62622b5dd25d0c081fb799a016ce00da8cd203336810e3dd56a86d1f60563727

Sharing

Copy URL Twitter E-mail

General

Target

62622b5dd25d0c081fb799a016ce00da8cd203336810e3dd56a86d1f60563727
Size

816KB
MD5

6830b370fd4ae179b2320f418eed7e22
SHA1

c064c708beb2f013e9698c155171e3bae8664741
SHA256

62622b5dd25d0c081fb799a016ce00da8cd203336810e3dd56a86d1f60563727
SHA512

a2b04e097129820ce6eb1844ec8e999715d522bf671b9f443a2812549e7f8cdd2212910d170b73df3c2fb17d2f6ac3e88ba25111e77ee0ede0b2a6898ea446e4
SSDEEP

24576:RJ69RWIiOCQ8ATmFb5jYhvzYu6lIgoplwsy3w:7eWIiOsAi/MhvzYuAIBDs

Score

N/A

Malware Config

Signatures

Files

62622b5dd25d0c081fb799a016ce00da8cd203336810e3dd56a86d1f60563727
.exe windows x86

9390e0bb3950aa49f475c59c2a3d4532

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcirt

?gcount@istream@@QBEHXZ
??6ostream@@QAEAAV0@J@Z
??_8stdiostream@@7Bostream@@@
?text@filebuf@@2HB
?snextc@streambuf@@QAEHXZ
??_Eistream_withassign@@UAEPAXI@Z
?sgetc@streambuf@@QAEHXZ
??_8ostream_withassign@@7B@
?clog@@3Vostream_withassign@@A
?iword@ios@@QBEAAJH@Z
?str@ostrstream@@QAEPADXZ
?ipfx@istream@@QAEHH@Z
??5istream@@QAEAAV0@AAN@Z
??_Eistream@@UAEPAXI@Z
?openprot@filebuf@@2HB
?seekoff@strstreambuf@@UAEJJW4seek_dir@ios@@H@Z
??4stdiobuf@@QAEAAV0@ABV0@@Z
?width@ios@@QAEHH@Z
?fd@ofstream@@QBEHXZ
??4istream_withassign@@QAEAAVistream@@ABV1@@Z
?put@ostream@@QAEAAV1@E@Z
?x_statebuf@ios@@0PAJA
?setmode@ofstream@@QAEHH@Z
??_Gstdiostream@@UAEPAXI@Z
?hex@@YAAAVios@@AAV1@@Z
?doallocate@streambuf@@MAEHXZ
??0ofstream@@QAE@HPADH@Z
??4ostrstream@@QAEAAV0@ABV0@@Z
?pbackfail@stdiobuf@@UAEHH@Z
??4ostream@@IAEAAV0@PAVstreambuf@@@Z
??_8stdiostream@@7Bistream@@@
?sh_write@filebuf@@2HB
??_Gfstream@@UAEPAXI@Z
??4exception@@QAEAAV0@ABV0@@Z
?setbuf@filebuf@@UAEPAVstreambuf@@PADH@Z
??_Gstdiobuf@@UAEPAXI@Z
?width@ios@@QBEHXZ
??6ostream@@QAEAAV0@C@Z
?gptr@streambuf@@IBEPADXZ
?setbuf@strstreambuf@@UAEPAVstreambuf@@PADH@Z
??_8iostream@@7Bostream@@@
??0fstream@@QAE@HPADH@Z
??0ofstream@@QAE@PBDHH@Z
?setbuf@fstream@@QAEPAVstreambuf@@PADH@Z
?fLockcInit@ios@@0HA
??0ostream@@IAE@ABV0@@Z
??_Eostream_withassign@@UAEPAXI@Z
??5istream@@QAEAAV0@P6AAAVios@@AAV1@@Z@Z
??0filebuf@@QAE@ABV0@@Z
?eof@ios@@QBEHXZ

atl

AtlModuleLoadTypeLib
AtlModuleUpdateRegistryFromResourceD
AtlWaitWithMessageLoop
AtlAxDialogBoxA
AtlAxCreateDialogW
AtlPixelToHiMetric
AtlModuleExtractCreateWndData
AtlAdvise
AtlModuleRevokeClassObjects
AtlModuleGetClassObject
AtlAxWinInit
AtlAxDialogBoxW
AtlIPersistPropertyBag_Load
AtlModuleUnregisterServer
AtlCreateTargetDC
AtlModuleAddCreateWndData
AtlInternalQueryInterface
AtlIPersistStreamInit_Save
AtlModuleRegisterServer
AtlAxAttachControl
AtlHiMetricToPixel
AtlRegisterClassCategoriesHelper
AtlIPersistStreamInit_Load
AtlModuleUnregisterServerEx
AtlAxCreateDialogA
AtlAxCreateControlEx
AtlGetVersion
AtlSetErrorInfo
AtlModuleUnRegisterTypeLib
AtlComPtrAssign
AtlModuleRegisterWndClassInfoA
AtlModuleRegisterTypeLib
AtlMarshalPtrInProc
AtlIPersistPropertyBag_Save

user32

GetWindowRgn
PaintMenuBar
GetClientRect
RecordShutdownReason
PtInRect
SetWindowLongA
SendDlgItemMessageA
PrintWindow
UserClientDllInitialize
SetTaskmanWindow
SetWindowsHookExA
DdeUninitialize
CheckMenuItem
MapDialogRect
ShowWindowAsync
ImpersonateDdeClientWindow
SetShellWindow
SetParent
LoadMenuW
IsRectEmpty
GetActiveWindow
DdeQueryConvInfo
CreateIconIndirect
RegisterRawInputDevices
CallMsgFilter
CreateDesktopW
DispatchMessageA
CalcMenuBar
FlashWindowEx
FindWindowW
DdeDisconnect
IsCharAlphaNumericW

kernel32

_hwrite
FindNextVolumeW
VirtualAlloc
SetFirmwareEnvironmentVariableW
MoveFileWithProgressW
GetNumberFormatW
CancelDeviceWakeupRequest
GetTickCount
Heap32ListNext
LoadLibraryA
SetComputerNameA
CreateJobObjectW
SetSystemTime
FatalAppExitW
GetTempFileNameW
QueryMemoryResourceNotification
GetCurrencyFormatA
InterlockedPopEntrySList
TerminateThread
GetConsoleFontSize
GetEnvironmentVariableA
SetConsoleTitleW
CopyFileExW
GetModuleHandleW
LockFileEx
NlsGetCacheUpdateCount
CreateMutexA
GetModuleHandleExA
GetModuleHandleA
VerSetConditionMask
LZInit
EnumResourceNamesA
IsValidCodePage
PeekConsoleInputW
GetStartupInfoA
GetStartupInfoW
GetConsoleAliasesLengthA
SetHandleContext
GetAtomNameA
VDMOperationStarted

advapi32

CredGetTargetInfoA
SystemFunction015
RegEnumKeyExW
A_SHAUpdate
ObjectOpenAuditAlarmW
WmiSetSingleInstanceA
ConvertAccessToSecurityDescriptorW
EqualDomainSid
GetServiceDisplayNameW
SystemFunction008
LsaSetTrustedDomainInformation
CryptGetKeyParam
RegSaveKeyExW
ElfChangeNotify
SetSecurityDescriptorControl
SetInformationCodeAuthzPolicyW
RemoveUsersFromEncryptedFile
SaferiIsExecutableFileType
RegRestoreKeyW
CryptDuplicateKey
QueryServiceObjectSecurity
SystemFunction013
ElfReportEventW
ClearEventLogW
LsaSetTrustedDomainInfoByName
LogonUserExA
InitiateSystemShutdownA

Sections

.text
Size: 382KB - Virtual size: 381KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9390e0bb3950aa49f475c59c2a3d4532

Headers

DLL Characteristics

File Characteristics

Imports

msvcirt

atl

user32

kernel32

advapi32

Sections

.text Size: 382KB - Virtual size: 381KB

.rdata Size: 129KB - Virtual size: 129KB

.data Size: 154KB - Virtual size: 1.5MB

.rsrc Size: 148KB - Virtual size: 147KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 382KB - Virtual size: 381KB

.rdata
Size: 129KB - Virtual size: 129KB

.data
Size: 154KB - Virtual size: 1.5MB

.rsrc
Size: 148KB - Virtual size: 147KB

.reloc
Size: 1KB - Virtual size: 1KB