ae797374bc172947abea0b6b262c48d9d094ffa5e4386fe3348f5e22e03f7bdc

Sharing

Copy URL Twitter E-mail

General

Target

ae797374bc172947abea0b6b262c48d9d094ffa5e4386fe3348f5e22e03f7bdc
Size

168KB
MD5

9b5f2495298eba7f91301eba0e97db67
SHA1

8f27e8e4a5be13311d028a841ca80fec69de4a81
SHA256

ae797374bc172947abea0b6b262c48d9d094ffa5e4386fe3348f5e22e03f7bdc
SHA512

36edaa61b47b679b9cc7cdd98038a7ece07eafa54a78ad48e45f4d7e0c6e3690102d93733110ba7d9ffc845388650c7c5a6107b62afe2c740df1c351dca59ecb
SSDEEP

3072:HB+iUHaPDd/lordba5YChfMIJCJSKd9rBZP6S34ClUZs5QcqDK+FGG4yPDFnLZyh:HB4HGuhe5bUIgDd5flU/9LNA

Score

N/A

Malware Config

Signatures

Files

ae797374bc172947abea0b6b262c48d9d094ffa5e4386fe3348f5e22e03f7bdc
.exe windows x86

efc8302a4381d04895d8c9302aea3fa1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAddBackslashA

gdi32

CreatePenIndirect
GetBkMode
DeleteDC
ExtFloodFill
GetDIBColorTable
Polygon
CreateRoundRectRgn
SetViewportExtEx
Escape
GetTextExtentPoint32W
SetBitmapBits
EndPage
CreateDIBitmap
CreateCompatibleDC
PatBlt
GetTextColor
CreatePen
SetPaletteEntries
SetPixel
WidenPath
EnumFontsW
CreateEllipticRgnIndirect
GetSystemPaletteUse
GetDeviceCaps
IntersectClipRect
SetBkMode
SelectClipRgn
RectVisible
CreateRectRgn
StartPage
DeleteObject
GetPixel
TranslateCharsetInfo
SetBrushOrgEx
DPtoLP
CreateBitmap
ScaleViewportExtEx
GetObjectW
EndDoc
SetDIBColorTable
CreatePolygonRgn
RealizePalette
GetPaletteEntries
GetViewportOrgEx
GetTextCharsetInfo
ExtTextOutA
CreateHalftonePalette

kernel32

GetNumberFormatW
DeleteAtom
EnumResourceTypesA
HeapSize
GetFileAttributesW
SetNamedPipeHandleState
GlobalAddAtomW
GetFullPathNameA
GetFullPathNameW
GetSystemWindowsDirectoryW
GlobalDeleteAtom
HeapUnlock
SetupComm
QueryDosDeviceW
FlushFileBuffers
TryEnterCriticalSection
HeapWalk
SetSystemTime
GetCPInfo
GetFileType
GetModuleFileNameA
SetThreadPriority
SetCurrentDirectoryA
GetTickCount
FindResourceExA
SetUnhandledExceptionFilter
WinExec
GetStdHandle
GetCommModemStatus
UnlockFile
ConvertDefaultLocale
GetSystemTime
GetBinaryTypeA
EnumResourceNamesW
GetTimeZoneInformation
SetCommState
GetLocaleInfoW
GlobalSize
FormatMessageW
CreateSemaphoreW
IsBadReadPtr
GetProfileIntW
SetEndOfFile
FindResourceExW
CreateEventW
VirtualProtect
GetStartupInfoW
FindResourceW
ReadFile
TlsFree
CreateFileMappingW
GlobalHandle
GetNumberFormatA
EnumResourceLanguagesA
IsBadCodePtr
CreateNamedPipeA
FindNextChangeNotification
LeaveCriticalSection
SetPriorityClass
SearchPathA
ReleaseMutex
GetShortPathNameW
GetThreadContext
IsBadStringPtrW
SetLocalTime
GetLocalTime
GetUserDefaultUILanguage
GetHandleInformation
OpenFileMappingA
GetExitCodeThread
GetWindowsDirectoryW
GlobalFree
ReleaseSemaphore
GlobalAddAtomA
SetThreadAffinityMask
GetAtomNameW
LoadLibraryExA
QueryPerformanceCounter
GlobalFlags
SetCommTimeouts
FormatMessageA
SetThreadExecutionState
GlobalUnlock
TerminateThread
SetThreadLocale
CreateThread
GetComputerNameA
GetSystemInfo
FindNextFileA
EnumSystemLocalesA
GlobalAlloc
GetBinaryTypeW
HeapValidate
PulseEvent
ConnectNamedPipe
SetFilePointer
FileTimeToLocalFileTime
GetModuleFileNameW
RegisterWaitForSingleObject
RemoveDirectoryW
LoadLibraryExW
GetSystemDefaultLangID

rpcrt4

NdrOleAllocate
NdrOleFree
NdrOutInit

ole32

CoInitialize

user32

IsZoomed
GetWindowTextA
GetClassNameW
EndDialog
SetDlgItemTextW
keybd_event
IsDialogMessageW
SetScrollInfo
EnableWindow
GetScrollPos
IsRectEmpty
InSendMessageEx
AllowSetForegroundWindow
GetClassInfoA
CreateIconIndirect
GetMenuItemRect
GetWindowRect
WaitMessage
LoadIconA
GetDesktopWindow
SystemParametersInfoW
EnumWindows
LoadImageA
CharToOemW
wsprintfA
PostMessageW
GetClientRect
ShowScrollBar
GetNextDlgGroupItem
LockWindowUpdate
CreateCursor
DeleteMenu
GetSysColor
SetCaretPos
IsCharAlphaNumericW
GetWindowDC
RedrawWindow
CharToOemBuffA
ShowOwnedPopups
DialogBoxParamW
PostQuitMessage
TranslateAcceleratorA
GetKeyState
SetWindowPos
MapVirtualKeyW
PostThreadMessageW
CharToOemA
SetTimer
GetNextDlgTabItem
SetRectEmpty
IsIconic
BeginDeferWindowPos
IsWindowVisible
DestroyIcon
CascadeWindows
GetMenuItemInfoW
CreateIconFromResource
HideCaret
AppendMenuW
GetClassLongW
InsertMenuItemW
GetDlgItem
CreateAcceleratorTableW
MonitorFromRect
FillRect
InsertMenuA
DrawStateW
GetUpdateRgn
HiliteMenuItem
GetClipCursor
CheckMenuRadioItem
GetMessageA
MessageBoxW
SetFocus
BringWindowToTop
DestroyWindow
CreateDialogParamA
MessageBoxA
AdjustWindowRect
GetClassInfoExA
DefDlgProcW
CharLowerA
GetSubMenu
OemToCharBuffA
RegisterClassExA
EnumThreadWindows
GetKeyNameTextW
CreateWindowExA
ToUnicodeEx
GrayStringW
PtInRect
EnableScrollBar
RegisterWindowMessageA
UnionRect
TrackPopupMenuEx
GetCaretPos
DestroyCursor
DialogBoxParamA
ClientToScreen
LoadStringA
FindWindowExA
ShowCursor
MonitorFromPoint
CreateWindowExW
CreatePopupMenu
SendInput

Exports

Exports

GetMessageExA

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Agio
Size: 7KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.musty
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Much
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lex
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sat
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oypac
Size: 1024B - Virtual size: 581B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jibmed
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

efc8302a4381d04895d8c9302aea3fa1

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

gdi32

kernel32

rpcrt4

ole32

user32

Exports

Exports

Sections

.text Size: 127KB - Virtual size: 126KB

.Agio Size: 7KB - Virtual size: 11KB

.musty Size: 512B - Virtual size: 134B

.Much Size: 512B - Virtual size: 32B

.lex Size: 512B - Virtual size: 32B

.sat Size: 512B - Virtual size: 32B

.oypac Size: 1024B - Virtual size: 581B

.jibmed Size: 22KB - Virtual size: 22KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 127KB - Virtual size: 126KB

.Agio
Size: 7KB - Virtual size: 11KB

.musty
Size: 512B - Virtual size: 134B

.Much
Size: 512B - Virtual size: 32B

.lex
Size: 512B - Virtual size: 32B

.sat
Size: 512B - Virtual size: 32B

.oypac
Size: 1024B - Virtual size: 581B

.jibmed
Size: 22KB - Virtual size: 22KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 4KB - Virtual size: 3KB