8a9ba7c2792f8b80c94de25c2de6b9e62f57bbfd157a080e3e0a87cceb4eba3a

Sharing

Copy URL Twitter E-mail

General

Target

8a9ba7c2792f8b80c94de25c2de6b9e62f57bbfd157a080e3e0a87cceb4eba3a
Size

134KB
MD5

df40ab9231381d6079ad01da05de2522
SHA1

2a149d24d269b5afbdef5c03aebd583fca385b9a
SHA256

8a9ba7c2792f8b80c94de25c2de6b9e62f57bbfd157a080e3e0a87cceb4eba3a
SHA512

7cbe484e768920f4e411319b56bf7ac8801363a3e71dee98adb55d6e86136a742ec79e56e91d0bf3e0354a01893365fc7e6cd9f1177cd9171685cfddfee072a5
SSDEEP

3072:PTNsY3t7113UUcya8oyfByDvD7YbHPQQpAHdyszQZi5zHqj:Pd3n1EULa8qMHOHdbzQuK

Score

N/A

Malware Config

Signatures

Files

8a9ba7c2792f8b80c94de25c2de6b9e62f57bbfd157a080e3e0a87cceb4eba3a
.exe windows x86

52ae7513ce4fcef8c3c352295c44f8df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
HeapDestroy
SetStdHandle
GetLocaleInfoW
GetDateFormatW
CompareStringW
lstrcmpW
FindResourceW
GlobalLock
lstrcpynA
GetPrivateProfileStringW
HeapFree
GetTempFileNameW
GetFileSize
InterlockedIncrement
TlsFree
FindNextChangeNotification
GetConsoleMode
CreateFileW
lstrcpynW
OpenEventW
CreateThread
GetTimeFormatA
GetCPInfo
SetUnhandledExceptionFilter
CopyFileW
RtlUnwind
GetSystemDefaultLangID
CompareStringA
QueryPerformanceCounter
GetOEMCP
SetHandleCount
lstrlenA
CreateFileA
GetStringTypeW
SetConsoleCtrlHandler
GetVersionExW
lstrcmpiW
MultiByteToWideChar
IsValidLocale
AddAtomA
GetVersion
WritePrivateProfileSectionW
VirtualFree
GetStdHandle
IsDebuggerPresent
GlobalUnlock
FileTimeToSystemTime
GetLocaleInfoA
OutputDebugStringW
LocalFree
DeleteCriticalSection
GetUserDefaultLCID
lstrcatW
IsValidCodePage
GetCurrentThreadId
GetCommandLineW
InitializeCriticalSection
GlobalAlloc
HeapCreate
GetConsoleOutputCP
GetModuleHandleW
GetProcAddress
GetPrivateProfileIntW
LocalAlloc
GetComputerNameW
LCMapStringA
ResetEvent
FreeEnvironmentStringsW
EnumSystemLocalesA
TlsSetValue
InterlockedDecrement
GetFileType
InterlockedExchange
GetModuleFileNameA
ExpandEnvironmentStringsW
GetConsoleCP
TlsGetValue
FindFirstChangeNotificationW
GetWindowsDirectoryW
FreeLibrary
FormatMessageW
GetCurrentProcess
WritePrivateProfileStringW
TlsAlloc
GetFileAttributesExW
TerminateProcess
SizeofResource
GetModuleFileNameW
RaiseException
LCMapStringW
ExpandEnvironmentStringsA
ExitProcess
DebugBreak
GlobalSize
InterlockedCompareExchange
WaitForSingleObject
GetStringTypeA
GetACP
WinExec
VirtualAlloc
InitializeCriticalSectionAndSpinCount
WriteConsoleA
LockResource
VerLanguageNameW
EnterCriticalSection
LoadResource
GetLastError
GetStartupInfoW
CloseHandle
LeaveCriticalSection
GetTempPathW
lstrcpyW
VirtualQuery
FlushInstructionCache
HeapAlloc
Sleep
GetStartupInfoA
SystemTimeToTzSpecificLocalTime
GetSystemDirectoryW
lstrlenW
HeapSize
GetModuleHandleA
WriteConsoleW
WideCharToMultiByte
GetEnvironmentStringsW
GetFileAttributesW
ReadFile
LoadLibraryA
WaitForMultipleObjects
GetCurrentThread
LoadLibraryExW
SetLastError
UnhandledExceptionFilter
GetDateFormatA
IsProcessorFeaturePresent
HeapReAlloc
LoadLibraryW
GetCurrentProcessId

user32

LoadMenuW
GetWindowTextLengthW
GetMessageW
EndDialog
EndDeferWindowPos
SetForegroundWindow
UnhookWindowsHookEx
GetClassInfoW
ReleaseCapture
DrawFocusRect
TranslateMessage
DrawMenuBar
ModifyMenuW
FillRect
DeferWindowPos
GetFocus
PostQuitMessage
SetCursor
SendMessageW
EqualRect
DestroyCaret
RegisterClassExW
CreateCaret
IsWindowEnabled
GetWindow
GetDlgItemInt
PtInRect
CreateWindowExW
KillTimer
SetWindowsHookExW
DestroyMenu
SetCapture
IsClipboardFormatAvailable
SystemParametersInfoW
GetCursorPos
SetWindowTextW
GetWindowDC
GetSystemMenu
PeekMessageW
PostMessageW
IsWindowVisible
SetFocus
CloseClipboard
EmptyClipboard
SetClipboardData
GetWindowLongA
GetDC
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
GetMessagePos
GetWindowThreadProcessId
GetMenuStringW
DispatchMessageW
GetClassNameW
UnregisterClassW
DrawEdge
WindowFromPoint
BringWindowToTop
ScrollWindowEx
ScreenToClient
RegisterWindowMessageW
OpenClipboard
SetCaretPos
SetMenu
IsChild
BeginPaint
LoadAcceleratorsW
GetMenuItemID
GetMenuItemInfoW
IntersectRect
RegisterClassW
RegisterClipboardFormatW
CopyRect
LoadStringA
GetDlgItemTextW
ReleaseDC
SetRectEmpty
FrameRect
MoveWindow
LoadIconW
MapWindowPoints
IsMenu
LoadCursorW
CallWindowProcW
CharLowerW
LoadBitmapW
GetSubMenu
BeginDeferWindowPos
OffsetRect
SetScrollPos
SetDlgItemTextW
GetDoubleClickTime
GetSysColorBrush
DragDetect
ShowCaret
UnregisterClassA
GetKeyState
AppendMenuW
MonitorFromWindow
SetMenuItemInfoW
GetWindowPlacement
SetDlgItemInt
TrackPopupMenu
GetScrollInfo
InvalidateRect
DefWindowProcW
SetWindowPos
EnableWindow
TranslateMDISysAccel
GetCapture
InsertMenuW
UpdateWindow
ClientToScreen
DefFrameProcW
LockWindowUpdate
GetMonitorInfoW
GetMenu
EndPaint
InflateRect
RemoveMenu
EnableMenuItem
GetWindowTextW
DefMDIChildProcW
GetDlgCtrlID
GetClientRect
TranslateAcceleratorW
TrackPopupMenuEx
LoadImageW
DialogBoxParamW
LoadStringW
CharNextW
CallNextHookEx
FindWindowW
GetSystemMetrics
RedrawWindow
SetParent
GetActiveWindow
GetWindowRect
GetParent
ShowScrollBar
MessageBeep
GetDesktopWindow
DestroyWindow
DrawFrameControl
GetWindowLongW
SetTimer
wvsprintfW
SetScrollInfo
GetClassLongW
MessageBoxW

gdi32

Rectangle
GetDeviceCaps
SaveDC
GetClipBox
DeleteObject
DeleteDC
SetBkColor
CreateFontW
RealizePalette
MoveToEx
GetClipRgn
SetBrushOrgEx
SetTextColor
DPtoLP
GetTextExtentPointW
CreateCompatibleDC
ExtTextOutW
BitBlt
GetObjectW
IntersectClipRect
RestoreDC
TextOutW
SelectObject
CreateRectRgn
CreateBitmap
CreatePalette
PatBlt
SetBkMode
SetViewportOrgEx
Polygon
LPtoDP
GetTextExtentPoint32W
CreateDIBSection
CreatePen
SetPolyFillMode
Polyline
SelectClipRgn
CreateCompatibleBitmap
GetTextMetricsW
SetWindowOrgEx
LineTo
SelectPalette
GetViewportOrgEx
CreateFontIndirectW
CreateSolidBrush
CreatePatternBrush
GetStockObject

comdlg32

ChooseFontW
GetSaveFileNameW
ChooseColorW
GetOpenFileNameW

advapi32

GetUserNameW
GetSecurityDescriptorControl
RegQueryInfoKeyW
GetSidIdentifierAuthority
AdjustTokenPrivileges
GetSecurityDescriptorDacl
RegSetValueExW
SetNamedSecurityInfoW
InitializeSecurityDescriptor
GetSidSubAuthorityCount
SetSecurityDescriptorDacl
IsTextUnicode
LookupPrivilegeValueW
RegGetKeySecurity
InitializeAcl
RegOpenKeyExW
RegDeleteKeyW
GetSecurityDescriptorGroup
RegEnumValueW
RegCreateKeyExW
RegUnLoadKeyW
RegRestoreKeyW
RegOpenKeyExA
CopySid
GetNamedSecurityInfoW
GetTokenInformation
RegConnectRegistryW
OpenProcessToken
RegQueryValueExA
RegCloseKey
RegReplaceKeyW
GetSecurityDescriptorOwner
RegLoadKeyW
GetLengthSid
RegSaveKeyW
RegEnumValueA
RegSetKeySecurity
RegDeleteValueW
RegQueryValueExW
MapGenericMask
RegEnumKeyExW
GetSecurityDescriptorSacl
GetSidSubAuthority

ole32

CoTaskMemAlloc
CoTaskMemFree

oleaut32

VarDecCmp
VarDecFromStr
SysFreeString
SystemTimeToVariantTime
VarUI4FromStr
VarR8FromStr
VarI4FromStr

msvcrt

_acmdln
time
rand
_stricmp
_purecall
__setusermatherr
_XcptFilter
_exit
strchr
__dllonexit
sprintf
__set_app_type
_ftol
atoi
fopen
_controlfp
_onexit
__CxxFrameHandler
wcslen
memmove
__p__commode
_except_handler3
__getmainargs
exit
_strnicmp
localtime
fwrite
_i64toa
_setmbcp
atol
_adjust_fdiv
strncmp
_initterm
__p__fmode
fclose

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 23KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52ae7513ce4fcef8c3c352295c44f8df

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

msvcrt

Sections

.text Size: 105KB - Virtual size: 105KB

.data Size: 23KB - Virtual size: 185KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 105KB - Virtual size: 105KB

.data
Size: 23KB - Virtual size: 185KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB