09a0ed6204036793bf7c4bb03c25671cdc14d7b86f671c5e447544d75ba48a54

Sharing

Copy URL

Twitter E-mail

General

Target

09a0ed6204036793bf7c4bb03c25671cdc14d7b86f671c5e447544d75ba48a54
Size

300KB
MD5

222dc32e9b613232d5a160e9fccfadd3
SHA1

530826b9a1546d569c4dd68c17154e2c1fde741d
SHA256

09a0ed6204036793bf7c4bb03c25671cdc14d7b86f671c5e447544d75ba48a54
SHA512

1ae30de07d5a615516e32ead65f378a5365a9e740c67dac561628b60fc75dc840eb7efe87053486ec6feef8a14e34eb7bae29d6f90108e9def59b657538f68a9
SSDEEP

3072:XvmQDfOuvjRUSg0SoK9rVvzVycp9YkVvULI7QdpGUtqusQoH5poEqPtsQxY1w:XvmQDfON5NoKzZyORV8LMUENpoEU

Score

N/A

Malware Config

Signatures

Files

09a0ed6204036793bf7c4bb03c25671cdc14d7b86f671c5e447544d75ba48a54
.exe windows x86

453cbb78728e87dbd7dbf2fb72a21578

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
ResetEvent
WaitForMultipleObjects
Sleep
GetModuleFileNameA
CopyFileA
CreateMutexA
LoadLibraryA
GetProcAddress
InitializeCriticalSection
DeleteCriticalSection
GetSystemDirectoryA
CreateToolhelp32Snapshot
Process32First
TerminateProcess
OpenProcess
Process32Next
WaitForSingleObject
CloseHandle
TerminateThread
GetCurrentThreadId
SetEvent
EnterCriticalSection
LeaveCriticalSection
GetComputerNameA
GetVersionExA
lstrcmpiA
GetDiskFreeSpaceExA
GlobalMemoryStatus
GetTempPathA
SetLastError
RemoveDirectoryA
CreateDirectoryA
DeleteFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetLastError
FindClose
GetLogicalDrives
GetDriveTypeA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetProcessTimes
GetPriorityClass
GetCurrentProcessId
GetDiskFreeSpaceA
GetWindowsDirectoryA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoA
IsBadCodePtr
IsBadReadPtr
SetStdHandle
IsBadWritePtr
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
LocalFree
FormatMessageA
lstrlenW
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
lstrcpyA
GetVolumeInformationA
lstrcpynA
GetFullPathNameA
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcatA
GetVersion
FreeLibrary
lstrcmpA
LocalAlloc
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetFileAttributesA
GetFileSize
GetFileTime
GetCurrentThread
GetProcessVersion
GetCPInfo
GetOEMCP
RtlUnwind
CreateThread
ExitThread
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
GetTimeZoneInformation
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetACP
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
VirtualAlloc

user32

SetWindowPos
SetWindowLongA
SetForegroundWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
UnhookWindowsHookEx
SetPropA
CallNextHookEx
SetWindowsHookExA
DestroyWindow
GetKeyState
GetDlgCtrlID
GetDlgItem
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetParent
MessageBoxA
GetTopWindow
EnableWindow
CopyRect
AdjustWindowRectEx
SetFocus
GetFocus
PeekMessageA
GetSysColor
MapWindowPoints
PostMessageA
LoadStringA
GetMenuState
GetClassNameA
RegisterWindowMessageA
ClientToScreen
SetWindowTextA
GetDesktopWindow
IsWindowEnabled
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
LoadBitmapA
GetMenuCheckMarkDimensions
IsIconic
GetSysColorBrush
DestroyMenu
GetWindowDC
TabbedTextOutA
GrayStringA
EnumDisplaySettingsA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
CharUpperA
GetWindowTextLengthA
GetWindowTextA
ReleaseDC
GetDC
GetClassLongA
IsWindow
SendMessageTimeoutA
EnumWindows
GetWindowThreadProcessId
GetWindowLongA
GetWindow
DispatchMessageA
TranslateMessage
GetMessageA
RegisterClassExA
LoadCursorA
LoadIconA
UpdateWindow
ShowWindow
CreateWindowExA
SendMessageA
DefWindowProcA
EndPaint
DrawTextA
PtInRect
SystemParametersInfoA
GetClientRect
BeginPaint
SetTimer
PostQuitMessage
keybd_event
mouse_event

gdi32

ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
GetClipBox
BitBlt
CreateICA
GetDIBits
RealizePalette
SelectPalette
GetStockObject
DeleteDC
DeleteObject
GetObjectA
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
CreateDCA
SetBkMode
SetTextColor
CreateFontIndirectA
GetTextMetricsA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible

ws2_32

WSAGetLastError
WSAWaitForMultipleEvents
WSAResetEvent
WSAGetOverlappedResult
closesocket
shutdown
listen
htons
WSASend
WSASocketA
WSACreateEvent
WSACleanup
WSAStartup
WSASetEvent
gethostbyname
gethostname
WSARecv
WSAEventSelect
inet_ntoa
WSAAccept
WSAEnumNetworkEvents
WSACloseEvent
bind

advapi32

LookupAccountSidA
GetTokenInformation
OpenProcessToken
OpenThreadToken
OpenServiceA
CloseServiceHandle
ControlService
QueryServiceConfigA
QueryServiceStatus
OpenSCManagerA
UnlockServiceDatabase
EnumServicesStatusA
EnumDependentServicesA
RegCloseKey
RegEnumValueA
RegQueryValueExA
RegOpenKeyA
RegEnumKeyA
RegCreateKeyA
RegDeleteKeyA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
GetUserNameA
RegQueryInfoKeyA

shell32

SHGetFileInfoA
ShellExecuteA

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comctl32

ord17

ole32

CoCreateGuid

oleaut32

VarBstrFromDate
VariantClear

Sections

.text
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

453cbb78728e87dbd7dbf2fb72a21578

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ws2_32

advapi32

shell32

comdlg32

winspool.drv

comctl32

ole32

oleaut32

Sections

.text Size: 132KB - Virtual size: 128KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 20KB - Virtual size: 31KB

.rsrc Size: 120KB - Virtual size: 117KB

.text
Size: 132KB - Virtual size: 128KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 20KB - Virtual size: 31KB

.rsrc
Size: 120KB - Virtual size: 117KB