89f548d3286f7f980833d60258b77c1e55f6f90ff17196e0f11bacae4dff6547

Sharing

Copy URL Twitter E-mail

General

Target

89f548d3286f7f980833d60258b77c1e55f6f90ff17196e0f11bacae4dff6547
Size

278KB
MD5

6f4eb674229b0bad1b330674bf1d8593
SHA1

83f2c0c449542062e42f9e9335cfb91ca5354f18
SHA256

89f548d3286f7f980833d60258b77c1e55f6f90ff17196e0f11bacae4dff6547
SHA512

9e1524879cadb4b0055f73efc4b375456d5b3ae6df9bd9a0b727a57ad4dc7894bda37f5cd84f2fd347230a34fdc6af6227e102f7681e444a2620bd193565eecc
SSDEEP

6144:0qlO+TchOUJZIZi0f4fiSX6w7C99J0tgPeP3XCsDRf:0mXchOeN0Al6SC9b0qePHCsD

Score

N/A

Malware Config

Signatures

Files

89f548d3286f7f980833d60258b77c1e55f6f90ff17196e0f11bacae4dff6547
.exe windows x86

7dc9dcf67982bddd2a0c7604d732a3b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
TlsSetValue
DeleteCriticalSection
FlushInstructionCache
CreateFileMappingA
SetEndOfFile
GetFileSize
lstrlenW
GlobalSize
FreeLibrary
FindNextFileW
GetCurrentThreadId
InterlockedPushEntrySList
FindResourceExW
GetProcessHeap
LockResource
GetModuleHandleW
lstrlenA
CreateFileA
LoadLibraryExW
GetComputerNameW
GetFileTime
SetFilePointer
DeleteFileW
TlsFree
SetUnhandledExceptionFilter
FindFirstFileW
ReadFile
LocalFree
HeapFree
FormatMessageW
GetSystemTimeAsFileTime
GetACP
SetLastError
CopyFileW
lstrcmpW
GlobalUnlock
IsValidCodePage
FlushFileBuffers
HeapDestroy
IsDBCSLeadByte
FindResourceW
HeapAlloc
SizeofResource
TlsAlloc
CompareStringW
InitializeCriticalSectionAndSpinCount
GlobalLock
FileTimeToSystemTime
RaiseException
RemoveDirectoryW
LeaveCriticalSection
IsProcessorFeaturePresent
MulDiv
FindClose
OpenFile
GlobalReAlloc
VirtualFree
SetFileTime
UnhandledExceptionFilter
InterlockedPopEntrySList
GetUserDefaultLCID
HeapReAlloc
WideCharToMultiByte
CreateDirectoryW
EnterCriticalSection
HeapSize
GetTempFileNameW
LoadResource
GlobalFree
CloseHandle
WriteFile
MapViewOfFile
GetFullPathNameW
VirtualAlloc
lstrcmpiW
IsDebuggerPresent
UnmapViewOfFile
GlobalAlloc
TlsGetValue
MoveFileW
SetFileAttributesW
CreateFileW
GetLocalTime
CreateMutexW
VirtualAllocEx

gdi32

CreateSolidBrush
GetTextExtentPoint32W
CreateFontIndirectW
GetTextExtentPointW
SetBkColor
ExtTextOutW
CreateBitmap
GetDeviceCaps
CreateCompatibleBitmap
CopyMetaFileW
GetStockObject
GetObjectW
DeleteDC
SelectObject
CreateCompatibleDC
SetTextColor
BitBlt
DeleteObject
GetTextMetricsW
GetTextColor

advapi32

RegEnumValueW
RegQueryValueExW
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegCloseKey
CryptDestroyKey
CryptReleaseContext
RegSetValueExW
RegDeleteKeyW

crypt32

CryptUnprotectData
CryptProtectData

comctl32

ImageList_AddMasked
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon

shell32

DragQueryFileW
ShellExecuteExW

oleaut32

SafeArrayGetLBound
SysFreeString
VariantCopyInd
VarBstrFromDate
SafeArrayGetVartype
RegisterTypeLi
SysAllocStringLen
OleCreateFontIndirect
VariantChangeType
SafeArrayDestroy
VariantChangeTypeEx
GetErrorInfo
VariantInit
SafeArrayCreate
VariantCopy
SafeArrayAccessData
SafeArrayUnaccessData
LoadRegTypeLi
SysAllocString
SafeArrayRedim
SysAllocStringByteLen
SafeArrayGetUBound
SafeArrayUnlock
SysStringLen
VarBstrCmp
SafeArrayLock
UnRegisterTypeLi
LoadTypeLibEx
LoadTypeLi
VarUI4FromStr
VarBstrCat
SysStringByteLen
VariantClear
SetErrorInfo

ole32

StringFromCLSID
CLSIDFromProgID
CoTaskMemFree
OleGetClipboard
CoTaskMemAlloc
OleInitialize
CreateStreamOnHGlobal
CoTaskMemRealloc
OleSetClipboard
OleDuplicateData
CoGetClassObject
CoGetMalloc
ReleaseStgMedium
ReadClassStm
GetHGlobalFromStream
CreateDataAdviseHolder
OleUninitialize
CLSIDFromString
OleLockRunning
CoCreateInstance
StringFromGUID2

user32

GetDialogBaseUnits
GetNextDlgTabItem
EndDialog
GetClientRect
SendMessageW
CharNextA
SetDlgItemInt
SetCapture
GetDesktopWindow
MoveWindow
GetDlgItemInt
GetDlgItemTextW
IsChild
SetWindowPos
GetClassInfoExW
EndPaint
GetSysColor
UnregisterClassA
CreateWindowExW
RegisterClassExW
IsWindow
DialogBoxParamW
GetMonitorInfoW
GetCursorPos
EmptyClipboard
SetCursor
SetFocus
ReleaseDC
FillRect
GetWindowTextLengthW
GetWindow
DrawTextExW
CharNextW
IsDialogMessageW
PostMessageW
EnableWindow
MonitorFromWindow
CheckDlgButton
IsWindowEnabled
LoadIconW
CallWindowProcW
SetWindowLongW
BeginPaint
ClientToScreen
GetClassNameW
RegisterClipboardFormatW
CreateAcceleratorTableW
RedrawWindow
DispatchMessageW
IsClipboardFormatAvailable
SetDlgItemTextW
GetWindowRect
DialogBoxIndirectParamW
SendDlgItemMessageW
LoadStringA
MessageBoxW
DestroyWindow
GetActiveWindow
CreateDialogIndirectParamW
IsDlgButtonChecked
DestroyAcceleratorTable
DrawFocusRect
PeekMessageW
OpenClipboard
MapWindowPoints
ScreenToClient
LoadStringW
GetWindowLongW
GetWindowTextW
ShowWindow
IsCharAlphaNumericW
RegisterWindowMessageW
GetParent
TranslateMessage
LoadImageW
GetKeyState
InvalidateRect
SetWindowTextW
InvalidateRgn
GetDC
ReleaseCapture
LoadBitmapW
CreateDialogParamW
GetFocus
CharLowerBuffW
DefWindowProcW
GetDlgItem
LoadCursorW
LoadImageA
MonitorFromRect
RegisterClassExA
WaitMessage
SendDlgItemMessageA
GetSubMenu
GetMenuStringW
DialogBoxIndirectParamA
EnumWindows
DialogBoxParamA
TrackPopupMenuEx
SetWindowTextA
SetParent
PeekMessageA
ShowCursor

deskperf

DllGetClassObject

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 241KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7dc9dcf67982bddd2a0c7604d732a3b2

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

crypt32

comctl32

shell32

oleaut32

ole32

user32

deskperf

Sections

.text Size: 25KB - Virtual size: 24KB

.data Size: 241KB - Virtual size: 1.1MB

.rdata Size: 7KB - Virtual size: 6KB

.rsrc Size: 4KB - Virtual size: 9KB

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 241KB - Virtual size: 1.1MB

.rdata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 9KB