f881f29b376f970d89529c42f70cf292e311ed3bf5e807c340550d093664f132

Sharing

Copy URL

Twitter E-mail

General

Target

f881f29b376f970d89529c42f70cf292e311ed3bf5e807c340550d093664f132
Size

216KB
MD5

4da1065d599cbc5e92e91e49f6478018
SHA1

7f9d795418040e33797bdc43ac437d98c082c97c
SHA256

f881f29b376f970d89529c42f70cf292e311ed3bf5e807c340550d093664f132
SHA512

b34184e7e8a74f40a7372efd3e3c94e54d494ef3503df13e51256071143d3ba52dc7525aa06e809b4304a3dcd68e099ed09f517a7c8159b4c7e7e1f3476e9311
SSDEEP

3072:c8KA3jYumWsF5uk7sCiRYvm5kR6SdGGu5hOUb1MZcDNKZPGwyH2q8TW+RwOmhh:cdAzwWEIBRYvmyASQGgwUb1MmpWGOm

Score

N/A

Malware Config

Signatures

Files

f881f29b376f970d89529c42f70cf292e311ed3bf5e807c340550d093664f132
.exe windows x86

6ecf76382609139b920ae441fa666252

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapWindowPoints
TranslateMessage
GetPropA
UnregisterHotKey
CreateMenu
DeferWindowPos
BeginDeferWindowPos
LoadIconA
OffsetRect
EndDialog
CloseClipboard
GetMessageA
LoadStringA
IsDialogMessageA
LoadBitmapA
CheckDlgButton
SetWindowTextA
GetIconInfo
RegisterWindowMessageA
GetSystemMetrics
DestroyMenu
BeginPaint
OpenClipboard
InvalidateRect
PostMessageA
ValidateRect

gdi32

GetStockObject
CreateFontA
PtVisible
GetPixel
CreateRectRgn
SelectClipRgn
LineTo
IntersectClipRect
SetBkMode
MoveToEx

ole32

CoCreateInstance
CLSIDFromString
CoInitialize
OleUninitialize
OleInitialize

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
QueryServiceStatus
OpenThreadToken
OpenServiceA
RegCloseKey
RegQueryValueExA
AllocateAndInitializeSid
FreeSid
OpenProcessToken
StartServiceCtrlDispatcherA
InitializeSecurityDescriptor
RegEnumKeyA
RegSetValueExA
RegisterServiceCtrlHandlerA
SetEntriesInAclA
SetSecurityDescriptorDacl
SetServiceStatus
DeleteService
GetTokenInformation
LookupPrivilegeValueA
OpenSCManagerA
RegOpenKeyA

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
ChooseFontA

comctl32

CreatePropertySheetPageA
ImageList_Draw
PropertySheetA
ord6
ImageList_LoadImageA

kernel32

WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
GetFileType
GetLastError
HeapCreate
VirtualFree
HeapFree
HeapReAlloc
HeapSize
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
GetLocaleInfoA
GetSystemInfo
LCMapStringA
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetHandleCount
SetTapePosition
VirtualProtect
GetModuleHandleA
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
WriteFile

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ecf76382609139b920ae441fa666252

Headers

File Characteristics

Imports

user32

gdi32

ole32

advapi32

comdlg32

comctl32

kernel32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 64KB - Virtual size: 485KB

.rsrc Size: 4KB - Virtual size: 336B

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 64KB - Virtual size: 485KB

.rsrc
Size: 4KB - Virtual size: 336B