cd11a6230f40be4172a810063b4c656bf8452c3fc91954fe5db89025da216f1c

Sharing

Copy URL Twitter E-mail

General

Target

cd11a6230f40be4172a810063b4c656bf8452c3fc91954fe5db89025da216f1c
Size

672KB
MD5

6f84219964ec3bd8426fe2079fb77e4f
SHA1

082a60c11dc907c9eaf5f0c77a813f85b6a7e583
SHA256

cd11a6230f40be4172a810063b4c656bf8452c3fc91954fe5db89025da216f1c
SHA512

46deb29f841f3f2eda8515d89713e5253bf04a64cbfc8a71af7e0ddd7bfb74ce79dd9293763b79a9ce47c7c1a7ee5923e208176024bc6a36c24ff7cae228109c
SSDEEP

12288:yBWAu8TNYpt1S0oZK+nK5cctpbxuiPPabWZ0Fc7AnOr2fmS:eWiTOJS0o5nK5cMH3SbtHnOr2

Score

N/A

Malware Config

Signatures

Files

cd11a6230f40be4172a810063b4c656bf8452c3fc91954fe5db89025da216f1c
.exe windows x86

e63c3c1968b5e49127e5fbf57f7424a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Draw
InitCommonControlsEx
CreatePropertySheetPageW
ImageList_Remove
DestroyPropertySheetPage

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

shell32

DragQueryFileA
ShellExecuteA
DragFinish
SHBrowseForFolderA
SHGetFileInfoA
ord155
SHGetPathFromIDListA

advapi32

RegCreateKeyExA
GetLengthSid
RegCreateKeyA
OpenSCManagerA
RegOpenKeyExA
OpenProcessToken
RegQueryValueExA
FreeSid
RegQueryInfoKeyA
SetSecurityDescriptorDacl
RegCloseKey
ControlService
DeleteService
CreateServiceA
RegisterServiceCtrlHandlerA
RegDeleteValueA
RegEnumKeyExA
RegDeleteKeyA

ole32

CoRevokeClassObject
CoTaskMemAlloc
OleIsCurrentClipboard
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
CoRegisterClassObject
StringFromGUID2
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetMalloc

kernel32

HeapFree
GetSystemTimeAsFileTime
TlsGetValue
GetCurrentThread
GetUserDefaultLCID
IsValidCodePage
GetEnvironmentStrings
GetStringTypeA
GetStringTypeW
HeapAlloc
GetModuleFileNameA
GetCPInfo
HeapSize
GetStartupInfoA
WideCharToMultiByte
IsValidLocale
GetProcessHeap
MultiByteToWideChar
WriteConsoleA
GetTickCount
HeapReAlloc
UnhandledExceptionFilter
TlsSetValue
FreeEnvironmentStringsW
GetModuleFileNameW
FreeEnvironmentStringsA
VirtualAlloc
GetTimeZoneInformation
GetFileType
LoadLibraryA
VirtualQuery
SetConsoleCtrlHandler
QueryPerformanceCounter
GetTimeFormatA
GetConsoleCP
GetCommandLineA
TerminateProcess
SetEnvironmentVariableA
GetVersionExA
GetLastError
Sleep
SetFilePointer
WriteFile
GetOEMCP
LeaveCriticalSection
RtlUnwind
CompareStringW
InterlockedIncrement
GetConsoleOutputCP
FatalAppExitA
LCMapStringW
InterlockedDecrement
SetHandleCount
ReadFile
GetProcAddress
IsDebuggerPresent
SetStdHandle
HeapCreate
GetConsoleMode
CloseHandle
GetCurrentThreadId
GetModuleHandleA
InitializeCriticalSection
SetUnhandledExceptionFilter
CreateMutexW
TlsAlloc
HeapDestroy
GetDateFormatA
DeleteCriticalSection
CompareStringA
TlsFree
GetStartupInfoW
InterlockedExchange
FreeLibrary
CreateFileA
GetACP
LCMapStringA
GetEnvironmentStringsW
FlushFileBuffers
ExitProcess
GetCurrentProcess
EnterCriticalSection
GetLocaleInfoA
GetModuleHandleW
SetLastError
GetLocaleInfoW
GetStdHandle
VirtualFree
GetCurrentProcessId
WriteConsoleW
GetCommandLineW

user32

EnableMenuItem
GetTopWindow
LockWindowUpdate
ClientToScreen
FillRect
UnregisterClassW
SendDlgItemMessageW
GetParent
SetCursor
DestroyMenu
IsClipboardFormatAvailable
SystemParametersInfoW
PostQuitMessage
DestroyWindow
CopyIcon
EndDialog
DrawStateW
RegisterClassExW
DrawIconEx
ShowWindow
ReleaseCapture
RegisterClassW
IsRectEmpty
GetSystemMetrics
MapWindowPoints
SetForegroundWindow
GetCursorPos
CheckMenuItem
CallWindowProcW
CopyRect
IsWindowEnabled
SetRectEmpty
DrawIcon
RegisterWindowMessageW
RedrawWindow
MessageBoxW
CopyAcceleratorTableW
PeekMessageW
CreateWindowExW
KillTimer
IntersectRect
ScreenToClient
GetSysColor
DefWindowProcW
SetWindowLongW

oleaut32

LoadTypeLi

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 461KB - Virtual size: 461KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e63c3c1968b5e49127e5fbf57f7424a8

Headers

File Characteristics

Imports

comctl32

version

shell32

advapi32

ole32

kernel32

user32

oleaut32

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 461KB - Virtual size: 461KB

.data Size: 96KB - Virtual size: 100KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 461KB - Virtual size: 461KB

.data
Size: 96KB - Virtual size: 100KB

.rsrc
Size: 23KB - Virtual size: 22KB