c616b113a197bdf99561462320127d81120690d052e89e2dfb943211fe74fe2d

Sharing

Copy URL

Twitter E-mail

General

Target

c616b113a197bdf99561462320127d81120690d052e89e2dfb943211fe74fe2d
Size

848KB
MD5

69b93f43e4fb166dd0d50745917e72d4
SHA1

fa2d5f2fb0e4c568081bde3d898a9cf3c25144b2
SHA256

c616b113a197bdf99561462320127d81120690d052e89e2dfb943211fe74fe2d
SHA512

31b7ccb3ef0d5e9b1a2ffa3f8df23b4a9b9a76c409c72f53f5ab7407455c82f587c16f78ab92ab1d21bb6659ab2e67c9b802ead8e41804d8a9510d39b7aba9e3
SSDEEP

24576:liRLWoCRXbZfboI+SCtOCB5sWddNguHYR8Rf:liRaP1FbN+So5soMqRd

Score

N/A

Malware Config

Signatures

Files

c616b113a197bdf99561462320127d81120690d052e89e2dfb943211fe74fe2d
.exe windows x86

190547c57176f2f3e581ba8af6ebb74b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
VariantInit
SysFreeString
SysAllocStringLen
VariantClear

user32

SetForegroundWindow
PostQuitMessage
ReleaseDC
SetWindowPos
IsWindow
GetDC
SendMessageA
ScreenToClient
DestroyWindow
GetParent
UpdateWindow
ShowWindow
EnableWindow
TranslateMessage
IsWindowEnabled
LoadStringA
EnableMenuItem
RegisterClassA
GetWindowLongA
SetTimer
DispatchMessageA
EndPaint
SetFocus
PeekMessageA
BeginPaint
DefWindowProcA
MapWindowPoints
GetSystemMetrics
GetWindowRect
PostMessageA
ReleaseCapture
SetWindowLongA
EndDialog
SetWindowTextA
CheckMenuItem
GetSubMenu
CreateWindowExA
GetDlgItem
ClientToScreen
LoadCursorA
LoadIconA
GetDesktopWindow
GetFocus
MessageBoxA
GetSysColor
SystemParametersInfoA
IsWindowVisible
wsprintfA
InvalidateRect
GetClientRect
CallWindowProcA
SetCursor

kernel32

VirtualProtect
GetModuleFileNameW
lstrlenW
GetEnvironmentVariableA
GetFileType
IsDebuggerPresent
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
FindNextFileA
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetConsoleMode
GetLocaleInfoA
LocalAlloc
ExitProcess
LoadLibraryExW
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
WideCharToMultiByte
LoadLibraryW
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetEvent
LocalFree
InitializeCriticalSection
LoadResource
FindClose
TlsGetValue
FormatMessageA
GetUserDefaultLCID
GetCommandLineW
GetUserDefaultLangID
GetVersion
GetCurrentThreadId
GetLastError
GetSystemDefaultLCID
GetCurrentThread
GetCurrentProcess
GetCommandLineA
GetTickCount
GetCurrentProcessId
GetSystemDefaultLangID
GetModuleHandleW
VirtualAlloc
GetOEMCP
Sleep
VirtualFree
HeapCreate
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
InterlockedExchange
GetDiskFreeSpaceA
GetACP
lstrcpynA
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
LockResource
SizeofResource
RemoveDirectoryA
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
InterlockedIncrement
CreateFileA
TlsSetValue
HeapAlloc
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
WaitForMultipleObjects
FindFirstFileW
CreateFileMappingA
ResetEvent
CompareStringA
lstrcpyA
FindNextFileW
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
SetEndOfFile
CreateEventW
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
SetLastError

advapi32

RegCloseKey
RegDeleteKeyA
RegSetValueExW
RegQueryValueExW
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExW

gdi32

DeleteObject
SetBkColor
DeleteDC
GetStockObject
SetTextColor
CreateCompatibleDC
SelectObject
CreateSolidBrush
SetBkMode
GetDeviceCaps

ole32

CoUninitialize
CoCreateInstance

Sections

.text
Size: 15KB - Virtual size: 336KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 815KB - Virtual size: 814KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

190547c57176f2f3e581ba8af6ebb74b

Headers

File Characteristics

Imports

oleaut32

user32

kernel32

advapi32

gdi32

ole32

Sections

.text Size: 15KB - Virtual size: 336KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 815KB - Virtual size: 814KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 15KB - Virtual size: 336KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 815KB - Virtual size: 814KB

.rsrc
Size: 10KB - Virtual size: 9KB