af84ab5722e4c9b821c47af5e48d39f46aaed427094a9e0e9bf2e5f53898b532

Sharing

Copy URL Twitter E-mail

General

Target

af84ab5722e4c9b821c47af5e48d39f46aaed427094a9e0e9bf2e5f53898b532
Size

461KB
MD5

8a0880ab3d35fa2dc99deb66857b49b5
SHA1

80469bf764dbc348e48c84ec91c442ba560cdda2
SHA256

af84ab5722e4c9b821c47af5e48d39f46aaed427094a9e0e9bf2e5f53898b532
SHA512

0e50a285e7b06e7cbeaff8d5c8e32365d6a83450c379dc082c92e5e5a86a5d15b02cb54b1764115539bddb7e181054ac47157f8905065947e06614f14d577ce3
SSDEEP

12288:E6jEue+ba7/qoaItrH0Eos/UT2HuPJtEhFYuESmWOmZtCJv:5nba7CoLt70EoRSHuPYFVJmWFtCJv

Score

N/A

Malware Config

Signatures

Files

af84ab5722e4c9b821c47af5e48d39f46aaed427094a9e0e9bf2e5f53898b532
.exe windows x86

2a65f4962de03e330dfd8727b4436556

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

LCMapStringW
WriteConsoleW
SetStdHandle
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
HeapSize
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LoadLibraryW
GetStringTypeW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
WriteFile
IsProcessorFeaturePresent
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
EncodePointer
RtlUnwind
HeapFree
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
DecodePointer
ExitProcess
GetModuleHandleW
LocalFree
WideCharToMultiByte
MultiByteToWideChar
FlushFileBuffers
CreateFileW
lstrcpyA
CreateThread
GetCurrentProcessId
CloseHandle
GetVersionExA
OutputDebugStringA
GetCurrentThreadId
GetModuleHandleA
LoadLibraryA
GetProcAddress
lstrcmpiA
GetLastError
GlobalUnlock
GetSystemDirectoryA
HeapCreate
CreateEventA
CreateFileA
Sleep
GlobalAlloc
GetCurrentThread
GetTickCount
SetEvent
WaitForSingleObject
GlobalLock
GetCurrentProcess
InterlockedDecrement
HeapAlloc
FreeLibrary
lstrlenA

user32

KillTimer
FillRect
GetWindowDC
GetWindowThreadProcessId
RegisterClassExA
SetActiveWindow
DestroyIcon
LoadCursorA
PostQuitMessage
DrawIconEx
SetForegroundWindow
CopyImage
GetFocus
LoadBitmapA
IsClipboardFormatAvailable
GetParent
FindWindowA
DestroyMenu
SetClipboardData
EnableWindow
UpdateWindow
LoadImageA
SetWindowTextA
GetSystemMetrics
IsMenu
GetWindowRect
SetTimer
CloseClipboard
GetMessageA
DestroyWindow
ClientToScreen
EndPaint
SetDlgItemTextA
SystemParametersInfoA
OpenClipboard
DispatchMessageA
PostMessageA
IsDlgButtonChecked
SetMenu
AttachThreadInput
LoadMenuA
LoadIconA
MessageBeep
IsWindowEnabled
wsprintfA
DrawIcon
FindWindowExA
GetClientRect
GetMenuCheckMarkDimensions
SendMessageA
BeginPaint
GetDC
TranslateMessage
ChildWindowFromPoint
GetForegroundWindow
GetMenu
OffsetRect
GetWindowTextA
SetRect
MessageBoxA
InvalidateRect
SetCursorPos
BringWindowToTop
GetWindowLongA
GetClipboardData
CreateWindowExA
PeekMessageA
GetClassNameW
ReleaseDC
EnableMenuItem
EmptyClipboard
GetDlgItem
EndDialog
DefWindowProcA
GetDesktopWindow
SetWindowPos
EnumWindowStationsW
ShowWindow

gdi32

CreateFontIndirectA
PatBlt
SetBrushOrgEx
DeleteObject
DeleteDC
ExcludeClipRect
SelectObject
GetStockObject
CreatePatternBrush
CreateRectRgn
GetObjectW
Ellipse
CreateCompatibleBitmap
CreateBitmap
CreateCompatibleDC

comdlg32

ChooseColorA

advapi32

AdjustTokenPrivileges
OpenProcessToken
OpenThreadToken
GetTokenInformation
LookupPrivilegeValueA
InitiateSystemShutdownA

ole32

CoInitialize

oleaut32

SysAllocString
VariantClear
SysFreeString

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

shlwapi

StrToIntExA

comctl32

ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Create
ord6
ImageList_GetImageCount

gdiplus

GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdiplusStartup
GdipDisposeImage

setupapi

SetupDiSetSelectedDevice
SetupDiCallClassInstaller
SetupDiCreateDeviceInfoList
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInstallParamsA
SetupDiOpenDeviceInfoW
SetupDiGetSelectedDriverA
SetupDiBuildDriverInfoList
SetupDiSetDeviceInstallParamsA

uxtheme

DrawThemeBackground

eappcfg

EapHostPeerGetMethods
EapHostPeerFreeMemory
EapHostPeerFreeErrorMemory
EapHostPeerInvokeInteractiveUI

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 269KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a65f4962de03e330dfd8727b4436556

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

version

shlwapi

comctl32

gdiplus

setupapi

uxtheme

eappcfg

Sections

.text Size: 71KB - Virtual size: 70KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 269KB - Virtual size: 276KB

.rsrc Size: 72KB - Virtual size: 72KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 71KB - Virtual size: 70KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 269KB - Virtual size: 276KB

.rsrc
Size: 72KB - Virtual size: 72KB

.reloc
Size: 10KB - Virtual size: 9KB