a88f6a2501236e5de7400be84798fb409b6ff793cfee2c709ecbb06824b1de3f

Sharing

Copy URL Twitter E-mail

General

Target

a88f6a2501236e5de7400be84798fb409b6ff793cfee2c709ecbb06824b1de3f
Size

284KB
MD5

eb0ca0f7fd340f6ab54f6ca5f4638924
SHA1

5dfa2f49c1ea8047635d609a63e4d043d1cacaa0
SHA256

a88f6a2501236e5de7400be84798fb409b6ff793cfee2c709ecbb06824b1de3f
SHA512

4c0a23b44394124473568086b94aad67fb91ee5be6c609e4600a28ef9dca5c59aa1a4385060b34b5c714aadbd912ee06bcde067ae48409c3ac2b93f3536094ca
SSDEEP

3072:jqy2bOoTs29PZLA7tygwdyP5ukibzQ0Bjf/OtvQwCT1ooP+5kDC8Ct0d4VAEeTvm:mxb9s29PVpLn/OQNaoZD8k4VcpU

Score

N/A

Malware Config

Signatures

Files

a88f6a2501236e5de7400be84798fb409b6ff793cfee2c709ecbb06824b1de3f
.exe windows x86

3af87b559eb6213efe906572303b648d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesExA
GetSystemDirectoryW
SetFileTime
UnmapViewOfFile
GetCurrentProcess
EnumResourceNamesA
CompareStringW
GetUserDefaultLCID
GetFileType
FileTimeToLocalFileTime
GetOEMCP
ReadFile
GlobalUnlock
EnumCalendarInfoA
CompareStringA
_lread
ExitProcess
WriteConsoleOutputCharacterA
SetFileAttributesA
GetCommandLineW
GetBinaryTypeW
WritePrivateProfileSectionA
GetCurrentProcessId
TryEnterCriticalSection
VirtualLock
CloseHandle
SetEnvironmentVariableW
OpenMutexA
GetEnvironmentStringsW
GlobalFree
lstrcpyA
IsDBCSLeadByteEx
GetUserDefaultLangID
lstrcmpA
FreeEnvironmentStringsA
SetConsoleOutputCP
IsBadWritePtr
LocalLock
CreateEventA
FlushFileBuffers
DeleteCriticalSection
AreFileApisANSI
GetTapeParameters
GetTempPathW
SetConsoleTitleA
GetLargestConsoleWindowSize
SetProcessAffinityMask
GetCPInfo
FatalAppExitA
GetCommandLineA
VirtualAlloc
CreateFileW

user32

TranslateAcceleratorW
SetProcessDefaultLayout
EnumThreadWindows
LoadImageA
GetKeyboardLayoutNameA
SetWindowTextA
DrawIconEx
RegisterClassExA
ChangeClipboardChain
SetWindowRgn
LoadImageW
OpenWindowStationA
FlashWindow
EmptyClipboard
SetMenuItemInfoA
ScreenToClient
GetProcessDefaultLayout
SetScrollRange
EnumDesktopWindows
SetClipboardData
FrameRect
CharLowerBuffW
GetClipboardData
SetLastErrorEx
SetCursorPos
GetDlgItemInt
OpenDesktopW
MoveWindow
SendMessageCallbackW
GetKeyNameTextA
EnumWindowStationsA
CharToOemA
SetKeyboardState
CreateDialogIndirectParamA
ExcludeUpdateRgn
SetSysColors
SwitchToThisWindow
TranslateAcceleratorA
SetUserObjectSecurity
CheckRadioButton
GetWindowInfo
IsWindowUnicode
DrawTextA
CountClipboardFormats
SetMessageQueue
ShowCaret
IsCharLowerA
DeleteMenu
ShowScrollBar
BroadcastSystemMessageA
GetClassNameA
SetDlgItemTextW
LoadAcceleratorsW
GetPropA
CharUpperBuffA
DialogBoxParamW
WaitForInputIdle
ExitWindowsEx
CharUpperBuffW
CheckMenuRadioItem
CreateIconFromResource

gdi32

RemoveFontResourceA
SetPaletteEntries
UnrealizeObject
GetTextFaceA
CreatePolyPolygonRgn
CreateEllipticRgn
ArcTo

comdlg32

PrintDlgW

advapi32

CryptAcquireContextW
CryptGetUserKey
SetSecurityDescriptorGroup
DeleteService
RegSaveKeyA
CryptDeriveKey
QueryServiceLockStatusW
ImpersonateSelf
AbortSystemShutdownW
GetTokenInformation
ClearEventLogW
RegEnumKeyExA
CryptSetProvParam
AddAccessDeniedAce
GetFileSecurityW
DestroyPrivateObjectSecurity
GetSidLengthRequired
RegLoadKeyW
GetNamedSecurityInfoW
CryptGetKeyParam
ChangeServiceConfigW
RegEnumValueW
GetAclInformation
ObjectDeleteAuditAlarmW
BuildTrusteeWithSidW
GetSecurityDescriptorLength

shell32

DragFinish

ole32

ReadFmtUserTypeStg
OleSaveToStream

oleaut32

SafeArrayPutElement
VariantCopy
SafeArrayGetLBound
SafeArrayRedim
LoadTypeLibEx
SafeArrayCreate
LoadTypeLi
SetErrorInfo
QueryPathOfRegTypeLi
VariantChangeType

comctl32

ImageList_SetDragCursorImage
ImageList_EndDrag
ImageList_DragShowNolock
PropertySheetW

shlwapi

StrCpyW
PathStripToRootW
PathParseIconLocationW
PathIsPrefixW
SHRegQueryUSValueW
PathFindExtensionA
wnsprintfW
StrToIntW

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3af87b559eb6213efe906572303b648d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 268KB - Virtual size: 264KB

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 268KB - Virtual size: 264KB