cff8d7659a5b98d3b91eb5e9bac366df876b9ebb933b46df461135ae7c889b8d

Sharing

Copy URL Twitter E-mail

General

Target

cff8d7659a5b98d3b91eb5e9bac366df876b9ebb933b46df461135ae7c889b8d
Size

82KB
MD5

535da9cf0b7dff4f53d417069a987f2b
SHA1

80722bb87a427bfcf0c6b86665d84dff134de1ac
SHA256

cff8d7659a5b98d3b91eb5e9bac366df876b9ebb933b46df461135ae7c889b8d
SHA512

171f4e9191bd5a464b7b6c4f3ace67831f5eb7983ca353b70fd2fc45a660b4a25d5bdb1484084135933ec948d8ee2da99f1a2d5411dbc6ad88a54daf0c44d6b5
SSDEEP

1536:6CWYe0gy2tQXvyRKiA31v98hzP0d/fuZfLxios5Xeu4BL4D0:6CWYcy2CX8A3198R2/kId5/4l

Score

N/A

Malware Config

Signatures

Files

cff8d7659a5b98d3b91eb5e9bac366df876b9ebb933b46df461135ae7c889b8d
.exe windows x86

55fa2a31602b87aedbf93f8a5a010eb4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
SetWindowTextA
SendMessageA
InvalidateRect
TranslateMessage
DrawTextA
DestroyIcon
GetWindowTextA
PeekMessageA
IsDialogMessageA
SetDlgItemTextA
CheckDlgButton
GetWindowRect
ReleaseDC
GetSysColor
ShowWindow
SetWindowLongA
EndDialog
GetDC
wsprintfA
CreateDialogParamA
DialogBoxParamA
CharUpperA
LoadBitmapA
GetClientRect
CharPrevA
DestroyWindow
LoadImageA
SetWindowPos
MsgWaitForMultipleObjects
MessageBoxA
DispatchMessageA
GetWindowLongA
IsWindow
GetDlgItem
LoadStringA
SendDlgItemMessageA
IsDlgButtonChecked

kernel32

HeapReAlloc
HeapFree
InterlockedIncrement
LocalFree
LoadLibraryA
lstrcmpA
SetEvent
GetProcessHeap
GetProcAddress
GetModuleFileNameA
CreateFileA
CreateThread
CreateEventA
LocalAlloc
lstrcpynA
DisableThreadLibraryCalls
GetTickCount
lstrcpyA
CloseHandle
VirtualAlloc
lstrcmpiA
GetModuleHandleA
HeapAlloc
lstrlenA
InterlockedDecrement
DeleteCriticalSection
GetWindowsDirectoryA
GetDiskFreeSpaceA
FreeLibrary
lstrcatA
GetSystemDirectoryA
InitializeCriticalSection

advpack

RegInstall

atl

AtlMarshalPtrInProc

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

gdi32

BitBlt
SaveDC
DeleteObject
GetTextMetricsA
CreateFontIndirectA
SetViewportOrgEx
ModifyWorldTransform
DPtoLP
SetBkColor
CreateSolidBrush
GetObjectA
SetGraphicsMode
ExtTextOutA
CreateCompatibleDC
DeleteDC
SetWindowOrgEx
GetDeviceCaps
RestoreDC
SelectObject
SetTextColor

ntdll

NtAddAtom

ole32

CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree

advapi32

RegQueryValueExA
RegDeleteKeyA
RegSetValueExA
RegEnumValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA

Sections

.textbss
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vxntdld
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

55fa2a31602b87aedbf93f8a5a010eb4

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

advpack

atl

version

gdi32

ntdll

ole32

advapi32

Sections

.textbss Size: - Virtual size: 1.2MB

.text Size: 512B - Virtual size: 428B

.idata Size: 79KB - Virtual size: 79KB

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 1024B - Virtual size: 29KB

vxntdld Size: - Virtual size: 4KB

.textbss
Size: - Virtual size: 1.2MB

.text
Size: 512B - Virtual size: 428B

.idata
Size: 79KB - Virtual size: 79KB

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 1024B - Virtual size: 29KB

vxntdld
Size: - Virtual size: 4KB