ba642b2f24b12046d853ff8bf986a8687abb2c5dba539863bee9e3cb18cb9586

Sharing

Copy URL

Twitter E-mail

General

Target

ba642b2f24b12046d853ff8bf986a8687abb2c5dba539863bee9e3cb18cb9586
Size

584KB
MD5

039797f054b621a8cf4e0f8db44637a8
SHA1

7e25182a53395dd3d9f644071f9381fd5c320990
SHA256

ba642b2f24b12046d853ff8bf986a8687abb2c5dba539863bee9e3cb18cb9586
SHA512

fe80d496eb057e19cb6be1b10daff8cd937a0615f4543d6b89e6ff5c83dc9a40c0f376a50d9036090060f88ca265db53473bab5a9d10516ee1ceee47d25bf70c
SSDEEP

12288:Jx+pKHXBhB/HmCkjdVqa54/2YP7+LxgNz40VRGWesG+Ti:33B7eCkxga5ajOxoyB

Score

N/A

Malware Config

Signatures

Files

ba642b2f24b12046d853ff8bf986a8687abb2c5dba539863bee9e3cb18cb9586
.exe windows x86

f58e847a894fd6b7a90230a74313e601

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkColor
BitBlt
DeleteObject
GetDeviceCaps
DeleteDC
GetStockObject
SetTextColor
CreateCompatibleDC
SelectObject

advapi32

RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey

user32

GetWindowRect
SetWindowLongA
EndDialog
SetWindowTextA
CreateWindowExA
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetSystemMetrics
SetForegroundWindow
SetDlgItemTextA
MessageBoxA
SystemParametersInfoA
IsWindowVisible
GetClientRect
CallWindowProcA
ReleaseDC
SetCursor
DefWindowProcA
KillTimer
EndPaint
GetSubMenu
SetTimer
IsIconic
LoadStringA
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
SendMessageA
SendMessageW
GetCursorPos
GetDC
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
GetDesktopWindow

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
FindNextFileA
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
GetLocaleInfoA
LocalAlloc
CreateFileA
SetErrorMode
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetCPInfo
lstrcmpiA
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
FreeLibrary
LocalFree
FormatMessageW
InitializeCriticalSection
LoadResource
FindClose
TlsGetValue
FormatMessageA
SetLastError
GetSystemTime
GetEnvironmentVariableA
GetModuleFileNameW
VirtualAlloc
Sleep
VirtualFree
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
InterlockedExchange
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
GetConsoleMode
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
LCMapStringW
LoadLibraryExW
GetLastError
LeaveCriticalSection
HeapAlloc
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
FindFirstFileW
CompareStringA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
GlobalAlloc
GetVersion
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetPrivateProfileStringA
GetModuleFileNameA
FlushFileBuffers
ExitProcess
VirtualProtect

oleaut32

VariantInit
SysFreeString
SysStringLen
SysAllocString

msvcrt

_strcmpi
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 356KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f58e847a894fd6b7a90230a74313e601

Headers

File Characteristics

Imports

gdi32

advapi32

user32

kernel32

oleaut32

msvcrt

Sections

.text Size: 356KB - Virtual size: 352KB

.rdata Size: 84KB - Virtual size: 81KB

.data Size: 132KB - Virtual size: 131KB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 356KB - Virtual size: 352KB

.rdata
Size: 84KB - Virtual size: 81KB

.data
Size: 132KB - Virtual size: 131KB

.rsrc
Size: 8KB - Virtual size: 5KB