729be5a9d2715fa6baf0aa7cd3e46d3f8482cbd340fed2d17ae840c9781ed601

Sharing

Copy URL Twitter E-mail

General

Target

729be5a9d2715fa6baf0aa7cd3e46d3f8482cbd340fed2d17ae840c9781ed601
Size

150KB
MD5

a253caecf7e4053fdbf849c83ea08adf
SHA1

723a2d3e690c653b3a188a50eb4a591b09493afc
SHA256

729be5a9d2715fa6baf0aa7cd3e46d3f8482cbd340fed2d17ae840c9781ed601
SHA512

ae28d5c6a766071bb7c8a2e7b4988b808140b04001791f4eb4cdd26fb62bc7fbad114bab8117a16bd9d79a44cf5dbd77b924be2d28d78b88afdaf80f63a24e00
SSDEEP

3072:GiapvLDGAHAl2bkjuBAQ18fqwf+n32uC1NaS5STUq8Cg7hltEtL0J5IbE:Gi3AhkjuH8funmGkST7TtL0J5

Score

N/A

Malware Config

Signatures

Files

729be5a9d2715fa6baf0aa7cd3e46d3f8482cbd340fed2d17ae840c9781ed601
.exe windows x86

fb36999625e522f80c02731aa3002a99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CompareStringW
CopyFileA
CreateDirectoryA
CreateEventA
CreateEventW
CreateProcessW
CreateThread
DeleteFileW
DisableThreadLibraryCalls
DuplicateHandle
EnterCriticalSection
FileTimeToLocalFileTime
FindFirstFileW
FindNextFileW
FreeEnvironmentStringsA
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceA
GetDriveTypeA
GetEnvironmentStringsW
GetExitCodeThread
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetLocaleInfoA
GetLocaleInfoW
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetThreadLocale
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetVersion
GetWindowsDirectoryA
GlobalFindAtomA
HeapDestroy
HeapSize
InitializeCriticalSection
InterlockedExchange
IsBadReadPtr
IsValidCodePage
LCMapStringW
LoadLibraryExW
LocalAlloc
LocalFree
LockResource
MoveFileA
MulDiv
OutputDebugStringA
RaiseException
ReadFile
RemoveDirectoryA
ResetEvent
SetErrorMode
SetFileAttributesW
SetFilePointer
SetStdHandle
SetThreadPriority
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
WriteConsoleA
WriteFile
WritePrivateProfileStringA
lstrcatA
lstrcmpiW
lstrlenW

user32

BeginPaint
CallNextHookEx
CharLowerA
ClientToScreen
CloseClipboard
CreateWindowExA
DefWindowProcA
DeleteMenu
DestroyIcon
DestroyMenu
DispatchMessageA
DrawIcon
DrawMenuBar
DrawTextA
EmptyClipboard
FillRect
GetClientRect
GetCursorPos
GetDC
GetDlgItem
GetForegroundWindow
GetLastActivePopup
GetMenu
GetMenuItemID
GetMenuStringA
GetMessageA
GetParent
GetPropA
GetScrollRange
GetSubMenu
GetSystemMetrics
GetTopWindow
GetWindow
GetWindowDC
GetWindowTextA
GetWindowThreadProcessId
InsertMenuA
InsertMenuItemA
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
LoadBitmapA
LoadIconA
LoadStringA
MessageBoxA
OffsetRect
PeekMessageA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseDC
RemoveMenu
RemovePropA
SendDlgItemMessageA
SendMessageA
SetActiveWindow
SetCapture
SetClipboardData
SetMenu
SetScrollInfo
SetTimer
SetWindowLongA
SetWindowTextA
ShowCursor
ShowOwnedPopups
ShowWindow
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UpdateWindow
WindowFromPoint

gdi32

Arc
BeginPath
Chord
CopyMetaFileA
CopyMetaFileW
CreateCompatibleBitmap
CreateDIBSection
CreateDIBitmap
CreateEllipticRgn
CreateHalftonePalette
CreateICA
CreatePalette
CreateRectRgnIndirect
CreateSolidBrush
EndDoc
EndPath
EnumFontFamiliesA
EnumFontFamiliesW
EnumMetaFile
Escape
ExcludeClipRect
ExtCreateRegion
FillPath
FillRgn
GdiFlush
GetBitmapBits
GetBkColor
GetEnhMetaFileBits
GetMapMode
GetObjectW
GetPaletteEntries
GetRegionData
GetSystemPaletteEntries
GetTextExtentExPointW
GetTextExtentPoint32A
GetTextFaceW
GetTextMetricsA
GetWindowExtEx
IntersectClipRect
LPtoDP
LineDDA
OffsetClipRgn
PatBlt
Pie
PlayEnhMetaFile
PlayMetaFile
Polygon
Polyline
RectVisible
RestoreDC
RoundRect
SaveDC
SelectClipPath
SelectClipRgn
SetAbortProc
SetBkColor
SetBrushOrgEx
SetDIBColorTable
SetDIBits
SetPolyFillMode
SetRectRgn
SetTextColor
SetViewportOrgEx
SetWinMetaFileBits
SetWindowExtEx
SetWindowOrgEx
StrokeAndFillPath
StrokePath
TranslateCharsetInfo
UnrealizeObject

shell32

DragAcceptFiles
DragQueryFile
DragQueryFileA
DragQueryFileW
DragQueryPoint
ExtractIconExA
ExtractIconExW
FindExecutableW
SHAppBarMessage
SHBindToParent
SHBrowseForFolderW
SHChangeNotify
SHCreateDirectoryExA
SHFileOperationA
SHFileOperationW
SHGetDesktopFolder
SHGetFileInfoA
SHGetFileInfoW
SHGetFolderLocation
SHGetFolderPathA
SHGetFolderPathW
SHGetMalloc
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSettings
SHGetSpecialFolderLocation
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
ShellExecuteA
ShellExecuteW

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
CreateStatusWindowA
DestroyPropertySheetPage
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_Draw
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetIcon
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Replace
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_Write
InitCommonControls
InitCommonControlsEx
InitializeFlatSB

advapi32

AdjustTokenPrivileges
CheckTokenMembership
CloseServiceHandle
ControlService
ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptCreateHash
CryptDestroyHash
CryptHashData
CryptReleaseContext
DeregisterEventSource
FreeSid
GetSecurityDescriptorDacl
GetTokenInformation
GetUserNameA
InitializeAcl
InitializeSecurityDescriptor
InitiateSystemShutdownA
IsValidSid
LookupPrivilegeValueA
LookupPrivilegeValueW
OpenSCManagerW
OpenServiceA
RegCloseKey
RegCreateKeyA
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExA
RegEnumKeyExW
RegEnumValueW
RegOpenKeyA
RegOpenKeyExA
RegQueryInfoKeyW
RegQueryValueA
RegQueryValueExW
RegSetValueExA
RegSetValueExW
RevertToSelf
SetSecurityDescriptorOwner

msvcrt

_Gettnames
__dllonexit
__p__fmode
__p__iob
_daylight
_filelengthi64
_getdrive
_hypot
_ismbcprint
_osver
_snwprintf
_strupr
_timezone
_wtoi64
clock
fopen
isdigit
mbstowcs
strspn
strtoul
vprintf
wctomb

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb36999625e522f80c02731aa3002a99

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

msvcrt

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 84KB - Virtual size: 84KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 16KB - Virtual size: 16KB