af347225b3ec5d2bda02971df9fb81e758792d82b04a8fe492d84a4eaf7bb9c9

Sharing

Copy URL Twitter E-mail

General

Target

af347225b3ec5d2bda02971df9fb81e758792d82b04a8fe492d84a4eaf7bb9c9
Size

181KB
MD5

7ba29fb241b8af36964cb11bed47786c
SHA1

84db56e0a43f9ffa7102294567b90f46815ff0b0
SHA256

af347225b3ec5d2bda02971df9fb81e758792d82b04a8fe492d84a4eaf7bb9c9
SHA512

66bcf6575884b3ad3003356e321a3c90904ac1a44417eaf1693398b8c7e00aedd0069dbf0cc73c34c6ee21bd7a3c1eb0fd62d6bedece9137e56dcb1de2e9f1aa
SSDEEP

3072:iGa7XIo6ihBXzceKxd81VkHHHK0YVfrw1Jdz/VvYBJUR4m2Z0Z:i3IJqDl8HoVfstVvYcumR

Score

N/A

Malware Config

Signatures

Files

af347225b3ec5d2bda02971df9fb81e758792d82b04a8fe492d84a4eaf7bb9c9
.exe windows x86

8726f007ac8da236f9700529d66eb4e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyW
RegEnumValueW
RegCloseKey

ole32

CoCreateInstance
DoDragDrop
OleRun

kernel32

GetSystemTimeAsFileTime
GetCurrentDirectoryW
GetProcAddress
GetLastError
FindCloseChangeNotification
lstrcpyW
ReplaceFileW
DeleteFileW
FindFirstFileW
CreateThread
FileTimeToSystemTime
SetFileAttributesW
InterlockedIncrement
GetFileAttributesW
GetModuleFileNameW
Sleep
LockResource
QueryPerformanceCounter
LocalFree
GetPrivateProfileStringW
MultiByteToWideChar
GetThreadLocale
GetProcessId
InterlockedExchange
FreeLibrary
GetACP
WritePrivateProfileStringW
FindResourceW
GetVersionExW
GlobalAlloc
EnumResourceTypesA
LoadLibraryExW
GetCurrentThreadId
GlobalUnlock
MulDiv
GlobalFree
LoadResource
GetVersion
GetModuleHandleW
GetPrivateProfileIntW
FileTimeToLocalFileTime
GlobalSize
CloseHandle
lstrcpynW
SetThreadPriority
LoadLibraryW
ExitProcess
InitializeCriticalSection
FindFirstChangeNotificationW
lstrcmpW
GetVersionExA
FindNextChangeNotification
GlobalLock
GetTickCount
LoadLibraryA
GetLocaleInfoW
WaitForSingleObject
DeleteCriticalSection
WideCharToMultiByte
FindClose
ResumeThread
lstrlenW
InterlockedDecrement
GetCurrentProcessId

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

gdi32

GetBkColor
Rectangle
SetPixelV
GetTextExtentPoint32W
CreateDIBSection

user32

ReleaseCapture
DrawIconEx
GetWindowPlacement
ShowCaret
GetSysColorBrush
PostMessageW
InflateRect
DestroyAcceleratorTable
SetWindowPos
DestroyCaret
FindWindowW
GetCapture
SetWindowLongW
SetRectEmpty
GetClassNameW
EnableMenuItem
SetWindowsHookExW
GetMenu
CloseClipboard
CopyIcon
SetMenuDefaultItem
IsClipboardFormatAvailable
MapVirtualKeyExW
SystemParametersInfoW
GetSysColor
DragDetect
DrawStateW
SetRect
UpdateWindow
GetMenuItemCount
CopyAcceleratorTableW
ClientToScreen
SetCapture
GetMenuItemInfoW
DeferWindowPos
DrawTextExW
IsChild
GetKeyNameTextW
GetMessagePos
GetWindowLongW
GetDlgCtrlID
GetMessageW
LoadImageW
TranslateMessage
DeleteMenu
EqualRect
TrackPopupMenu
EnumChildWindows
ScreenToClient
SetScrollInfo
IsCharLowerW
GetSubMenu
ShowWindow
IntersectRect
AppendMenuW
HideCaret
GetMenuDefaultItem
WindowFromPoint
MapVirtualKeyW
IsZoomed
LoadMenuW
GetWindowRect
GetWindow
GrayStringW
GetDC
LoadCursorW
EmptyClipboard
DrawEdge
MoveWindow
BeginDeferWindowPos
BringWindowToTop
SetCursorPos
GetForegroundWindow
GetFocus
GetMenuItemID
SetScrollPos
GetDCEx
GetCursor
GetClassLongW
wsprintfW
SetActiveWindow
GetKeyboardLayout
EndDeferWindowPos
GetMenuState
SetCursor
mouse_event
GetSystemMetrics
InvalidateRect
ReleaseDC
SetTimer
PtInRect
RegisterClipboardFormatW
DestroyCursor
IsMenu
MapWindowPoints
EnableWindow
GetSystemMenu
DispatchMessageW
RegisterWindowMessageW
GetClipboardData
MessageBeep
SetCaretPos
LoadIconW
GetScrollPos
CopyRect
GetCursorPos
DrawIcon
IsIconic
GetKeyState
OpenClipboard
GetScrollInfo
EnableScrollBar
SystemParametersInfoA
InsertMenuW
DestroyWindow
CloseWindow
GetLastActivePopup
SetMenu
DrawTextW
GetDesktopWindow
OffsetRect
SetFocus
UnionRect
UnhookWindowsHookEx
GetIconInfo
ShowScrollBar
CallNextHookEx
GetTabbedTextExtentW
KillTimer
SetForegroundWindow
CheckMenuItem
GetParent
GetActiveWindow
IsRectEmpty
DestroyIcon
SetClipboardData
CreateIconIndirect
PeekMessageW
TabbedTextOutW
CreateCaret
RedrawWindow
GetNextDlgTabItem
CreatePopupMenu
GetWindowTextW
GetClientRect
LockWindowUpdate
CreateAcceleratorTableW
DrawFrameControl
FillRect
LoadBitmapW
SetParent
CallWindowProcW
SendMessageW
DrawAnimatedRects
SetWindowRgn
DrawFocusRect
IsWindow
GetDlgItem
IsWindowVisible
DestroyMenu

comctl32

InitCommonControlsEx
ImageList_Add
ImageList_ReplaceIcon
ImageList_GetImageCount
_TrackMouseEvent
ImageList_GetIcon
ImageList_AddMasked
ImageList_Destroy
PropertySheetW
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_Draw

shell32

ShellExecuteExW
DragAcceptFiles
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderW
ShellExecuteW
SHGetPathFromIDListW
SHGetFileInfoW
SHAppBarMessage
Shell_NotifyIconW

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8726f007ac8da236f9700529d66eb4e1

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

gdiplus

gdi32

user32

comctl32

shell32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 72KB - Virtual size: 71KB

.tls Size: 1024B - Virtual size: 112KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 72KB - Virtual size: 71KB

.tls
Size: 1024B - Virtual size: 112KB