8ac063346f690e28c442c8daa9f4ae255faf8fcbcf715ec745d7ec50b72ad83b

Sharing

Copy URL Twitter E-mail

General

Target

8ac063346f690e28c442c8daa9f4ae255faf8fcbcf715ec745d7ec50b72ad83b
Size

30KB
MD5

f894dee13bd24fc2bf0088e24f6e7415
SHA1

3336c21d46e4aad85352a7c59e35608c8de9e64f
SHA256

8ac063346f690e28c442c8daa9f4ae255faf8fcbcf715ec745d7ec50b72ad83b
SHA512

edb1c6862f051bc384f27ee1bf986d952f92284ac7b8151326a8f3e160a1c335047c2fccc51fff23aea4952c64df175439a39cb01968ae879adc493b436816fc
SSDEEP

384:SRG5eqJ8YE0+KiTeKv1EKNlAwRdmmzBsirLIWfysjlAgGM:EqJR2jvKalAw2KsoEGR

Score

N/A

Malware Config

Signatures

Files

8ac063346f690e28c442c8daa9f4ae255faf8fcbcf715ec745d7ec50b72ad83b
.exe windows x86

9afd5ff5acf9e3fb10ac2bc8dd4e779f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AbortSystemShutdownW
AccessCheckAndAuditAlarmA
AccessCheckAndAuditAlarmW
AccessCheckByType
AccessCheckByTypeAndAuditAlarmW
BackupEventLogW
BuildTrusteeWithSidW
ConvertSecurityDescriptorToAccessNamedW
CreatePrivateObjectSecurity
CryptAcquireContextW
CryptCreateHash
CryptEnumProviderTypesW
CryptEnumProvidersW
CryptSetHashParam
CryptSetKeyParam
CryptVerifySignatureA
ElfOpenBackupEventLogW
EnumDependentServicesW
EnumServicesStatusW
FreeSid
GetAuditedPermissionsFromAclW
GetExplicitEntriesFromAclW
GetFileSecurityW
GetMultipleTrusteeOperationA
GetMultipleTrusteeOperationW
GetNumberOfEventLogRecords
GetOverlappedAccessResults
GetServiceKeyNameW
GetTokenInformation
InitializeSecurityDescriptor
LookupAccountSidA
LsaAddPrivilegesToAccount
LsaDeleteTrustedDomain
LsaEnumeratePrivileges
LsaNtStatusToWinError
LsaRetrievePrivateData
LsaSetSystemAccessAccount
LsaStorePrivateData
MapGenericMask
ObjectCloseAuditAlarmA
OpenBackupEventLogA
PrivilegedServiceAuditAlarmW
SetAclInformation
SetEntriesInAclW
SetNamedSecurityInfoExW

kernel32

BuildCommDCBW
CallNamedPipeA
CloseHandle
CompareFileTime
CompareStringW
ConvertDefaultLocale
CreateFileMappingW
CreateMailslotA
CreateRemoteThread
EnumResourceNamesW
EnumSystemCodePagesA
EnumSystemLocalesW
ExitProcess
FileTimeToDosDateTime
FindFirstChangeNotificationW
FindFirstFileExA
GetCPInfoExA
GetCommandLineA
GetCommandLineW
GetConsoleAliasesLengthA
GetConsoleCommandHistoryLengthA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDiskFreeSpaceExA
GetDiskFreeSpaceExW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFullPathNameA
GetFullPathNameW
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleW
GetNumberFormatA
GetNumberOfConsoleInputEvents
GetOEMCP
GetProfileSectionA
GetProfileSectionW
GetQueuedCompletionStatus
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetSystemDefaultLCID
GetSystemTime
GetTapeStatus
GetThreadContext
GetThreadPriorityBoost
GetVersion
GetVolumeInformationW
GlobalAlloc
GlobalGetAtomNameA
Heap32ListFirst
HeapSize
HeapSummary
InitAtomTable
InitializeCriticalSection
InterlockedExchangeAdd
InterlockedIncrement
LoadModule
LocalLock
LocalSize
MapViewOfFile
Module32Next
MultiByteToWideChar
OutputDebugStringA
PulseEvent
QueryPerformanceFrequency
ReadConsoleInputW
ReadConsoleInputExW
ReadConsoleOutputA
ReadConsoleOutputCharacterW
RegisterConsoleVDM
ReleaseMutex
RtlUnwind
ScrollConsoleScreenBufferW
SetComputerNameW
SetConsoleNumberOfCommandsW
SetCriticalSectionSpinCount
SetDefaultCommConfigW
SetEnvironmentVariableW
SetErrorMode
SetFileAttributesA
SetLastError
SetNamedPipeHandleState
SetProcessShutdownParameters
SetVolumeLabelW
SetWaitableTimer
SetupComm
SizeofResource
SystemTimeToFileTime
VirtualLock
VirtualProtect
VirtualQuery
WriteConsoleInputVDMA
WriteFileGather
WritePrivateProfileStructA
_lopen
lstrcatA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW

user32

AnyPopup
CallMsgFilterW
ChangeDisplaySettingsW
ChangeDisplaySettingsExW
CharLowerBuffA
CharUpperA
CharUpperW
CopyIcon
CountClipboardFormats
CreateWindowExA
CreateWindowStationA
DdeAccessData
DdeAddData
DdeClientTransaction
DdeCreateDataHandle
DdeInitializeW
DdeSetQualityOfService
DragDetect
DragObject
DrawMenuBar
EnumDesktopWindows
EnumDesktopsW
EnumDisplayMonitors
GetCapture
GetClassLongA
GetClassNameW
GetClipCursor
GetCursor
GetCursorInfo
GetDC
GetDialogBaseUnits
GetDlgCtrlID
GetFocus
GetForegroundWindow
GetMenu
GetMenuItemID
GetMenuItemRect
GetMenuStringW
GetMessageExtraInfo
GetNextDlgTabItem
GetParent
GetSubMenu
GetSysColor
GetSystemMenu
GetTabbedTextExtentW
GetWindowDC
GetWindowLongA
GetWindowLongW
GetWindowModuleFileNameW
GetWindowRect
GrayStringA
GrayStringW
InsertMenuW
InsertMenuItemW
IsIconic
IsZoomed
KillTimer
LoadBitmapW
LoadIconA
LoadIconW
LoadKeyboardLayoutW
LoadMenuW
MapWindowPoints
MessageBeep
ModifyMenuW
MoveWindow
PostMessageW
RealGetWindowClassA
RegisterClassW
RegisterClipboardFormatW
RegisterDeviceNotificationA
ReleaseDC
RemovePropA
SendIMEMessageExW
SetDebugErrorLevel
SetDoubleClickTime
SetLayeredWindowAttributes
SetScrollPos
SetWindowPlacement
ShowCursor
ShowScrollBar
TabbedTextOutA
TrackPopupMenu
UnregisterHotKey
WINNLSGetEnableStatus

gdi32

AnimatePalette
Chord
CreatePalette
CreateScalableFontResourceA
DeleteObject
EnumICMProfilesW
EnumObjects
EqualRgn
ExtCreatePen
ExtFloodFill
ExtTextOutA
GdiComment
GdiGetBatchLimit
GetArcDirection
GetAspectRatioFilterEx
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDeviceGammaRamp
GetEnhMetaFileDescriptionW
GetObjectType
GetOutlineTextMetricsA
GetPixel
GetPolyFillMode
GetROP2
GetStockObject
GetStretchBltMode
GetWindowExtEx
PaintRgn
PlgBlt
ScaleViewportExtEx
SelectClipPath
SelectFontLocal
SetBkColor
SetDIBColorTable
SetDIBits
SetMetaFileBitsEx
SetTextJustification
SetViewportExtEx
SetViewportOrgEx

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uoHh
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9afd5ff5acf9e3fb10ac2bc8dd4e779f

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 18KB - Virtual size: 31KB

.uoHh Size: 3KB - Virtual size: 12KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 18KB - Virtual size: 31KB

.uoHh
Size: 3KB - Virtual size: 12KB

.reloc
Size: 1024B - Virtual size: 4KB