW
GetSubMenu
SetCapture
CreateWindowExA
OemToCharBuffA
NotifyWinEvent
EnumWindowStationsW
TileWindows
ChildWindowFromPointEx
MapVirtualKeyExA
PostThreadMessageW
SendNotifyMessageA
CharNextW
ImpersonateDdeClientWindow
IsMenu
CloseDesktop
GetKeyboardState
DestroyIcon
GetKeyboardLayoutNameA
CreateDesktopW
CharUpperBuffA
LoadImageA
GrayStringA
GetTabbedTextExtentA
RegisterClassExA
EnumPropsExA
DrawIconEx
SetClipboardViewer
RemovePropA
ToAsciiEx
UnregisterClassA
MessageBoxA
ShowWindow
LoadKeyboardLayoutW
IsWindowEnabled
MapVirtualKeyExW
SetWindowsHookExW
CheckMenuItem
DefWindowProcW
DispatchMessageA
DdeQueryStringA
FindWindowExA
GetDlgItem
SetDebugErrorLevel
UpdateWindow
SetPropW
IsCharAlphaW
SendIMEMessageExW
GetUpdateRgn
ArrangeIconicWindows

comctl32

ImageList_DrawEx
DrawInsert
DestroyPropertySheetPage
InitCommonControlsEx
DrawStatusTextA
ImageList_SetOverlayImage
ImageList_ReplaceIcon
CreatePropertySheetPageW

shell32

InternalExtractIconListA
SHQueryRecycleBinA
RealShellExecuteW
FreeIconList

advapi32

RegRestoreKeyA
LookupPrivilegeNameA
CryptEnumProviderTypesA
RegEnumValueA
AbortSystemShutdownW
CryptAcquireContextA
RegOpenKeyExA
LogonUserW
CryptGetHashParam
CryptSetProviderExA
LookupPrivilegeNameW
CryptSignHashW
LookupPrivilegeDisplayNameW
CryptGetKeyParam
CryptGetUserKey
GetUserNameA
CryptEnumProvidersW
RegDeleteKeyA
DuplicateToken
RegCloseKey

kernel32

GetModuleHandleA
EnterCriticalSection
GetACP
LoadLibraryA
FreeEnvironmentStringsW
InitializeCriticalSection
GetLocalTime
InterlockedIncrement
GetNamedPipeInfo
InterlockedExchange
UnhandledExceptionFilter
OpenMutexA
GetCommandLineA
FlushFileBuffers
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
CreateMutexA
InterlockedDecrement
TlsSetValue
GetCurrentThread
GetFileType
SetConsoleOutputCP
GetCPInfo
ReadFile
VirtualFree
GetStartupInfoA
CloseHandle
GetStringTypeA
IsBadWritePtr
LCMapStringA
TerminateProcess
GetModuleFileNameA
MultiByteToWideChar
GetStdHandle
HeapAlloc
CompareStringW
GetCurrentThreadId
SetFilePointer
QueryPerformanceCounter
WideCharToMultiByte
GetVersion
TlsAlloc
SetStdHandle
GetSystemTime
GetTickCount
WriteFile
LeaveCriticalSection
SetLastError
GetEnvironmentStrings
CompareStringA
ExitProcess
LCMapStringW
GetLastError
HeapReAlloc
TlsGetValue
GetCurrentProcess
SetHandleCount
VirtualQuery
FreeEnvironmentStringsA
VirtualAlloc
GetProcAddress
GetOEMCP
SetEnvironmentVariableA
GetStringTypeW
HeapCreate
HeapFree
DeleteCriticalSection
TlsFree
GetEnvironmentStringsW
HeapDestroy
GetTimeZoneInformation

Sections

.text
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cbfabc0aab017c12f500ae7a2c875e4

Headers

File Characteristics

Imports

user32

comctl32

shell32

advapi32

kernel32

Sections

.text Size: 172KB - Virtual size: 170KB

.rdata Size: 392KB - Virtual size: 390KB

.data Size: 144KB - Virtual size: 142KB

.rsrc Size: 104KB - Virtual size: 101KB

.text
Size: 172KB - Virtual size: 170KB

.rdata
Size: 392KB - Virtual size: 390KB

.data
Size: 144KB - Virtual size: 142KB

.rsrc
Size: 104KB - Virtual size: 101KB