f2690a5f1c9e083d424c24ae9700bd681bca930926c0807fa500175028c4cf2d

Sharing

Copy URL Twitter E-mail

General

Target

f2690a5f1c9e083d424c24ae9700bd681bca930926c0807fa500175028c4cf2d
Size

355KB
MD5

09b1223df21430711c7246abf959c6c0
SHA1

d7d1ac4d252c8168f22877d0f8e2e59c9e78ed3d
SHA256

f2690a5f1c9e083d424c24ae9700bd681bca930926c0807fa500175028c4cf2d
SHA512

a8d65e16a7dcfd358291f6e8951c1bdf7a6cd2164d9acbb83f28ca219326d3817861b9a2e302476c9b91cc3f25a894ee2563561f9edc3f43878228ad4aa101ad
SSDEEP

6144:udIU1ZtJPWKcKHBn4p6row5O47NeQgBumb4bE8vcTuWOE9P52oDXfXiM:DU1ZtJPWdQ4pBqFjgg4M0TJOEugXPiM

Score

N/A

Malware Config

Signatures

Files

f2690a5f1c9e083d424c24ae9700bd681bca930926c0807fa500175028c4cf2d
.exe windows x86

60b68525ffdac5fe4ef2aa9cb612e77b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetImageCount
ImageList_GetBkColor
ImageList_Write
ImageList_SetFilter
CreateMappedBitmap
InitCommonControlsEx
ImageList_BeginDrag
CreateToolbar

kernel32

FreeEnvironmentStringsA
EnumResourceTypesW
GetComputerNameA
ReadFileEx
SetFilePointer
GetProcessHeaps
EnumSystemCodePagesW
LoadLibraryA
WideCharToMultiByte
OpenFileMappingW
SetLastError
GetStringTypeExW
VirtualQuery
CreateDirectoryExA
HeapAlloc
HeapFree
SetTimeZoneInformation
QueryPerformanceCounter
SetHandleCount
GetCommandLineA
GetNumberFormatA
WaitForMultipleObjects
GetTimeZoneInformation
IsBadWritePtr
TlsFree
GetEnvironmentStrings
InterlockedExchange
GetSystemTimeAsFileTime
GetComputerNameW
LockFile
HeapReAlloc
GetStdHandle
GetOEMCP
LeaveCriticalSection
SetEnvironmentVariableA
GetAtomNameA
GetFileAttributesExW
GetStringTypeW
OpenMutexA
DeleteCriticalSection
SetCurrentDirectoryA
GetTickCount
GetModuleFileNameA
GetLocaleInfoW
GetCurrentThread
CompareFileTime
MultiByteToWideChar
GetSystemTime
ResetEvent
RtlUnwind
lstrcpynW
ExitProcess
EnterCriticalSection
LCMapStringA
GetModuleHandleA
LCMapStringW
CreateMailslotA
FindFirstFileExW
lstrlenW
CreateMutexA
GetFileAttributesW
InitializeCriticalSection
ReadConsoleOutputCharacterA
InterlockedDecrement
GetEnvironmentStringsW
GetCurrentProcessId
TlsSetValue
VirtualAlloc
GetPrivateProfileSectionNamesA
InterlockedIncrement
CommConfigDialogW
CompareStringW
HeapDestroy
GetCurrentProcess
EnumSystemCodePagesA
CompareStringA
SetConsoleActiveScreenBuffer
VirtualFree
GetLocalTime
FlushFileBuffers
GetVolumeInformationW
TlsAlloc
TerminateProcess
WriteProfileStringW
GetLocaleInfoA
GetStringTypeA
GetFileAttributesA
PulseEvent
GetCPInfo
FreeEnvironmentStringsW
GetStartupInfoA
GetFileType
GetCurrentThreadId
SetVolumeLabelA
GetLastError
lstrcmpiA
lstrcmp
VirtualProtectEx
UnhandledExceptionFilter
SetStdHandle
WriteFile
GlobalGetAtomNameW
GetProcAddress
SetThreadContext
InterlockedExchangeAdd
ReadFile
TlsGetValue
GetThreadContext
GetACP
HeapCreate
lstrcpy
OutputDebugStringW
GetVersion
lstrcpyW
WriteConsoleOutputCharacterW
GetNamedPipeInfo
GetProcessAffinityMask
CloseHandle
DeleteFileW

user32

SetWindowContextHelpId
SwitchToThisWindow
IsWindowUnicode
EnableScrollBar
EnumChildWindows
CopyIcon
UnregisterClassA
GetScrollPos
InflateRect
IntersectRect
CreateWindowExA
GetPropW
SwitchDesktop
EnumDisplayMonitors
DdeQueryStringW
IsIconic
SetTimer
CharLowerBuffA
GetClassNameW
ExitWindowsEx
FlashWindowEx
ToAsciiEx
DdeConnectList
CloseDesktop
SendInput
CountClipboardFormats
RegisterClassA
DlgDirSelectExW
GetScrollInfo
GetDC
LookupIconIdFromDirectoryEx
ShowWindow
SetDoubleClickTime
OemKeyScan
GetUpdateRgn
EndDeferWindowPos
LoadImageA
GetMessageExtraInfo
GetProcessWindowStation
LoadBitmapA
SetCaretPos
CharPrevExA
CreatePopupMenu
IsCharLowerW
UnhookWinEvent
DestroyCaret
SwapMouseButton
EnumDesktopWindows
DlgDirListComboBoxA
CreateIconFromResourceEx
DlgDirListComboBoxW
SetMenuInfo
GetCaretPos
OpenClipboard
SetActiveWindow
CheckRadioButton
IsCharUpperW
FindWindowExA
ToUnicodeEx
PostMessageA
OemToCharW
CharPrevA
GetDlgCtrlID
RegisterClassExA
AdjustWindowRectEx
GetMenuItemRect
IsDialogMessageW
MessageBoxA
GrayStringW
SetClipboardViewer
LockWindowUpdate
CharNextExA
DdeNameService
GetMenuItemID
EndMenu
SetMenuDefaultItem
SetDebugErrorLevel
IsMenu
MapVirtualKeyA
GetWindowInfo
DefWindowProcA
TranslateAcceleratorW
CreateWindowStationW
ClientToScreen
DdeCreateStringHandleA
OemToCharBuffW
GetWindowTextLengthW
GetNextDlgGroupItem
SetParent
BlockInput
CharLowerW
SetCaretBlinkTime
GetClassLongW
FlashWindow
DestroyWindow
IsCharLowerA
DlgDirSelectExA

shell32

RealShellExecuteExW

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60b68525ffdac5fe4ef2aa9cb612e77b

Headers

File Characteristics

Imports

comctl32

kernel32

user32

shell32

Sections

.text Size: 152KB - Virtual size: 152KB

.rdata Size: 86KB - Virtual size: 85KB

.data Size: 95KB - Virtual size: 100KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 152KB - Virtual size: 152KB

.rdata
Size: 86KB - Virtual size: 85KB

.data
Size: 95KB - Virtual size: 100KB

.rsrc
Size: 21KB - Virtual size: 20KB