ad080d17e52e1aa88bba498f637ca2fccaa8885625bfb9b166b4a4ffd7d442f7

Sharing

Copy URL

Twitter E-mail

General

Target

ad080d17e52e1aa88bba498f637ca2fccaa8885625bfb9b166b4a4ffd7d442f7
Size

851KB
MD5

9401898d3cf74ef4ac5dd39c2a92bce4
SHA1

e9e9856adfba37d0c0dfbbd14dac0370b3cadccf
SHA256

ad080d17e52e1aa88bba498f637ca2fccaa8885625bfb9b166b4a4ffd7d442f7
SHA512

e3eb6b14c711256bd1b9b369b495ba7b715e7d088708fc02d05cc5b5d182ed859a83d34a42b83f951116d96d74f07b3e1303a64662298507ae5e46b63b880fab
SSDEEP

12288:kxYpBShWTFdrRtL3BGKhe961cFqH1C39doWE1oF:4YpVTFlLDs01L1CXol1o

Score

N/A

Malware Config

Signatures

Files

ad080d17e52e1aa88bba498f637ca2fccaa8885625bfb9b166b4a4ffd7d442f7
.exe windows x86

471ab8c8275d693b60f2af0025577c15

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
GlobalUnlock
InterlockedExchange
LoadLibraryA
LocalAlloc
LocalFree
LocalLock
LocalUnlock
MulDiv
MultiByteToWideChar
OpenFile
QueryPerformanceCounter
RaiseException
SetFileAttributesA
SetUnhandledExceptionFilter
GlobalLock
TerminateProcess
UnhandledExceptionFilter
WaitForSingleObject
WideCharToMultiByte
_lclose
_lcreat
_llseek
_lopen
_lread
_lwrite
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA
GlobalHandle
GlobalFree
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetLastError
GetFileAttributesA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetAtomNameA
GetACP
FreeLibrary
FindFirstFileA
FindClose
DeleteFileA
DeleteAtom
CreateThread
CreateFileW
CloseHandle
AddAtomA
GetModuleHandleW
VirtualAllocEx
GetCommandLineA
SystemTimeToFileTime
Sleep

user32

GetSysColorBrush
GetSystemMetrics
GetTopWindow
GetWindowDC
InsertMenuA
InvalidateRect
IsClipboardFormatAvailable
IsDlgButtonChecked
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
LoadAcceleratorsA
LoadCursorA
LoadStringA
LoadStringW
MessageBoxA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
RegisterClassA
RegisterClipboardFormatA
ReleaseCapture
ReleaseDC
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageA
SetCapture
SetClipboardData
SetCursor
SetDlgItemTextA
SetFocus
SetRect
SetRectEmpty
SetScrollPos
SetWindowPos
SetWindowTextA
ShowWindow
SystemParametersInfoA
TranslateAcceleratorA
TranslateMessage
UpdateWindow
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetMessageA
GetMenu
GetKeyState
GetDlgItemTextA
GetDC
GetClipboardData
GetClientRect
FillRect
EnumThreadWindows
EndPaint
EndDialog
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextA
DrawIcon
DrawFocusRect
DispatchMessageA
DialogBoxParamA
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DefWindowProcA
CreateWindowExA
CreatePopupMenu
CloseClipboard
CheckRadioButton
CheckDlgButton
CharUpperBuffA
CharNextA
CharLowerA
BringWindowToTop
BeginPaint
LoadIconW
LoadIconA
GetDlgItem

gdi32

SetTextColor
TextOutA
SetWindowOrgEx
SetWindowExtEx
SetTextAlign
SetLayout
SetBkMode
SetBkColor
SelectObject
PatBlt
TranslateCharsetInfo
GetEnhMetaFileA
GetStockObject
GetLayout
GetDeviceCaps
DeleteObject
CreateMetaFileA
CreateFontIndirectA
CopyMetaFileA
CloseMetaFile
GetTextExtentPoint32A

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegQueryValueA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegSetValueA

shell32

ShellAboutA
ExtractAssociatedIconA
DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteExA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

shlwapi

PathFindExtensionW

msvcrt

_adjust_fdiv
strchr
memmove
exit
_XcptFilter
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_initterm
_vsnprintf

Sections

.text
Size: 818KB - Virtual size: 817KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

471ab8c8275d693b60f2af0025577c15

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

msvcrt

Sections

.text Size: 818KB - Virtual size: 817KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 818KB - Virtual size: 817KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 12KB - Virtual size: 11KB