afbca1722cd9ee7c6435b133874ea4e261790f9cc8a3e073b8714445d645835b

Sharing

Copy URL Twitter E-mail

General

Target

afbca1722cd9ee7c6435b133874ea4e261790f9cc8a3e073b8714445d645835b
Size

400KB
MD5

1004c37c2f8f8f749bed4de6ea95eae6
SHA1

30c5c75f62af245d8fb31f1ad9fc80c8fd4552f0
SHA256

afbca1722cd9ee7c6435b133874ea4e261790f9cc8a3e073b8714445d645835b
SHA512

8afcb875d3e35a6b9f5762be2dc02be8e87b55a6c848ca76c6e0beed3c5429834abb6d75355b18c22eecffa98f71032e64e90a01822515dc757c968dbac1a1cd
SSDEEP

6144:Z7ZvVshQsyPuLXfCgEndH+xUtuL0kz2+WzCULa0T2CSXUSFIfVAl7HopZv3:VZdshQi7rsdHWnp29u+a4DSTk

Score

N/A

Malware Config

Signatures

Files

afbca1722cd9ee7c6435b133874ea4e261790f9cc8a3e073b8714445d645835b
.exe windows x86

f2322dcd1039cf14f411161f828e5d87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_mbsnbicoll
_findclose
__dllonexit
_onexit
_yn
_getwche
asin
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_setmbcp

user32

GetMessageW
mouse_event
DrawStateA
ModifyMenuA
MapVirtualKeyW
RegisterClipboardFormatA
DragDetect
GetClipboardData
CreateMenu
GetClipboardViewer
GetUserObjectInformationW
CloseWindow
ChangeClipboardChain
BringWindowToTop
GetScrollRange
FlashWindow
ToAsciiEx
SetTimer
FindWindowA
IsDlgButtonChecked
SetCapture
SystemParametersInfoA
DestroyCaret
IsWindowEnabled
CharUpperA
LoadCursorFromFileA
CreatePopupMenu
ReleaseDC
DispatchMessageA
GetMessageA
DialogBoxIndirectParamW
ClientToScreen
GetKeyboardLayout
SetWinEventHook
ClipCursor
OffsetRect
SetMenu
GetDC
EnableScrollBar
EnumDisplaySettingsA
GetClassNameA
GetKeyNameTextW
LoadCursorFromFileW
OemToCharBuffA
ValidateRgn
GetQueueStatus
MessageBeep
DrawTextExA
SetWindowTextW
GetWindowModuleFileNameA
ChildWindowFromPointEx
IsMenu
CreateIconFromResource
ScrollWindow
EmptyClipboard
GetKeyboardLayoutNameW
DrawCaption
SetCaretBlinkTime
GetCapture
SetPropA
MapVirtualKeyA
TranslateMessage
GetProcessWindowStation
ShowCaret
CloseDesktop
ChangeDisplaySettingsA
GetMenuItemID
GetClassInfoA
PackDDElParam
ShowOwnedPopups
IntersectRect
GetForegroundWindow
DialogBoxIndirectParamA
ValidateRect
GetScrollPos
ChangeDisplaySettingsW
TranslateMDISysAccel
GetWindowThreadProcessId
AdjustWindowRect
GetMessageExtraInfo
CreateCursor
AttachThreadInput
CharToOemBuffA
RemoveMenu
WaitMessage
SetKeyboardState
MapVirtualKeyExA
PeekMessageW
SetMenuDefaultItem
GetSysColor
GetWindowTextA
CharLowerW
SetWindowRgn
CopyImage
CreateDialogIndirectParamA
CreateWindowStationW
GetScrollInfo
SetActiveWindow
CharNextW
GetTabbedTextExtentA
GetDlgItem
GetWindowLongA
SetForegroundWindow
IsWindow
ReuseDDElParam
DrawAnimatedRects
BlockInput
GetMenuItemRect
GetMenuItemCount
GetLastActivePopup
InsertMenuA
IsIconic
SendDlgItemMessageA
WinHelpW
SetClassLongW
TranslateAcceleratorA
OpenClipboard
DefFrameProcW
LoadKeyboardLayoutW
GetClassInfoExW
GetPropA
DdeClientTransaction
InvalidateRgn
EnumClipboardFormats
EnableWindow
LoadIconA
LoadBitmapW

advapi32

SetFileSecurityW
LookupPrivilegeValueW
InitializeSecurityDescriptor
RegisterServiceCtrlHandlerW
CreateServiceW
ReadEventLogW
RegSetValueExW
SetFileSecurityA
QueryServiceStatus
EnumServicesStatusA
RegOpenKeyExW
ControlService
LsaQueryInformationPolicy
RegNotifyChangeKeyValue
RevertToSelf
StartServiceCtrlDispatcherA
GetEffectiveRightsFromAclW
DecryptFileW
GetLengthSid
QueryServiceConfigW
RegLoadKeyA
RegCreateKeyExA
GetSidIdentifierAuthority
StartServiceCtrlDispatcherW
ChangeServiceConfig2W
RegisterEventSourceA
RegQueryInfoKeyW
SetSecurityDescriptorOwner
FreeSid
RegOverridePredefKey
AddAccessAllowedAce
EnumDependentServicesW
StartServiceA
EnumDependentServicesA
SetEntriesInAclW
GetAce
LockServiceDatabase
RegRestoreKeyW
AllocateAndInitializeSid
SetKernelObjectSecurity
GetSidLengthRequired
InitializeAcl
OpenEventLogW
SetSecurityDescriptorGroup
RegEnumKeyW
LsaFreeMemory
RegDeleteValueW
EncryptFileW
GetFileSecurityW
RegSetKeySecurity
ChangeServiceConfig2A
ChangeServiceConfigA
GetAclInformation
RegCreateKeyW
InitiateSystemShutdownA
AddAce
RegQueryValueA
RegQueryInfoKeyA
CopySid
LsaRetrievePrivateData
SetEntriesInAclA
DeleteAce
GetUserNameW

rasapi32

RasDialA

kernel32

HeapDestroy
GetCommState
GetPriorityClass
GetModuleHandleA
GetStartupInfoA
GetShortPathNameA

mfc42

ord1044
ord2554
ord5731
ord6375
ord4274
ord3922
ord1089
ord1098
ord2396
ord3346
ord5302
ord1088
ord2725
ord1089
ord4698
ord5307
ord1053
ord5714
ord2982
ord1063
ord3259
ord4465
ord1066
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord1005
ord4424
ord3738
ord561
ord815
ord5265
ord4376
ord4853
ord4998
ord2514
ord6052
ord4078
ord1775
ord4407
ord1050
ord2385
ord5163
ord6374
ord4353
ord5280
ord3798
ord4837
ord4441
ord1069
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord1095
ord1052
ord1036
ord4627
ord4425
ord1093
ord641
ord324
ord4234
ord1168
ord1075
ord1576
ord4486

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2322dcd1039cf14f411161f828e5d87

Headers

File Characteristics

Imports

msvcrt

user32

advapi32

rasapi32

kernel32

mfc42

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 4KB - Virtual size: 1.3MB

.rsrc Size: 260KB - Virtual size: 258KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 4KB - Virtual size: 1.3MB

.rsrc
Size: 260KB - Virtual size: 258KB