2e57f779f98e22a2637d7ab10d2d4c1052e4b6ba48c54b5ce0d4a36efb58e7c2

Sharing

Copy URL

Twitter E-mail

General

Target

2e57f779f98e22a2637d7ab10d2d4c1052e4b6ba48c54b5ce0d4a36efb58e7c2
Size

348KB
MD5

c1503ded301cf6f20d9b7cee2fa9c0b9
SHA1

7708fa2d1fa33d1e4b7442a2b5d02cc2d0308330
SHA256

2e57f779f98e22a2637d7ab10d2d4c1052e4b6ba48c54b5ce0d4a36efb58e7c2
SHA512

6fea1f2e5c3320507cd19088330afc2d053c36ad4bc307bcead17de8bb6340c9c3f9209f91276098816e1e801ae4e6363529200b1f2bb1fd833df70fc2c2fa94
SSDEEP

6144:rmiTei6hG69LTReGEwUSjbfYT+MrmOV40hUVrHdJHTT+HOKzC:rmiTelhG6FdEwHjbfG+MqOV40OVrHbvL

Score

N/A

Malware Config

Signatures

Files

2e57f779f98e22a2637d7ab10d2d4c1052e4b6ba48c54b5ce0d4a36efb58e7c2
.exe windows x86

a027d5c1dad60b213146588504e8e5c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

ws2_32

inet_ntoa
WSACleanup
gethostbyname
gethostname
WSAStartup

kernel32

UnmapViewOfFile
GetFileSize
SetFilePointer
ReadFile
DeleteFileA
GetShortPathNameA
GetEnvironmentVariableA
LocalFree
LocalAlloc
Sleep
GetLastError
MapViewOfFile
CreateFileMappingA
WriteFile
SetEndOfFile
GetFileAttributesExA
SetFileAttributesA
CopyFileA
FindNextFileA
FindClose
FindFirstFileA
RemoveDirectoryA
CreateDirectoryA
MoveFileA
GetTempPathA
GetWindowsDirectoryA
GetLogicalDrives
GetFileAttributesA
SetThreadPriority
SetPriorityClass
GetCurrentThread
GetCurrentProcess
GetTempFileNameA
GetVersionExA
HeapFree
HeapAlloc
GetProcessHeap
CreateFileW
FindFirstFileW
MultiByteToWideChar
lstrlenA
GetDiskFreeSpaceA
GetUserDefaultLangID
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GlobalUnlock
GlobalLock
GlobalAlloc
LockResource
LoadResource
FindResourceA
SetLastError
DeleteCriticalSection
GetFileTime
RaiseException
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GlobalFree
GlobalHandle
lstrlenW
lstrcmpA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
MulDiv
SizeofResource
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
VirtualQueryEx
GetSystemInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
SetUnhandledExceptionFilter
FlushFileBuffers
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
LCMapStringW
LCMapStringA
SetStdHandle
GetStdHandle
SetHandleCount
GetCPInfo
GetOEMCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCommandLineA
GetStartupInfoA
HeapReAlloc
VirtualQuery
VirtualAlloc
VirtualProtect
GetFileType
FileTimeToLocalFileTime
FileTimeToSystemTime
ExitProcess
GetFullPathNameA
RtlUnwind
SetFileTime
GetModuleHandleA
CreateThread
WaitForSingleObject
TerminateThread
VirtualProtectEx
WriteProcessMemory
TerminateProcess
DeviceIoControl
GetModuleFileNameA
SetCurrentDirectoryA
CreateFileA
FreeLibrary
GetVersion
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
CloseHandle
OpenProcess
ReadProcessMemory
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetLogicalDriveStringsA
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
SetConsoleCtrlHandler
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentDirectoryA
GetCurrentThreadId

user32

GetDesktopWindow
CharNextA
GetClassNameA
RedrawWindow
IsWindow
BeginPaint
FillRect
ReleaseDC
IsChild
GetFocus
DestroyAcceleratorTable
GetSysColor
CreateAcceleratorTableA
DialogBoxIndirectParamA
SetWindowContextHelpId
SetWindowPos
EndPaint
GetDC
ReleaseCapture
SetCapture
InvalidateRgn
RegisterClassExA
SendMessageA
SetWindowTextA
GetParent
MessageBoxA
CharUpperA
GetActiveWindow
EndDialog
DialogBoxParamA
SendDlgItemMessageA
GetClassInfoExA
RegisterWindowMessageA
GetWindowTextA
GetWindowTextLengthA
wsprintfA
UnregisterClassA
ShowWindow
MapWindowPoints
SystemParametersInfoA
GetWindowRect
DefWindowProcA
CreateWindowExA
MapDialogRect
GetWindow
GetCursorPos
ScreenToClient
GetClientRect
PtInRect
SetTimer
InvalidateRect
WindowFromPoint
KillTimer
LoadCursorA
SetCursor
CallWindowProcA
GetDlgCtrlID
GetSysColorBrush
LoadIconA
SetWindowLongA
SetDlgItemTextA
GetWindowLongA
GetSystemMenu
EnableMenuItem
GetDlgItem
EnableWindow
SetFocus
DestroyWindow

gdi32

CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteDC
GetDeviceCaps
CreateFontIndirectA
SelectObject
SetTextColor
GetStockObject
DeleteObject
GetObjectA
SetBkMode

advapi32

OpenSCManagerA
RegQueryInfoKeyA
RegCreateKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA
RegEnumValueA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegEnumKeyExA
RegDeleteKeyA
EnumServicesStatusA
CloseServiceHandle
QueryServiceConfigA
OpenServiceA
DeleteService
ControlService
QueryServiceStatus

shell32

ShellExecuteA

ole32

CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
OleLockRunning
OleUninitialize
OleInitialize
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CreateStreamOnHGlobal
CoTaskMemRealloc

oleaut32

VariantInit
VarUI4FromStr
OleCreateFontIndirect
SysStringByteLen
VariantClear
LoadTypeLi
LoadRegTypeLi
SysAllocString
SysStringLen
SysAllocStringLen
SysFreeString
GetErrorInfo
VariantChangeType
SetErrorInfo
CreateErrorInfo

Sections

.text
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a027d5c1dad60b213146588504e8e5c8

Headers

File Characteristics

Imports

comctl32

version

ws2_32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 208KB - Virtual size: 206KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 12KB - Virtual size: 1.1MB

.rsrc Size: 88KB - Virtual size: 88KB

.text
Size: 208KB - Virtual size: 206KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 12KB - Virtual size: 1.1MB

.rsrc
Size: 88KB - Virtual size: 88KB