af371fa6acd9aeff6829383182766f193296f29d3357a8a12833a33adc8373d0

Sharing

Copy URL Twitter E-mail

General

Target

af371fa6acd9aeff6829383182766f193296f29d3357a8a12833a33adc8373d0
Size

272KB
MD5

20a8c0002b75f4e3d9af0a56e232a809
SHA1

b3299fce32d02662db29aeb74a3538fa57b81a17
SHA256

af371fa6acd9aeff6829383182766f193296f29d3357a8a12833a33adc8373d0
SHA512

2c28dc187c77607477aae277ac4fe8f5d433fee7b6d8e8a5556eaced4abe99e4ddc59847ec478560f8ad3686763a31fcb7f306b80fbc8ef8287f87f180063cf5
SSDEEP

6144:5658Dtf2suJtOCQ7H8SRZXQP+AneISpEEiRBHiR2retKwrjSUJOiyEx:5658ssytQYSRZXQPeISqEiXFreprjS3E

Score

N/A

Malware Config

Signatures

Files

af371fa6acd9aeff6829383182766f193296f29d3357a8a12833a33adc8373d0
.exe windows x86

2c89a374e8e0f0e11ea5177051033b01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
CreateEventW
SetCurrentDirectoryW
SuspendThread
GetCurrentProcess
SetEvent
WaitForSingleObject
GlobalAddAtomW
SetFilePointer
GetLastError
ReadFile
InterlockedDecrement
MulDiv
GetCurrentThread
GetFileSize
LoadResource
InterlockedIncrement
GetModuleFileNameW
SetWaitableTimer
FindResourceExW
WriteFile
GlobalUnlock
WaitForMultipleObjects
GetFileAttributesExW
ExitProcess
FreeLibrary
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect
GetVersion
WritePrivateProfileStringW
GetModuleHandleW
FindFirstFileW
FindResourceW
GlobalFree
FindClose
lstrcpyW
CreateThread
FindFirstChangeNotificationW
WideCharToMultiByte
DuplicateHandle
QueryDosDeviceW
GetCurrentThreadId
GlobalAlloc
SetLastError
CreateWaitableTimerW
ResetEvent

user32

LoadIconW
GetKeyState
AppendMenuW
PostThreadMessageW
EndDialog
SetWindowPos
LoadStringW
WindowFromPoint
SendDlgItemMessageW
EnableWindow
LoadCursorW
GetWindowDC
RegisterWindowMessageW
DestroyIcon
PostQuitMessage
IsDlgButtonChecked
CreatePopupMenu
DrawTextW
SetDlgItemTextW
InvalidateRect
GetWindowTextW
SetCursorPos
GetClassNameW
UpdateWindow
FillRect
GetWindowThreadProcessId
SetWindowTextW
MessageBoxW
wsprintfW
DialogBoxParamW

gdi32

CreateCompatibleDC
SetBkMode
CreateSolidBrush
CreateDCW
GetDeviceCaps
BitBlt
DeleteObject
GetClipBox
Rectangle
StretchBlt
MoveToEx
CreateICW

advapi32

GetUserNameW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW

ole32

CreateStreamOnHGlobal
CoInitializeEx

oleaut32

SysFreeString

Sections

.text
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2c89a374e8e0f0e11ea5177051033b01

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 244KB - Virtual size: 243KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 19KB

.text
Size: 244KB - Virtual size: 243KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 19KB