2f1fd58bc3e069ed64bb3e2a0fe9937ea703e14c62f53f5193fa58a64c4a20d0

Sharing

Copy URL Twitter E-mail

General

Target

2f1fd58bc3e069ed64bb3e2a0fe9937ea703e14c62f53f5193fa58a64c4a20d0
Size

333KB
MD5

91ee856dde42b726810968d0eb9f9f37
SHA1

c4135e636c4a7c0a26920c24624664a967172bad
SHA256

2f1fd58bc3e069ed64bb3e2a0fe9937ea703e14c62f53f5193fa58a64c4a20d0
SHA512

b720b72718175fbddf82c2b8a1241593cc5a6dc950951fbf92c0a76829df399d75bc0fc7672cfc0efa966b6efdf510f7b5c78d60be987b6fbcdc851a61e8da5a
SSDEEP

6144:2eByceUXTPe6Kv5mJO69eyqcoqc8xwLXlGIasJmBDtulg+kb2kP0NH/eM8aQF7xt:2C7jWZYJ3HFoqBxwL1GdsMtXLy/t87Fn

Score

N/A

Malware Config

Signatures

Files

2f1fd58bc3e069ed64bb3e2a0fe9937ea703e14c62f53f5193fa58a64c4a20d0
.exe windows x86

139232d15ff9bcd8e9307a92518b6f23

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetTabbedTextExtentW
IsWindowVisible
GetDC
ReleaseDC
EndPaint
SetWindowTextW
SendInput
DispatchMessageW
GetSystemMetrics
IsCharAlphaNumericW
GetWindowRect
ExitWindowsEx
RegisterClassExW
GetClientRect
GetWindowThreadProcessId
DrawTextW
BeginPaint
MapWindowPoints
RegisterWindowMessageW
SetRectEmpty
GetDlgCtrlID
GetClassInfoExW
IsRectEmpty
GetClassInfoW
CloseClipboard
SetDlgItemTextW
GetSysColor
LoadImageW
CharUpperBuffW
SystemParametersInfoW
SetFocus
RedrawWindow
GetTopWindow
EmptyClipboard
GetDesktopWindow
OffsetRect
ReleaseCapture
GetCursorPos
DrawStateW
InvalidateRect
GetWindowDC
UpdateWindow
MoveWindow
UnhookWindowsHookEx
GetWindowTextLengthW
DefWindowProcW
SetCursor
GetCapture
PostMessageW
GetNextDlgTabItem
GetGUIThreadInfo
SendMessageW
ShowWindow
EnableWindow
GetClassNameW
LoadCursorW
IsIconic
SetClipboardData
SetParent
SetTimer
SetCapture
GetWindowLongW
GetWindowPlacement
GetSystemMenu
GetWindow
SetWindowsHookExW
FindWindowExW
OpenClipboard
IsDialogMessageW
CreateWindowExW
SetMenuDefaultItem
CreateDialogParamW
DialogBoxParamW
PtInRect
LoadBitmapW
GetFocus
GetDlgItem
DrawFocusRect
GetParent
MapDialogRect
CallWindowProcW
IsWindow
SetWindowPlacement
IsWindowEnabled
RegisterClassW
DestroyIcon
GetKeyState
DestroyWindow
AttachThreadInput
InflateRect
SetWindowLongW
UnregisterClassA
SetForegroundWindow
ScreenToClient
PostQuitMessage
SetWindowPos
EndDialog
DrawIconEx
CallNextHookEx
TranslateMessage
AppendMenuW
PostThreadMessageW
TabbedTextOutW
CopyRect
GetWindowTextW
PeekMessageW
GetForegroundWindow
GetActiveWindow
FlashWindow
GetMessageW
MessageBoxW
CharNextW
KillTimer

gdi32

GetTextExtentExPointW
SetROP2
CreateFontIndirectW
SelectObject
GetBkColor
CombineRgn
DeleteDC
RoundRect
CreateRectRgn
CreateCompatibleBitmap
CreateRectRgnIndirect
CreateCompatibleDC
SetTextColor
Polygon
GetObjectType
SetBkMode
GetClipRgn
CreateSolidBrush
PtInRegion
SetTextAlign
ExtCreatePen
SelectClipRgn
ExtTextOutW
SetBkColor
GetTextExtentPoint32W
GetTextMetricsW
CreatePen
GetStockObject
DeleteObject
GetDeviceCaps
SetViewportOrgEx
BitBlt
TextOutW
GetObjectW

kernel32

FindResourceW
GetACP
GetModuleHandleW
CreateThread
HeapSize
LocalFree
FindNextFileW
IsProcessorFeaturePresent
GlobalAlloc
HeapReAlloc
DeleteFileW
FlushInstructionCache
ResumeThread
lstrcmpW
FindResourceExW
lstrcpynW
EnterCriticalSection
GetDateFormatW
GetSystemTimeAsFileTime
VirtualFree
WaitForSingleObject
HeapFree
LoadResource
lstrcmpiW
GetCommandLineW
UnhandledExceptionFilter
LeaveCriticalSection
GetUserDefaultLangID
GlobalFree
TerminateThread
CloseHandle
GetTimeFormatW
FindFirstFileW
VirtualAlloc
GlobalUnlock
GetNumberFormatW
GlobalLock
FormatMessageW
FatalAppExitW
OpenEventW
GetDriveTypeW
LockResource
IsDebuggerPresent
SizeofResource
SetLastError
lstrcpyW
FindClose
MulDiv
ExpandEnvironmentStringsA
GetUserDefaultLCID
HeapAlloc
SetUnhandledExceptionFilter
RaiseException
lstrlenW
FreeLibrary
SetWaitableTimer
GetProcessHeap
DeleteCriticalSection
LoadLibraryExW
GetCurrentThreadId
WideCharToMultiByte
lstrlenA
HeapDestroy
WaitForMultipleObjects
GetThreadLocale
CreateEventW
LocalAlloc
CreateWaitableTimerW
SetErrorMode
VirtualAllocEx

advapi32

RegNotifyChangeKeyValue
RegSetValueExW
RegQueryValueExA
RegCreateKeyExW
RegOpenKeyExA
LookupPrivilegeValueW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
AdjustTokenPrivileges
OpenProcessToken

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHGetDesktopFolder
ShellExecuteExW

shlwapi

PathSetDlgItemPathW
StrChrW
StrRetToStrW
ColorAdjustLuma
PathRemoveFileSpecW
PathCompactPathExW
PathAppendW
PathAddExtensionW

comctl32

ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon
ImageList_AddMasked
_TrackMouseEvent
ImageList_GetIcon
InitCommonControlsEx
ImageList_Draw
ImageList_GetImageCount
ImageList_LoadImageW
ImageList_SetBkColor
LBItemFromPt
ImageList_DragShowNolock
ImageList_LoadImage
InitCommonControls
MenuHelp

oleaut32

SystemTimeToVariantTime
SafeArrayGetLBound
SysFreeString
LoadRegTypeLi
SafeArrayCopy
VariantTimeToSystemTime
SysAllocStringByteLen
SafeArrayDestroy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SysAllocStringLen
SafeArrayAccessData
VarBstrCmp
DispCallFunc
SafeArrayGetUBound
VariantInit
SysAllocString
SafeArrayLock
SafeArrayUnaccessData
LoadTypeLi
SysStringLen
SafeArrayGetVartype
VariantCopyInd
GetErrorInfo
SysStringByteLen
SafeArrayUnlock
VariantClear

msimg32

GradientFill
TransparentBlt
AlphaBlend

userenv

UnloadUserProfile

ole32

CoRevokeClassObject
CoCreateInstance
StringFromGUID2
CLSIDFromString
CoUninitialize
CreateStreamOnHGlobal
OleRun
CoResumeClassObjects
CoInitializeSecurity
CLSIDFromProgID
CoRegisterClassObject
CoInitialize

acledit

SedDiscretionaryAclEditor

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 294KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

139232d15ff9bcd8e9307a92518b6f23

Headers

File Characteristics

Imports

user32

gdi32

kernel32

advapi32

shell32

shlwapi

comctl32

oleaut32

msimg32

userenv

ole32

acledit

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 294KB - Virtual size: 351KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 294KB - Virtual size: 351KB

.rsrc
Size: 12KB - Virtual size: 11KB