c6448d265a25c01b71766a0604c5250c2796652460584405a239b87a4ef2d60e

Sharing

Copy URL Twitter E-mail

General

Target

c6448d265a25c01b71766a0604c5250c2796652460584405a239b87a4ef2d60e
Size

654KB
MD5

4b27746b1f7bf3abd550773347cfecc6
SHA1

5b9dcdf4c30bd0fcd746309dd85acbf622d2f24a
SHA256

c6448d265a25c01b71766a0604c5250c2796652460584405a239b87a4ef2d60e
SHA512

25ea42f6e0f7d0a55a849e5343fbaa7a1d840ef092c84934f4d4bf73e789c6b630a382eaf5746856498c1573a728aac8c866417853dde91b75eae8cc54bffe89
SSDEEP

12288:sbAvWHWN277phrBed4BYFDyjsrJvCOQYsm+1TD0ne8b5:sbpJlh1ed4BYFDwsrJvhQYt+1Ti

Score

N/A

Malware Config

Signatures

Files

c6448d265a25c01b71766a0604c5250c2796652460584405a239b87a4ef2d60e
.exe windows x86

3f7ddeae35258786d110c43accbf6224

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
GetProcAddress
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreW
FreeResource
FindResourceW
LoadResource
GlobalLock
GlobalAlloc
SizeofResource
GlobalUnlock
GlobalFree
LockResource
MulDiv
InterlockedDecrement
InterlockedIncrement
LocalFree
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
CreateFileA
GetStringTypeW
GetConsoleMode
GetConsoleCP
GetLocaleInfoA
LoadLibraryA
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
ExitProcess
HeapSize
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
RtlUnwind
RaiseException
HeapReAlloc
CreateThread
ExitThread
GetStartupInfoA
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetFileAttributesW
DeleteFileW
GetLongPathNameW
GetTempPathW
lstrlenW
GetFileAttributesW
CreateDirectoryW
GetTempFileNameW
GetFullPathNameW
MultiByteToWideChar
WideCharToMultiByte
ResumeThread
GetCurrentThreadId
GetTickCount
WaitForSingleObject
GetLastError
WriteFile
SetFileTime
SetEndOfFile
GetFileSize
lstrcmpW
CreateFileW
ReadFile
SetFilePointer
CloseHandle
WinExec
CreateEventW
ResetEvent
GetModuleFileNameW
Sleep
GetModuleHandleW
SetEvent
GetStringTypeA
CreateProcessW

user32

CreateCaret
HideCaret
ClientToScreen
CreateAcceleratorTableW
GetSysColor
ShowCaret
InvalidateRgn
SetWindowPos
SetWindowLongW
GetWindowLongW
PostQuitMessage
KillTimer
DestroyAcceleratorTable
GetWindow
SetCaretPos
FillRect
DrawTextW
DrawIconEx
CharPrevW
RedrawWindow
MoveWindow
SetWindowTextW
MapWindowPoints
ShowWindow
SystemParametersInfoW
GetWindowTextW
GetClientRect
GetParent
SetTimer
OffsetRect
SetCursor
CharNextW
IntersectRect
IsRectEmpty
LoadImageW
LoadCursorW
GetClassInfoExW
SetPropW
RegisterClassExW
RegisterClassW
EnableWindow
DestroyIcon
GetPropW
CallWindowProcW
DefWindowProcW
CharNextA
LoadStringW
LoadBitmapW
EndPaint
DestroyWindow
UpdateLayeredWindow
SetWindowRgn
ScreenToClient
GetMessageW
IsIconic
IsChild
SetCapture
PostMessageW
GetKeyState
GetFocus
SetFocus
BeginPaint
PtInRect
GetUpdateRect
GetDC
TranslateMessage
InvalidateRect
ReleaseDC
MonitorFromWindow
GetCursorPos
IsWindow
CreateWindowExW
ReleaseCapture
SendMessageW
GetMonitorInfoW
DispatchMessageW
GetWindowTextLengthW
GetWindowRect
IsZoomed

gdi32

CreateRectRgnIndirect
CombineRgn
Rectangle
GetObjectW
CreateRoundRectRgn
CreateRectRgn
CreatePen
GetStockObject
CreateFontIndirectW
CreateDIBSection
DeleteDC
GetTextMetricsW
CreateCompatibleDC
BitBlt
GetDeviceCaps
CreateSolidBrush
TextOutW
GetCharABCWidthsW
ExtTextOutW
SelectClipRgn
SetBkMode
SetBkColor
StretchBlt
SetTextColor
SelectObject
SetStretchBltMode
GetTextExtentPoint32W
SetBitmapBits
GetBitmapBits
GetClipBox
CreateCompatibleBitmap
ExtSelectClipRgn
RoundRect
DeleteObject

advapi32

RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey

shell32

SHBrowseForFolderW
ShellExecuteW
SHGetPathFromIDListW

ole32

OleLockRunning
CreateStreamOnHGlobal
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleUninitialize
OleInitialize

oleaut32

OleLoadPicture
SysFreeString
SysAllocString

wininet

HttpQueryInfoW
InternetReadFile
InternetOpenUrlW
InternetCloseHandle
InternetSetOptionW
InternetOpenW

riched20

ord4

comctl32

_TrackMouseEvent

msimg32

AlphaBlend

Sections

.text
Size: 464KB - Virtual size: 461KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f7ddeae35258786d110c43accbf6224

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

wininet

riched20

comctl32

msimg32

Sections

.text Size: 464KB - Virtual size: 461KB

.rdata Size: 92KB - Virtual size: 88KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 464KB - Virtual size: 461KB

.rdata
Size: 92KB - Virtual size: 88KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 60KB - Virtual size: 59KB