aab2b793a371f03c80f8fd52f83b77d8657e5d6e7535848e02d11a6c648ae791

Sharing

Copy URL

Twitter E-mail

General

Target

aab2b793a371f03c80f8fd52f83b77d8657e5d6e7535848e02d11a6c648ae791
Size

216KB
MD5

c888d6896ed28134da41431ab6dc2a30
SHA1

b3ecc5abf75ca1f3702e546c0f79d46568ec5e57
SHA256

aab2b793a371f03c80f8fd52f83b77d8657e5d6e7535848e02d11a6c648ae791
SHA512

df07c005d2194a69ecebb8d895d5b24e80a30419ecc3042771c920082959cadd578cdaf59f6e2e09ecade00a6a0e83f6af7b7267d2ca1ef252a1d2f4f0f67e10
SSDEEP

3072:c8KA3jYumWsF5uk7sCiRYvm5kR6SdGGu5hOUb1MZcDNKZ4wyH2q8TW+RwOmhh:cdAzwWEIBRYvmyASQGgwUb1MmXWGOm

Score

N/A

Malware Config

Signatures

Files

aab2b793a371f03c80f8fd52f83b77d8657e5d6e7535848e02d11a6c648ae791
.exe windows x86

6ecf76382609139b920ae441fa666252

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapWindowPoints
TranslateMessage
GetPropA
UnregisterHotKey
CreateMenu
DeferWindowPos
BeginDeferWindowPos
LoadIconA
OffsetRect
EndDialog
CloseClipboard
GetMessageA
LoadStringA
IsDialogMessageA
LoadBitmapA
CheckDlgButton
SetWindowTextA
GetIconInfo
RegisterWindowMessageA
GetSystemMetrics
DestroyMenu
BeginPaint
OpenClipboard
InvalidateRect
PostMessageA
ValidateRect

gdi32

GetStockObject
CreateFontA
PtVisible
GetPixel
CreateRectRgn
SelectClipRgn
LineTo
IntersectClipRect
SetBkMode
MoveToEx

ole32

CoCreateInstance
CLSIDFromString
CoInitialize
OleUninitialize
OleInitialize

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
QueryServiceStatus
OpenThreadToken
OpenServiceA
RegCloseKey
RegQueryValueExA
AllocateAndInitializeSid
FreeSid
OpenProcessToken
StartServiceCtrlDispatcherA
InitializeSecurityDescriptor
RegEnumKeyA
RegSetValueExA
RegisterServiceCtrlHandlerA
SetEntriesInAclA
SetSecurityDescriptorDacl
SetServiceStatus
DeleteService
GetTokenInformation
LookupPrivilegeValueA
OpenSCManagerA
RegOpenKeyA

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
ChooseFontA

comctl32

CreatePropertySheetPageA
ImageList_Draw
PropertySheetA
ord6
ImageList_LoadImageA

kernel32

WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
GetFileType
GetLastError
HeapCreate
VirtualFree
HeapFree
HeapReAlloc
HeapSize
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
GetLocaleInfoA
GetSystemInfo
LCMapStringA
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetHandleCount
SetTapePosition
VirtualProtect
GetModuleHandleA
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
WriteFile

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ecf76382609139b920ae441fa666252

Headers

File Characteristics

Imports

user32

gdi32

ole32

advapi32

comdlg32

comctl32

kernel32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 64KB - Virtual size: 485KB

.rsrc Size: 4KB - Virtual size: 336B

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 64KB - Virtual size: 485KB

.rsrc
Size: 4KB - Virtual size: 336B