12e039b78059414639cee5aade94aa602a4fa1860a3fdc7a1a9d0c7bff20378b

General

Target

12e039b78059414639cee5aade94aa602a4fa1860a3fdc7a1a9d0c7bff20378b
Size

10.8MB
MD5

729c4109b22489ccbb40e370fa94321b
SHA1

7f7a6f8c1e79e5a102d1ebae43eac79820acb70a
SHA256

12e039b78059414639cee5aade94aa602a4fa1860a3fdc7a1a9d0c7bff20378b
SHA512

0b7a51031a6c234c0a8f8d34497212542d03ea22583d6a697bdb48ac83f3b7ec07e1a2c61d1aca34d7cee4379d6faf33735ab86fedee0f996d48b15b3caefd0f
SSDEEP

196608:OJCUYuCtpxkCd9kdJgUPaPlUEj0M8LWymBwaKBC4vLcv3BDDH28D3I4gV0rT:I/TzPcUEj0M8LWyt/Um23BvH28DY+T

Score

N/A

Malware Config

Signatures

Files

12e039b78059414639cee5aade94aa602a4fa1860a3fdc7a1a9d0c7bff20378b
.exe windows x86

3d1ad404fff5aced37848e93788ba257

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CheckDlgButton
SetForegroundWindow
DestroyMenu
DefWindowProcW
PtInRect
TranslateMessage
PostQuitMessage
SetFocus
IsWindowVisible
BeginPaint
GetCursorPos
SetCursor
IsWindow
UnregisterClassA
GetSubMenu
GetFocus
GetWindowTextW
RegisterClassW
GetActiveWindow
MoveWindow
DestroyWindow

kernel32

lstrcmpiW
DeleteCriticalSection
GlobalFree
SetFilePointer
InterlockedExchange
RtlUnwind
SetUnhandledExceptionFilter
IsDebuggerPresent
ResetEvent
FormatMessageW
GetEnvironmentStrings
SetEvent
CreateEventW
GetFileType
Sleep
GetCommandLineW
HeapCreate
VirtualQueryEx
OpenEventA
_llseek

gdi32

CreatePalette
CreateSolidBrush
GetTextExtentPoint32W
CreateRectRgn
SetROP2
SaveDC

advapi32

LookupPrivilegeValueW
ImpersonateLoggedOnUser
AddAccessAllowedAce
RegQueryInfoKeyA
RegEnumValueA
RegisterEventSourceW
GetSecurityDescriptorLength
ChangeServiceConfigW
CloseServiceHandle
CryptSetKeyParam
CryptExportKey

Sections

.cod
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdat
Size: 67KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d1ad404fff5aced37848e93788ba257

Headers

File Characteristics

Imports

user32

kernel32

gdi32

advapi32

Sections

.cod Size: 4.0MB - Virtual size: 4.0MB

.rdat Size: 67KB - Virtual size: 71KB

.tls Size: 1024B - Virtual size: 2KB

.rsrc Size: 76KB - Virtual size: 76KB

.cod
Size: 4.0MB - Virtual size: 4.0MB

.rdat
Size: 67KB - Virtual size: 71KB

.tls
Size: 1024B - Virtual size: 2KB

.rsrc
Size: 76KB - Virtual size: 76KB