ac2a90fadf35cf7ebc88c2805a20dabbbb493012aa60ea340a6150a97adf8c96

Sharing

Copy URL Twitter E-mail

General

Target

ac2a90fadf35cf7ebc88c2805a20dabbbb493012aa60ea340a6150a97adf8c96
Size

492KB
MD5

bcce6315fffe2621841639a989307ebe
SHA1

e38cc960157f7f8b25e211dc03cb3dcde575eb98
SHA256

ac2a90fadf35cf7ebc88c2805a20dabbbb493012aa60ea340a6150a97adf8c96
SHA512

6f69b85ae9580cac12389f2c3cc16876505139a8ce1a4f3b374bae736d96ea15c46e93fb1662d0179802920816c67c658c2b0d3a680768d962be0ea98360e60b
SSDEEP

12288:ydOwpweOYi1CWhq+w3GhSS+PO9nvzgc5:ywrwWhSBP0X

Score

N/A

Malware Config

Signatures

Files

ac2a90fadf35cf7ebc88c2805a20dabbbb493012aa60ea340a6150a97adf8c96
.exe windows x86

007be03f7fac6a0e6f61d59909eac670

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkMode
GetDeviceCaps
DeleteDC
SetTextColor
SetBkColor
CreateCompatibleDC

kernel32

CreateProcessA
SizeofResource
SetStdHandle
InterlockedExchange
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
CompareStringA
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
RemoveDirectoryA
GlobalAlloc
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
CreateFileMappingA
ResetEvent
lstrcpyA
FindFirstFileA
lstrcmpA
CompareStringW
WriteFile
GetProcessHeap
GetProcAddress
DeleteFileW
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
lstrcmpiW
GetVersionExW
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
FindFirstFileW
WriteConsoleW
SetConsoleCtrlHandler
InterlockedIncrement
GetCurrentThreadId
CreateEventW
GetConsoleMode
VirtualQuery
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
OutputDebugStringA
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
LoadLibraryW
GetSystemTimeAsFileTime
GetStringTypeA
WideCharToMultiByte
GetTempPathA
SetFileAttributesA
GetLocaleInfoW
FreeEnvironmentStringsW
LoadLibraryExW
lstrcatA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
SetEndOfFile
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetEnvironmentVariableA
RtlUnwind
IsValidCodePage
HeapCreate
FindResourceW
CreateProcessW
Sleep
IsBadReadPtr
FindResourceA
VirtualAlloc
GetOEMCP
SetEvent

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

advapi32

RegCreateKeyExW
RegCloseKey
RegOpenKeyExW
RegOpenKeyExA
RegSetValueExA
RegDeleteKeyA
RegQueryValueExW
RegQueryValueExA
RegCreateKeyExA

user32

EnableWindow
CallWindowProcA
InvalidateRect
DrawTextA
IsWindowVisible
SystemParametersInfoA
PostMessageA
GetSysColor
MessageBoxA
FillRect
GetDesktopWindow
LoadIconA
LoadCursorA
SetCursor
GetDlgItem
CreateWindowExA
SetWindowTextA
EndDialog
SetWindowLongA
ReleaseCapture
SetCapture
IsIconic
GetWindowRect
GetSystemMetrics
KillTimer
SetFocus
ClientToScreen
BeginPaint
PeekMessageA
EndPaint
ScreenToClient
SetTimer
GetWindowLongA
RegisterClassA
EnableMenuItem
LoadStringA
IsWindowEnabled
TranslateMessage
SetWindowPos
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
DestroyWindow
GetKeyState
GetClientRect
SendMessageA
UnregisterClassA
GetCursorPos
GetDC
DispatchMessageA
IsWindow
PostQuitMessage
DestroyMenu
MoveWindow
SetForegroundWindow
ReleaseDC

oleaut32

SysFreeString
SysAllocStringLen
SysStringLen
VariantClear

ole32

CoCreateInstance
CoUninitialize
CoTaskMemFree

Sections

.text
Size: 420KB - Virtual size: 417KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

007be03f7fac6a0e6f61d59909eac670

Headers

File Characteristics

Imports

gdi32

kernel32

version

advapi32

user32

oleaut32

ole32

Sections

.text Size: 420KB - Virtual size: 417KB

.rdata Size: 44KB - Virtual size: 41KB

.data Size: 20KB - Virtual size: 22KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 420KB - Virtual size: 417KB

.rdata
Size: 44KB - Virtual size: 41KB

.data
Size: 20KB - Virtual size: 22KB

.rsrc
Size: 4KB - Virtual size: 1KB