abffde6f9abfe3507037654eec3bde8435103d10d7b81b0837b5eefa9d79af66

Sharing

Copy URL

Twitter E-mail

General

Target

abffde6f9abfe3507037654eec3bde8435103d10d7b81b0837b5eefa9d79af66
Size

283KB
MD5

781b939dd0c382c0973857620f1f6b70
SHA1

8b11852f9a78ae6eafe54f159de311afe3502045
SHA256

abffde6f9abfe3507037654eec3bde8435103d10d7b81b0837b5eefa9d79af66
SHA512

ca041f22b0072b1a4cc0198f3431b144730aa9b8e28490b4d3d9c2544d978e452808f55fa00e265df91af4fb0d154e41f1c0a49cb338021988267b4ecd818678
SSDEEP

3072:Ju9+qmVpF/HrzgZmt8FIxfzWjfBCCGS2jbxWGqD:Ju4qmVTYZV2CzBCCGSbGq

Score

N/A

Malware Config

Signatures

Files

abffde6f9abfe3507037654eec3bde8435103d10d7b81b0837b5eefa9d79af66
.exe windows x86

9f8768932da19b5dc5031d859d055c0e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
GetWindowsDirectoryW
GlobalAddAtomW
GlobalAlloc
GlobalDeleteAtom
GlobalFree
GlobalGetAtomNameW
GlobalLock
GlobalSize
GlobalUnlock
InitializeCriticalSection
IsBadCodePtr
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryW
LocalAlloc
LocalFree
LocalReAlloc
MapViewOfFile
GetTickCount
MultiByteToWideChar
QueryPerformanceCounter
SearchPathW
SetErrorMode
SetEvent
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
UnmapViewOfFile
WaitForSingleObject
WideCharToMultiByte
_lclose
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetStartupInfoA
GetProfileStringW
GetProfileIntW
GetProcAddress
GetPrivateProfileStringW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetLocaleInfoW
GetLastError
GetFileAttributesW
GetDriveTypeW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCommandLineW
GetACP
FreeLibrary
FormatMessageW
ExitThread
EnterCriticalSection
DeleteCriticalSection
CreateThread
CreateProcessW
CreateFileMappingW
CreateEventW
CloseHandle
ReadFile
GetCommandLineA
VirtualAlloc
ExitProcess
MulDiv
CreateFileW

user32

EndDialog
EqualRect
FillRect
FindWindowW
FrameRect
GetActiveWindow
GetAsyncKeyState
GetClassNameW
GetClientRect
DestroyMenu
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextW
GetFocus
GetKeyState
GetMenu
GetMenuItemCount
GetMessagePos
GetMessageW
GetParent
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetWindow
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextW
GetWindowThreadProcessId
InflateRect
InsertMenuW
IntersectRect
InvertRect
IsCharAlphaNumericW
IsCharAlphaW
IsDlgButtonChecked
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsW
LoadCursorW
LoadImageW
LoadMenuW
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MoveWindow
MsgWaitForMultipleObjects
OffsetRect
PeekMessageW
PostMessageW
PtInRect
RedrawWindow
RegisterClassW
RegisterClipboardFormatW
EndDeferWindowPos
ReleaseCapture
RemoveMenu
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCapture
SetCursor
SetDlgItemInt
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenu
SetParent
SetRect
SetRectEmpty
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
SetWindowsHookW
ShowCursor
SystemParametersInfoW
TranslateAcceleratorW
UnhookWindowsHook
UnregisterDeviceNotification
ValidateRect
WinHelpW
wsprintfA
wsprintfW
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
CreateWindowExW
CreateMenu
CopyRect
CopyAcceleratorTableW
ClientToScreen
CheckRadioButton
CheckMenuItem
CheckDlgButton
CharPrevW
CharLowerBuffW
CallWindowProcW
BringWindowToTop
BeginDeferWindowPos
AdjustWindowRect
GetDC
ReleaseDC
InvalidateRect
BeginPaint
EndPaint
PostQuitMessage
DefWindowProcA
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
EnableWindow
EnableMenuItem
DrawTextW
DrawMenuBar
DrawIconEx
DrawIcon
DispatchMessageW
DialogBoxParamW
RegisterDeviceNotificationW
DestroyWindow
DispatchMessageA
LoadIconW
GetDesktopWindow

gdi32

SetTextColor
Polyline
GetObjectW
DeleteObject
CreatePen
CreateFontIndirectW
SelectObject
GetTextMetricsA
SetBkMode
TextOutA
GetStockObject

advapi32

InitializeSecurityDescriptor
RegCloseKey
SetSecurityDescriptorDacl
ReportEventW
RegisterEventSourceW
RegSetValueExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyW
RegOpenKeyExA
ClearEventLogW
CloseEventLog
DeregisterEventSource
GetUserNameW
ReadEventLogW
IsTextUnicode
OpenEventLogW
RegCreateKeyExW

shell32

CommandLineToArgvW
ExtractIconExW

shlwapi

PathFindFileNameW
PathAppendW
PathQuoteSpacesW
PathRemoveFileSpecW
StrCmpW
StrToIntW

comctl32

CreateStatusWindowW
CreateToolbarEx

msvcrt

_XcptFilter
__getmainargs
__initenv
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_initterm
_snwprintf
_vsnwprintf
_wcsicmp
_wgetcwd
_wmakepath
_wsplitpath
_wtoi
_wtol
atoi
calloc
exit
free
isdigit
isprint
malloc
realloc
sprintf
strchr
swprintf
swscanf
tolower
wcscat
wcschr
wcscmp
wcscpy
wcslen
wcsncpy
wcsrchr
wprintf

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f8768932da19b5dc5031d859d055c0e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

shlwapi

comctl32

msvcrt

Sections

.text Size: 48KB - Virtual size: 47KB

.text2 Size: 1KB - Virtual size: 1KB

.data Size: 205KB - Virtual size: 205KB

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 47KB

.text2
Size: 1KB - Virtual size: 1KB

.data
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 2KB - Virtual size: 2KB