9fecda8d1ac0d9be64092917dddf888fb67fd5650aff2ac0a39c7d7d49e040c4

Sharing

Copy URL Twitter E-mail

General

Target

9fecda8d1ac0d9be64092917dddf888fb67fd5650aff2ac0a39c7d7d49e040c4
Size

281KB
MD5

46846c11f488edc15013daaa5db1aeee
SHA1

a3a3031604c0de185321ee8bbd727a3fb98737e8
SHA256

9fecda8d1ac0d9be64092917dddf888fb67fd5650aff2ac0a39c7d7d49e040c4
SHA512

1c2173b204f47ec52efbf15c394ef62db7ac869d753d9723fc91aab73a961cc0bc194693d78f2e5ae37cb3065860e29f97c4fcbcddf2bf69e91c14824009b293
SSDEEP

6144:cK6G4TKuSg6gNwRfgF7DBwxyeQysZKBr2wpTinVTe7ToyadV/42:cKmK2NwfuDuANFCJwVTeXoyadVH

Score

N/A

Malware Config

Signatures

Files

9fecda8d1ac0d9be64092917dddf888fb67fd5650aff2ac0a39c7d7d49e040c4
.exe windows x86

a29909a44984ffbac05b1330bf06b788

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomW
GetTickCount
MoveFileW
GetUserDefaultLangID
SetCurrentDirectoryW
GetFileAttributesExW
FreeLibrary
CancelWaitableTimer
WaitForMultipleObjects
Sleep
DuplicateHandle
FindNextChangeNotification
GlobalFree
InterlockedIncrement
GetFileSize
DeleteFileW
GetDriveTypeW
SetLastError
GetLocalTime
WriteFile
ReadFile
CreateEventW
GetLogicalDrives
CreateFileW
LoadLibraryW
FindNextFileW
GetCurrentThread
FindFirstFileW
LockResource
ExitProcess
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualAlloc
VirtualProtect
FindResourceW
GetModuleFileNameW
ResetEvent
MultiByteToWideChar
WideCharToMultiByte
FreeResource
GetLastError
GetVersion
GetFileAttributesW
CloseHandle
GlobalUnlock
CreateProcessW
WritePrivateProfileStringW
GetProcAddress
VirtualFree
GetSystemTime
MulDiv
WaitForSingleObject
GetCurrentProcessId
SetEndOfFile
SizeofResource
lstrlenW
InterlockedDecrement
SetEvent

user32

GetSysColor
AppendMenuW
IsWindow
EndDialog
TrackPopupMenu
GetWindowDC
GetMessageW
LoadImageW
SetLayeredWindowAttributes
DispatchMessageW
FillRect
CreatePopupMenu
SystemParametersInfoW
DestroyIcon
TranslateMessage
SetCapture
PostMessageW
GetParent
CreateWindowExW
RedrawWindow
LoadIconW
GetWindowTextW
SetForegroundWindow
SetCursor
EnableWindow
OffsetRect
IsDlgButtonChecked
DrawTextW
DefWindowProcW
GetWindowThreadProcessId
SetWindowPos
PostQuitMessage
RegisterHotKey
RegisterWindowMessageW
LoadCursorW
RegisterClassExW
ReleaseCapture
SendMessageW
PostThreadMessageW
SendDlgItemMessageW
wsprintfW
VkKeyScanW

gdi32

SelectObject
DeleteObject
GetStockObject
CreateSolidBrush
Rectangle
CreatePen
GetClipBox
SetBkColor
SetDIBits
DPtoLP
CreateBitmap
CreateFontIndirectW
DeleteDC
GetDeviceCaps

advapi32

RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExW
LookupPrivilegeValueW
RegCloseKey
SetSecurityDescriptorDacl
StartServiceW
RegNotifyChangeKeyValue

shell32

Shell_NotifyIconW
SHChangeNotify

ole32

CoInitializeEx
CoUninitialize

oleaut32

SysFreeString
OleLoadPicture

Sections

.text
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a29909a44984ffbac05b1330bf06b788

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 248KB - Virtual size: 245KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 24KB - Virtual size: 20KB

.text
Size: 248KB - Virtual size: 245KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 24KB - Virtual size: 20KB