a225c7b07e1db839d3617ec7ca29eff8a1c93889aaff5ba4c21b3a013a748118

Sharing

Copy URL Twitter E-mail

General

Target

a225c7b07e1db839d3617ec7ca29eff8a1c93889aaff5ba4c21b3a013a748118
Size

370KB
MD5

03f5739c894b70b3041591135ce46f86
SHA1

a3046ee67ae4672caab78d441c9a2bf74749a235
SHA256

a225c7b07e1db839d3617ec7ca29eff8a1c93889aaff5ba4c21b3a013a748118
SHA512

e007b05c23e3a7c94a86af84cb5d3b9a2a19c7692b89e1e7419eabe09e3c8b4c3c8a1058881371fed0ca88449036251228f3e35930cdf6793de904d1799e6958
SSDEEP

6144:z2pDXhCbDSu/WDhVzKn6NtUaj6eaqOzR+tHYLh7iA1nv8vXr5Ly/XQsy885PKHs:z2pDRMH/W1ZDTFdntHYLhGavAtyQd88F

Score

N/A

Malware Config

Signatures

Files

a225c7b07e1db839d3617ec7ca29eff8a1c93889aaff5ba4c21b3a013a748118
.exe windows x86

b234ba99450e4cc22e326ac0d357ad6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegDeleteValueW
RegQueryValueExW
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey

gdi32

SelectObject
SetTextColor
GetStockObject
DeleteDC
DeleteObject
SetBkMode
SetBkColor
BitBlt

kernel32

GetOEMCP
VirtualAlloc
FindResourceA
IsBadReadPtr
Sleep
VirtualFree
WriteFile
UnmapViewOfFile
IsValidCodePage
lstrcmpiW
GetEnvironmentStrings
SetStdHandle
GetVersion
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
SizeofResource
FileTimeToLocalFileTime
CreateProcessW
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
LoadLibraryExW
GetLastError
InterlockedIncrement
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
CreateProcessA
GetProcAddress
FindNextFileA
CreateFileMappingA
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GlobalLock
DeleteFileW
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
CreateEventW
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
LocalFree
FreeLibrary
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetSystemDefaultLCID
GetUserDefaultLCID
GetUserDefaultLangID

ole32

CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysAllocStringLen
SysAllocString
SysFreeString

user32

GetDlgItem
CreateWindowExA
GetWindowLongA
SetWindowTextA
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
BeginPaint
DispatchMessageA
FillRect
SetTimer
GetSubMenu
MessageBoxA
IsIconic
LoadStringA
IsWindowEnabled
TranslateMessage
SetWindowPos
SetCapture
ShowWindow
ScreenToClient
UpdateWindow
GetParent
GetMessageA
GetActiveWindow
LoadIconA
GetClientRect
UnregisterClassA
ReleaseDC
GetCursorPos
GetDC
PostQuitMessage
SetForegroundWindow
GetSysColor
EnableMenuItem
IsWindowVisible
InvalidateRect
SendMessageA
DrawTextA
CallWindowProcA
SetCursor
LoadCursorA
GetDesktopWindow
DefWindowProcA
EndDialog
RegisterClassA

msvcrt

_strcmpi
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 342KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b234ba99450e4cc22e326ac0d357ad6c

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

oleaut32

user32

msvcrt

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 342KB - Virtual size: 341KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 342KB - Virtual size: 341KB

.rsrc
Size: 1KB - Virtual size: 1KB