e205837f208226aa2926f6fb65f7d4c0597c5a0833c63e0c84da319dd4f90630

Sharing

Copy URL Twitter E-mail

General

Target

e205837f208226aa2926f6fb65f7d4c0597c5a0833c63e0c84da319dd4f90630
Size

67KB
MD5

e478e52feedb22e31cfac86ed19433ac
SHA1

bb656efc6f3d9b074641da441b9e39330aecb3c9
SHA256

e205837f208226aa2926f6fb65f7d4c0597c5a0833c63e0c84da319dd4f90630
SHA512

7eed6e538687b9aefe11a829c7d75d89d4833d49c92e8bc4f6879fa58851c6da4f5aad4d8565ed50574e3206a396c30f989d535b63d49c2117006af84b20559f
SSDEEP

1536:59OXNd5pUW6AtcN+5qEcg8Nv98X62MTaUMMnMMMMMQqvuOYQIYQDeN48PA0qm6Tm:59U5pUWztcN+t6veFUMMnMMMMMX7I7Du

Score

N/A

Malware Config

Signatures

Files

e205837f208226aa2926f6fb65f7d4c0597c5a0833c63e0c84da319dd4f90630
.exe windows x86

cf43a373e3ae4199c5823d730bc6d8de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
lstrcmpiW
GetThreadLocale
LocalReAlloc
LocalFree
GetCurrentProcess
SizeofResource
CompareStringA
GetProcAddress
GetStdHandle
lstrcpynW
ExitProcess
InterlockedDecrement
TlsFree
WriteFile
GetModuleFileNameA
GlobalAlloc
MultiByteToWideChar
LoadLibraryA
LCMapStringW
WideCharToMultiByte
GetStartupInfoA
GetTickCount
EnterCriticalSection
FindResourceExA
GetCurrentProcessId
SetUnhandledExceptionFilter
GetLastError
GetFileType
GlobalUnlock
UnmapViewOfFile
SetStdHandle
SetFilePointer
VirtualProtect
GetEnvironmentStringsW
CreateThread
GetStringTypeA
GlobalReAlloc
Sleep
MapViewOfFile
TlsAlloc
MulDiv
LoadResource
FindResourceExW
HeapReAlloc
SetHandleCount
SetEvent
GetLocalTime
InitializeCriticalSection
GetCommandLineA
HeapCreate
lstrcmpA
FreeEnvironmentStringsA
HeapDestroy
lstrlenW
CloseHandle
GetDateFormatW
lstrcmpW
UnhandledExceptionFilter
IsBadWritePtr
InterlockedExchange
GetNumberFormatW
HeapAlloc
CreateFileMappingW
GetTimeFormatW
InterlockedIncrement
GetCPInfo
GlobalHandle
GetLocaleInfoW
TlsSetValue
EnumCalendarInfoW
InterlockedCompareExchange
TlsGetValue
GetACP
VirtualQuery
CreateEventW
GetVersionExA
GlobalAddAtomW
LeaveCriticalSection
GetStringTypeExW
LCMapStringA
GetUserDefaultLangID
EnumResourceLanguagesW
GetLocaleInfoA
CreateFileW
WaitForSingleObject
LockResource
LoadLibraryW
GetWindowsDirectoryW
GetOEMCP
GetProcessHeap
TerminateProcess
VirtualAlloc
DisableThreadLibraryCalls
FreeResource
GetEnvironmentStrings
GetModuleHandleW
VirtualFree
GetCurrentThreadId
FindResourceW
FlushFileBuffers
GetUserDefaultLCID
HeapFree
GlobalFree
GetSystemDefaultLCID
IsBadReadPtr
GetModuleFileNameW
GetStringTypeW
GetSystemInfo
lstrcmpiA
GetSystemTimeAsFileTime
SetLastError
LocalAlloc
GetModuleHandleA
CompareStringW
FreeEnvironmentStringsW
LocalSize
GetFileSize
lstrlenA
QueryPerformanceCounter
DeleteCriticalSection

atl

AtlModuleRegisterClassObjects

gdi32

GetPaletteEntries
SetBkColor
Arc
FrameRgn
CreatePen
ExtTextOutA
TextOutW
IntersectClipRect
GetTextExtentPoint32W
SetDIBColorTable
CombineRgn
MoveToEx
SetDIBits
CreateBitmapIndirect
Ellipse
CreateFontW
OffsetRgn
Polyline
UnrealizeObject
GetViewportExtEx
GetDeviceCaps
GetPixel
CreateRectRgnIndirect
GetCharWidthW
ExtSelectClipRgn
GetStockObject
SetBrushOrgEx
StretchBlt
ExtTextOutW
StretchDIBits
GetCurrentObject
TranslateCharsetInfo
GetTextExtentPointW
SetTextColor
SetPixel
SaveDC
SelectPalette
GetClipRgn
BitBlt
GetBkColor
CreatePalette
RestoreDC
OffsetWindowOrgEx
GetDCOrgEx
CreatePolygonRgn
GetTextColor
SelectClipRgn
GetTextMetricsW
GetTextCharsetInfo
GetDIBColorTable
CreateCompatibleDC
CreateHalftonePalette
GetTextAlign
FillRgn
PatBlt
CreateDIBSection
CreateRoundRectRgn
DeleteDC
GetBitmapBits
CreateCompatibleBitmap
LineTo
EnumFontFamiliesExW
GetClipBox
CreateSolidBrush
GetObjectW
GetWindowExtEx
CreateRectRgn
GetNearestColor
Rectangle
GetCharWidthA
CreatePatternBrush
CreateFontIndirectW
SetWindowOrgEx
SelectObject
SetBkMode
SetTextAlign
MaskBlt
SetPixelV
CreateBitmap
DeleteObject
GetTextExtentPointA
RealizePalette
RectVisible
ExcludeClipRect
GetDIBits

ddraw

DirectDrawCreate

advapi32

RegCreateKeyW
RegQueryValueExA
AllocateAndInitializeSid
RegOpenKeyExA
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegQueryValueW
RegOpenCurrentUser
RegQueryValueExW
CheckTokenMembership
OpenProcessToken
RegCloseKey
FreeSid

ntdll

RtlAddAuditAccessAce

user32

GetCaretBlinkTime
GetScrollPos
SetCapture
GetDoubleClickTime
InflateRect
GetWindowTextW
PeekMessageW
DrawIcon
RedrawWindow
ShowCaret
EnableScrollBar
GetKeyboardLayout
GetMessageTime
CallWindowProcW
TranslateMessage
GetKeyNameTextW
LoadCursorW
DestroyCursor
MoveWindow
DestroyCaret
PtInRect
IsChild
DeferWindowPos
GetShellWindow
EndPaint
GetIconInfo
CreateCaret
CharPrevW
GetMenuState
WinHelpW
SetWindowPos
SetTimer
GetWindowRgn
GetSystemMenu
SetRectEmpty
GetMenuItemInfoW
GetSystemMetrics
DrawTextW
SetCursor
SetForegroundWindow
CreateDialogIndirectParamA
CreatePopupMenu
GetKeyboardState
BeginPaint
GetSubMenu
SetCaretPos
SetPropW
GetMenu
TrackPopupMenu
GetParent
GetScrollInfo
HideCaret
SendNotifyMessageW
GetKeyState
IntersectRect
InvertRect
UpdateWindow
RegisterClassW
GetWindowTextLengthW
GetDlgItem
DrawFrameControl
ReleaseCapture
GetNextDlgTabItem
PostQuitMessage
SetLastErrorEx
GetClassNameW
CharLowerW
OffsetRect
FrameRect
GetMessageW
ChildWindowFromPoint
GrayStringW
EnumChildWindows
LoadIconW
ReleaseDC
SetKeyboardState
GetProcessWindowStation
DrawIconEx
AppendMenuW
GetUpdateRect
CheckMenuItem
SetScrollRange
IsRectEmpty
SetWindowTextW
CreateDialogIndirectParamW
GetWindowRect
MessageBeep
IsWindowVisible
DispatchMessageW
GetFocus
ValidateRect
GetScrollRange
CopyIcon
InvalidateRect
MapDialogRect
CopyImage
EnableWindow
PostMessageW
GetCursor
DrawEdge
GetUpdateRgn
GetClientRect
GetCursorPos
DrawFocusRect
IsDialogMessageW
UnregisterClassW
SetScrollInfo
LoadStringW
CopyRect
FillRect
InvalidateRgn
EnumDesktopsW
GetDesktopWindow
CreateWindowExA
EqualRect
LockWindowUpdate
GetWindowPlacement
IsIconic
SetMenu
CloseDesktop
CallMsgFilterW
CreateIconIndirect
RemovePropW
ShowScrollBar
LoadImageW
WindowFromPoint
SystemParametersInfoA
MapVirtualKeyW
DestroyIcon
KillTimer
EndDeferWindowPos
SetWindowLongW
SetWindowTextA
GetAsyncKeyState
GetDC
SendDlgItemMessageW
SetScrollPos
AdjustWindowRectEx
DefWindowProcW
ClientToScreen
GetWindowThreadProcessId
GetSysColorBrush
MapWindowPoints
IsZoomed
EndDialog
WaitMessage
IsWindow
GetActiveWindow
DialogBoxIndirectParamW
DestroyWindow
GetMenuItemID
GetDlgCtrlID
GetWindowDC
SystemParametersInfoW
GetDCEx
GetWindow
DrawTextExW
SetActiveWindow
CreateWindowExW
GetMenuItemCount
OpenDesktopW
AdjustWindowRect
GetWindowLongA
SetCursorPos
UnionRect
ScreenToClient
BeginDeferWindowPos
DestroyMenu
GetWindowLongW
ShowWindow
SetDlgItemTextW
SetParent
EnumWindows
RegisterWindowMessageW
SetWindowRgn
GetCapture
SetRect
GetForegroundWindow
GetThreadDesktop
GetSysColor
SubtractRect
ScrollWindowEx
GetMessagePos
SetThreadDesktop
SendMessageW
GetPropW
SetFocus
IsWindowEnabled

Sections

.text
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf43a373e3ae4199c5823d730bc6d8de

Headers

File Characteristics

Imports

kernel32

atl

gdi32

ddraw

advapi32

ntdll

user32

Sections

.text Size: 4KB - Virtual size: 928B

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 2.0MB

.idata Size: 12KB - Virtual size: 10KB

.rsrc Size: 512KB - Virtual size: 508KB

.text
Size: 4KB - Virtual size: 928B

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 2.0MB

.idata
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 512KB - Virtual size: 508KB