8f81c6a2c8b9b6fff2f3be8fa0d23644270b1a95c81684130df6927df667906a

Sharing

Copy URL

Twitter E-mail

General

Target

8f81c6a2c8b9b6fff2f3be8fa0d23644270b1a95c81684130df6927df667906a
Size

75KB
MD5

743f3ba3a779f3ad79e6e1cc2bc8ccbe
SHA1

55d310b7b8fa279b197e855830a8931743f3b553
SHA256

8f81c6a2c8b9b6fff2f3be8fa0d23644270b1a95c81684130df6927df667906a
SHA512

8d2628d7b07687608bae74844a251ea64b1ed7742f205f5a54a36c96d97c4e87346c3d6c10f728c520b2acfd4df2170f8eb8132ed7bfeed80d7bea584a51468b
SSDEEP

1536:O0jbE2kSTsdHP+8gy9IcOYJro2RcD5zaFKPS7+TsXyd:O0blkSIFP++poZDPpg2

Score

N/A

Malware Config

Signatures

Files

8f81c6a2c8b9b6fff2f3be8fa0d23644270b1a95c81684130df6927df667906a
.exe windows x86

adba0cc0331759ceed8a4129507f9ce7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegDeleteKeyW
FreeSid
SetSecurityDescriptorDacl
OpenThreadToken
InitializeAcl
RegQueryInfoKeyW
RegQueryValueExA

user32

SendMessageW
LoadStringW
SetTimer
CreateWindowExW
DestroyWindow
ShowWindow
GetSystemMetrics
GetSystemMetrics
DestroyWindow
DestroyWindow
GetDC
ReleaseDC
GetSystemMetrics
LoadIconW
DefWindowProcW
GetDlgItem
DestroyWindow
ShowWindow
GetSystemMetrics
GetWindowRect
PostMessageW
LoadIconW
PostMessageW
GetWindowRect
GetDC
GetWindowRect
SetTimer
DestroyWindow
SetTimer
PostMessageW
GetDlgItem
DefWindowProcW
DefWindowProcW
SendMessageW
LoadIconW
GetMessageW
SetTimer
GetWindowRect
GetDC
GetDC
SendMessageW
GetWindowRect
PostMessageW
DefWindowProcW
GetDC
GetDlgItem
LoadStringW
ReleaseDC
PostMessageW
PostMessageW

kernel32

GetProcessHeap
WaitForSingleObject
GetModuleHandleW
GetModuleHandleA
SetEvent
LocalFree
LocalAlloc
GetCurrentThreadId
QueryPerformanceCounter
VirtualFree
GetACP
GetCommandLineA
lstrlenW
VirtualAlloc
QueryPerformanceCounter
GetTickCount
SetUnhandledExceptionFilter
LocalAlloc
GetTickCount
FormatMessageW
SetEvent
QueryPerformanceCounter
SetUnhandledExceptionFilter
lstrlenW
GetModuleHandleA
GetCommandLineW
VirtualFree
lstrcmpiW
lstrcmpiW
MultiByteToWideChar
lstrlenW
GetTickCount
MultiByteToWideChar
GetCurrentProcessId
VirtualAlloc
LocalAlloc
GetCommandLineA
GetModuleFileNameA
SetEvent
GetModuleFileNameA
LocalAlloc
VirtualAlloc
GetModuleFileNameA
SetUnhandledExceptionFilter
QueryPerformanceCounter
lstrlenW
LocalFree
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetModuleFileNameA
lstrlenW
GetCurrentThreadId
GetACP

gdi32

SetBkMode
BitBlt
CreateCompatibleDC
SelectObject
DeleteObject
GetStockObject
DeleteObject
SetBkColor
SelectObject
SelectObject
CreateCompatibleDC
CreateCompatibleDC
GetDeviceCaps
DeleteDC
GetTextMetricsW
GetTextMetricsW
GetDeviceCaps
ExtTextOutW
SetTextColor
GetDeviceCaps
SetTextColor
SetTextColor
BitBlt
GetObjectW
MoveToEx
BitBlt
SetBkColor
CreateCompatibleDC
DeleteObject
BitBlt
GetStockObject
MoveToEx
TextOutW
CreateCompatibleDC
GetObjectW
PatBlt
BitBlt
CreateCompatibleBitmap
SelectObject
PatBlt
GetStockObject
BitBlt
SelectObject
CreateCompatibleBitmap
SetBkMode

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adba0cc0331759ceed8a4129507f9ce7

Headers

File Characteristics

Imports

advapi32

user32

kernel32

gdi32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 4KB - Virtual size: 96KB

.data Size: 40KB - Virtual size: 44KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 4KB - Virtual size: 96KB

.data
Size: 40KB - Virtual size: 44KB

.rsrc
Size: 2KB - Virtual size: 4KB