c7a17313a3fc425af81a2a70990d3a06362dd322390d2606ff671b7bbdc10618

Sharing

Copy URL

Twitter E-mail

General

Target

c7a17313a3fc425af81a2a70990d3a06362dd322390d2606ff671b7bbdc10618
Size

304KB
MD5

307645389a52b20ba36f0f2d23b84af0
SHA1

c7b48b6c9f2c508399e590beea37c0766e4461d7
SHA256

c7a17313a3fc425af81a2a70990d3a06362dd322390d2606ff671b7bbdc10618
SHA512

4d44ae83d156455ed9416e9668a56a0b02b8d211774ca849c181b74e02eae5c7f16c8179ec129090496f72d19d7a5383184b1b94e86d5e2793f1251281d9ce0b
SSDEEP

6144:PPmVCHZrXlfjuTinOSr8lCHBNc/y0gKUhz8Fj7YpckmWk4OHDccJ/4v+:2VWrxjBnFw2B10cOm7NujD/

Score

N/A

Malware Config

Signatures

Files

c7a17313a3fc425af81a2a70990d3a06362dd322390d2606ff671b7bbdc10618
.exe windows x86

a30be3d9db799b72b3cba8c815c94b74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
SignalObjectAndWait
PeekConsoleInputW
CreateFileA
LCMapStringW
GetPriorityClass
lstrlenA
CreateMutexA
GetProfileIntW
CreateEventA
ResumeThread
PurgeComm
GetStringTypeExA
Sleep
GetVersionExA
GetModuleHandleA
_lcreat
FreeEnvironmentStringsW
FillConsoleOutputCharacterW
VerLanguageNameW
IsBadCodePtr
VirtualQueryEx
WaitForMultipleObjectsEx
SetConsoleActiveScreenBuffer
CreateFileMappingA
GetNumberFormatA
PeekConsoleInputA
GetProfileStringA
DisableThreadLibraryCalls
AllocConsole
GetProcessTimes
DeleteFileA
_lwrite
GetFullPathNameA
FillConsoleOutputAttribute
GetCPInfo
WritePrivateProfileSectionW
CopyFileExA
SuspendThread
EndUpdateResourceA
ReadConsoleOutputA
GetLogicalDriveStringsA
OpenFileMappingW
ReadConsoleOutputCharacterW
BackupSeek
EnumCalendarInfoW
GetNumberOfConsoleMouseButtons
Toolhelp32ReadProcessMemory
ReleaseMutex
SetCommConfig
GetStartupInfoA
FindResourceA
FindFirstChangeNotificationA
OpenFileMappingA
CreateIoCompletionPort
GetFileAttributesExW
EnumSystemLocalesW
SetProcessShutdownParameters
GetPrivateProfileIntA
DosDateTimeToFileTime
GetProfileSectionW
_llseek
GetOEMCP
GetDriveTypeW
GetPrivateProfileSectionA
CancelWaitableTimer
SetConsoleTitleW
EnumDateFormatsW
GetSystemDirectoryW
LockFile
ExitThread
GetThreadPriorityBoost
EraseTape
GetStdHandle

user32

GetScrollInfo
ChangeDisplaySettingsExA
IsRectEmpty
GetClipboardViewer
LoadMenuA
RegisterClipboardFormatA
GetCursorPos
WinHelpA
SetMenu
DestroyIcon
LoadCursorFromFileA
GetWindow
RegisterClassExW
GetScrollPos
GetCapture
GetNextDlgTabItem
CreateIcon
DialogBoxParamW
GetWindowLongW
SetWindowPlacement
MessageBoxA
SendMessageCallbackW
CharLowerBuffW
ScrollWindow
SetFocus
GetDlgItemTextW
GetDC
BringWindowToTop
SetParent
SetDebugErrorLevel
OpenDesktopA
GetKeyboardLayoutNameA
GetClipboardFormatNameA
DefDlgProcW
HiliteMenuItem
SetForegroundWindow
CreateAcceleratorTableA
SwitchDesktop
GetMessageW
FrameRect
wsprintfA
RegisterClassExA
CallNextHookEx
DrawEdge
PtInRect
IsCharAlphaA
CharToOemBuffA
DrawStateA
CountClipboardFormats
ExitWindowsEx
SystemParametersInfoA
SetCursor
GetMenuStringW
CascadeWindows
GetTabbedTextExtentA

gdi32

TextOutW
GetObjectType
GetClipRgn
StartDocW
CreatePalette
AddFontResourceA
GetICMProfileW
ExtTextOutW
OffsetRgn
DeleteColorSpace
GetTextMetricsW
CreateHatchBrush
SetWorldTransform
GetWindowOrgEx
SwapBuffers
DescribePixelFormat
SetWindowOrgEx
GetBkColor
LineTo
GetEnhMetaFileDescriptionW
GetCharWidth32A
TranslateCharsetInfo

comdlg32

GetFileTitleW
ReplaceTextA
ChooseFontA

advapi32

CreateServiceW
BuildTrusteeWithSidA
ClearEventLogA
MakeAbsoluteSD
BuildImpersonateTrusteeA
SetServiceObjectSecurity
QueryServiceLockStatusW
RegSetKeySecurity
LookupPrivilegeValueA
LookupPrivilegeNameW
IsTextUnicode
RegDeleteValueW
QueryServiceStatus
CryptHashSessionKey
CreateProcessAsUserW
LookupSecurityDescriptorPartsA
ObjectOpenAuditAlarmW
RegLoadKeyA
CopySid
LogonUserW
RegisterServiceCtrlHandlerW
GetSidSubAuthority
IsValidSid
GetAuditedPermissionsFromAclA
NotifyChangeEventLog
RegSetValueExA
GetCurrentHwProfileW
InitiateSystemShutdownA
GetSidLengthRequired
RegEnumKeyExW
BuildTrusteeWithNameW
SetSecurityDescriptorDacl
BuildSecurityDescriptorA

shell32

FindExecutableW
SHBrowseForFolderA
SHGetMalloc
ShellAboutA
SHQueryRecycleBinA
SHEmptyRecycleBinW
ExtractIconExA

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3

Sections

.text
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a30be3d9db799b72b3cba8c815c94b74

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 284KB - Virtual size: 283KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 13KB - Virtual size: 12KB

.text
Size: 284KB - Virtual size: 283KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 13KB - Virtual size: 12KB