6817f62d80a8a40e0a6e8471fb592937e6d19329d632abfce4a117505677b5e1

Sharing

Copy URL Twitter E-mail

General

Target

6817f62d80a8a40e0a6e8471fb592937e6d19329d632abfce4a117505677b5e1
Size

179KB
MD5

ade50c7ef3e407c2e00cecdf111cb8fd
SHA1

f5b3bb7ba016c1c0e222d4709387074bd6761174
SHA256

6817f62d80a8a40e0a6e8471fb592937e6d19329d632abfce4a117505677b5e1
SHA512

91833fadfd30e00381f3aecc30fd5c937f655f809d9f6170a531b71071d04ee810394f985b196646b13b5a7775e511777e5c9e197b71d936a3ecc23876e25669
SSDEEP

3072:TUM0o+lMvjB1FeNvScMuS+vKy1GwsObhPhTzM4sLmzHmyqBbq:TZ1JLBGNNRwyPhTzM4sL6H/

Score

N/A

Malware Config

Signatures

Files

6817f62d80a8a40e0a6e8471fb592937e6d19329d632abfce4a117505677b5e1
.exe windows x86

e5f642e6ca6531ee1f78d2ef4feee8c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateFileMappingA
CreateProcessW
DisableThreadLibraryCalls
EnterCriticalSection
EnumCalendarInfoA
ExitThread
ExpandEnvironmentStringsA
FindClose
FindNextFileA
FindNextFileW
FindResourceW
FlushFileBuffers
FreeEnvironmentStringsW
GetCPInfo
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetEnvironmentStrings
GetEnvironmentVariableA
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetLocalTime
GetModuleHandleA
GetPrivateProfileStringA
GetStartupInfoW
GetStringTypeA
GetSystemDirectoryA
GetSystemTime
GetTempPathA
GetTempPathW
GetThreadLocale
GetUserDefaultLCID
GetVersion
GetWindowsDirectoryA
GlobalAddAtomA
GlobalAlloc
GlobalFindAtomA
GlobalFree
GlobalLock
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapDestroy
InterlockedCompareExchange
InterlockedIncrement
IsDBCSLeadByte
IsDebuggerPresent
IsValidCodePage
LCMapStringW
LoadLibraryA
LoadResource
LocalFree
MoveFileA
MultiByteToWideChar
ReleaseMutex
RemoveDirectoryA
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFileTime
SetLastError
SizeofResource
TerminateProcess
TlsFree
VirtualAlloc
lstrlenW

user32

CallWindowProcA
CharLowerA
CloseClipboard
CreateMenu
CreatePopupMenu
CreateWindowExA
DestroyWindow
DrawMenuBar
DrawTextA
EnableWindow
EndDialog
EqualRect
FindWindowA
FrameRect
GetDCEx
GetFocus
GetMenuState
GetMessagePos
GetScrollRange
GetSystemMetrics
GetTopWindow
GetWindowLongA
GetWindowPlacement
IntersectRect
InvalidateRect
IsDialogMessageA
IsWindowEnabled
KillTimer
MapWindowPoints
OemToCharA
PtInRect
ReleaseCapture
RemoveMenu
RemovePropA
ScrollWindow
SendDlgItemMessageA
SetCapture
SetForegroundWindow
SetScrollRange
SetWindowPlacement
SetWindowTextA
ShowCursor
ShowOwnedPopups
SystemParametersInfoA
UnregisterClassA
UpdateWindow
WaitMessage

gdi32

AbortDoc
Arc
CopyMetaFileW
CreateDIBSection
CreateICA
CreatePalette
CreateRectRgnIndirect
DPtoLP
DeleteEnhMetaFile
EnumFontFamiliesW
Escape
ExtCreatePen
ExtFloodFill
ExtTextOutW
FillPath
FrameRgn
GetBitmapBits
GetBrushOrgEx
GetClipRgn
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetNearestPaletteIndex
GetSystemPaletteEntries
GetTextExtentPoint32A
GetTextExtentPointA
GetTextExtentPointW
GetTextFaceW
GetWinMetaFileBits
LineDDA
MoveToEx
PlayEnhMetaFile
PlayMetaFileRecord
PtInRegion
RectInRegion
RectVisible
RemoveFontResourceA
SaveDC
ScaleViewportExtEx
SelectPalette
SetAbortProc
SetDIBits
SetGraphicsMode
SetTextJustification
SetViewportExtEx
SetWindowExtEx
StrokePath
TextOutW
TranslateCharsetInfo

shell32

CommandLineToArgvW
DragFinish
DragQueryFile
DragQueryPoint
ExtractIconExA
ExtractIconW
FindExecutableW
SHBindToParent
SHBrowseForFolder
SHBrowseForFolderW
SHChangeNotify
SHCreateDirectoryExA
SHCreateDirectoryExW
SHFileOperationW
SHGetDesktopFolder
SHGetFileInfo
SHGetFileInfoA
SHGetFileInfoW
SHGetFolderLocation
SHGetFolderPathA
SHGetPathFromIDListA
SHGetPathFromIDListW
ShellExecuteA
ShellExecuteEx
ShellExecuteExA
ShellExecuteW
Shell_NotifyIconW

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_Add
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_Draw
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_SetBkColor
InitCommonControlsEx
InitializeFlatSB

advapi32

CheckTokenMembership
ControlService
CryptReleaseContext
GetUserNameA
OpenSCManagerW
OpenThreadToken
RegCloseKey
RegCreateKeyA
RegEnumValueW
RegQueryInfoKeyA
RegQueryValueExW
RevertToSelf

ole32

CLSIDFromString
CoDisconnectObject
CoFreeUnusedLibraries
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CoRegisterClassObject
CoRegisterMessageFilter
CoUninitialize
CreateStreamOnHGlobal
OleFlushClipboard
OleInitialize
OleSetClipboard
OleUninitialize
StgCreateDocfileOnILockBytes
StgOpenStorage
StringFromGUID2

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5f642e6ca6531ee1f78d2ef4feee8c5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

ole32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 26KB - Virtual size: 28KB