72eb870316a1d32dbd6ffa23e1c2e079d8b8c08746925a44bb5567605202326f

Sharing

Copy URL Twitter E-mail

General

Target

72eb870316a1d32dbd6ffa23e1c2e079d8b8c08746925a44bb5567605202326f
Size

336KB
MD5

38b48621a437d0dc26cfe8a28fe42010
SHA1

f54083e36a5cd5edf9c4bb89cfc827a64c6f3448
SHA256

72eb870316a1d32dbd6ffa23e1c2e079d8b8c08746925a44bb5567605202326f
SHA512

6d11e57d1ea23d05d17f7aa35e1f5d831e1841fdb8169cf7ab53582cb3dc442a90d3b904ef6a5448de07dce5448ca4bf197340ed7073620e1e8b8ce7b1aed50a
SSDEEP

6144:gNswr3aS1i3ypF4wXSPTH2YGqpz7TkdCW2eGX7KSvO8s322RLpsn6KenX6kuTiFr:guSKGnbtmTUqV/kdCEGX7KSvY2UtKenz

Score

N/A

Malware Config

Signatures

Files

72eb870316a1d32dbd6ffa23e1c2e079d8b8c08746925a44bb5567605202326f
.exe windows x86

4b16fac153643b866f856cdcb2c412b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
SwitchToThread
IsValidLocale
_lcreat
GetFileAttributesA
SetEvent
DefineDosDeviceW
DeleteFileA
GlobalAddAtomA
QueueUserAPC
GetProfileIntA
GetCurrentDirectoryA
GetDiskFreeSpaceExW
FillConsoleOutputAttribute
GlobalDeleteAtom
CreateProcessA
GetAtomNameW
VirtualUnlock
CopyFileA
GetEnvironmentStrings
CreateEventA
GetDateFormatA
ResumeThread
CreateThread
GetConsoleTitleA
GetCommConfig
WriteFileEx
LocalLock
LoadResource
PeekNamedPipe
lstrcmpW
GetLongPathNameW
GetDriveTypeW
GetFileTime
AddAtomW
OpenFileMappingA
GetAtomNameA
GetSystemInfo
FileTimeToLocalFileTime
GetModuleHandleW
WideCharToMultiByte
CreateMailslotW
FlushFileBuffers
GetModuleFileNameA
VirtualAllocEx
CreateIoCompletionPort
SetFileAttributesW
GetDiskFreeSpaceW
FindFirstChangeNotificationA
AllocConsole
DisconnectNamedPipe
LocalSize
WriteConsoleOutputCharacterA
MoveFileExW
GlobalGetAtomNameA
IsBadReadPtr
_lclose
EnumResourceLanguagesW
GlobalHandle
FindResourceExA
MultiByteToWideChar
ReadConsoleOutputA
WriteConsoleOutputA
CreateDirectoryA
HeapAlloc
GetTempFileNameW
SetConsoleOutputCP
GetModuleFileNameW
AreFileApisANSI
HeapValidate
VirtualFree
FillConsoleOutputCharacterA
CreateDirectoryExA
LocalReAlloc
GetVersionExA
GetModuleHandleA
WriteConsoleA
WaitNamedPipeW
GetLastError
MapViewOfFile
RemoveDirectoryW
GetFileAttributesExW
DebugBreak
GetStartupInfoA
SetProcessAffinityMask
GetLargestConsoleWindowSize
LeaveCriticalSection
GetCompressedFileSizeW
FindResourceA
SetVolumeLabelW
lstrlenW
SetSystemTime
HeapSize
CallNamedPipeA
FindFirstChangeNotificationW
WinExec
SetEndOfFile
FindResourceW
VirtualProtect

user32

SetThreadDesktop
CharLowerBuffW
ExitWindowsEx
SendNotifyMessageW
RegisterHotKey
RegisterWindowMessageA
WaitMessage
SetActiveWindow
DrawTextExA
IsDialogMessageW
SetTimer
GetScrollPos
DrawCaption
CreateIconIndirect
EqualRect
TabbedTextOutW
EnumChildWindows
PostMessageA
wsprintfA
SetCaretPos
DrawStateW
GetKeyboardLayoutList
GetWindowRect
SetWindowPlacement
GetClipboardFormatNameA
DrawFocusRect
IsWindowUnicode
SetMenuInfo
DrawFrameControl
RedrawWindow
ValidateRect
keybd_event
PostQuitMessage
CreateMenu
GetKeyboardLayout
GetWindowTextLengthA
GetCursorPos
GetUserObjectInformationA
GetUserObjectInformationW
SetMenuItemInfoW
GetSysColor
GetWindowTextA
CharNextExA
HideCaret
MessageBoxW
RegisterClipboardFormatW
GetSubMenu
LoadMenuA

gdi32

SelectClipPath
CloseMetaFile
CreateDIBPatternBrush
PlayMetaFileRecord
PatBlt
GetViewportExtEx
UnrealizeObject
SetPixel
SetGraphicsMode
GetNearestPaletteIndex
StretchBlt
CreatePatternBrush
SetViewportOrgEx
FillRgn
GetWindowOrgEx
EnumFontFamiliesExA
GetCurrentObject
Arc

comdlg32

FindTextW

shell32

ExtractIconW
SHAppBarMessage

ole32

FreePropVariantArray

oleaut32

SafeArrayCreate
VariantCopyInd
SafeArrayPtrOfIndex
SafeArrayRedim
SysStringLen
SafeArrayGetLBound
LoadTypeLi

comctl32

DestroyPropertySheetPage
ImageList_GetIcon

shlwapi

StrChrW

setupapi

SetupDiClassGuidsFromNameW
SetupDiClassGuidsFromNameExA
SetupGetStringFieldA
SetupDiSetSelectedDriverA
SetupDiGetDriverInfoDetailW
SetupDiGetDeviceInstanceIdW
SetupDiDestroyDriverInfoList
SetupDiGetDeviceRegistryPropertyA

msvcrt

_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp

Sections

.text
Size: 284KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4b16fac153643b866f856cdcb2c412b8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

msvcrt

Sections

.text Size: 284KB - Virtual size: 280KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 40KB - Virtual size: 36KB

.text
Size: 284KB - Virtual size: 280KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 40KB - Virtual size: 36KB