8c1d3ee4a47cd1d723272a8ee8993d8bfb5407ac8299f3db5a3f826ed7176a8e

Sharing

Copy URL Twitter E-mail

General

Target

8c1d3ee4a47cd1d723272a8ee8993d8bfb5407ac8299f3db5a3f826ed7176a8e
Size

388KB
MD5

1a13dec241eae05679e86f6e01051b90
SHA1

84d04519dfd1242b69a99d51dd81d28f35f7ba97
SHA256

8c1d3ee4a47cd1d723272a8ee8993d8bfb5407ac8299f3db5a3f826ed7176a8e
SHA512

4b8f4c3ed043a1c2b2e409d32c80e1afcdba910c4e3aa9e3e85c5e769b28a18453bacbc77ccad902405f1b3c3907c117fa0824596a735e0ef33a742838686b53
SSDEEP

12288:YTEe4qfuaqNwHUvgQLpj+EDWiOLyO/wdTl:Y+qfu3wtaFDDOGO/wl

Score

N/A

Malware Config

Signatures

Files

8c1d3ee4a47cd1d723272a8ee8993d8bfb5407ac8299f3db5a3f826ed7176a8e
.exe windows x86

7c2c83daed4180add13b39b270d81681

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
InitCommonControlsEx
ImageList_GetIcon
ImageList_GetIconSize
ImageList_Remove

user32

ClipCursor
GetProcessWindowStation
GetCursorPos
GetWindowTextLengthA
MoveWindow
UnionRect
ShowWindow
GetKeyNameTextW
CopyImage
GetSubMenu
SetMenuItemInfoW
MenuItemFromPoint
DestroyAcceleratorTable
GetWindowDC
TileWindows
IsWindow
RemovePropA
DeferWindowPos
WinHelpW
GetClipCursor
DdeCreateDataHandle
GetClipboardData
GetMenuContextHelpId
SetCaretPos
CreateWindowStationA
CopyIcon
DdeCreateStringHandleA
InSendMessageEx
MapVirtualKeyW
GetMenuInfo
GetWindowModuleFileNameW
RealChildWindowFromPoint
WindowFromPoint
DestroyCaret
GetWindowInfo
DdeConnect
GetMenuDefaultItem
GetComboBoxInfo
DdeCreateStringHandleW
DrawTextW
MapVirtualKeyExW
LoadStringW
GetUserObjectSecurity
GetTitleBarInfo
GetMenuItemRect
CreateMenu
DdeAddData
SetClassWord
CreateDialogIndirectParamW
DdeUninitialize
AdjustWindowRectEx
MsgWaitForMultipleObjectsEx
FindWindowExW
GetClassInfoExW
SetWindowsHookExA
DefFrameProcA
IsCharLowerA
CheckDlgButton
DrawIcon
OemKeyScan
GetWindowThreadProcessId
ScreenToClient
MapVirtualKeyExA
SetWindowsHookExW
SetWindowPlacement
GetMenuItemInfoW
GetInputDesktop
GetWindowModuleFileNameA
GetWindowTextW
CreateIconFromResourceEx
GetPropA
SetThreadDesktop
CallMsgFilterA
SetMessageQueue
GetMessageW
EmptyClipboard
SetWindowRgn
SwitchToThisWindow
SetWindowTextA
RegisterClassA
ScrollWindowEx
GetMonitorInfoW
EnumDisplaySettingsA
GetDialogBaseUnits
SetWindowLongA
EnumPropsA
GetWindowTextA
GetMonitorInfoA
EnumDesktopsA
GetClipboardOwner
OemToCharBuffA
RegisterClassExA
SetScrollInfo

advapi32

RegCreateKeyExW
LookupPrivilegeDisplayNameW
CryptSetHashParam
LogonUserA
RegRestoreKeyA
CryptEnumProviderTypesA
RegOpenKeyExW
DuplicateTokenEx
RegSetValueW
CryptHashData
CryptEncrypt
CryptDuplicateKey
RegQueryInfoKeyA
CryptSetKeyParam
LookupPrivilegeNameW
RegEnumKeyA
CryptEnumProviderTypesW
LookupAccountSidA
LookupAccountSidW
CryptDecrypt
ReportEventW
RegCreateKeyExA

kernel32

SetConsoleCtrlHandler
CompareStringA
SetStdHandle
ReadFile
GetConsoleOutputCP
GetSystemTimeAsFileTime
ExitThread
TlsAlloc
GetConsoleCP
HeapFree
GetModuleFileNameA
InterlockedDecrement
GetModuleHandleW
TerminateProcess
HeapDestroy
ConvertDefaultLocale
SetLastError
FreeLibrary
RtlUnwind
CreateMutexA
Sleep
VirtualQuery
SetSystemTime
FreeEnvironmentStringsW
GetCurrentProcessId
SetHandleCount
GetCommandLineW
CreateRemoteThread
WideCharToMultiByte
GetLocaleInfoW
GetLocaleInfoA
GetProcAddress
GetModuleHandleA
GetFileType
IsValidLocale
EnumResourceNamesA
UnhandledExceptionFilter
SetFilePointer
GlobalAddAtomA
HeapValidate
GetStdHandle
HeapSize
GetStartupInfoA
VirtualAlloc
CompareStringW
HeapAlloc
GetConsoleMode
GetTickCount
CreateMailslotW
HeapCreate
FormatMessageA
HeapReAlloc
SetEnvironmentVariableA
GetFileAttributesExW
InterlockedIncrement
EnumSystemLocalesW
MultiByteToWideChar
GetDateFormatA
OpenFile
GetCurrentThreadId
CreateFileA
InterlockedExchange
WriteFile
GetCurrentThread
GetLastError
MoveFileExW
GetStringTypeW
GetCurrentProcess
FlushFileBuffers
GetEnvironmentStringsW
IsDebuggerPresent
GetTimeFormatA
OpenMutexA
SetVolumeLabelW
ExitProcess
LCMapStringA
GetProcessHeaps
InitializeCriticalSectionAndSpinCount
GetStartupInfoW
SetLocaleInfoW
GetCommandLineA
DuplicateHandle
GetModuleFileNameW
GetUserDefaultLCID
GetACP
LeaveCriticalSection
SetUnhandledExceptionFilter
GetStringTypeA
VirtualFree
WriteConsoleW
GetTimeZoneInformation
QueryPerformanceCounter
GetDiskFreeSpaceExW
GetOEMCP
DeleteCriticalSection
TlsGetValue
IsValidCodePage
CloseHandle
GetNamedPipeHandleStateW
EnumSystemLocalesA
EnterCriticalSection
SetConsoleTitleW
WriteConsoleA
LoadLibraryA
LCMapStringW
TlsSetValue
GetCPInfo
TlsFree

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c2c83daed4180add13b39b270d81681

Headers

File Characteristics

Imports

comctl32

user32

advapi32

kernel32

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 92KB - Virtual size: 116KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 92KB - Virtual size: 116KB

.rsrc
Size: 40KB - Virtual size: 39KB