aa25a6a314fb2a405cef1672561cb1f1050d56e183db61be8f4c1d4c99b2c974

Sharing

Copy URL Twitter E-mail

General

Target

aa25a6a314fb2a405cef1672561cb1f1050d56e183db61be8f4c1d4c99b2c974
Size

329KB
MD5

3bcfe10d5bf908ed3afacd49c0e9fa19
SHA1

362fe3231cfc7791dd4ea81e8554cb1a489cf65c
SHA256

aa25a6a314fb2a405cef1672561cb1f1050d56e183db61be8f4c1d4c99b2c974
SHA512

5f57196c4d75b401176db09916c40f6212870b088d3c5073aeb73d6fd15b4b77722e7ca1e94ce0d6e085895c37b4334de4bede86e95a033a6a649dfb7eac6611
SSDEEP

6144:/3Lfb+7NwMAr55TVdhtcRfnql3Sx8KcuuwrP5KG42ZxaALIznPIuS9c:fLfb+7NlAD05nqDKcuVPMD2jauIRS9c

Score

N/A

Malware Config

Signatures

Files

aa25a6a314fb2a405cef1672561cb1f1050d56e183db61be8f4c1d4c99b2c974
.exe windows x86

cf952501f7a59271cec0aba903034012

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateDialogParamA
AdjustWindowRect
BringWindowToTop
SetDlgItemTextA
GetDlgItemInt
GetLastActivePopup
GetWindowThreadProcessId
GetWindow
DefDlgProcA
CreateDialogIndirectParamA
LookupIconIdFromDirectory
ShowOwnedPopups

ole32

DoDragDrop

gdi32

GetBkMode
CloseMetaFile
GdiGetBatchLimit
CreateDCA
CopyEnhMetaFileW
GetBkColor
CreateCompatibleDC
DeleteObject
GetBitmapDimensionEx
CreateDiscardableBitmap
FrameRgn

comctl32

ord14
UninitializeFlatSB
ord3
ord15
ord16
CreateStatusWindowW
CreatePropertySheetPageW
DestroyPropertySheetPage
ord6

advapi32

RegisterEventSourceW
RegQueryMultipleValuesA
RegQueryInfoKeyA
RegCreateKeyExA
RegisterEventSourceA
RegCloseKey

shlwapi

StrRChrW
StrCSpnW
StrChrA

kernel32

GetPrivateProfileIntA
GlobalMemoryStatus
IsValidCodePage
IsBadStringPtrA
GetStringTypeA
GlobalHandle
SetLocaleInfoA
VirtualQuery
HeapCreate
GetOEMCP
IsValidLocale
GetPrivateProfileStringA
GetStartupInfoA
WritePrivateProfileStringA
GetPrivateProfileSectionNamesA
WritePrivateProfileSectionA
GetModuleHandleA
GetProcAddress
VirtualAlloc

netapi32

NetJoinDomain
NetConfigGet
NetGetJoinInformation
NetGetDCName
NetFileClose
NetFileEnum
NetErrorLogRead
NetConnectionEnum
NetConfigSet
NetAuditWrite
NetAuditRead
NetGetJoinableOUs
Netbios
NetErrorLogClear
NetErrorLogWrite
NetConfigGetAll

aclui

ord1
ord2

activeds

ord5
ord17
ord21
ord22
ord23
ord8
ord14
ord15
ord4
ord16
ord9
ord18
ord13
ord12

msvcrt

_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_exit

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf952501f7a59271cec0aba903034012

Headers

File Characteristics

Imports

user32

ole32

gdi32

comctl32

advapi32

shlwapi

kernel32

netapi32

aclui

activeds

msvcrt

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 313KB - Virtual size: 312KB

.data Size: 1024B - Virtual size: 103KB

.tls Size: 512B - Virtual size: 4B

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 313KB - Virtual size: 312KB

.data
Size: 1024B - Virtual size: 103KB

.tls
Size: 512B - Virtual size: 4B

.rsrc
Size: 4KB - Virtual size: 4KB