acc1893503e5d0f696db270bbb2b59f8b5b9bfa537b3506b316305d1043f5ec1

Sharing

Copy URL

Twitter E-mail

General

Target

acc1893503e5d0f696db270bbb2b59f8b5b9bfa537b3506b316305d1043f5ec1
Size

24KB
MD5

f903f22e6bc97c3485dafedec178a666
SHA1

a28cc990c4889704487cf8e4cd4abb42b9d1d78e
SHA256

acc1893503e5d0f696db270bbb2b59f8b5b9bfa537b3506b316305d1043f5ec1
SHA512

adffa03a06b53f42b55737b93bb922807ad1fdfb0643a635b34a86e422f8923f3bf684aec8bf11d323b61be124d6c0b3f11c8b93e8a8904d5076322709e42836
SSDEEP

384:uMKCyndRP57ki9OVdX1s7jw6byATs98ehQAvRdZd58DzsKQxhZxOcFo0sZV:YzndRB7ki9We86kvQqEDzsKQ7ZxdCZ

Score

N/A

Malware Config

Signatures

Files

acc1893503e5d0f696db270bbb2b59f8b5b9bfa537b3506b316305d1043f5ec1
.exe windows x86

80a5042730413a0c4d2565fcf23f827c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharPrevW
GetWindowRect
PeekMessageW
GetDlgItem
GetSystemMetrics
GetDC
OemToCharA
ReleaseDC
EnableWindow
SetWindowTextW
LoadStringW
SendMessageW
DestroyWindow
IsWindow
SetDlgItemTextW
CharUpperW
ExitWindowsEx
GetDlgItemTextW
MessageBeep
EndDialog
MsgWaitForMultipleObjects
UpdateWindow
GetDesktopWindow
CreateDialogParamW
MessageBoxW
SendDlgItemMessageW
ShowWindow
SetWindowPos
CharNextA
CharNextW
DispatchMessageW
DialogBoxParamW

gdi32

GetDeviceCaps
DeleteObject
GetStockObject
CreateFontIndirectW
GetObjectW

crypt32

CryptFormatObject

msvcrt

malloc
_wcsicmp
_initterm
_ultow
_XcptFilter
_wcsnicmp
wcsncmp
memmove
_wtol
memcpy
_amsg_exit
bsearch
_wtoi
_vsnprintf
free
_setjmp3
_vsnwprintf
_adjust_fdiv
memset
longjmp

ole32

CoTaskMemFree
OleUninitialize
OleInitialize

usp10

ScriptGetProperties

kernel32

GetCurrentThreadId
HeapAlloc
SearchPathW
LoadLibraryW
WritePrivateProfileSectionW
CreateProcessW
CreateFileMappingW
DisableThreadLibraryCalls
lstrlenW
GetPrivateProfileIntW
QueryPerformanceCounter
Sleep
FindResourceExW
HeapFree
GetVolumeInformationW
GetEnvironmentVariableW
SetLastError
GetDiskFreeSpaceW
WideCharToMultiByte
GetSystemTimeAsFileTime
lstrcmpiW
FindResourceW
GetFullPathNameW
LoadResource
GetTickCount
GetTempFileNameW
CopyFileW
MoveFileExW
GetLastError
MultiByteToWideChar
CloseHandle
GetPrivateProfileSectionW
GetPrivateProfileStringW
RemoveDirectoryW
SetFilePointer
FindNextFileW
InterlockedCompareExchange
LockResource
GetTempPathW
WriteFile
UnhandledExceptionFilter
LocalReAlloc
VirtualAlloc
GetWindowsDirectoryW
SetFileAttributesW
lstrcmpiA
GetSystemDefaultUILanguage
GetFileSize
FindClose
GetProcAddress
GetVersionExW
GetSystemInfo
FreeLibrary
InterlockedExchange
LoadLibraryExW
MulDiv
GetModuleFileNameW
TerminateProcess
FormatMessageW
GetDriveTypeW
EnumResourceLanguagesW
GetCurrentProcess
SetUnhandledExceptionFilter
CreateDirectoryW
UnmapViewOfFile
GetFileTime
GetFileAttributesW
SizeofResource
GetUserDefaultUILanguage
WritePrivateProfileStringW
LocalFree
GetCurrentProcessId
GetLocaleInfoW
LocalAlloc
SetFileTime
ExpandEnvironmentStringsW
RtlUnwind
ReadFile
GetLocalTime
MapViewOfFile
lstrlenA
GetProfileStringW
GetShortPathNameW
MoveFileW
GetSystemDirectoryW
CreateFileW
AttachConsole
GetProcessHeap
lstrcmpW
FindFirstFileW
DeleteFileW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

shlwapi

StrStrIW
StrRChrW
StrChrW
PathFileExistsW
PathAppendW
PathRemoveFileSpecW
PathBuildRootW
PathAddBackslashW
PathCombineW

advapi32

RegOpenKeyExW
AdjustTokenPrivileges
OpenProcessToken
RegSetValueExW
RegLoadKeyW
EqualSid
RegDeleteKeyW
RegDeleteValueW
RegFlushKey
RegCloseKey
RegUnLoadKeyW
RegEnumValueW
RegCreateKeyExW
RegQueryValueExW
RegSaveKeyW
RegQueryValueExA
AllocateAndInitializeSid
RegEnumKeyW
LookupPrivilegeValueW
RegQueryInfoKeyW
RegOpenKeyExA
FreeSid
GetTokenInformation
RegSetValueW

setupapi

SetupDefaultQueueCallbackW
SetupGetLineTextW
SetupFindFirstLineW
SetupCloseInfFile
SetupSetDirectoryIdW
SetupFindNextLine
SetupOpenInfFileW
SetupInstallFromInfSectionW
SetupGetStringFieldW
SetupTermDefaultQueueCallback
SetupInitDefaultQueueCallbackEx
SetupOpenAppendInfFileW
SetupOpenFileQueue
SetupQueueCopyW
SetupCloseFileQueue
SetupCommitFileQueueW

Sections

.text
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80a5042730413a0c4d2565fcf23f827c

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

crypt32

msvcrt

ole32

usp10

kernel32

version

shlwapi

advapi32

setupapi

Sections

.text Size: 512B - Virtual size: 432B

.rsrc Size: 12KB - Virtual size: 11KB

.idata Size: 6KB - Virtual size: 5KB

.data Size: - Virtual size: 80KB

.rdata Size: 5KB - Virtual size: 4KB

.text
Size: 512B - Virtual size: 432B

.rsrc
Size: 12KB - Virtual size: 11KB

.idata
Size: 6KB - Virtual size: 5KB

.data
Size: - Virtual size: 80KB

.rdata
Size: 5KB - Virtual size: 4KB