acf334ab2bd07868f5da0ec6ba4829eb77906947c25f6afd5c834c62a9a677e0

Sharing

Copy URL Twitter E-mail

General

Target

acf334ab2bd07868f5da0ec6ba4829eb77906947c25f6afd5c834c62a9a677e0
Size

567KB
MD5

a1f23c0a5b15418b048c0cb459c9b654
SHA1

7220b80250fd0cbad85340e075f0cfbb6329f0b9
SHA256

acf334ab2bd07868f5da0ec6ba4829eb77906947c25f6afd5c834c62a9a677e0
SHA512

e8759a4588648dd59df14c3499b3abc77eece785aa04bfaf67689ab7e88b231b3761c4f7eb9dcb4b10cfcd0b6777e01686a6ea138cd49deb6441b1d7c8c9df9a
SSDEEP

12288:FGtyQJUoNDMFfRZm5KuPAWv87uVGtFywvcQVo5xqXV0sjcE8hoD:FMbyoNDMFfRZm5/A7qkFywvRwqV0sjcg

Score

N/A

Malware Config

Signatures

Files

acf334ab2bd07868f5da0ec6ba4829eb77906947c25f6afd5c834c62a9a677e0
.exe windows x86

8169e67ba71415e2c58e1544e1aca82a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
MessageBoxA
SendMessageA
CreateWindowExA
SetProcessWindowStation
RegisterClassExA
EnumDisplayMonitors
DefWindowProcW
RegisterClassA
DestroyWindow
DrawFrame

comctl32

ImageList_SetIconSize
ImageList_Merge
ImageList_DrawIndirect
ImageList_GetImageCount
CreateUpDownControl
ImageList_SetOverlayImage
ImageList_Destroy
CreateStatusWindowW
DrawInsert
DrawStatusTextW
ImageList_GetIconSize
ImageList_DragShowNolock
InitCommonControlsEx
DestroyPropertySheetPage
ImageList_GetImageInfo
ImageList_LoadImageW
CreateToolbarEx
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_GetDragImage
ImageList_DragLeave
ImageList_Write

advapi32

LookupSecurityDescriptorPartsW
RegCreateKeyExA
CryptCreateHash
RegQueryInfoKeyW
CryptContextAddRef
RegEnumKeyW
RegCreateKeyW
LookupPrivilegeDisplayNameW
RegQueryMultipleValuesW
RegEnumValueW
CryptHashData
CryptGetDefaultProviderA
CryptSetHashParam
RegConnectRegistryW
RegFlushKey
ReportEventA
CryptDestroyKey
RegQueryValueA

wininet

RetrieveUrlCacheEntryFileA

kernel32

TlsGetValue
CreateDirectoryW
LocalUnlock
GetCPInfo
GetExitCodeProcess
GetModuleHandleW
CompareFileTime
TerminateProcess
EnumSystemLocalesA
SetStdHandle
HeapCreate
GetStdHandle
CreateFileA
GetLocaleInfoA
GetStringTypeA
GetTickCount
LCMapStringW
GetTimeZoneInformation
GetStartupInfoW
WriteConsoleOutputAttribute
DeleteCriticalSection
SetFilePointer
SetHandleCount
lstrcmpi
GetLastError
UnhandledExceptionFilter
DuplicateHandle
LCMapStringA
VirtualQuery
GetSystemTimeAsFileTime
InterlockedIncrement
EnterCriticalSection
GetStartupInfoA
WriteConsoleA
VirtualAlloc
InterlockedExchange
GetUserDefaultLCID
TlsFree
DeleteFileA
GetModuleHandleA
HeapFree
Sleep
GetExitCodeThread
GlobalHandle
HeapDestroy
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetTimeFormatA
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
GetCurrentProcessId
VirtualFree
GetConsoleCP
GetConsoleMode
GetACP
SetLastError
ReadFile
WriteConsoleW
SetWaitableTimer
HeapSize
LeaveCriticalSection
GetProcessAffinityMask
CloseHandle
FreeEnvironmentStringsW
CompareStringW
CompareStringA
IsValidLocale
GetDateFormatA
WideCharToMultiByte
TlsSetValue
OpenMutexA
WritePrivateProfileSectionA
TlsAlloc
SetConsoleCtrlHandler
QueryPerformanceCounter
MultiByteToWideChar
HeapAlloc
SetLocaleInfoW
GetConsoleOutputCP
IsValidCodePage
ExitProcess
GetProcessHeaps
GetCurrentProcess
InterlockedDecrement
FlushFileBuffers
WriteFile
LoadLibraryA
GetLocaleInfoW
GetStringTypeW
GetPrivateProfileSectionA
GetCommandLineA
SetEnvironmentVariableA
CreateMutexA
GetCurrentThreadId
GetFileType
GetCommandLineW
OpenWaitableTimerA
GetCurrentThread
GetDriveTypeA
GetOEMCP
RtlUnwind
GetCurrencyFormatW
GetModuleFileNameW
FreeLibrary
LoadLibraryExW
HeapReAlloc
GetModuleFileNameA
GetProcAddress

gdi32

PathToRegion
SetBitmapBits
GetRasterizerCaps
GetMapMode
Rectangle
CreatePalette
GetFontData
StrokePath
GetTextCharsetInfo
GetTextCharset
DeviceCapabilitiesExW
GetTextAlign
UpdateICMRegKeyA
GetObjectA
SetWinMetaFileBits
GetPaletteEntries
PlgBlt
CopyMetaFileW
CreateBitmapIndirect
CreateCompatibleDC
DrawEscape

Sections

.text
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8169e67ba71415e2c58e1544e1aca82a

Headers

File Characteristics

Imports

user32

comctl32

advapi32

wininet

kernel32

gdi32

Sections

.text Size: 369KB - Virtual size: 369KB

.rdata Size: 28KB - Virtual size: 50KB

.data Size: 104KB - Virtual size: 104KB

.rsrc Size: 64KB - Virtual size: 63KB

.text
Size: 369KB - Virtual size: 369KB

.rdata
Size: 28KB - Virtual size: 50KB

.data
Size: 104KB - Virtual size: 104KB

.rsrc
Size: 64KB - Virtual size: 63KB