752bf32708e69c875c4f74384baab1aa9c8307aa335453661be6029cd1f104f8

Sharing

Copy URL Twitter E-mail

General

Target

752bf32708e69c875c4f74384baab1aa9c8307aa335453661be6029cd1f104f8
Size

853KB
MD5

6d2f19636521b26bd0356d80becfdc31
SHA1

bc97c8c691991a4e1b26b93355c6d132c4a6670f
SHA256

752bf32708e69c875c4f74384baab1aa9c8307aa335453661be6029cd1f104f8
SHA512

717fea40b56ee2e875039dedcb8bc71d2023afd6643352d92826dbc20668609a1c584d006c640e76d1a929b37a9c104865a3061a21d933ea9f519c53cbe2511d
SSDEEP

24576:XVn+2il79pRDGgwV4B1LnREh5gbN7a1Q6dEwI0:XV+2irGgwVi1LREhaRCQRV0

Score

N/A

Malware Config

Signatures

Files

752bf32708e69c875c4f74384baab1aa9c8307aa335453661be6029cd1f104f8
.exe windows x86

6986601a2cfa1af725dd7fc56ea426cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
DeleteDC
DeleteObject
GetDeviceCaps
SetBkMode
CreateFontIndirectA
GetStockObject
SetTextColor
CreateCompatibleDC
SelectObject
CreateSolidBrush

ole32

CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemAlloc
OleInitialize
OleUninitialize

version

GetFileVersionInfoSizeA
VerQueryValueA

advapi32

RegDeleteKeyA
GetTokenInformation
RegDeleteKeyW
RegQueryValueExW
OpenProcessToken
RegDeleteValueA
RegSetValueExA
RegDeleteValueW
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegOpenKeyExW
RegSetValueExW

oleaut32

SysFreeString
VariantClear
VariantInit
SysAllocString
SysStringLen
SysAllocStringLen

kernel32

GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetDriveTypeA
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetStartupInfoW
GetCurrentDirectoryA
GetConsoleMode
LocalAlloc
GetCommandLineA
GetCurrentProcess
GetSystemDefaultLangID
GetModuleHandleA
GetUserDefaultLangID
GetTickCount
GetSystemDefaultLCID
GetVersion
GetCurrentProcessId
GetLastError
GetCommandLineW
GetUserDefaultLCID
GetCurrentThread
VirtualAlloc
GetOEMCP
GetFullPathNameA
FindResourceA
IsBadReadPtr
Sleep
VirtualFree
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
GetDiskFreeSpaceA
GetCurrentThreadId
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
LockResource
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
CreateProcessW
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
LeaveCriticalSection
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
WaitForMultipleObjects
DuplicateHandle
RemoveDirectoryA
FindNextFileA
CreateFileMappingA
ResetEvent
lstrcpyA
FindNextFileW
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
OpenProcess
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
IsBadWritePtr
QueryPerformanceCounter
FreeLibrary
GetVersionExW
LoadLibraryW
CompareStringA
SetHandleCount
GetSystemTime
EnterCriticalSection
HeapFree
LoadLibraryExW
SetCurrentDirectoryA
InterlockedIncrement
GetLocaleInfoA
SetEndOfFile
CreateEventW
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
CreateMutexA
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
WriteConsoleW
GetPrivateProfileStringA
LoadLibraryExA
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
OutputDebugStringA
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree
SetEvent
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
lstrcmpiA
WideCharToMultiByte
GetTempPathA
GetLocaleInfoW
FreeEnvironmentStringsW
ExpandEnvironmentStringsA
lstrcatA

user32

DefWindowProcA
SetForegroundWindow
DestroyWindow
PostQuitMessage
IsWindow
EndPaint
SetCursor
CallWindowProcA
GetClientRect
wsprintfA
InvalidateRect
DrawTextA
IsWindowVisible
EnableMenuItem
SystemParametersInfoA
GetSysColor
DialogBoxParamA
MessageBoxA
SetDlgItemTextA
GetFocus
MessageBeep
EndDialog
GetSystemMenu
GetDesktopWindow
SendMessageA
TrackPopupMenu
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
CreateWindowExA
GetWindowLongA
CheckMenuItem
SetWindowTextA
SetWindowLongA
PeekMessageA
PostMessageA
GetWindowRect
GetSystemMetrics
MapWindowPoints
ReleaseCapture
KillTimer
BeginPaint
ClientToScreen
SetFocus
FillRect
SetTimer
GetSubMenu
RegisterClassA
IsIconic
DispatchMessageA
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
SetWindowPos
EnableWindow
SetCapture
ShowWindow
UpdateWindow
GetParent
GetMessageA
PtInRect
GetKeyState
GetActiveWindow
MoveWindow
UnregisterClassA
SendMessageW
ReleaseDC
GetCursorPos
GetDC

msvcrt

exit
_exit
_cexit

Sections

.text
Size: 18KB - Virtual size: 339KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 815KB - Virtual size: 815KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6986601a2cfa1af725dd7fc56ea426cd

Headers

File Characteristics

Imports

gdi32

ole32

version

advapi32

oleaut32

kernel32

user32

msvcrt

Sections

.text Size: 18KB - Virtual size: 339KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 815KB - Virtual size: 815KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 18KB - Virtual size: 339KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 815KB - Virtual size: 815KB

.rsrc
Size: 10KB - Virtual size: 9KB