a75bead26c6228a607ef618d297b5c9cb97f80d9bf5a8f18c62363ecc4001ad8

Sharing

Copy URL Twitter E-mail

General

Target

a75bead26c6228a607ef618d297b5c9cb97f80d9bf5a8f18c62363ecc4001ad8
Size

281KB
MD5

5cfd6198828bba1390d129f1d6ee70c5
SHA1

3b535420ee44f0e2eee126ca6f61459fb23ef368
SHA256

a75bead26c6228a607ef618d297b5c9cb97f80d9bf5a8f18c62363ecc4001ad8
SHA512

3d01511cf10e1229864d5803ff6f094af14c4fd7a0b4d5b8d2cb780027925d78321a97f8704aed14d9993dff07740f0130ad32b9fb6d72eb91e2a2be41882272
SSDEEP

6144:3bhAWFH69yFZBIojvEPuTLAbUSqnQ/Hnz78p:3txHFZOojvCuTsbUSqnQ/H

Score

N/A

Malware Config

Signatures

Files

a75bead26c6228a607ef618d297b5c9cb97f80d9bf5a8f18c62363ecc4001ad8
.exe windows x86

607f09f96da52aab442acb308d9e391a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePen
GetSystemPaletteEntries
GetTextExtentExPointW
CreateICW
CreateRectRgn
SetROP2
CreateICA
CopyMetaFileW
CopyEnhMetaFileA
GetWindowOrgEx
GetDIBits
SetWindowOrgEx
SetStretchBltMode
CreateRoundRectRgn
GetRegionData
Rectangle
LineTo
PlayEnhMetaFile
GetTextFaceA
CreateDIBSection
StretchDIBits
RoundRect
EndDoc
OffsetViewportOrgEx
SetViewportOrgEx
SetRectRgn
Chord
GetObjectType
SetViewportExtEx
GetTextMetricsW
CreatePatternBrush
GetClipRgn
CombineRgn
RestoreDC

shlwapi

PathIsUNCW
SHQueryValueExW
StrCmpIW

version

GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA

kernel32

GetCurrentProcess
OutputDebugStringW
GetLocaleInfoW
CreateThread
GetOverlappedResult
GetWindowsDirectoryA
GetCPInfo
GetPrivateProfileStringA
CreateFileW
GetSystemPowerStatus
QueryPerformanceCounter
FileTimeToSystemTime
GetUserDefaultLangID
EnumResourceLanguagesA
GlobalAddAtomA
_lclose
GlobalFlags
GetFileAttributesW
SystemTimeToFileTime
TlsFree
WaitForSingleObject
GlobalHandle
FreeLibrary
CreateMutexA
GlobalAddAtomW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
GetProcessHeap
GetComputerNameA
Beep
GetQueuedCompletionStatus
MapViewOfFileEx
CreateSemaphoreA
FormatMessageW
GetOEMCP
CreateProcessW
SetErrorMode
CreateSemaphoreW
GetCurrentDirectoryW
IsValidCodePage
GetLogicalDrives
GetLogicalDriveStringsA
DosDateTimeToFileTime
GetEnvironmentStrings
VerSetConditionMask
GetLocalTime
OpenFileMappingW
OpenEventW
GetThreadLocale
lstrcpynA
CopyFileW
OpenFile
ExitThread
GetProfileStringA
CopyFileA
OpenProcess
InterlockedDecrement
MoveFileExW
DeleteTimerQueueEx
GetPrivateProfileSectionA
SetHandleCount
UnhandledExceptionFilter
GetModuleHandleA
ReadFile
GetModuleHandleW
QueueUserWorkItem
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
TerminateProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetACP
HeapAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetFileTime
GetPriorityClass
GetTempPathW
DebugBreak
FileTimeToLocalFileTime
VirtualQueryEx
VirtualAlloc
DuplicateHandle

comctl32

ImageList_GetIconSize
ImageList_GetImageInfo

ole32

OleSaveToStream
PropVariantClear
CoRevokeClassObject
GetHGlobalFromILockBytes
OleLockRunning
OleSetContainedObject
StringFromCLSID
CoDisconnectObject
CoTreatAsClass
OleCreate
OleInitialize
OleGetIconOfClass

comdlg32

ChooseColorA

user32

DrawMenuBar
SendMessageTimeoutA
GetClassNameA

shell32

CommandLineToArgvW
SHGetFolderPathAndSubDirW
SHGetSpecialFolderLocation

advapi32

RegCreateKeyExW
CreateServiceA
RegDeleteValueW
GetFileSecurityA
RegSetValueExW
LookupPrivilegeValueW
AllocateAndInitializeSid
FreeSid
OpenServiceW
SetThreadToken
DeleteService
CopySid

oleaut32

RegisterTypeLi

Sections

.text
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

607f09f96da52aab442acb308d9e391a

Headers

File Characteristics

Imports

gdi32

shlwapi

version

kernel32

comctl32

ole32

comdlg32

user32

shell32

advapi32

oleaut32

Sections

.text Size: 228KB - Virtual size: 228KB

.rdata Size: 34KB - Virtual size: 34KB

.data Size: 16KB - Virtual size: 17KB

.rsrc Size: 1024B - Virtual size: 792B

.text
Size: 228KB - Virtual size: 228KB

.rdata
Size: 34KB - Virtual size: 34KB

.data
Size: 16KB - Virtual size: 17KB

.rsrc
Size: 1024B - Virtual size: 792B