c917a4d8d46c085ced6c5784e4c41560513348fde4e7a0d12e5802f42748dca0

Sharing

Copy URL Twitter E-mail

General

Target

c917a4d8d46c085ced6c5784e4c41560513348fde4e7a0d12e5802f42748dca0
Size

57KB
MD5

5d214d58ebad6332e8f3e1594c06ed83
SHA1

19e0f4e8e2a6490543b23b5d4673c32f1fa6dabb
SHA256

c917a4d8d46c085ced6c5784e4c41560513348fde4e7a0d12e5802f42748dca0
SHA512

baff03a98981cae0f69a2149604cf71bf56a79abfd57e48d91a314af1326af80e7e6029b11eabee39bce52dad62d613138a13d1f0c4e3774e8dbafdc11e2d914
SSDEEP

1536:6iio6qm5W6hrfFK6CWcMMMMMMMmMMMMKflt:coBmo6JlCjMMMMMMMmMMMMKf

Score

N/A

Malware Config

Signatures

Files

c917a4d8d46c085ced6c5784e4c41560513348fde4e7a0d12e5802f42748dca0
.exe windows x86

24ac385745e85722645cc5a76d55aea6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyMenu
SendMessageW
GetWindowTextLengthA
DestroyIcon
GetMenu
UnregisterClassA
SetActiveWindow
RegisterClassW
SetCapture
SetWindowPos
GetClientRect
CreateWindowExW
PostMessageW
AllowSetForegroundWindow
GetWindowLongW
OpenClipboard
GetMenuStringW
SetWindowTextW
LoadIconA
GetSubMenu
CheckMenuItem
ReleaseDC
GetCursorPos
MoveWindow
InflateRect
GetActiveWindow
PtInRect
TrackPopupMenu
LoadStringW
DefWindowProcW

kernel32

EnterCriticalSection
LoadLibraryA
HeapAlloc
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
ExitProcess
GetCurrentProcessId
GetSystemTimeAsFileTime
InterlockedExchange
WaitForSingleObjectEx
GetModuleHandleA
InitializeCriticalSection
GetVersionExW
QueryPerformanceCounter
WaitForSingleObject
DeleteCriticalSection
MultiByteToWideChar
WriteFile
SetFilePointer
GetEnvironmentStringsW
IsDebuggerPresent
GetVersionExA
InterlockedCompareExchange
GetLastError
GetModuleHandleW
VirtualAlloc
UnhandledExceptionFilter
ReadFile
GetCurrentThreadId
CloseHandle
CreateFileA
WideCharToMultiByte
SetLastError
SetFilePointerEx
HeapFree
Sleep
GetTickCount
GetCurrentProcess
FindClose
FreeLibrary
GetModuleFileNameA
TerminateProcess
FreeLibraryAndExitThread
LeaveCriticalSection

gdi32

CreateSolidBrush
CreatePolygonRgn
CreateRectRgn
CreateFontIndirectW
CreateDCA

shlwapi

PathFindFileNameA
PathIsURLW
PathCanonicalizeW
PathRenameExtensionW
PathRemoveBlanksW
PathRemoveFileSpecA
PathAddBackslashA
SHCreateStreamOnFileW
SHGetValueW
PathCommonPrefixW
PathRemoveExtensionW
PathIsRelativeW
PathStripToRootW
SHDeleteKeyW
PathAddBackslashW
PathFindExtensionW
PathRemoveBackslashW
PathCombineW
PathFileExistsW
PathAppendW
PathFindFileNameW
SHSetValueW
PathStripPathW
PathRemoveFileSpecW
PathAppendA
AssocQueryStringW
PathFileExistsA
StrCmpW
StrStrIW
PathIsDirectoryW
StrCmpNIW
StrToIntW
StrStrW
StrCmpNW
StrStrIA
StrToIntExW
PathIsFileSpecW
PathRelativePathToW
SHDeleteValueW
PathIsRootW
StrCmpIW
PathFindExtensionA

setupapi

SetupUninstallOEMInfA

msvcrt

_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
strlen

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24ac385745e85722645cc5a76d55aea6

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

shlwapi

setupapi

msvcrt

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 29KB - Virtual size: 112KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 29KB - Virtual size: 112KB

.rsrc
Size: 14KB - Virtual size: 13KB