862be2de207d87a20d1be0af75d0ddc70d2bea9836f15a46b5111cfee3c6c71e

Sharing

Copy URL

Twitter E-mail

General

Target

862be2de207d87a20d1be0af75d0ddc70d2bea9836f15a46b5111cfee3c6c71e
Size

522KB
MD5

05bf6518caed1d66166cca7c64fb3510
SHA1

45d4a8628673353ead228aac97514e332c37a9cd
SHA256

862be2de207d87a20d1be0af75d0ddc70d2bea9836f15a46b5111cfee3c6c71e
SHA512

36735c2796a276c62c9c88e7ab5bc8205cdddd5d83f1a90434e22a71a0bdab449a6f28bc2643ddd9e430268d56bbab86446f53c4d10bbc6d39e339e6753b4221
SSDEEP

12288:IQDlu+eDBrmskqeoAdozBkUbvqRkscvIhQ79dF:IQDl1yrVkqGdtFcw

Score

N/A

Malware Config

Signatures

Files

862be2de207d87a20d1be0af75d0ddc70d2bea9836f15a46b5111cfee3c6c71e
.exe windows x86

aa58b1ccbd694970e63350e9e17ba8ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

InvertRect
SetWindowPos
InvertRect
CharUpperW
GetDC
PtInRect
CallNextHookEx
GetSysColor
LoadBitmapA
IsChild
GetDlgItemTextW
InflateRect
PtInRect
BringWindowToTop
CharLowerA
UnionRect
GetScrollPos
TranslateMessage
TranslateMDISysAccel
GetSystemMetrics
CharPrevA
AppendMenuA
GetCaretPos
LoadImageA
CopyRect
GetProcessWindowStation
DrawIcon
ShowWindow
ShowScrollBar
ShowOwnedPopups
ShowCursor

shell32

SHGetFileInfo
SHGetFileInfoA
SHGetFileInfoW

authz

AuthzAccessCheck

apphelp

AllowPermLayer
ApphelpCheckExe
ApphelpCheckIME
ApphelpCheckInstallShieldPackage
ApphelpCheckMsiPackage
ApphelpCheckRunApp
ApphelpCheckShellObject
ApphelpFixMsiPackage
ApphelpFixMsiPackageExe

azroles

AzAddPropertyItem
AzAddPropertyItem

kernel32

_lread
GetLastError
CreateFileA
GetSystemDirectoryA

advapi32

SetTokenInformation
SetSecurityDescriptorDacl
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyExA
RegFlushKey
RegEnumValueA
RegEnumKeyExA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
OpenProcessToken
MapGenericMask
InitializeSecurityDescriptor
GetUserNameA
GetTokenInformation
GetLengthSid
FreeSid
EqualSid
DuplicateTokenEx
CreateProcessAsUserW
AllocateAndInitializeSid
AccessCheck

gdi32

UnrealizeObject
TextOutW
TextOutA
StretchDIBits
StretchBlt
StartPage
StartDocA
SetWindowOrgEx
SetWindowExtEx
SetWinMetaFileBits
SetViewportOrgEx
SetViewportExtEx
SetTextCharacterExtra
SetTextColor
SetTextAlign
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SelectClipRgn
SaveDC
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
Polyline
Polygon
PolyPolyline
PolyBezierTo
PolyBezier
PlayEnhMetaFile
Pie
PatBlt
OffsetViewportOrgEx
OffsetRgn
MoveToEx
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWindowExtEx
GetWinMetaFileBits
GetViewportExtEx
GetTextMetricsA
GetTextFaceA
GetTextExtentPointW
GetTextExtentPointA
GetTextExtentPoint32W
GetTextExtentPoint32A
GetTextExtentExPointW
GetTextExtentExPointA
GetTextColor
GetTextCharacterExtra
GetTextAlign
GetSystemPaletteEntries
GetStretchBltMode
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetOutlineTextMetricsA
GetObjectW
GetObjectA
GetMapMode
GetFontLanguageInfo
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileDescriptionA
GetEnhMetaFileBits
GetDeviceCaps

setupapi

CM_Create_Range_List
CM_Create_Range_List
CM_Delete_Class_Key

cfgmgr32

CMP_Init_Detection
CMP_RegisterNotification
CMP_Report_LogOn

Sections

.text
Size: 1KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 502KB

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 513KB - Virtual size: 520KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aa58b1ccbd694970e63350e9e17ba8ff

Headers

File Characteristics

Imports

user32

shell32

authz

apphelp

azroles

kernel32

advapi32

gdi32

setupapi

cfgmgr32

Sections

.text Size: 1KB - Virtual size: 13KB

.data Size: 7KB - Virtual size: 502KB

.rsrc Size: 513KB - Virtual size: 520KB

.text
Size: 1KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 502KB

.rsrc
Size: 513KB - Virtual size: 520KB