ddc767c14809b5f0927ba649da49900147502d882fb4dc2cfb6db36ce3691335

Sharing

Copy URL

Twitter E-mail

General

Target

ddc767c14809b5f0927ba649da49900147502d882fb4dc2cfb6db36ce3691335
Size

169KB
MD5

e134039acf65d3bc3cef3b21cabf9b33
SHA1

14a942a0d5a28a78ba290843e2a1d499b44d5543
SHA256

ddc767c14809b5f0927ba649da49900147502d882fb4dc2cfb6db36ce3691335
SHA512

dc6ce170d315f15e299dbc716816807270ff98b91efe7a0de27788ace69090314c4a08169be6323b53e5d9dc807d8018ef89e7bb0d017ee8111b6b457c2245c7
SSDEEP

3072:I2s3s4MucnZ0gXu58aWIjx18G3AKXoyGtUoqdqLvbFj8QauU+:8ixXu5AIb8GwKXg/2qL1t9r

Score

N/A

Malware Config

Signatures

Files

ddc767c14809b5f0927ba649da49900147502d882fb4dc2cfb6db36ce3691335
.exe windows x86

ff906cb99f653d9f21a1e37d16216071

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptCreateHash
LookupAccountNameW
ControlService
RegDeleteKeyA
RegQueryInfoKeyA
CryptHashData
OpenEventLogW
InitializeAcl
CryptDestroyKey
RegCreateKeyExW
GetLengthSid
RegEnumKeyW
SetServiceStatus

kernel32

SetHandleCount
GlobalGetAtomNameW
GetSystemTimeAsFileTime
GetTempFileNameA
LocalUnlock
DeleteFileW
GlobalFlags
MoveFileA
DeleteFileA
GetPrivateProfileIntW
GetVersionExW
GetCommModemStatus
GetStringTypeExW
GetFileType
GetFileAttributesExW
CancelIo
ReleaseSemaphore
GetCommandLineA
CreateEventA
FindClose
GetLocaleInfoA
PulseEvent
SetFileApisToOEM
GetComputerNameA
GetFullPathNameA
RemoveDirectoryW
FindNextChangeNotification
CopyFileW
SetSystemTime
FindResourceExA
GetCurrentThreadId
GlobalCompact
SetThreadAffinityMask
GetThreadContext
CreateEventW
RtlUnwind
GlobalAddAtomA
SetCommState
GetBinaryTypeW
CreatePipe
GetCurrentDirectoryW
GetSystemInfo
CreateMutexW
DefineDosDeviceW
CreateWaitableTimerA
SuspendThread
SetUnhandledExceptionFilter
SetPriorityClass
GetAtomNameA
GetFileSize
GetNumberFormatW
HeapAlloc
SetMailslotInfo
GetCurrentThread
SetFileAttributesA
TransactNamedPipe
GetSystemDefaultUILanguage
QueryDosDeviceW
EscapeCommFunction
GetTimeZoneInformation
GetComputerNameW
lstrcpyA
IsBadReadPtr
GetFileAttributesExA
WaitCommEvent
HeapCreate
IsBadWritePtr
lstrcpynA
Sleep
GlobalGetAtomNameA
RegisterWaitForSingleObject
GetSystemTime
SetFileAttributesW
lstrcmpA
lstrlenW
SetErrorMode
GetACP
GetOEMCP
EnumResourceNamesW
CreateRemoteThread
RemoveDirectoryA
GetStdHandle
GetCompressedFileSizeW
DeviceIoControl
CallNamedPipeW
GetShortPathNameA
lstrlenA
SetThreadExecutionState
OpenFile
FindNextFileA
LoadLibraryW
GetSystemDirectoryA
GetSystemWindowsDirectoryW
GetVersion
GetWindowsDirectoryW
FindResourceA
lstrcmpiW

gdi32

FillRgn
GetTextExtentExPointW
SelectClipRgn
OffsetRgn
GetTextMetricsW
SetTextColor
SelectObject
CreateRectRgnIndirect
StretchBlt
GetDeviceCaps
GetObjectW
OffsetViewportOrgEx
BitBlt
StartDocW
IntersectClipRect
SetRectRgn
SetTextAlign
GetTextFaceW
GetROP2
CreatePalette
EndDoc
GetLayout
GetSystemPaletteEntries
GetRgnBox
BeginPath
GetTextMetricsA
CreateFontW
GetStockObject
SetBkColor
ExtFloodFill
DeleteObject
GetTextAlign
UnrealizeObject
LineTo
GetNearestColor
SetPaletteEntries
PathToRegion
SetMapMode
SetStretchBltMode
CreateCompatibleDC
GetFontData
CreateRectRgn
GetPaletteEntries
RestoreDC

ole32

CoCreateGuid

rpcrt4

NdrServerInitialize

atl

AtlComPtrAssign

user32

DrawStateW
GetMenuItemRect
SetActiveWindow
LoadStringW
OffsetRect
SetCursorPos
SetWindowPlacement
MapDialogRect
CharNextW
GetMenuStringA
SetForegroundWindow
UnionRect
PeekMessageA
GetWindowTextA
LoadStringA
GetClassInfoExW
InternalGetWindowText
LoadAcceleratorsW
LoadBitmapA
CheckDlgButton
ExitWindowsEx
IsDialogMessageA
IsIconic
LoadBitmapW
GetMessageW
DrawIconEx
WaitForInputIdle
AdjustWindowRect
DeferWindowPos
CallWindowProcA
SetMenuItemBitmaps
GetScrollPos
CreatePopupMenu
SwitchToThisWindow
InvalidateRect
GetMonitorInfoW
IsCharLowerA
MessageBoxExA
MapVirtualKeyExW
RemoveMenu
GetDoubleClickTime
MessageBoxExW
ReleaseDC
RegisterClassExA
CheckMenuRadioItem
SetWindowLongA
GetPropW
DrawTextA
EnableScrollBar
TabbedTextOutW
GrayStringW
CopyImage
GetDlgCtrlID
DrawEdge
wsprintfW
DestroyWindow
IsCharAlphaNumericW
MapVirtualKeyA
DialogBoxParamW
TranslateAcceleratorW
GetDCEx
GetDlgItemTextA
DestroyCursor
EnumWindows
SetRect
GetKeyboardLayoutNameW
AppendMenuA
OemToCharA
MoveWindow
SendMessageW
GetClipCursor
CreateIconIndirect
CheckMenuItem
GetDC
PostThreadMessageW
LoadImageA
SetMenu
GetIconInfo
MessageBoxW
DispatchMessageW
PostMessageW
CharLowerA
LoadMenuA
DestroyCaret
SendInput
DrawAnimatedRects
SetWindowTextA
SetMenuDefaultItem
TileWindows
GetClassInfoA
SetParent
DragObject
CreateCaret
GetTopWindow
CharNextA
EndPaint
InvalidateRgn
IsCharAlphaW
ShowWindow
SetTimer
CharLowerBuffW
GetSysColor
IsZoomed
RegisterWindowMessageW
GetFocus

shlwapi

PathAddExtensionA

Exports

Exports

InsertAppNameOld

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Agio
Size: 7KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.musty
Size: 512B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Much
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lex
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sat
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fix
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oypac
Size: 512B - Virtual size: 335B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jibmed
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff906cb99f653d9f21a1e37d16216071

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

gdi32

ole32

rpcrt4

atl

user32

shlwapi

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 128KB

.Agio Size: 7KB - Virtual size: 11KB

.musty Size: 512B - Virtual size: 130B

.Much Size: 512B - Virtual size: 32B

.lex Size: 512B - Virtual size: 32B

.sat Size: 512B - Virtual size: 32B

.fix Size: 512B - Virtual size: 32B

.oypac Size: 512B - Virtual size: 335B

.jibmed Size: 22KB - Virtual size: 22KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 128KB - Virtual size: 128KB

.Agio
Size: 7KB - Virtual size: 11KB

.musty
Size: 512B - Virtual size: 130B

.Much
Size: 512B - Virtual size: 32B

.lex
Size: 512B - Virtual size: 32B

.sat
Size: 512B - Virtual size: 32B

.fix
Size: 512B - Virtual size: 32B

.oypac
Size: 512B - Virtual size: 335B

.jibmed
Size: 22KB - Virtual size: 22KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 4KB - Virtual size: 4KB