0778a8eda3801ffec7a19a66c2e67beb0f0592f0ad21f63f5466a059825ef30b

Sharing

Copy URL Twitter E-mail

General

Target

0778a8eda3801ffec7a19a66c2e67beb0f0592f0ad21f63f5466a059825ef30b
Size

63KB
MD5

381c1f20fdfdb5c2be1311b6acad7f30
SHA1

cc3ea8a15f2fd1342e3fc5b5b28a55a8b8ddbdbf
SHA256

0778a8eda3801ffec7a19a66c2e67beb0f0592f0ad21f63f5466a059825ef30b
SHA512

d30b6a0d68a06c0b1df9ab918fc044c290a0e994037c515dc6b81ba8722c5139ab7191f7dccc4f4542b37e9ea115b0c6a74c87e33ed505ca0a85c86f2b733d77
SSDEEP

1536:Xja+Y/zejaAMYK3SIO6+GSXT0533rWbp2XUbrRPh7Tk/Ee:Ta+RaAMYASc+1XT0xSrRPg

Score

N/A

Malware Config

Signatures

Files

0778a8eda3801ffec7a19a66c2e67beb0f0592f0ad21f63f5466a059825ef30b
.exe windows x86

aa58b1ccbd694970e63350e9e17ba8ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

InvertRect
SetWindowPos
InvertRect
CharUpperW
GetDC
PtInRect
CallNextHookEx
GetSysColor
LoadBitmapA
IsChild
GetDlgItemTextW
InflateRect
PtInRect
BringWindowToTop
CharLowerA
UnionRect
GetScrollPos
TranslateMessage
TranslateMDISysAccel
GetSystemMetrics
CharPrevA
AppendMenuA
GetCaretPos
LoadImageA
CopyRect
GetProcessWindowStation
DrawIcon
ShowWindow
ShowScrollBar
ShowOwnedPopups
ShowCursor

shell32

SHGetFileInfo
SHGetFileInfoA
SHGetFileInfoW

authz

AuthzAccessCheck

apphelp

AllowPermLayer
ApphelpCheckExe
ApphelpCheckIME
ApphelpCheckInstallShieldPackage
ApphelpCheckMsiPackage
ApphelpCheckRunApp
ApphelpCheckShellObject
ApphelpFixMsiPackage
ApphelpFixMsiPackageExe

azroles

AzAddPropertyItem
AzAddPropertyItem

kernel32

_lread
GetLastError
CreateFileA
GetSystemDirectoryA

advapi32

SetTokenInformation
SetSecurityDescriptorDacl
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyExA
RegFlushKey
RegEnumValueA
RegEnumKeyExA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
OpenProcessToken
MapGenericMask
InitializeSecurityDescriptor
GetUserNameA
GetTokenInformation
GetLengthSid
FreeSid
EqualSid
DuplicateTokenEx
CreateProcessAsUserW
AllocateAndInitializeSid
AccessCheck

gdi32

UnrealizeObject
TextOutW
TextOutA
StretchDIBits
StretchBlt
StartPage
StartDocA
SetWindowOrgEx
SetWindowExtEx
SetWinMetaFileBits
SetViewportOrgEx
SetViewportExtEx
SetTextCharacterExtra
SetTextColor
SetTextAlign
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SelectClipRgn
SaveDC
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
Polyline
Polygon
PolyPolyline
PolyBezierTo
PolyBezier
PlayEnhMetaFile
Pie
PatBlt
OffsetViewportOrgEx
OffsetRgn
MoveToEx
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWindowExtEx
GetWinMetaFileBits
GetViewportExtEx
GetTextMetricsA
GetTextFaceA
GetTextExtentPointW
GetTextExtentPointA
GetTextExtentPoint32W
GetTextExtentPoint32A
GetTextExtentExPointW
GetTextExtentExPointA
GetTextColor
GetTextCharacterExtra
GetTextAlign
GetSystemPaletteEntries
GetStretchBltMode
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetOutlineTextMetricsA
GetObjectW
GetObjectA
GetMapMode
GetFontLanguageInfo
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileDescriptionA
GetEnhMetaFileBits
GetDeviceCaps

setupapi

CM_Create_Range_List
CM_Create_Range_List
CM_Delete_Class_Key

cfgmgr32

CMP_Init_Detection
CMP_RegisterNotification
CMP_Report_LogOn

Sections

.text
Size: 1KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 60KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aa58b1ccbd694970e63350e9e17ba8ff

Headers

File Characteristics

Imports

user32

shell32

authz

apphelp

azroles

kernel32

advapi32

gdi32

setupapi

cfgmgr32

Sections

.text Size: 1KB - Virtual size: 13KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 53KB - Virtual size: 60KB

.text
Size: 1KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 53KB - Virtual size: 60KB