cd91a1eec81f5abab9cd55f4bc2c6fb8c8d7422cc99e4e2f3bd726f83dcba61f

Sharing

Copy URL Twitter E-mail

General

Target

cd91a1eec81f5abab9cd55f4bc2c6fb8c8d7422cc99e4e2f3bd726f83dcba61f
Size

916KB
MD5

007ae12993eb3bf96acec7e0e1281610
SHA1

d167375c91a56ce73f004569e249bf56a0a1bb1e
SHA256

cd91a1eec81f5abab9cd55f4bc2c6fb8c8d7422cc99e4e2f3bd726f83dcba61f
SHA512

d7dec5b2fd9591ccccb6e8e8c5d46018cf76bcb409313b9c8477315c1b0c4a023ca67dc0ed09fa3cac88e97d75d62f265dc1df65f83f0a32ebb11cf669e84ea8
SSDEEP

12288:cuzD8nlyoPL9KkjrnGYyVoCllXvJMAbTawkXld7ft8JiOAqZ9711wKkSKnccxly1:3D8nl/V3nNcoglXhAduJr9711tKcMle

Score

N/A

Malware Config

Signatures

Files

cd91a1eec81f5abab9cd55f4bc2c6fb8c8d7422cc99e4e2f3bd726f83dcba61f
.exe windows x86

2f1f3df3cb4a510f64b3b8a63e977681

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17
ImageList_AddMasked
InitCommonControlsEx

gdi32

CreateRectRgn
DeleteDC
LineTo
StretchDIBits
GetDeviceCaps
AbortDoc
OffsetRgn
ExtSelectClipRgn
GetTextExtentPoint32W
GetWindowExtEx
CreateDCW
BitBlt
DeleteObject
Polygon
GetStockObject

user32

DrawIcon
ShowOwnedPopups
FillRect
InvalidateRect
GetClientRect
SendMessageW
GetWindowTextLengthW
ChildWindowFromPoint
CreatePopupMenu
GetFocus
SetTimer
GetSystemMenu
SetCapture
GetCursorPos
DestroyWindow
LoadAcceleratorsW
SetFocus
SetScrollInfo
SetActiveWindow
GetSysColorBrush
CallNextHookEx
RegisterClassW
GetMenu
EqualRect
SetMenuItemBitmaps
AdjustWindowRectEx
RedrawWindow
BeginDeferWindowPos
CheckMenuItem
RegisterClassExW
GetMessagePos
EnableWindow
CreateWindowExW
GetWindow
GetParent
TrackMouseEvent
CharUpperW
EnumChildWindows
RegisterWindowMessageW
MessageBoxW
DefFrameProcW
ClientToScreen
GetScrollInfo
IsClipboardFormatAvailable
GetWindowPlacement
EndDeferWindowPos
ShowWindow
ReleaseDC
DefWindowProcW

shell32

SHGetPathFromIDListA
SHGetFileInfoA
ShellExecuteExA
SHGetSpecialFolderLocation

advapi32

RegCreateKeyExA
RegSetValueExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

winmm

PlaySoundA
waveOutGetNumDevs
waveOutWrite
waveOutPrepareHeader

oleaut32

LoadTypeLi

kernel32

RaiseException
WideCharToMultiByte
GetStartupInfoA
HeapCreate
VirtualFree
GetModuleHandleA
GetConsoleOutputCP
OutputDebugStringW
GetConsoleMode
ExitProcess
TlsFree
GetSystemTimeAsFileTime
GetStartupInfoW
InterlockedDecrement
HeapAlloc
GetUserDefaultLCID
LoadLibraryW
QueryPerformanceCounter
GetStringTypeA
SetFilePointer
GetLastError
UnhandledExceptionFilter
GetLocaleInfoW
HeapFree
VirtualQuery
GetTickCount
GetCurrentThreadId
GetDateFormatA
GetEnvironmentStringsW
OutputDebugStringA
FreeEnvironmentStringsW
InterlockedIncrement
VirtualAlloc
HeapDestroy
GetEnvironmentStrings
GetTimeFormatA
GetStringTypeW
HeapValidate
IsDebuggerPresent
SetLastError
SetStdHandle
SetConsoleCtrlHandler
RtlUnwind
LoadLibraryA
GetVersionExA
GetOEMCP
DebugBreak
SetEndOfFile
GetModuleHandleW
GetProcessHeap
GetModuleFileNameA
GetModuleFileNameW
FlushFileBuffers
LCMapStringA
lstrlenA
GetCommandLineW
EnterCriticalSection
CompareStringA
GetCurrentProcessId
GetTimeZoneInformation
SetHandleCount
GetACP
LCMapStringW
GetLocaleInfoA
HeapReAlloc
SetEnvironmentVariableA
CreateFileA
IsBadReadPtr
GetCurrentProcess
InitializeCriticalSection
CompareStringW
ReadFile
GetConsoleCP
GetStdHandle
FreeEnvironmentStringsA
WriteConsoleW
TlsAlloc
GetFileType
SetUnhandledExceptionFilter
GetCPInfo
MultiByteToWideChar
TlsGetValue
CloseHandle
TlsSetValue
GetCurrentThread
WriteConsoleA
LeaveCriticalSection
FatalAppExitA
InterlockedExchange
GetProcAddress
WriteFile
IsValidCodePage
DeleteCriticalSection
TerminateProcess
IsValidLocale
FreeLibrary
GetCommandLineA
CreateMutexW

Sections

.text
Size: 224KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f1f3df3cb4a510f64b3b8a63e977681

Headers

File Characteristics

Imports

comctl32

gdi32

user32

shell32

advapi32

winmm

oleaut32

kernel32

Sections

.text Size: 224KB - Virtual size: 221KB

.rdata Size: 484KB - Virtual size: 483KB

.data Size: 108KB - Virtual size: 104KB

.rsrc Size: 96KB - Virtual size: 94KB

.text
Size: 224KB - Virtual size: 221KB

.rdata
Size: 484KB - Virtual size: 483KB

.data
Size: 108KB - Virtual size: 104KB

.rsrc
Size: 96KB - Virtual size: 94KB