a08d909f3743a9ba721af4f407b6cb60558e19bcd4a36c651a38fdd368b88d9b

Sharing

Copy URL Twitter E-mail

General

Target

a08d909f3743a9ba721af4f407b6cb60558e19bcd4a36c651a38fdd368b88d9b
Size

24KB
MD5

211394ade0e5b911465172e5e4948860
SHA1

f1d39953d4d92fa876a45f149b0714ea04da6e19
SHA256

a08d909f3743a9ba721af4f407b6cb60558e19bcd4a36c651a38fdd368b88d9b
SHA512

52d69ec0891e4c0245696051f6a0df301380c4740b02df1479630e89fc2a11fcea42402824f59370e458ad9a24a479692afaf0018afb8034b9c515b8b955b7f3
SSDEEP

384:SDvQhU84QVfhPsCH+M716mXFkFbSONkNSJ7z6sCzOKjv5W1nMR+N0+TI4:YGNPsCMmVqP57zNCrv5NR+Nh3

Score

N/A

Malware Config

Signatures

Files

a08d909f3743a9ba721af4f407b6cb60558e19bcd4a36c651a38fdd368b88d9b
.exe windows x86

7927db0c105ad1cb0c77f0cb65aaf798

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

InitializeSecurityDescriptor
RegOpenKeyExA
AddAccessAllowedAce
FreeSid
RegCloseKey
RegSetValueExW
RegSetValueExW
InitializeAcl
RegCloseKey
RegDeleteValueW
RegOpenKeyW
InitializeSecurityDescriptor
RegCreateKeyExW
RegEnumValueW
AllocateAndInitializeSid
RegCreateKeyExA
RegEnumValueW
RegCreateKeyExA
RegDeleteValueW
RegQueryValueExW
FreeSid
RegSetValueExA
RegQueryValueExA
GetLengthSid
RegDeleteValueW

kernel32

HeapAlloc
LoadLibraryExA
LocalAlloc
GetCurrentProcess
SetLastError
GetCurrentThreadId
lstrcpyW
VirtualAlloc
GetCurrentThreadId
VirtualAlloc
GetCurrentProcessId
ExitProcess
GetProcessHeap
WideCharToMultiByte
WideCharToMultiByte
LocalAlloc
GetEnvironmentStrings
LoadLibraryA
FreeLibrary
HeapReAlloc
VirtualAlloc
GetStartupInfoW
GetACP
GetModuleHandleA
GetCurrentProcessId
InitializeCriticalSection

gdi32

SetBkColor
GetStockObject
PatBlt
GetTextMetricsW
CreateCompatibleBitmap
CreateFontIndirectW
SelectObject
CreateCompatibleBitmap
StretchBlt
SetBkColor
SetBkColor
BitBlt
GetDeviceCaps
SetBkMode
GetTextExtentPoint32W
CreateFontIndirectW
SetBkColor
CreateSolidBrush
DeleteObject
GetTextExtentPoint32W
TextOutW
TextOutW
DeleteDC
BitBlt

shell32

ShellExecuteExW
SHGetSpecialFolderLocation
CommandLineToArgvW
DragAcceptFiles
ExtractIconExW
Shell_NotifyIconW
DragAcceptFiles
SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHGetDesktopFolder
DragFinish
SHChangeNotify
SHGetFolderPathW
SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHGetDesktopFolder
SHGetFolderPathW
SHGetFileInfoW
ExtractIconExW
ExtractIconW
Shell_NotifyIconW
DragAcceptFiles
ShellAboutW
CommandLineToArgvW
SHGetFolderPathW
ShellAboutW
DragFinish
DragQueryFileW

user32

MoveWindow
MessageBoxW
LoadImageW
KillTimer
LoadIconW
GetSystemMetrics
GetMenu
ShowWindow
LoadStringA
LoadStringW
MoveWindow
DestroyMenu
GetDC
LoadIconW
GetDlgItemTextW
SetRect
EndPaint
MoveWindow
CheckDlgButton
SetFocus
GetWindowRect
SystemParametersInfoW
LoadCursorW
MapWindowPoints
DialogBoxParamW
SendMessageW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7927db0c105ad1cb0c77f0cb65aaf798

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

shell32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 7KB - Virtual size: 16KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 7KB - Virtual size: 16KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB