ad40a9d2dfc2f088c81c844da5a8a07b5c6ca726d38f5474794b251b057b4864

Sharing

Copy URL

Twitter E-mail

General

Target

ad40a9d2dfc2f088c81c844da5a8a07b5c6ca726d38f5474794b251b057b4864
Size

721KB
MD5

c5a230c4dac008be8ac90e2fb9f70b67
SHA1

48bf850787cfe22f20849d9a4c713c1ac83aefab
SHA256

ad40a9d2dfc2f088c81c844da5a8a07b5c6ca726d38f5474794b251b057b4864
SHA512

40042566af9c7239f548401760c89fe96af2a8044d1e13f6f401ff2ce88944d9edd743d1eab85afee9046b217edd5e9884f704a0f23b8a4c006a4d0343ef068a
SSDEEP

12288:aKuysfYcyvvvvoZRR8+lSHPXbuLaQtmvLp41EjXH9THXjFKn5W1zwzBW:aKuovvvvJZPru16uSD9T3weMW

Score

N/A

Malware Config

Signatures

Files

ad40a9d2dfc2f088c81c844da5a8a07b5c6ca726d38f5474794b251b057b4864
.exe windows x86

e5e9f01fa1c2794857fea56db7e2050b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
DeleteDC
SetTextColor
CreateCompatibleDC

oleaut32

VariantClear
SysFreeString
VariantInit
SysStringLen

user32

PeekMessageA
GetDC
GetCursorPos
DestroyWindow
GetParent
UpdateWindow
ShowWindow
EnableWindow
TranslateMessage
LoadStringA
EnableMenuItem
GetWindowLongA
CreateWindowExA
EndPaint
SetFocus
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
IsWindow
SetWindowLongA
EndDialog
SetWindowTextA
GetSubMenu
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
TrackPopupMenu
GetDesktopWindow
MessageBoxA
GetSysColor
SystemParametersInfoA
InvalidateRect
SendMessageA
GetClientRect
CallWindowProcA
GetFocus
ReleaseDC
SetCursor
SetWindowPos
PostQuitMessage
SetForegroundWindow
ReleaseCapture

kernel32

GetStdHandle
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
FindNextFileA
HeapDestroy
HeapFree
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
GetConsoleMode
GetLocaleInfoA
LocalAlloc
GetConsoleOutputCP
FreeEnvironmentStringsW
HeapSize
SetStdHandle
GetTempPathA
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
GetOEMCP
LocalFree
FormatMessageW
InitializeCriticalSection
LoadResource
GlobalLock
FindClose
TlsGetValue
FormatMessageA
SetLastError
InterlockedDecrement
GetModuleFileNameW
IsDebuggerPresent
FlushFileBuffers
GetCurrentThreadId
GetCommandLineA
GetCurrentThread
GetCurrentProcessId
GetTickCount
GetModuleHandleA
GetVersion
ExitProcess
GetLastError
HeapAlloc
GetProcessHeap
VirtualAlloc
FindResourceA
VirtualFree
HeapCreate
CreateProcessA
SizeofResource
GetModuleHandleW
GetACP
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
MapViewOfFile
RaiseException
InterlockedCompareExchange
lstrlenW
WideCharToMultiByte
GetCommandLineW
LockResource
GetEnvironmentStrings
FileTimeToLocalFileTime
CreateProcessW
Sleep
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
LoadLibraryA
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
ExpandEnvironmentStringsA
FindFirstFileW
ResetEvent
CompareStringA
lstrcpyA
FindNextFileW
lstrcmpA
CompareStringW
WaitForMultipleObjects
SetEvent
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
lstrcmpiW
GetVersionExA
TlsAlloc
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
WriteConsoleW
GetProcAddress
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
LeaveCriticalSection
GetLocalTime
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA

advapi32

RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyA

version

GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 675KB - Virtual size: 1001KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5e9f01fa1c2794857fea56db7e2050b

Headers

File Characteristics

Imports

gdi32

oleaut32

user32

kernel32

advapi32

version

Sections

.text Size: 675KB - Virtual size: 1001KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 19KB - Virtual size: 18KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 675KB - Virtual size: 1001KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 18KB - Virtual size: 18KB