874d28d1ba0f4badff59efecda8fbb8b6a8ac3bd8385e930ca7d0dbf3a741a44

Sharing

Copy URL Twitter E-mail

General

Target

874d28d1ba0f4badff59efecda8fbb8b6a8ac3bd8385e930ca7d0dbf3a741a44
Size

303KB
MD5

b76121dd3f66aa10a039a3658b2a62b1
SHA1

1ade702b2d2dda8c13e89ae6f0ce6b1aca394c76
SHA256

874d28d1ba0f4badff59efecda8fbb8b6a8ac3bd8385e930ca7d0dbf3a741a44
SHA512

a79c544541c4e5e05d095141fcd84ddbe01e6caa5d87820f8243b549cf69c3b25472ed09db37d8537d00c803b0f742a5fcc579f1bbeabc435e45b55e2ff278a6
SSDEEP

6144:KRMWI23w4fK1OiY3MO0f/bgkDl7PrPNVwEwkAJEqQ2MvyuPLG:Km23w4fmOR3ULgkhPnWktTvJ6

Score

N/A

Malware Config

Signatures

Files

874d28d1ba0f4badff59efecda8fbb8b6a8ac3bd8385e930ca7d0dbf3a741a44
.exe windows x86

fd55d10c067ef9f8521ea2ca44862e95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLongPathNameW
IsBadReadPtr
SetUnhandledExceptionFilter
MapViewOfFileEx
IsValidCodePage
ReadFile
GetNumberFormatW
MoveFileExW
GetWindowsDirectoryW
LeaveCriticalSection
FreeResource
WritePrivateProfileSectionA
SetThreadPriority
CreateDirectoryW
CreateFileA
GetFileSize
ExitProcess
SetErrorMode
LockResource
GetACP
lstrcpynA
SetNamedPipeHandleState
DuplicateHandle
GetFileAttributesW
MoveFileA
ExitThread
CreateMutexW
GetUserDefaultUILanguage
LoadResource
SizeofResource
GetVolumeInformationW
GetTimeFormatW
GetUserGeoID
SystemTimeToFileTime
lstrcpyW
DeviceIoControl
GlobalAddAtomA
GetPrivateProfileStringW
EnumResourceLanguagesA
lstrcpynW
OpenFile
AddAtomA
GetDateFormatW
GetShortPathNameA
GetSystemDefaultLCID
CopyFileW
GetStringTypeW
FileTimeToSystemTime
FindCloseChangeNotification
InterlockedDecrement
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
HeapAlloc
GetOEMCP
GetCPInfo
EnterCriticalSection
InitializeCriticalSection
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetCurrentProcess
TerminateProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
FileTimeToLocalFileTime
WritePrivateProfileStringA
GetCurrentThread
UnmapViewOfFile
GetDiskFreeSpaceW
GetProcessTimes
GetSystemDefaultUILanguage
FindResourceExA
GetFileAttributesExW
IsProcessorFeaturePresent
SetEndOfFile
ExpandEnvironmentStringsW
LCMapStringA
GetSystemPowerStatus
SetEvent
QueryPerformanceFrequency
CreateTimerQueueTimer
GlobalFree
WriteProfileStringA
GetFullPathNameA
GetCurrentDirectoryA
CreateSemaphoreW
_lread
WritePrivateProfileStringW
UnhandledExceptionFilter
GetDateFormatA
GlobalAlloc
InterlockedIncrement
DeleteTimerQueueTimer
lstrlenA
ResumeThread
FindFirstFileA
VirtualAlloc

comdlg32

GetSaveFileNameA
ChooseColorA
CommDlgExtendedError

shlwapi

PathAddBackslashW

version

GetFileVersionInfoSizeW
GetFileVersionInfoA
VerQueryValueW

user32

SetMenuItemBitmaps
CharPrevW
GetActiveWindow
GetWindowThreadProcessId
IsIconic
GetWindowLongW
GetWindowPlacement
SetPropA
GetWindowRect
GetKeyboardType
SetWindowsHookExA
GetWindowTextW
RegisterClassW
LoadBitmapW
FindWindowA
SetScrollRange
TranslateAcceleratorA
GetWindowRgn
DrawMenuBar
CharUpperA
TrackMouseEvent
VkKeyScanW
DefMDIChildProcA
GetCursorPos
GetCursor
MoveWindow
LoadBitmapA
ReleaseCapture
ClipCursor
EnableMenuItem
IsWindowEnabled
GetClassNameW
DdeConnectList
GetClassInfoExW
RegisterClassExA
DrawTextA
TrackPopupMenuEx
KillTimer
InvertRect
GetKeyboardLayout
SetWindowRgn
CopyAcceleratorTableW
DefWindowProcW
SetRect
FillRect
GetDlgItemTextA
GetAsyncKeyState
GetSubMenu
CheckDlgButton
SetKeyboardState
DrawIcon
CreateDialogIndirectParamA
GetMenuItemID
CheckMenuRadioItem
LoadIconW
IsCharAlphaA
GetCapture
RemoveMenu
GetKeyboardState
ScrollDC
wsprintfW
BroadcastSystemMessageA
ReplyMessage
SetDlgItemTextA
SetWindowsHookExW
IsChild
GrayStringA
ScrollWindow
GetMessagePos
ChildWindowFromPoint
OpenIcon
BeginPaint
CharUpperW
TranslateMDISysAccel
UnregisterClassA
LoadKeyboardLayoutA
UnregisterClassW
EndDeferWindowPos
GetDlgItemTextW
CharUpperBuffW
IsDlgButtonChecked
SetWindowLongW
WindowFromPoint
GetCaretBlinkTime
CreateWindowExW

gdi32

AbortDoc
CopyMetaFileW
EndPath
GetObjectA
SetWindowOrgEx
SetAbortProc
GetPaletteEntries
CreateBrushIndirect
CreateHalftonePalette
PtInRegion
SaveDC
CreateICA
StretchDIBits
SelectObject

ole32

RevokeDragDrop
StringFromCLSID
OleQueryCreateFromData
CoSetProxyBlanket
OleSetClipboard
CoGetInterfaceAndReleaseStream

advapi32

LookupPrivilegeValueA
RegFlushKey
GetSidSubAuthority
SetServiceStatus
RegCreateKeyExW
OpenSCManagerA
GetLengthSid
RegCloseKey
GetSidIdentifierAuthority
GetNamedSecurityInfoW
GetUserNameW
RegSetValueExA
CryptReleaseContext
ImpersonateSelf
StartServiceCtrlDispatcherW

shell32

SHAppBarMessage
SHGetMalloc

comctl32

ImageList_GetImageInfo
ImageList_SetIconSize

oleaut32

SysStringLen

Sections

.text
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd55d10c067ef9f8521ea2ca44862e95

Headers

File Characteristics

Imports

kernel32

comdlg32

shlwapi

version

user32

gdi32

ole32

advapi32

shell32

comctl32

oleaut32

Sections

.text Size: 262KB - Virtual size: 261KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 15KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 262KB - Virtual size: 261KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 15KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 3KB