a3a649ac75516c96bf9d14f3e6974da2b824d3ec88a735b0bf5ddecd8a44d1d2

Sharing

Copy URL Twitter E-mail

General

Target

a3a649ac75516c96bf9d14f3e6974da2b824d3ec88a735b0bf5ddecd8a44d1d2
Size

328KB
MD5

62a7b952869d0287b77acf6cd2d2512c
SHA1

0f4f25c8ca7f5afbdde9fdb7bc58a9f6e7aa80c8
SHA256

a3a649ac75516c96bf9d14f3e6974da2b824d3ec88a735b0bf5ddecd8a44d1d2
SHA512

4a2e48e02c9c9e794920e9ee1f96e9ba81374109c5596654ace7c5a7117151ed76e16a6fb92d823a76e844a0713e89595b2dc2096047276d95c63fe628790648
SSDEEP

6144:XQV50RinIJFTNXFa7R2kl+mnCI9x//gWQGWA58w3Yg:XsPIJFN812mnZgCF59

Score

N/A

Malware Config

Signatures

Files

a3a649ac75516c96bf9d14f3e6974da2b824d3ec88a735b0bf5ddecd8a44d1d2
.exe windows x86

36e2b3a848838cf16e3f42c7d138704b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_XcptFilter
_cexit
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ
_onexit
__CxxFrameHandler
_wcsicmp
wcscpy
_exit
_c_exit
_controlfp
?terminate@@YAXXZ
__dllonexit

advapi32

RegOpenKeyExA
AllocateAndInitializeSid
DuplicateTokenEx
OpenProcessToken
IsWellKnownSid
GetAce
GetAclInformation
GetSecurityDescriptorDacl
FreeSid
RegSetValueExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
CheckTokenMembership

kernel32

GetTickCount
GetProcAddress
GetModuleHandleW
MulDiv
CloseHandle
lstrcmpiW
WaitForMultipleObjects
CreateThread
GetCurrentThreadId
OpenEventW
CreateEventW
SetEvent
GetLastError
lstrlenW
OpenProcess
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
GetStartupInfoW
GetVersionExA
LoadLibraryA

gdi32

CreateFontIndirectW
SetBitmapDimensionEx
ExtTextOutW
StretchBlt
BitBlt
GetStockObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
RealizePalette
GetObjectW
GetDeviceCaps
DeleteObject
CreatePalette
PatBlt

user32

OpenWindowStationW
SetProcessWindowStation
GetSystemMetrics
PtInRect
SetRectEmpty
InflateRect
CopyRect
EqualRect
GetWindowRect
GetClientRect
ClientToScreen
UpdateWindow
IsWindowVisible
SetTimer
KillTimer
GetActiveWindow
SystemParametersInfoW
GetKeyState
MessageBoxW
GetAsyncKeyState
GetMessagePos
AdjustWindowRectEx
EnableWindow
IsWindow
RegisterWindowMessageW
IsIconic
IntersectRect
IsRectEmpty
SetRect
FillRect
EnableMenuItem
GetSubMenu
LoadMenuW
PostMessageW
GetSystemMenu
InvalidateRect
OpenClipboard
GetProcessWindowStation
LoadCursorW
DrawIconEx
GetIconInfo
CloseClipboard
SetClipboardData
EmptyClipboard
SetCursor
ReleaseDC
GetDC
GetCursorPos
SetWindowLongW
CloseDesktop
GetUserObjectInformationW
OpenDesktopW
OpenInputDesktop
SetThreadDesktop
GetThreadDesktop
WinHelpW
RedrawWindow
DrawIcon
AppendMenuW
SendMessageW
LoadIconW
UnregisterHotKey
wsprintfW
RegisterHotKey
GetUserObjectSecurity
SetForegroundWindow

shell32

SHAppBarMessage
ShellExecuteW

ole32

CoUninitialize
CoInitialize

psapi

EnumProcesses

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 226KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 37KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

36e2b3a848838cf16e3f42c7d138704b

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

shell32

ole32

psapi

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 226KB - Virtual size: 233KB

.bss Size: - Virtual size: 37KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 226KB - Virtual size: 233KB

.bss
Size: - Virtual size: 37KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB