920d657ff344eec0ceaf94a7bf52bb39d9c3c6edf0e887ed7f92271a25023739

Sharing

Copy URL Twitter E-mail

General

Target

920d657ff344eec0ceaf94a7bf52bb39d9c3c6edf0e887ed7f92271a25023739
Size

888KB
MD5

3c5d6af9a1f20563ba3fa965185afe54
SHA1

cd0359c0d794d84fd6a809493138fe02f6ebc4fc
SHA256

920d657ff344eec0ceaf94a7bf52bb39d9c3c6edf0e887ed7f92271a25023739
SHA512

6ec4320450262a46ad23270f2da5a31d0bb009e50d610e36a569be88f3920077b26bfa63110a1ff712a07b825c9ad335c5af851fb786b2e64edf1d757f02a349
SSDEEP

24576:0m4fQFxUErfuePMJ3rd+FW47xyeZed/jR83L:BtlrCJ7i7xyGed/jR8b

Score

N/A

Malware Config

Signatures

Files

920d657ff344eec0ceaf94a7bf52bb39d9c3c6edf0e887ed7f92271a25023739
.exe windows x86

27631da0fa2b4d981d757c480a6a4de8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragLeave
ImageList_Create
CreateStatusWindowW
InitCommonControlsEx
DestroyPropertySheetPage

kernel32

GetTimeZoneInformation
TlsSetValue
GetCPInfo
SetEnvironmentVariableA
MultiByteToWideChar
GetEnvironmentStringsW
QueryPerformanceCounter
LoadLibraryA
SetLastError
TerminateProcess
GetConsoleOutputCP
TlsAlloc
LeaveCriticalSection
IsValidCodePage
FreeEnvironmentStringsW
Sleep
HeapCreate
GetCurrentProcessId
GetConsoleMode
GetACP
GetModuleHandleW
ExitProcess
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
VirtualFree
GetStringTypeW
EnterCriticalSection
InterlockedExchange
FlushFileBuffers
GetModuleFileNameA
GetSystemTimeAsFileTime
GetTimeFormatA
HeapDestroy
GetFileType
HeapValidate
VirtualQuery
SetConsoleCtrlHandler
GetStdHandle
SetStdHandle
WaitForSingleObject
GetModuleHandleA
DebugBreak
LCMapStringA
GetCommandLineW
CompareStringA
GetStartupInfoA
RtlUnwind
GetStartupInfoW
IsBadReadPtr
HeapSize
GetTickCount
TlsGetValue
SetHandleCount
ReadFile
LocalFree
GetLocaleInfoA
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteConsoleW
WideCharToMultiByte
TlsFree
CreateFileA
GetStringTypeA
WriteConsoleA
InterlockedDecrement
VirtualAlloc
GetLastError
OutputDebugStringA
WriteFile
SetFilePointer
GetProcAddress
CreateMutexW
HeapAlloc
HeapFree
LCMapStringW
UnhandledExceptionFilter
LoadLibraryW
InitializeCriticalSection
CloseHandle
DeleteCriticalSection
OutputDebugStringW
RaiseException
InterlockedIncrement
GetOEMCP
GetConsoleCP
GetCurrentThreadId
CompareStringW
GetModuleFileNameW
GetDateFormatA
HeapReAlloc

ole32

CreateOleAdviseHolder
CoUninitialize
StringFromGUID2
OleUninitialize
CLSIDFromProgID
CreateStreamOnHGlobal
CoTaskMemFree
RegisterDragDrop
OleRegGetUserType
CLSIDFromString
OleRun
OleDuplicateData
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
CoCreateGuid
CoRegisterMessageFilter
OleInitialize
CoInitializeSecurity
CoTaskMemAlloc
OleLockRunning
OleGetClipboard
ReleaseStgMedium
CoRevokeClassObject
OleFlushClipboard
StringFromCLSID
CoRegisterClassObject

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegOpenKeyW

shlwapi

PathStripToRootA
PathFindExtensionA
PathAppendA

gdi32

GetTextColor
MoveToEx
CreateFontIndirectW
DeleteDC
EnumFontFamiliesExW
SetAbortProc
SetBkMode
SetMapMode
SetBkColor
CreateCompatibleBitmap
DeleteObject
SetWindowOrgEx
GetTextExtentPoint32W
GetObjectW
CombineRgn
GetBkMode
CreateRectRgn
GetDeviceCaps
CreatePen
GetDIBits
CreateDCW
CreateDIBSection
CreatePolygonRgn
GetStockObject
Rectangle
CreatePalette
StrokePath

user32

KillTimer
LoadCursorW
InflateRect
WindowFromPoint
LoadAcceleratorsW
SetWindowsHookExW
SetCapture
DefWindowProcW
CallNextHookEx
DestroyMenu
IsWindowEnabled
LoadBitmapW
RegisterClassExW
ShowWindow
LoadStringW
SetWindowPlacement
RegisterClassW
CreateWindowExW
MessageBoxW
DestroyWindow

shell32

DragQueryFileA
ExtractIconA

Sections

.text
Size: 224KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 500KB - Virtual size: 497KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27631da0fa2b4d981d757c480a6a4de8

Headers

File Characteristics

Imports

comctl32

kernel32

ole32

advapi32

shlwapi

gdi32

user32

shell32

Sections

.text Size: 224KB - Virtual size: 221KB

.rdata Size: 500KB - Virtual size: 497KB

.data Size: 104KB - Virtual size: 131KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 224KB - Virtual size: 221KB

.rdata
Size: 500KB - Virtual size: 497KB

.data
Size: 104KB - Virtual size: 131KB

.rsrc
Size: 56KB - Virtual size: 54KB