958aeb38600ba81546efee17fd58cea856bfbf7e965ba5dbd9763cb6dccbe3ab

Sharing

Copy URL Twitter E-mail

General

Target

958aeb38600ba81546efee17fd58cea856bfbf7e965ba5dbd9763cb6dccbe3ab
Size

138KB
MD5

7493fde0af7a355eabb168a138a1971b
SHA1

13894012c0968116b412ac2290053236308b3ebc
SHA256

958aeb38600ba81546efee17fd58cea856bfbf7e965ba5dbd9763cb6dccbe3ab
SHA512

4c266317f2382c8db387f14077b55bf87212a787457065b9458a545a46e510b9794e5833923736f9e348a323a2895ac4aa05d69100b08c0f879332cb7254cdc5
SSDEEP

3072:utUL+QfguzkBkm8SGLfh2CsSQ7FPqcCe5G58Q7FfT8UtLxyQ9:QUL+yzDm8BfZsN1+fxdx

Score

N/A

Malware Config

Signatures

Files

958aeb38600ba81546efee17fd58cea856bfbf7e965ba5dbd9763cb6dccbe3ab
.exe windows x86

95e0bec86fe2f35c83b605124d7608dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetShellWindowEx
LoadCursorA
GetTitleBarInfo
PtInRect
SetMenuDefaultItem
GetClipboardFormatNameA
ActivateKeyboardLayout
RegisterClassW
CreateMDIWindowA
CharToOemA
IsCharLowerA
DrawCaptionTempA
FreeDDElParam
LoadBitmapA
GetWindowRgnBox
DdeFreeStringHandle
InsertMenuItemW
RegisterRawInputDevices
CharPrevA
GetGUIThreadInfo
DestroyMenu
SendInput
DrawFocusRect
SendIMEMessageExW
InvalidateRect
LoadImageA
CreateWindowStationW
SetScrollInfo
SetWindowTextW
GetDlgItem
GetTabbedTextExtentW
GetAltTabInfoA
GetMenuBarInfo
CreateDialogParamA
PrivateExtractIconExA
GetMenuItemInfoA
GetNextDlgTabItem
MoveWindow
CreatePopupMenu
GetKBCodePage
CountClipboardFormats
CallWindowProcW

adsldpc

?SetFSlashDisabler@CLexer@@QAEXH@Z
ADsWriteClassDefinition
intcmp
??1CLexer@@QAE@XZ
LdapCloseObject
LdapReadAttribute
LdapValueFreeLen
ADSISetSearchPreference
LdapcSetStickyServer
ADSIFreeColumn
LdapCacheAddRef
LdapTypeToAdsTypeDNWithString
LdapOpenObject
LdapGetSchemaObjectCount
LdapTypeToAdsTypeDNWithBinary
ADsEnumClasses
LdapCountEntries
ADSICreateDSObject
LdapGetValuesLen
BuildADsParentPathFromObjectInfo2
SchemaGetSyntaxOfAttribute
ReallocADsStr
MapADSTypeToLDAPType
ADsGetFirstRow
LdapIsClassNameValidOnServer
ADsDeleteDSObject
GetDefaultServer
LdapReadAttribute2
IsGCNamespace
LdapSearchInitPage
AdsTypeToLdapTypeCopyTime

msi

MsiGetShortcutTargetW
MsiQueryFeatureStateFromDescriptorA
MsiProvideQualifiedComponentA
MsiAdvertiseScriptA
MsiInstallMissingFileA
MsiQueryFeatureStateA
MsiQueryFeatureStateFromDescriptorW
MsiViewGetErrorA
MsiSequenceA
MsiGetUserInfoA
MsiGetMode
MsiCreateRecord
MsiViewGetColumnInfo
MsiGetLastErrorRecord
MsiGetPropertyW
MsiProcessMessage
MsiGetSourcePathW
MsiSetTargetPathW
MsiIsProductElevatedA
MsiGetFileVersionW
MsiEnumClientsA
MsiRecordIsNull
MsiEnumComponentsW
MsiSummaryInfoSetPropertyW
MsiNotifySidChangeW
MsiProvideQualifiedComponentW
MsiSummaryInfoGetPropertyCount
MsiQueryFeatureStateW

kernel32

HeapUnlock
RtlZeroMemory
GetConsoleNlsMode
SetEnvironmentVariableW
ConnectNamedPipe
UnregisterWait
GetQueuedCompletionStatus
EnumDateFormatsA
OpenProfileUserMapping
VirtualAlloc
ContinueDebugEvent
DosPathToSessionPathA
GetVersionExA
GetProfileStringA
InvalidateConsoleDIBits
OutputDebugStringW
WriteFileEx
EnumResourceLanguagesW
CallNamedPipeA
VirtualFree
OpenFileMappingA
GetFileAttributesExW
GetProfileIntW
DeleteTimerQueue
FindFirstFileExA
GetStartupInfoW
GetThreadPriority
MapUserPhysicalPagesScatter
SetConsoleOutputCP
RtlCaptureStackBackTrace
MoveFileWithProgressW
HeapAlloc
LoadLibraryA
FindNextFileW
InitAtomTable
GetLocaleInfoW
SetMessageWaitingIndicator
GetVersionExW
GetConsoleCommandHistoryLengthA
GetConsoleCommandHistoryLengthW
SetHandleContext
DosDateTimeToFileTime
BaseCheckAppcompatCache
HeapCreate
LocalAlloc
GetCPInfoExA
IsBadCodePtr
FindVolumeClose

opengl32

glTexCoord4i
glTexCoord1i
glVertex3d
glTexCoordPointer
glRasterPos2fv
glMapGrid2d
glTexGenfv
glTexCoord2sv
wglShareLists
glTexCoord3i
glTexSubImage2D
glClear
glColorMask
wglCreateContext
glRasterPos3sv
glGetPixelMapfv
glColor4ub
glHint
glLogicOp
glDeleteTextures
glLoadIdentity
glListBase
wglDescribePixelFormat
glGetTexGenfv
glRasterPos2sv
glFlush

msvcirt

??_Eios@@UAEPAXI@Z
??0filebuf@@QAE@XZ
??4ostream@@IAEAAV0@PAVstreambuf@@@Z
?flush@@YAAAVostream@@AAV1@@Z
??_7istream_withassign@@6B@
??_Giostream@@UAEPAXI@Z
?good@ios@@QBEHXZ
?underflow@filebuf@@UAEHXZ
??0strstream@@QAE@PADHH@Z
??0istream_withassign@@QAE@XZ
?is_open@ofstream@@QBEHXZ
??0ifstream@@QAE@XZ
??0ofstream@@QAE@XZ
??0filebuf@@QAE@ABV0@@Z
?open@fstream@@QAEXPBDHH@Z
??_Eiostream@@UAEPAXI@Z
??4stdiostream@@QAEAAV0@AAV0@@Z
??1strstreambuf@@UAE@XZ
??1stdiobuf@@UAE@XZ
?peek@istream@@QAEHXZ
??6ostream@@QAEAAV0@F@Z
??1ofstream@@UAE@XZ
??_8strstream@@7Bostream@@@
??0ofstream@@QAE@ABV0@@Z
??5istream@@QAEAAV0@AAJ@Z
?seekoff@stdiobuf@@UAEJJW4seek_dir@ios@@H@Z
??6ostream@@QAEAAV0@PBC@Z
??_Distream@@QAEXXZ
?getline@istream@@QAEAAV1@PAEHD@Z
?setbuf@strstreambuf@@UAEPAVstreambuf@@PADH@Z
??4ostream_withassign@@QAEAAVostream@@ABV1@@Z
?ipfx@istream@@QAEHH@Z
?writepad@ostream@@AAEAAV1@PBD0@Z
??_Efilebuf@@UAEPAXI@Z
??1ostrstream@@UAE@XZ
?seekoff@filebuf@@UAEJJW4seek_dir@ios@@H@Z

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95e0bec86fe2f35c83b605124d7608dc

Headers

DLL Characteristics

File Characteristics

Imports

user32

adsldpc

msi

kernel32

opengl32

msvcirt

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 57KB - Virtual size: 177KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 228B

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 57KB - Virtual size: 177KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 228B