002fd88effba912a702004ceb40b9f7a82ca97d063d86b2b72d0f4b58517c4f9

Sharing

Copy URL Twitter E-mail

General

Target

002fd88effba912a702004ceb40b9f7a82ca97d063d86b2b72d0f4b58517c4f9
Size

373KB
MD5

a9ddf59f4a1273c784725ce978f6b364
SHA1

ed254c52bd755ac092ce4afe6266410131e39fa6
SHA256

002fd88effba912a702004ceb40b9f7a82ca97d063d86b2b72d0f4b58517c4f9
SHA512

3f5d89d9ea0b094c665d75170cd9f2083e477f82f1a9e2f2e878ef7b45009deaa42399ef81761680cea015a50e8cf4eec14f89f6426a651da9b22dbf3021efe2
SSDEEP

6144:/k98w2mpeh+zBkkE8y1zsgGVEyLAKuobCAEN9d3RnBynf8Z6o:/G8w2Ce1zDGVMK5ChpRByn

Score

N/A

Malware Config

Signatures

Files

002fd88effba912a702004ceb40b9f7a82ca97d063d86b2b72d0f4b58517c4f9
.exe windows x86

a5abc455b08597ba2bc564d67482fb4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Write
ImageList_DragEnter
CreateMappedBitmap
CreateUpDownControl
CreateStatusWindowA
ImageList_LoadImage
ImageList_AddIcon
ImageList_SetFilter
CreateStatusWindow
MakeDragList
InitCommonControlsEx

gdi32

PatBlt
DeleteEnhMetaFile
GetFontData
CreatePen
SelectClipRgn
PolylineTo
CopyEnhMetaFileA
GetMiterLimit
PathToRegion
GetCharABCWidthsFloatA
GetCharWidthFloatW
GdiSetBatchLimit
GetCharWidth32A
GetICMProfileW
GetCurrentPositionEx
CreateFontIndirectW
TranslateCharsetInfo
SetTextColor
CreateCompatibleBitmap
GetCharacterPlacementW
SetPixelV
ExtSelectClipRgn
RemoveFontResourceW
GetICMProfileA
IntersectClipRect

wininet

FtpDeleteFileA
InternetGoOnlineA
FtpSetCurrentDirectoryW
InternetSecurityProtocolToStringW
InternetAlgIdToStringW
InternetOpenUrlW

advapi32

RegEnumKeyA
CryptGetKeyParam
GetUserNameA
LookupAccountNameW
CryptDecrypt
CryptVerifySignatureW
RegSaveKeyA
StartServiceA
RegReplaceKeyA
StartServiceW
RegEnumKeyExW
RegOpenKeyW
RegQueryMultipleValuesW
LookupAccountSidW
LookupPrivilegeNameW
CryptAcquireContextW

shell32

SHFileOperationW
SHInvokePrinterCommandA

user32

CreateWindowExW
CreateIconIndirect
ShowWindow
TrackMouseEvent
LoadCursorFromFileW
MessageBoxW
MapVirtualKeyExW
GetSysColorBrush
RedrawWindow
DlgDirListComboBoxA
GetKeyboardLayoutNameA
DdeConnectList
DrawAnimatedRects
RegisterClassA
RegisterClassExA
SetDlgItemTextW
GetInputDesktop
LoadStringW
GetMenuItemRect
CallNextHookEx
CreateAcceleratorTableA
CreateDialogIndirectParamW
UnregisterHotKey
GetCursorInfo
GetIconInfo
EnableWindow
SendMessageTimeoutA

kernel32

SetConsoleCtrlHandler
RtlUnwind
IsValidCodePage
OpenMutexA
InterlockedExchange
CreateFileA
HeapSize
GetSystemTimeAsFileTime
CreateMutexA
HeapCreate
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
VirtualAlloc
MultiByteToWideChar
InterlockedDecrement
CompareStringW
GetProcAddress
TlsAlloc
WriteFile
GetUserDefaultLCID
GetTimeZoneInformation
GetFileType
UnhandledExceptionFilter
GetModuleFileNameA
WriteConsoleW
GetACP
GetCurrentThread
GetConsoleCP
TlsSetValue
TlsFree
EnterCriticalSection
HeapFree
GetStringTypeW
GetCurrentProcessId
SetHandleCount
ExitProcess
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GetLastError
SetEnvironmentVariableA
GetOEMCP
GetCommandLineA
LoadLibraryA
TerminateProcess
SetStdHandle
HeapAlloc
GetTickCount
GetTimeFormatA
GetModuleHandleW
FreeEnvironmentStringsW
GetLocaleInfoW
GetCPInfo
FreeLibrary
EnumSystemLocalesA
Sleep
FlushFileBuffers
WriteConsoleA
QueryPerformanceCounter
SetLastError
GetConsoleMode
LCMapStringA
GetLocaleInfoA
SetFilePointer
GetStartupInfoA
VirtualFree
GetCurrentThreadId
GetDateFormatA
LCMapStringW
LeaveCriticalSection
GetConsoleOutputCP
GetFileTime
GetCurrentProcess
GetEnvironmentStringsW
GetEnvironmentStrings
GetStringTypeA
DeleteCriticalSection
IsDebuggerPresent
InterlockedIncrement
GetStdHandle
GetModuleHandleA
TlsGetValue
HeapReAlloc
IsValidLocale
HeapDestroy
VirtualQuery
CloseHandle
CompareStringA
ReadFile

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5abc455b08597ba2bc564d67482fb4e

Headers

File Characteristics

Imports

comctl32

gdi32

wininet

advapi32

shell32

user32

kernel32

Sections

.text Size: 206KB - Virtual size: 205KB

.rdata Size: 17KB - Virtual size: 29KB

.data Size: 89KB - Virtual size: 88KB

.rsrc Size: 60KB - Virtual size: 60KB

.text
Size: 206KB - Virtual size: 205KB

.rdata
Size: 17KB - Virtual size: 29KB

.data
Size: 89KB - Virtual size: 88KB

.rsrc
Size: 60KB - Virtual size: 60KB