7f493925ec0a78da94da6c2ef3a5daeadc8110cd39bbb0a22799d907547e3200

Sharing

Copy URL Twitter E-mail

General

Target

7f493925ec0a78da94da6c2ef3a5daeadc8110cd39bbb0a22799d907547e3200
Size

280KB
MD5

74530d89a3f06b21e776b20d3bb0b040
SHA1

5b2ccc82b852006d1edae4aadf5d4e445e43a727
SHA256

7f493925ec0a78da94da6c2ef3a5daeadc8110cd39bbb0a22799d907547e3200
SHA512

69385a5de21ddd000c8683c42abc6efefe48bdecb451c27431fefbb571eaf5f0c73ff653a73cbba715b4021afb57e6d87e2652fca6cd50d3838fa2896ad0dfd1
SSDEEP

6144:pnMDxlO5MGTzRIGlV32VLJEkzSRXLf6x8OQPGg:pnFXzdlcVSJRXLf6x8P

Score

N/A

Malware Config

Signatures

Files

7f493925ec0a78da94da6c2ef3a5daeadc8110cd39bbb0a22799d907547e3200
.exe windows x86

508e806713105f66fd3a6e2c7e3103ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
GetConsoleMode
GetPrivateProfileStringW
FreeResource
SetEvent
EndUpdateResourceA
SwitchToFiber
IsBadReadPtr
GetTapeParameters
GetPrivateProfileSectionW
OpenFile
FindResourceExW
ExitProcess
GlobalUnlock
CreateDirectoryW
ClearCommBreak
WritePrivateProfileStringW
FreeLibraryAndExitThread
FindNextChangeNotification
VirtualAllocEx
GetFileAttributesA
CompareStringA
UnmapViewOfFile
_hread
VirtualLock
GetWindowsDirectoryA
CreateIoCompletionPort
OpenMutexA
SuspendThread
lstrcpynA
GetModuleFileNameW
ConnectNamedPipe
PulseEvent
RaiseException
FatalAppExitA
LocalFileTimeToFileTime
GetSystemTime
GlobalAddAtomW
GetProcessTimes
GetOEMCP
EnumDateFormatsW
EnumResourceNamesW
SetConsoleCursorPosition
FindFirstFileExW
SetCommTimeouts
lstrcatW
SetCommMask
SetProcessAffinityMask
WritePrivateProfileStructA
ExitThread
_lread
GetSystemTimeAsFileTime
GetCommModemStatus
FindFirstFileA
GetVersion
LoadResource
Beep
TryEnterCriticalSection
PurgeComm
LocalReAlloc
LeaveCriticalSection
GetDriveTypeA
AllocConsole
SetConsoleOutputCP
LCMapStringA
GetCompressedFileSizeW
GetShortPathNameW
SetConsoleActiveScreenBuffer
GlobalReAlloc
SetSystemTime
GetEnvironmentVariableW
ReleaseMutex
SetThreadLocale
GetPrivateProfileStringA
WriteFile
VirtualProtect
GetCommandLineA
lstrlenA
FormatMessageA
VirtualAlloc

user32

GetUpdateRect
MapVirtualKeyExW
ExitWindowsEx
CloseWindowStation
IsChild
TileWindows
UnhookWindowsHookEx
RegisterWindowMessageW
DefDlgProcA
MapVirtualKeyA
LookupIconIdFromDirectory
WaitMessage
ChangeDisplaySettingsA
OffsetRect
FindWindowW
SetProcessDefaultLayout
ClientToScreen
CreateCursor
RegisterClassA
CopyAcceleratorTableA
DialogBoxIndirectParamA
GetMenuState
GetWindowWord
WindowFromDC
KillTimer
GetKeyboardLayoutNameA
CharUpperA
GetPropW
InsertMenuItemW
SetWindowPos
CharNextW
InsertMenuW
SetRect
IsDialogMessageW
ShowWindowAsync
WaitForInputIdle
GetWindowTextLengthA

gdi32

TextOutW
SaveDC
CopyMetaFileA
SetPaletteEntries
CreateRoundRectRgn
StartPage
PlayEnhMetaFile
GetGlyphOutlineW
SetDIBitsToDevice

comdlg32

GetFileTitleW

advapi32

ChangeServiceConfigW
LookupAccountNameA
CryptGenRandom
RegQueryInfoKeyW
SetSecurityInfo
GetSecurityDescriptorDacl
RegDeleteKeyA
CryptHashData
BuildTrusteeWithNameW
CryptSetProvParam
SetPrivateObjectSecurity
RegisterServiceCtrlHandlerA
CryptExportKey
GetServiceDisplayNameW
NotifyChangeEventLog
RegEnumKeyExA
ReadEventLogW
GetServiceDisplayNameA
RevertToSelf
InitiateSystemShutdownW
LockServiceDatabase
GetSecurityInfo
RegEnumKeyExW
EqualSid
GetAclInformation

ole32

OleLockRunning

oleaut32

SafeArrayPutElement
VariantChangeType
SafeArrayRedim
QueryPathOfRegTypeLi
SysFreeString
SysStringLen
LoadTypeLibEx

comctl32

ImageList_GetDragImage
ImageList_GetBkColor

shlwapi

PathCanonicalizeA
SHSetValueA
StrCatW
UrlCombineW
wnsprintfA
StrChrA
HashData
PathStripPathA
PathIsSameRootW
SHSetThreadRef
PathIsDirectoryA
UrlCanonicalizeW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

508e806713105f66fd3a6e2c7e3103ab

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 264KB - Virtual size: 263KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 264KB - Virtual size: 263KB