6827aca088d11ae4823ea76124538edf511a988fb68fe1cb54de5cabe42a4cbc

Sharing

Copy URL Twitter E-mail

General

Target

6827aca088d11ae4823ea76124538edf511a988fb68fe1cb54de5cabe42a4cbc
Size

875KB
MD5

6d7022ab9d88198de6ec8421ab727a26
SHA1

f1a8d2071d417ce9e92a342924aa5dee968a732c
SHA256

6827aca088d11ae4823ea76124538edf511a988fb68fe1cb54de5cabe42a4cbc
SHA512

ac30ca7cc417b78653b3f6028df4bad2f04a229b0080be53b8540b9f6e972d638ec6b238ca788e5eb3140f08448acf9e6dfa194e2ac15edf0a75298d798094d9
SSDEEP

24576:J1jKRN8i2SVAHB5RRKvwpbdelaZ/UwIwdom:TOnbsTMwpbdeUJam

Score

N/A

Malware Config

Signatures

Files

6827aca088d11ae4823ea76124538edf511a988fb68fe1cb54de5cabe42a4cbc
.exe windows x86

5045b1519a2e6b84fa9ce66192da3670

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
SysStringLen
SysFreeString
VariantClear

gdi32

GetStockObject
DeleteDC
GetDeviceCaps
DeleteObject
SetBkColor
SetTextColor
SelectObject
CreateFontIndirectA

advapi32

RegCloseKey
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegSetValueExA
RegDeleteValueA
RegQueryValueExA

kernel32

GetFileAttributesA
lstrlenW
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetCommandLineA
GetCurrentProcessId
GetSystemDefaultLCID
GetSystemDefaultLangID
GetUserDefaultLangID
GetVersion
GetModuleHandleA
GetCurrentProcess
GetCommandLineW
GetModuleHandleW
GetCurrentThread
GetLastError
GetUserDefaultLCID
HeapAlloc
GetProcessHeap
GetTickCount
GetFullPathNameA
VirtualAlloc
FindResourceA
Sleep
VirtualFree
WriteFile
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
GetACP
CloseHandle
ReadFile
TlsFree
MapViewOfFile
GetConsoleMode
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
LockResource
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
RemoveDirectoryA
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
InterlockedIncrement
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
CreateFileMappingA
ResetEvent
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetSystemInfo
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
QueryPerformanceCounter
GetOEMCP
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
VirtualQuery
WriteConsoleA
GetEnvironmentVariableA
TerminateProcess
SetEnvironmentVariableA
WaitForSingleObject
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
GetLocalTime
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
InterlockedExchange
GetVersionExA
IsDebuggerPresent
GetModuleFileNameW
InterlockedDecrement
GetSystemTime
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree
SetEvent
SetFileAttributesA
GetStringTypeW
HeapReAlloc
SetStdHandle
GetStringTypeA
WideCharToMultiByte
FreeEnvironmentStringsW
LoadLibraryExW
ReleaseMutex
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetStartupInfoW
DeleteCriticalSection
FreeEnvironmentStringsA
GetStdHandle
GetFileAttributesW
HeapDestroy
FindFirstFileW
GetDriveTypeA
GetConsoleOutputCP

user32

InvalidateRect
IsWindowVisible
SystemParametersInfoA
PostMessageA
GetSysColor
DialogBoxParamA
MessageBoxA
SetDlgItemTextA
GetFocus
EndDialog
GetDesktopWindow
LoadIconA
LoadCursorA
ClientToScreen
GetDlgItem
CreateWindowExA
GetWindowLongA
CheckMenuItem
SetWindowTextA
SetWindowLongA
ReleaseCapture
SetCapture
IsIconic
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
GetMessageA
SetFocus
EndPaint
wsprintfA
SetTimer
GetSubMenu
EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
DestroyWindow
MsgWaitForMultipleObjects
ScreenToClient
GetClientRect
SendMessageA
ReleaseDC
GetCursorPos
GetDC
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
SetForegroundWindow
SetCursor
CallWindowProcA
FillRect

ole32

CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance

msvcrt

_controlfp
_exit

Sections

.text
Size: 40KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 815KB - Virtual size: 815KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5045b1519a2e6b84fa9ce66192da3670

Headers

File Characteristics

Imports

oleaut32

gdi32

advapi32

kernel32

user32

ole32

msvcrt

Sections

.text Size: 40KB - Virtual size: 361KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 815KB - Virtual size: 815KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 40KB - Virtual size: 361KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 815KB - Virtual size: 815KB

.rsrc
Size: 10KB - Virtual size: 9KB