fa76f6cae63300aee7ee8f53de5bfa2acf2938acb1b6f9cdb6df64f48b509f08

Sharing

Copy URL Twitter E-mail

General

Target

fa76f6cae63300aee7ee8f53de5bfa2acf2938acb1b6f9cdb6df64f48b509f08
Size

428KB
MD5

e37aa24425d9b059ca11fe421f6a30d8
SHA1

b10f9568606f005ee32bf8ba856d27130231dd9e
SHA256

fa76f6cae63300aee7ee8f53de5bfa2acf2938acb1b6f9cdb6df64f48b509f08
SHA512

5634ae51e738f99f85c75f77cd5a58527f5038dc35613d692d0c4a588cf6381626e53ef1cadb72012730b7b2787218491768ccbb42e2d7b81ac42af24883421a
SSDEEP

12288:kEgBJb6/cN+SCVwMED1MQnHmTR1jefxVO:kEcI/I+SCVwMEx3mLj

Score

N/A

Malware Config

Signatures

Files

fa76f6cae63300aee7ee8f53de5bfa2acf2938acb1b6f9cdb6df64f48b509f08
.dll windows x86

53f63443133e6a0c30ccddeb5c4734cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupTermDefaultQueueCallback
SetupQueueCopyW
SetupQueueCopyIndirectW
SetupPromptReboot
SetupOpenInfFileW
SetupOpenAppendInfFileW
SetupInstallFromInfSectionW
SetupInstallFilesFromInfSectionW
SetupInitDefaultQueueCallbackEx
SetupGetTargetPathW
SetupGetStringFieldW
SetupGetLineCountW
SetupGetIntField
SetupGetFieldCount
SetupFindNextLine
SetupDiSetSelectedDevice
SetupDiSetDeviceRegistryPropertyW
SetupDiSetDeviceInstallParamsW
SetupDiSetClassInstallParamsW
SetupDiOpenDeviceInfoW
SetupDiOpenDevRegKey
SetupDiOpenClassRegKey
SetupDiGetDriverInfoDetailW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceInstallParamsW
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList
SetupDiClassNameFromGuidW
SetupDiCallClassInstaller
SetupDiBuildDriverInfoList
SetupDefaultQueueCallbackW
SetupCopyOEMInfW
SetupCommitFileQueueW
SetupCloseInfFile
SetupCloseFileQueue
CM_Setup_DevNode
CM_Locate_DevNodeW
CM_Get_Device_IDW
CM_Get_DevNode_Status
CM_Enumerate_Classes

kernel32

lstrcmpiW
WriteFile
WriteConsoleW
CloseHandle
CompareStringW
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileMappingW
CreateMutexW
CreateThread
DeleteCriticalSection
DeleteFileW
DeviceIoControl
EnterCriticalSection
EnumResourceLanguagesW
ExitProcess
FillConsoleOutputCharacterW
FindClose
FindNextFileW
FormatMessageW
FreeConsole
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetDevicePowerState
GetEnvironmentStringsA
GetEnvironmentStringsW
GetExitCodeProcess
GetFileAttributesW
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultUILanguage
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetSystemWindowsDirectoryW
GetTempFileNameW
GetThreadLocale
GetTickCount
GetUserDefaultUILanguage
GetVersionExA
GetVersionExW
GetWindowsDirectoryW
GlobalFree
GlobalLock
GlobalUnlock
HeapAlloc
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedCompareExchange
InterlockedExchange
InterlockedIncrement
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
WriteConsoleOutputW
LocalReAlloc
MapViewOfFile
MoveFileExW
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
RaiseException
ReadConsoleOutputW
ReadFile
ReleaseMutex
RemoveDirectoryW
ResetWriteWatch
SearchPathW
SetEndOfFile
SetEvent
SetFileAttributesW
SetFilePointer
SetHandleCount
SetLastError
SetNamedPipeHandleState
SetStdHandle
SetThreadLocale
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnmapViewOfFile
UnregisterWait
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjectsEx
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
LocalAlloc

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

gdi32

Polyline
GetTextMetricsW
GetObjectW
GetDeviceCaps
EndPage
DeleteObject
CreatePen
CreateFontIndirectW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
StartDocW
StartPage
SetBkMode

advapi32

SetEntriesInAclW
RegSetValueExW
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyW
RegCloseKey
QueryServiceStatus
OpenServiceW
OpenSCManagerW
OpenProcessToken
LsaLookupPrivilegeValue
IsTextUnicode
InitializeSecurityDescriptor
GetTokenInformation
GetLengthSid
FreeSid
DeleteService
ControlService
CloseServiceHandle
AllocateAndInitializeSid
AddAccessDeniedAce
StartServiceW
SetTraceCallback
SetSecurityDescriptorDacl

user32

AllowSetForegroundWindow
AnimateWindow
CharLowerW
CheckDlgButton
CreateIconIndirect
CreateWindowExW
DefWindowProcW
DestroyIcon
DialogBoxParamW
DrawTextExW
EndDialog
GetDC
GetIconInfo
GetProcessWindowStation
GetSysColor
GetSystemMetrics
GetUserObjectInformationW
IsDlgButtonChecked
LoadBitmapW
LoadIconW
LoadImageW
MessageBoxW
PostMessageW
PostQuitMessage
SendDlgItemMessageW
SendMessageW
SetDlgItemTextW
SetFocus
SetWindowLongW
SetWindowTextW
ShowWindow
SystemParametersInfoW

shell32

ShellHookProc
ShellExecuteExW
SHGetFolderPathW

Exports

Exports

HashNotImplemented
Long_Type
Method_Fini
Module_AddObject
ParseString
ThreadsInitialized
vInit

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53f63443133e6a0c30ccddeb5c4734cd

Headers

File Characteristics

Imports

setupapi

kernel32

version

gdi32

advapi32

user32

shell32

Exports

Exports

Sections

.text Size: 107KB - Virtual size: 107KB

.rdata Size: 188KB - Virtual size: 188KB

.data Size: 103KB - Virtual size: 103KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 107KB - Virtual size: 107KB

.rdata
Size: 188KB - Virtual size: 188KB

.data
Size: 103KB - Virtual size: 103KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 6KB - Virtual size: 6KB