756dbbc6ced117ed5f0fbf7d8ad0cf01c62a4def0e8a27516b5c879ddcc0c84e

Sharing

Copy URL Twitter E-mail

General

Target

756dbbc6ced117ed5f0fbf7d8ad0cf01c62a4def0e8a27516b5c879ddcc0c84e
Size

132KB
MD5

6df4b0275ef97860de6c394b7c0ba770
SHA1

446857a6ce13b1554c3a255f4227110c3cd2f506
SHA256

756dbbc6ced117ed5f0fbf7d8ad0cf01c62a4def0e8a27516b5c879ddcc0c84e
SHA512

a0483a63f772147a01ec3a33f25e130f0281dc1a5fecdd310ce5e05afa37c21fabd0cb597161306d4903704429aa1de44f52f6f64247c79c883ce8ad9bf7eb0b
SSDEEP

3072:Vh3dhc+2B7eyRN/a1F+MjxqDIoH+Fggvb+:VVdM7X/4doH+Fggv

Score

N/A

Malware Config

Signatures

Files

756dbbc6ced117ed5f0fbf7d8ad0cf01c62a4def0e8a27516b5c879ddcc0c84e
.exe windows x86

611c17738148787f458a1396ae486050

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
SetStdHandle
FindFirstChangeNotificationW
GetFileType
EnumSystemLocalesA
GetStringTypeW
GetFileAttributesExW
WinExec
LoadResource
Sleep
SizeofResource
CompareStringW
GetCurrentProcess
LCMapStringA
GetOEMCP
SetLastError
InterlockedIncrement
TerminateProcess
TlsFree
CreateFileW
ExitProcess
GetModuleHandleA
VirtualFree
WaitForSingleObject
lstrlenA
SystemTimeToTzSpecificLocalTime
GetStringTypeA
TlsSetValue
GetTempFileNameW
WriteConsoleW
LoadLibraryExW
InitializeCriticalSectionAndSpinCount
ExpandEnvironmentStringsW
GetModuleFileNameW
LoadLibraryA
lstrcmpW
InterlockedExchange
HeapFree
MultiByteToWideChar
SetHandleCount
VirtualQuery
WaitForMultipleObjects
VerLanguageNameW
GetVersion
GetModuleHandleW
lstrcpyW
DeleteCriticalSection
HeapSize
CopyFileW
OutputDebugStringW
HeapAlloc
GetDateFormatW
GetACP
ResetEvent
EnterCriticalSection
GetStartupInfoW
QueryPerformanceCounter
CompareStringA
WriteConsoleA
LockResource
lstrcpynA
LeaveCriticalSection
GetLocaleInfoA
CloseHandle
GetCommandLineW
VirtualAlloc
GetConsoleMode
LCMapStringW
IsValidLocale
WritePrivateProfileSectionW
CreateThread
MulDiv
IsDebuggerPresent
ReadFile
FindNextChangeNotification
OpenEventW
LocalFree
InterlockedDecrement
GetTempPathW
GetVersionExW
GetLastError
HeapDestroy
SetUnhandledExceptionFilter
WritePrivateProfileStringW
GetSystemDefaultLangID
GetCurrentThread
InitializeCriticalSection
GetConsoleCP
FormatMessageW
TlsGetValue
RaiseException
GetLocaleInfoW
GetPrivateProfileStringW
GetCurrentThreadId
GetFileSize
InterlockedCompareExchange
RtlUnwind
GetProcessHeap
HeapCreate
HeapReAlloc
lstrcatW
GetCPInfo
GetConsoleOutputCP
FlushInstructionCache
FreeLibrary
GetProcAddress
ExpandEnvironmentStringsA
GlobalAlloc
GlobalUnlock
CreateFileA
lstrcmpiW
GetStdHandle
GetComputerNameW
GlobalSize
LocalAlloc
lstrcpynW
UnhandledExceptionFilter
GetFileAttributesW
GetSystemDirectoryW
TlsAlloc
WideCharToMultiByte
DebugBreak
GetModuleFileNameA
FreeEnvironmentStringsW
LoadLibraryW
SetConsoleCtrlHandler
GetWindowsDirectoryW
SetEvent
GetPrivateProfileIntW
GetStartupInfoA
GetEnvironmentStringsW
lstrlenW
IsProcessorFeaturePresent
GetUserDefaultLCID
FindResourceW
GetDateFormatA
FatalAppExitA
IsValidCodePage
GetCurrentProcessId
FileTimeToSystemTime
GetTimeFormatA

user32

IntersectRect
RegisterClassExW
GetMenuStringW
DragDetect
DeferWindowPos
SetMenuDefaultItem
LockWindowUpdate
InvalidateRect
ClientToScreen
GetClientRect
GetScrollInfo
TranslateMessage
TranslateMDISysAccel
InflateRect
TranslateAcceleratorW
CallWindowProcW
GetWindowDC
IsWindow
GetWindowPlacement
DestroyWindow
LoadCursorW
GetWindowTextLengthW
CharLowerW
IsChild
SetDlgItemInt
GetMonitorInfoW
CreateWindowExW
DestroyMenu
GetDesktopWindow
GetKeyState
MoveWindow
EndDialog
GetWindow
ReleaseCapture
UnregisterClassW
EmptyClipboard
IsWindowEnabled
SetCaretPos
GetMessagePos
GetDlgItem
SetForegroundWindow
ScrollWindowEx
CopyRect
DispatchMessageW
GetWindowLongW
FillRect
CreateCaret
CloseClipboard
CharNextW
GetClassLongW
GetClassInfoExW
SystemParametersInfoW
LoadStringA
GetWindowLongA
GetMessageW
LoadBitmapW
SetClipboardData
DrawIconEx
MessageBeep
FindWindowW
GetMenu
LoadMenuW
SetWindowLongW
CreatePopupMenu
ModifyMenuW
FrameRect
DrawMenuBar
DrawEdge
GetWindowThreadProcessId
SetTimer
DrawTextW
GetWindowTextW
SetFocus
GetActiveWindow
ReleaseDC
MessageBoxW
MapWindowPoints
BringWindowToTop
UpdateWindow
GetMenuItemCount
InsertMenuW
CallNextHookEx
SetScrollPos
ShowCaret
AppendMenuW
TrackPopupMenuEx
GetWindowRect
GetCapture
GetDoubleClickTime
SetCapture
GetSystemMenu
SetMenuItemInfoW
LoadIconW
WindowFromPoint
DefFrameProcW
TrackPopupMenu
GetMenuItemInfoW
EnableWindow
RedrawWindow
SetRectEmpty
BeginPaint
SetWindowPos
PostQuitMessage
GetDlgItemTextW
SetMenu
UnhookWindowsHookEx
DialogBoxParamW
PtInRect
RegisterWindowMessageW
RegisterClassW
GetClassInfoW
SetDlgItemTextW
MonitorFromWindow
GetDlgCtrlID
GetSystemMetrics
UnregisterClassA
GetSysColorBrush
GetParent
OffsetRect
OpenClipboard
RegisterClipboardFormatW
EqualRect
SetWindowTextW
DefMDIChildProcW
RemoveMenu
GetSubMenu
BeginDeferWindowPos
SetWindowsHookExW
KillTimer
SetParent
GetMenuDefaultItem
LoadAcceleratorsW
IsWindowVisible
ScreenToClient
SetCursor
GetClassNameW
DrawFocusRect
ShowScrollBar
SendMessageW
AdjustWindowRectEx
IsMenu
LoadImageW
IsClipboardFormatAvailable
wvsprintfW
SetWindowPlacement
GetFocus
DrawFrameControl
GetMenuItemID
PostMessageW
GetDC
ShowWindow
PeekMessageW
GetCursorPos
LoadStringW
EndPaint
GetDlgItemInt
DestroyCaret
DefWindowProcW
SetScrollInfo
EndDeferWindowPos
EnableMenuItem

gdi32

Polyline
SetBkMode
RestoreDC
CreateRectRgn
LPtoDP
GetTextMetricsW
GetClipBox
SetBkColor
CreateFontW
DeleteDC
DPtoLP
BitBlt
CreatePen
ExtTextOutW
TextOutW
SetTextColor
PatBlt
CreateSolidBrush
SetBrushOrgEx
RealizePalette
GetTextExtentPointW
SelectPalette
GetStockObject
SaveDC
GetClipRgn
DeleteObject
GetDeviceCaps
IntersectClipRect
Rectangle
LineTo
CreatePatternBrush
CreateBitmap
SelectClipRgn
SetWindowOrgEx
CreateFontIndirectW
MoveToEx
GetViewportOrgEx
SelectObject
Polygon
SetViewportOrgEx
GetObjectW
CreateCompatibleBitmap
CreatePalette
CreateDIBSection
SetPolyFillMode
CreateCompatibleDC
GetTextExtentPoint32W

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseColorW
ChooseFontW

advapi32

RegGetKeySecurity
RegDeleteValueW
CopySid
RegEnumKeyExW
RegCreateKeyExW
InitializeSecurityDescriptor
RegRestoreKeyW
GetTokenInformation
RegSetValueExW
RegSaveKeyW
RegEnumValueA
IsTextUnicode
RegEnumValueW
GetSidSubAuthority
GetUserNameW
GetSidIdentifierAuthority
RegQueryValueExA
MapGenericMask
RegReplaceKeyW
RegOpenKeyExW
LookupPrivilegeValueW
OpenProcessToken
RegQueryValueExW
GetLengthSid
RegUnLoadKeyW
GetSecurityDescriptorDacl
AdjustTokenPrivileges
RegConnectRegistryW
InitializeAcl
GetSecurityDescriptorControl
RegLoadKeyW
GetNamedSecurityInfoW
GetSecurityDescriptorSacl
RegQueryInfoKeyW
SetSecurityDescriptorDacl
RegDeleteKeyW
RegSetKeySecurity
SetNamedSecurityInfoW
RegOpenKeyExA
GetSecurityDescriptorOwner
RegCloseKey
GetSidSubAuthorityCount
GetSecurityDescriptorGroup

oleaut32

VarR8FromStr
VarUI4FromStr
SysFreeString
SystemTimeToVariantTime
VarDecFromStr
VarI4FromStr
VarDecCmp

msacm32

acmDriverID

msvcrt

_CIatan

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

611c17738148787f458a1396ae486050

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

oleaut32

msacm32

msvcrt

Sections

.text Size: 64KB - Virtual size: 64KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 38KB - Virtual size: 72KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 64KB - Virtual size: 64KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 38KB - Virtual size: 72KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB