f4917cf0ebc03eb38f3b59d3c83d4d87a4258a5030d69b65894fe4084b5a515a

Sharing

Copy URL Twitter E-mail

General

Target

f4917cf0ebc03eb38f3b59d3c83d4d87a4258a5030d69b65894fe4084b5a515a
Size

1.2MB
MD5

5c67dfac34bc4602a432f6ab86bb9710
SHA1

2ee684227698f05268d72131cdc4c198775f8fb1
SHA256

f4917cf0ebc03eb38f3b59d3c83d4d87a4258a5030d69b65894fe4084b5a515a
SHA512

86c5f5c35e129bd9241e411324035967b72ddec06b2bce43fffe9b836ca626291bcfabdf4df3634e330bd285c2a4a5160d19e44fede12566029fbe09dae06355
SSDEEP

24576:4US4zkOlH7wDbggvPnY5X1S8K1kzJ+0WJ8j6cJe363dIyEWsZ8PPbQ2Bv5tjCiL:0t63XME5tjPL

Score

N/A

Malware Config

Signatures

Files

f4917cf0ebc03eb38f3b59d3c83d4d87a4258a5030d69b65894fe4084b5a515a
.exe windows x86

59dcd5bc6faec25ff85cd8a345839ece

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockFile
SetEndOfFile
AreFileApisANSI
LockFileEx
UnlockFile
GetFileAttributesA
DeleteFileA
GetTempPathA
GetFullPathNameA
FormatMessageA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleHandleA
CompareStringA
FindClose
SetErrorMode
ResumeThread
SetEnvironmentVariableA
CreateFileA
SetStdHandle
GetConsoleOutputCP
WriteConsoleA
GetStringTypeA
GetConsoleMode
GetConsoleCP
WaitForSingleObject
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetDateFormatA
GetTimeFormatA
GetTimeZoneInformation
GetStdHandle
HeapCreate
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetLogicalDrives
CreateThread
ExitThread
ExitProcess
RtlUnwind
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetThreadLocale
GetACP
HeapSize
HeapReAlloc
HeapDestroy
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
GetUserDefaultLangID
SetUnhandledExceptionFilter
IsBadReadPtr
VirtualProtect
SetFilePointer
GetFileSize
ReadFile
GlobalAlloc
GlobalLock
GlobalUnlock
GetLocaleInfoA
LoadLibraryA
GetModuleFileNameA
LocalFree
MulDiv
WriteFile
GetExitCodeThread
FlushFileBuffers
QueryPerformanceFrequency
RaiseException
QueryPerformanceCounter
Sleep
FreeLibrary
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
SetLastError
GetCurrentThreadId
GetLastError
InterlockedCompareExchange
LocalAlloc
MoveFileExW
GetSystemTimeAsFileTime
GetProcessHeap
HeapAlloc
HeapFree
OpenProcess
SetEvent
GetTickCount
GetCurrentThread
GlobalMemoryStatus
GetSystemInfo
GetVersionExA
GetCurrentProcess
FlushInstructionCache
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
CloseHandle
LoadResource
LockResource
SizeofResource
GetCurrentProcessId
GetSystemTime

advapi32

LookupPrivilegeValueW
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
AllocateAndInitializeSid
FreeSid
EqualSid
OpenThreadToken
CopySid
RegCloseKey
AdjustTokenPrivileges
LookupAccountSidW
LookupAccountNameW
GetLengthSid
OpenProcessToken
GetTokenInformation
RegNotifyChangeKeyValue
GetSidSubAuthority

user32

RedrawWindow
GetClientRect
ShowWindow
GetDlgItem
SetWindowPos
DestroyWindow
FillRect
GetDlgCtrlID
BeginPaint
EndPaint
SetForegroundWindow
GetScrollPos
DestroyCursor
FrameRect
MsgWaitForMultipleObjects
GetMessageA
DispatchMessageA
MessageBoxA
WindowFromPoint
DrawEdge
AdjustWindowRectEx
GetMenu
PostQuitMessage
GetCapture
ReleaseCapture
DrawFocusRect
CopyRect
SetCapture
PtInRect
SetRectEmpty
SetMenuDefaultItem
DestroyIcon
LockWindowUpdate
IsZoomed
IsIconic
SetRect
GetCursorPos
UpdateWindow
OffsetRect
OpenIcon
GetDesktopWindow
GetWindow
EndDialog
GetActiveWindow
GetFocus
IsWindowEnabled
GetWindowDC
GetKeyState
SetCursor
GetSysColorBrush
GetParent
ClientToScreen
TrackPopupMenu
IsWindow
SetFocus
KillTimer
SetTimer
InvalidateRect
ScreenToClient
GetWindowRect
BringWindowToTop
MoveWindow
GetDC
ReleaseDC
DestroyMenu
InflateRect
CreatePopupMenu
GetMessagePos
MapWindowPoints
TranslateMessage
GetSysColor
GetSystemMetrics
GetWindowPlacement
SystemParametersInfoA
GetMenuItemID
CloseClipboard
EmptyClipboard
OpenClipboard
UnregisterClassA
IsWindowVisible

gdi32

SetBkMode
CreateSolidBrush
DeleteObject
CreateCompatibleBitmap
SetViewportOrgEx
SelectObject
GetDIBColorTable
CreateCompatibleDC
DeleteDC
SetBkColor
CreateRectRgnIndirect
BitBlt
CreateDIBSection
StretchBlt
GetDeviceCaps
GetStockObject
SelectClipRgn
ExcludeClipRect
CreateRectRgn
CombineRgn
Ellipse
CreatePen
MoveToEx
LineTo
BeginPath
EndPath
StrokeAndFillPath
GetClipRgn
SetTextColor

ole32

CoUninitialize
CoInitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
OleUninitialize
OleInitialize
RegisterDragDrop
RevokeDragDrop
DoDragDrop
OleDuplicateData
ReleaseStgMedium

oleaut32

SysFreeString
VarBstrFromR8
VarUI4FromStr

shlwapi

PathCombineW
PathMatchSpecW
PathRemoveFileSpecW
PathRemoveFileSpecA
PathCompactPathW
PathIsDirectoryW
PathFileExistsW
PathAppendW
PathStripPathA

comctl32

ImageList_ReplaceIcon
ImageList_Remove
ImageList_Create
ImageList_GetImageCount
ImageList_Draw
ImageList_GetIconSize
_TrackMouseEvent
ImageList_Destroy
InitCommonControlsEx

Sections

.text
Size: 764KB - Virtual size: 763KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 60KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

59dcd5bc6faec25ff85cd8a345839ece

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

ole32

oleaut32

shlwapi

comctl32

Sections

.text Size: 764KB - Virtual size: 763KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 60KB - Virtual size: 70KB

.rsrc Size: 232KB - Virtual size: 229KB

.rrdata Size: 68KB - Virtual size: 68KB

.text
Size: 764KB - Virtual size: 763KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 60KB - Virtual size: 70KB

.rsrc
Size: 232KB - Virtual size: 229KB

.rrdata
Size: 68KB - Virtual size: 68KB