cc69dd39ebc82db500a37165f05e3e01055a1a7cb7191c93625765f23553d76f

Sharing

Copy URL Twitter E-mail

General

Target

cc69dd39ebc82db500a37165f05e3e01055a1a7cb7191c93625765f23553d76f
Size

176KB
MD5

c11377ed43077a97da58410c24ea9d6d
SHA1

9dfa2a89429fdf0008705c2e2845e13f1ef48b90
SHA256

cc69dd39ebc82db500a37165f05e3e01055a1a7cb7191c93625765f23553d76f
SHA512

2296a881182705709488f815205b369889719d32c7a4991d45665c3e5f665b8ca1f72483d4234f4eae78ba37f407daa6db845b10dc65f34ed973c791a5a15b62
SSDEEP

3072:uCzg1wiHb8Voy0IVZudCghovo7peLJfcM0bMXALD:M1wuEolI+Cgd7porq

Score

N/A

Malware Config

Signatures

Files

cc69dd39ebc82db500a37165f05e3e01055a1a7cb7191c93625765f23553d76f
.exe windows x86

edf0f15347f5bcf1314ee48c059c7fcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
FindFirstFileW
GetCurrentProcess
CreateEventW
SetStdHandle
GetCommandLineW
TlsFree
GlobalAlloc
GetSystemInfo
LoadLibraryW
SizeofResource
FormatMessageW
SetHandleCount
FindFirstFileA
GetACP
TlsAlloc
FindCloseChangeNotification
SetUnhandledExceptionFilter
LocalAlloc
HeapCreate
CreateFileMappingA
LockResource
TlsGetValue
CreateProcessW
RegisterWaitForSingleObject
FindResourceW
CreateThread
GetCurrentThreadId
SetEndOfFile
GetStartupInfoA
GetLocaleInfoA
GetFileAttributesW
GetExitCodeProcess
GetStartupInfoW
LoadResource
IsValidCodePage
HeapReAlloc
TlsSetValue
HeapSize
GetCPInfo
GetTickCount
DeleteFileA
Sleep
GetConsoleMode
GlobalLock
GetStringTypeA
GetFileType
GlobalFree
GetStringTypeW
CreateEventA
lstrlenW
GetCurrentProcessId
SetErrorMode
FormatMessageA
LCMapStringW
CompareStringW
GetFileAttributesA
GetSystemTimeAsFileTime
SetEvent
CreateDirectoryW
FreeEnvironmentStringsW
WriteConsoleW
ReleaseMutex
LoadLibraryExW
GetModuleHandleA
CreateFileW
FindNextFileW
GetConsoleOutputCP
DeleteFileW
HeapDestroy
LCMapStringA
GetConsoleCP
GlobalUnlock
lstrlenA
GetFileSize
FlushFileBuffers
GetOEMCP
FileTimeToSystemTime
GetProcessHeap
VirtualAlloc

user32

CreateWindowExW
TrackPopupMenu
OffsetRect
SendMessageW
DestroyWindow
GetActiveWindow
LoadStringW
GetMenu
SetWindowLongW
SetMenuItemInfoA
ClientToScreen
DefWindowProcW
GetCursorPos
DestroyMenu
SetWindowPos
SetWindowTextW
PtInRect
MessageBeep
AdjustWindowRectEx
LoadIconA
GetSubMenu
CreateWindowExA
ReleaseDC
CheckMenuItem
DestroyIcon
SetActiveWindow
ReleaseCapture
SetCapture
AllowSetForegroundWindow
GetMenuStringW
UnregisterClassA
GetKeyState
ShowWindowAsync
PostMessageW
GetMenuItemCount
DrawFocusRect
MoveWindow
GetClientRect
InflateRect
RegisterClassW

shlwapi

PathIsDirectoryA

ole32

OleUninitialize
OleRegGetUserType
OleIsRunning
GetRunningObjectTable
CoLockObjectExternal
CoUninitialize
CoRevokeClassObject
OleFlushClipboard
RegisterDragDrop
CoDisconnectObject
RevokeDragDrop
ReleaseStgMedium
CLSIDFromProgID
CoInitialize
StringFromCLSID
CoQueryProxyBlanket
CoFreeUnusedLibraries
CLSIDFromString
CoRegisterMessageFilter
CreateBindCtx
StgCreateDocfileOnILockBytes
CoCreateGuid
CoInitializeSecurity
CoTaskMemFree
CreateILockBytesOnHGlobal
CoCreateInstance
CoTaskMemAlloc
CreateStreamOnHGlobal
CoGetClassObject
OleRun
OleInitialize

advapi32

RegOpenKeyExA
InitializeAcl
CloseServiceHandle
QueryServiceStatus
RegDeleteValueA
SetSecurityDescriptorDacl
AddAccessAllowedAce
RegEnumKeyExA
RegEnumValueA
RegSetValueExW
RegEnumValueW
CryptAcquireContextW
RegSetValueExA
RegCreateKeyExW
GetTokenInformation
LookupPrivilegeValueA
OpenThreadToken
RegCloseKey
RegEnumKeyExW
CryptAcquireContextA
DeregisterEventSource
CryptHashData
RegDeleteKeyA
AllocateAndInitializeSid
OpenServiceW
RegDeleteKeyW
CryptGenRandom
CryptCreateHash
GetLengthSid
AddAccessAllowedAceEx
AdjustTokenPrivileges
RegDeleteValueW
CryptReleaseContext
RegCreateKeyExA
InitializeSecurityDescriptor
RevertToSelf
RegQueryValueExA
RegQueryValueExW
EqualSid
RegQueryInfoKeyW
RegOpenKeyExW
OpenProcessToken
CryptDestroyHash
FreeSid

msimg32

GradientFill

msvcrt

__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_onexit
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_adjust_fdiv
memcmp

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edf0f15347f5bcf1314ee48c059c7fcb

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

ole32

advapi32

msimg32

msvcrt

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 132KB - Virtual size: 236KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 132KB - Virtual size: 236KB

.rsrc
Size: 16KB - Virtual size: 15KB