989dce32325327e048034c6eec1277948c90b4fc3de7da37ee68aaef82f26afd

Sharing

Copy URL Twitter E-mail

General

Target

989dce32325327e048034c6eec1277948c90b4fc3de7da37ee68aaef82f26afd
Size

315KB
MD5

57c404c7fa4a8f1be17b5ad6c114b102
SHA1

133c7e7f7380a8786179c170ee98ed3dd27f5347
SHA256

989dce32325327e048034c6eec1277948c90b4fc3de7da37ee68aaef82f26afd
SHA512

a254d84fcd371a9dc70242adc7c3599619208a0b2254f9b4f0ed82068cf01b3539f0e46b64025b4ac0aceacc7d078daaefd25ce1feb31ba59ab69d45535c9220
SSDEEP

6144:DGHXLMp6ucbyBnGQqxWJ7G9STItbsdVeQkC/UX+:q3McbyBG3EtG9ScxsdEtC/U

Score

N/A

Malware Config

Signatures

Files

989dce32325327e048034c6eec1277948c90b4fc3de7da37ee68aaef82f26afd
.exe windows x86

0020e74d86f676ba00b93f2a7420a9ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRect
DdeFreeDataHandle
ReleaseDC
OemToCharA
BeginPaint
CharUpperA
CharToOemA
CharNextA
CharPrevA
DdeCreateStringHandleA
DdeInitializeA
DdeUninitialize
DdeFreeStringHandle
DdeDisconnect
DdeGetLastError
DdeClientTransaction
DdeConnect
GetClassInfoA
GetWindowLongA
GetWindow
GetClassNameA
CharLowerA
GetSysColor
FillRect
SetRect
SetRectEmpty
ScreenToClient
InflateRect
PostMessageA
GetWindowRect
EnableWindow
SetFocus
IsWindowVisible
DialogBoxParamA
GetWindowTextA
GetDlgItem
CreateDialogParamA
ExitWindowsEx
FindWindowA
RegisterWindowMessageA
SendMessageA
GetClientRect
SetWindowTextA
SetDlgItemTextA
LoadBitmapA
GetSystemMetrics
SetWindowPos
UpdateWindow
ShowWindow
DestroyWindow
LoadStringA
wsprintfA
MessageBeep
MessageBoxA
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
SetTimer
PeekMessageA
IsWindow
IsDialogMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
PostQuitMessage
KillTimer
EndDialog
SendDlgItemMessageA
DdeGetData
GetDC
EndPaint

gdi32

CreateBitmap
CreateDIBitmap
GetTextExtentPointA
SetPixel
SetBkColor
CreatePen
DeleteObject
GetObjectA
RealizePalette
SelectPalette
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetDeviceCaps
RestoreDC
Rectangle
GetSystemPaletteEntries
CreateSolidBrush
SaveDC
GetStockObject
LineTo
MoveToEx
CreateCompatibleBitmap
CreatePalette
CreateFontIndirectA

kernel32

GetVersion
_hwrite
OpenFile
lstrcatA
GlobalLock
LoadLibraryA
GlobalFree
FreeResource
SizeofResource
LoadResource
FindResourceA
GetSystemInfo
SetErrorMode
GetModuleHandleA
IsDBCSLeadByte
GetProcAddress
FreeLibrary
GetModuleFileNameA
lstrcpyA
GetWindowsDirectoryA
GlobalAlloc
GetTickCount
LockResource
GlobalUnlock
_lclose
SetCurrentDirectoryA
GetCurrentThread
SetFileAttributesA
WinExec
ReadFile
GetSystemDirectoryA
_lread
_lwrite
_llseek
GetCurrentDirectoryA
HeapReAlloc
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
VirtualAlloc
LCMapStringW
LCMapStringA
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
HeapAlloc
HeapFree
GetSystemTime
GetTimeZoneInformation
ExitProcess
GetCommandLineA
GetStartupInfoA
MoveFileA
SetFilePointer
SetEndOfFile
GetProfileSectionA
GlobalReAlloc
GlobalCompact
GlobalHandle
lstrcmpiA
lstrlenA
lstrcmpA
MulDiv
GetSystemDefaultLCID
Sleep
RemoveDirectoryA
GetFileAttributesA
WriteProfileSectionA
FindNextFileA
FindClose
FindFirstFileA
GetDriveTypeA
DeleteFileA
CloseHandle
WriteFile
CreateFileA
GetDiskFreeSpaceA
CreateDirectoryA
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileTime
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetLocalTime
lstrcpynA
GetPrivateProfileStringA
GetCurrentProcess
MoveFileExA
GetPrivateProfileSectionA
GetFileSize
GetLastError
WritePrivateProfileSectionA
WriteProfileStringA
WritePrivateProfileStringA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

advapi32

RegSetValueExA
RegConnectRegistryA
OpenSCManagerA
CloseServiceHandle
OpenThreadToken
GetTokenInformation
EqualSid
RegEnumValueA
RegDeleteValueA
RegQueryValueExA
AdjustTokenPrivileges
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
InitializeSecurityDescriptor
AllocateAndInitializeSid
SetSecurityDescriptorOwner
RegCreateKeyExA
FreeSid
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 899B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 170KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0020e74d86f676ba00b93f2a7420a9ca

Headers

File Characteristics

Imports

user32

gdi32

kernel32

version

advapi32

comdlg32

shell32

Sections

.text Size: 122KB - Virtual size: 122KB

.rdata Size: 1024B - Virtual size: 899B

.data Size: 14KB - Virtual size: 18KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 170KB - Virtual size: 172KB

.text
Size: 122KB - Virtual size: 122KB

.rdata
Size: 1024B - Virtual size: 899B

.data
Size: 14KB - Virtual size: 18KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 170KB - Virtual size: 172KB