d14b019753a681b409e570ba157092b92a727d5d278660e62ef6c5b64ba82393

Sharing

Copy URL Twitter E-mail

General

Target

d14b019753a681b409e570ba157092b92a727d5d278660e62ef6c5b64ba82393
Size

904KB
MD5

3487d35a27bb9cf8a003416c7dd7a23f
SHA1

328213dc71c586a08ace3f608779a9ede073c0bd
SHA256

d14b019753a681b409e570ba157092b92a727d5d278660e62ef6c5b64ba82393
SHA512

7742a16b6ca5e1431c85b579aa58f5963b4f6d17d2e47c43100c154c03b05e1cce5c6d3e49fe80464896546566894b8ae90295bae2961969ef06a4d7e3d4fd36
SSDEEP

12288:/rMe9DXAROGIaNdAf0BqEq2hCYbE256igt14qCsK2mcQmhK6xltw2GbZuwS0qMU7:/DRqI8R5qV2U1+qCjJmA6h9F0qMWn

Score

N/A

Malware Config

Signatures

Files

d14b019753a681b409e570ba157092b92a727d5d278660e62ef6c5b64ba82393
.exe windows x86

a229e556323d199326e555225638d66d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRect
DrawFocusRect
MessageBeep
GetClientRect
SetWindowTextW
DefWindowProcW
DestroyAcceleratorTable
CreateWindowExW
GetWindowTextW
KillTimer
SendMessageW
DestroyWindow
CheckMenuItem
LoadAcceleratorsW
GetMenuStringW
DestroyMenu
GetFocus
RegisterClassExW
DrawTextW
DrawStateW
CreatePopupMenu
MapWindowPoints
LoadStringW
IsWindowVisible
PeekMessageW
SetRect
MapDialogRect
DestroyIcon
ScrollWindowEx
RedrawWindow
IsRectEmpty
GetCursorPos
LoadCursorW
FrameRect
GetScrollInfo
UpdateWindow
wvsprintfW
LoadImageW
ShowWindow
CopyIcon
CopyRect
MessageBoxW
SetFocus
GetMenuItemInfoW
ScrollWindow
CallWindowProcW
LoadIconW
RegisterWindowMessageW
GetMenuCheckMarkDimensions
ClientToScreen
RegisterClassW

ole32

OleIsCurrentClipboard
CreateItemMoniker
CoTreatAsClass
WriteFmtUserTypeStg
OleRegGetUserType
OleGetClipboard
OleFlushClipboard
CoUninitialize
OleLockRunning
CoFreeUnusedLibraries
ReadClassStg
CoTaskMemAlloc
CoTaskMemFree
OleUninitialize
StringFromGUID2
OleRegGetMiscStatus
DoDragDrop
CoGetClassObject
SetConvertStg
CreateStreamOnHGlobal
CoDisconnectObject
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StringFromCLSID
StgOpenStorageOnILockBytes
CoInitialize
CoRegisterMessageFilter
ReadFmtUserTypeStg
CoCreateInstance
OleRegEnumVerbs
OleSetContainedObject

gdi32

GetClipBox
RoundRect
CreateSolidBrush
CreateBitmap
SelectClipRgn
SetMapMode
PtVisible
GetTextColor
GetTextExtentPoint32W
PatBlt
LineTo
GetDeviceCaps
CreatePen
GetCharWidthW
SelectObject
StretchDIBits
SetWindowExtEx
DeleteObject
CreateRectRgnIndirect
CreateDIBSection
GetStockObject
CreatePatternBrush
GetTextMetricsA
Rectangle
CombineRgn
SetRectRgn
CreateCompatibleBitmap
LPtoDP
Escape
ExtTextOutA
SetViewportExtEx
DPtoLP
GetWindowExtEx
CreateCompatibleDC

advapi32

CryptHashData
RegQueryValueExA
GetFileSecurityA
CryptDestroyHash
RegEnumKeyExA
CryptDestroyKey
RegOpenKeyA
CryptDecrypt
CryptEncrypt
GetUserNameA
RegDeleteValueA
RegOpenKeyExA
CryptCreateHash
RegSetValueA
RegQueryValueA
SetFileSecurityA
CryptReleaseContext
RegEnumValueA
RegEnumKeyA
RegSetValueExA
RegCloseKey
RegQueryInfoKeyA
RegCreateKeyExA
RegDeleteKeyA
CryptDeriveKey
CryptAcquireContextA
RegCreateKeyA

shell32

DragFinish
DragAcceptFiles
ExtractIconA
ShellExecuteA

kernel32

GetACP
GetModuleHandleW
SetFilePointer
IsBadReadPtr
GetCommandLineA
GetDateFormatA
GetStdHandle
TlsAlloc
GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
GetLastError
FreeEnvironmentStringsA
GetConsoleOutputCP
VirtualQuery
TlsFree
SetEnvironmentVariableA
SetHandleCount
SetConsoleCtrlHandler
GetStartupInfoA
ExitProcess
GetCurrentProcess
IsValidCodePage
HeapFree
OutputDebugStringA
GetFileType
WriteConsoleW
HeapReAlloc
WideCharToMultiByte
CompareStringA
GetEnvironmentStringsW
WriteFile
GetEnvironmentStrings
TlsSetValue
GetProcAddress
CloseHandle
GetStringTypeA
HeapAlloc
HeapValidate
OutputDebugStringW
SetStdHandle
EnterCriticalSection
LoadLibraryW
GetStartupInfoW
SetUnhandledExceptionFilter
GetCurrentProcessId
VirtualFree
GetLocaleInfoA
VirtualAlloc
GetConsoleMode
GetTimeFormatA
GetTickCount
GetSystemTimeAsFileTime
FlushFileBuffers
QueryPerformanceCounter
InitializeCriticalSection
HeapDestroy
TerminateProcess
ReadFile
MultiByteToWideChar
GetVersionExA
GetConsoleCP
GetModuleFileNameA
LCMapStringW
LCMapStringA
CompareStringW
SetLastError
HeapCreate
LeaveCriticalSection
GetCurrentThreadId
DebugBreak
FreeEnvironmentStringsW
GetStringTypeW
CreateMutexW
WriteConsoleA
GetModuleFileNameW
InterlockedIncrement
LoadLibraryA
GetCommandLineW
InterlockedExchange
InterlockedDecrement
IsDebuggerPresent
GetProcessHeap
DeleteCriticalSection
GetTimeZoneInformation
UnhandledExceptionFilter
CreateFileA
TlsGetValue
GetModuleHandleA

Sections

.text
Size: 232KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 504KB - Virtual size: 501KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a229e556323d199326e555225638d66d

Headers

File Characteristics

Imports

user32

ole32

gdi32

advapi32

shell32

kernel32

Sections

.text Size: 232KB - Virtual size: 228KB

.rdata Size: 504KB - Virtual size: 501KB

.data Size: 116KB - Virtual size: 140KB

.rsrc Size: 48KB - Virtual size: 45KB

.text
Size: 232KB - Virtual size: 228KB

.rdata
Size: 504KB - Virtual size: 501KB

.data
Size: 116KB - Virtual size: 140KB

.rsrc
Size: 48KB - Virtual size: 45KB