ad188fe930fbd56abdcc3f56b1b269a6f37bdef4516cc82a3b398836b7dd4118

Sharing

Copy URL Twitter E-mail

General

Target

ad188fe930fbd56abdcc3f56b1b269a6f37bdef4516cc82a3b398836b7dd4118
Size

2.4MB
MD5

9177d0e499e8cffdd8a6c5e546be6c06
SHA1

c7e1a6c8bd5cb4004e21e0788a1c1bcfc3697279
SHA256

ad188fe930fbd56abdcc3f56b1b269a6f37bdef4516cc82a3b398836b7dd4118
SHA512

69c47edf4812b8762d98414ddb08eb7efa9c4be56b389fbeaeff701e07a3b1cce418dfa8ad0985fbcf5d6be33f036f21190ecde7eb1447f7164b13d676f5a62a
SSDEEP

49152:ZPe3PRcbRTpJ1AeW/vtn1xMT2jnHbvtRo1dEZPpGTD/tutzGBqFdVU2ti:ZPefRco/Vn3e2jnHjtyR/tSzgqFTUki

Score

N/A

Malware Config

Signatures

Files

ad188fe930fbd56abdcc3f56b1b269a6f37bdef4516cc82a3b398836b7dd4118
.exe windows x86

b196e2a18f1028f6677f0109e17e48f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
ExitProcess
GetCurrentProcess
MoveFileExA
WritePrivateProfileSectionA
WritePrivateProfileStringA
CreateProcessA
SetErrorMode
GetShortPathNameA
GlobalMemoryStatus
SetFileTime
GetExitCodeProcess
lstrcpynA
GetDateFormatA
GetSystemDirectoryA
GetWindowsDirectoryA
GetCommandLineA
GetVersionExA
CreateMutexA
GetPrivateProfileIntA
GetPrivateProfileStringA
lstrcmpA
GetSystemTime
GetSystemInfo
GetComputerNameA
SetEndOfFile
LCMapStringA
GetModuleFileNameA
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersion
GetStartupInfoA
RtlUnwind
TerminateProcess
HeapAlloc
HeapFree
RemoveDirectoryA
GetFileTime
VerLanguageNameA
CompareFileTime
CopyFileA
GetFileSize
GetLogicalDriveStringsA
FreeLibrary
GetCurrentDirectoryA
SetCurrentDirectoryA
GetLastError
MultiByteToWideChar
SetFileAttributesA
GetTempPathA
GetFileAttributesA
CreateDirectoryA
GetLocaleInfoA
FindFirstFileA
lstrcmpiA
LCMapStringW
FindNextFileA
FindClose
GetDriveTypeA
lstrcatA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetTickCount
Sleep
GetCurrentThread
QueryPerformanceFrequency
QueryPerformanceCounter
GetThreadPriority
SetThreadPriority
GlobalReAlloc
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
MulDiv
lstrlenA
WriteFile
ReadFile
lstrcpyA
SetFilePointer
CreateFileA
CloseHandle
GetStringTypeW
DeleteFileA

user32

RegisterClassA
SetRectEmpty
GetClientRect
MsgWaitForMultipleObjects
PeekMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
ReleaseDC
GetDC
ExitWindowsEx
PostMessageA
KillTimer
SetWindowPos
LoadBitmapA
GetDlgItemTextA
CreateDialogParamA
SetDlgItemTextA
SendDlgItemMessageA
GetSystemMetrics
RegisterClassExA
ChildWindowFromPoint
IsIconic
FindWindowA
WaitMessage
IsDialogMessageA
MessageBoxA
CopyRect
FillRect
DrawEdge
EndDialog
DestroyWindow
DefWindowProcA
GetWindowRect
GetDesktopWindow
GetMessageA
EnumDisplaySettingsA
SetTimer
SystemParametersInfoA
SetForegroundWindow
DialogBoxParamA
EnableWindow
GetWindowLongA
SetCursor
InvalidateRect
LoadIconA
PostQuitMessage
SendMessageA
ScreenToClient
GetCursorPos
LoadImageA
GetSysColor
GetWindowTextLengthA
GetWindowTextA
GetDlgItem
CreateWindowExA
SetWindowLongA
SetFocus
GetSystemMenu
DeleteMenu
AppendMenuA
ShowWindow
SetWindowTextA
LoadCursorA

gdi32

CreatePalette
AddFontResourceA
CreateScalableFontResourceA
RemoveFontResourceA
EndDoc
EndPage
CreateDIBitmap
StartDocA
RestoreDC
SetViewportOrgEx
SetMapMode
SaveDC
CreateBitmap
GetTextExtentPoint32A
StretchDIBits
CreateCompatibleDC
TextOutA
SetBkMode
SelectObject
CreateFontA
GetDeviceCaps
BitBlt
DeleteDC
DeleteObject
CreateSolidBrush
GetStockObject
SetBkColor
StartPage
CreateCompatibleBitmap
SetTextColor

comdlg32

GetOpenFileNameA
PrintDlgA

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegQueryInfoKeyA
RegEnumKeyExA
GetUserNameA
RegCloseKey
RegCreateKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

shell32

SHFileOperationA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
SHChangeNotify

ole32

CoUninitialize
CoInitialize
OleUninitialize
OleInitialize
CoCreateInstance

oleaut32

RegisterTypeLi
LoadTypeLi

winmm

waveOutGetNumDevs
midiOutGetNumDevs
joyGetPos

comctl32

ImageList_Create
ImageList_Add
ord17

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 337KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b196e2a18f1028f6677f0109e17e48f4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

winmm

comctl32

version

Sections

.text Size: 143KB - Virtual size: 142KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 12KB - Virtual size: 337KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 143KB - Virtual size: 142KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 12KB - Virtual size: 337KB

.rsrc
Size: 4KB - Virtual size: 4KB