8b30ed21c6c0a5e1326d2127a451bb8b90465d6a9244ca0ca0fa1626e0e4b9ec

Sharing

Copy URL Twitter E-mail

General

Target

8b30ed21c6c0a5e1326d2127a451bb8b90465d6a9244ca0ca0fa1626e0e4b9ec
Size

206KB
MD5

189077a43e8267acf4194294b9599a50
SHA1

b4d8dd3b7c61589b3179b4f0f595aadceba44c85
SHA256

8b30ed21c6c0a5e1326d2127a451bb8b90465d6a9244ca0ca0fa1626e0e4b9ec
SHA512

5be2cae2a9256c73e061ab20fa8a80c92fc55d947379c78c606c4aa98c188780a8abb7604d6304bae51662b8e975bfcf0cbec2d8c4db51461b4b0380805530d7
SSDEEP

3072:95awlqJ1iUW00rDw3KmX1tqTC1zPhVVM+5FCMSDADeak7dJHB/AdGb:X9lg1iUFkDNmGTuzPlM+CMSsQLH5Ads

Score

N/A

Malware Config

Signatures

Files

8b30ed21c6c0a5e1326d2127a451bb8b90465d6a9244ca0ca0fa1626e0e4b9ec
.exe windows x86

c8590dbed9cb0854f44a7dab517751c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
SetBkMode
CreateSolidBrush
SetTextAlign
TextOutA
BitBlt
DeleteObject
CreateFontA
DeleteDC
SetTextColor

comdlg32

GetSaveFileNameA

kernel32

FreeLibrary
LoadLibraryA
GetModuleFileNameA
InitializeCriticalSection
DeleteCriticalSection
WriteFile
ReadFile
GetTempFileNameA
GetTempPathA
SetFilePointer
EnterCriticalSection
LeaveCriticalSection
GetPrivateProfileSectionA
GetCurrentThreadId
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
FlushFileBuffers
SetStdHandle
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
SetEnvironmentVariableA
CompareStringW
MultiByteToWideChar
CompareStringA
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
GetProcAddress
DeviceIoControl
GetProcessHeap
HeapAlloc
LocalFree
HeapFree
GetDriveTypeA
GetShortPathNameA
CloseHandle
GetLastError
CreateFileA
GetVersionExA
Sleep
FreeEnvironmentStringsW
GetEnvironmentStrings
RtlUnwind
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetModuleHandleA
WideCharToMultiByte
ExitProcess
HeapSize
GetStdHandle
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
SetHandleCount
GetFileType
FreeEnvironmentStringsA

user32

DialogBoxParamA
GetDlgItem
SetWindowsHookExA
SetWindowLongA
EnableWindow
KillTimer
InvalidateRect
SetTimer
EndDialog
SetDlgItemTextA
GetFocus
PostMessageA
IsDlgButtonChecked
CopyRect
SystemParametersInfoA
CallNextHookEx
BeginPaint
SendMessageA
GetClientRect
GetSysColorBrush
FillRect
GetSysColor
OffsetRect
EndPaint
SetFocus
DefWindowProcA
GetWindowRect
GetParent
ScreenToClient
MoveWindow
MessageBoxA
GetDC
ReleaseDC
GetUpdateRect

advapi32

OpenServiceA
CloseServiceHandle
OpenSCManagerA
ControlService
DeleteService
CreateServiceA
SetServiceObjectSecurity
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
FreeSid
AllocateAndInitializeSid
GetSecurityDescriptorDacl
QueryServiceObjectSecurity
StartServiceA

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8590dbed9cb0854f44a7dab517751c0

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

comdlg32

kernel32

user32

advapi32

Sections

.text Size: 135KB - Virtual size: 134KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 41KB - Virtual size: 40KB

.text
Size: 135KB - Virtual size: 134KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 41KB - Virtual size: 40KB