494b4a0697a1435ad392050117f99e19493df40fe5fe16ac5cb1d7b2537fa48c

Sharing

Copy URL

Twitter E-mail

General

Target

494b4a0697a1435ad392050117f99e19493df40fe5fe16ac5cb1d7b2537fa48c
Size

628KB
MD5

ee988719c54b5e000bf7e75dc8451b59
SHA1

33c7bb33a07d57871d87406d9ae4ef9c797c5bfb
SHA256

494b4a0697a1435ad392050117f99e19493df40fe5fe16ac5cb1d7b2537fa48c
SHA512

9b9cd414d61f4f32a00f8177711bcd4777f07dc1d7bd05f269fea07a95b7c06110f596f132ec92e6ff5d64fc53032b029e6c651387db699bb3e8c120cc8de179
SSDEEP

12288:GAQjR+DmoRGIGDw4EAkisfinWXEhRM2xdTsClmwXDxI14+BBGf+2g:CjR+DB9GTdmAR/vTTs

Score

N/A

Malware Config

Signatures

Files

494b4a0697a1435ad392050117f99e19493df40fe5fe16ac5cb1d7b2537fa48c
.exe windows x86

846e473ee24261df878f2de246443ae8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

kernel32

WideCharToMultiByte
GetSystemInfo
GetFileSize
ReadFile
SetFilePointer
CreateFileW
FlushFileBuffers
WriteFile
IsBadWritePtr
VirtualQuery
SetLastError
VirtualAlloc
VirtualFree
GetSystemTimeAsFileTime
GetSystemTime
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStdHandle
UnhandledExceptionFilter
HeapSize
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
SetUnhandledExceptionFilter
GetModuleFileNameA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
HeapDestroy
VirtualProtect
TerminateProcess
GetProcAddress
GetStartupInfoW
GetModuleHandleA
HeapReAlloc
CreateThread
ExitThread
RtlUnwind
ExitProcess
LoadLibraryA
LCMapStringW
LCMapStringA
GetVersionExA
ReleaseMutex
ReleaseSemaphore
CreateSemaphoreW
CreateMutexW
GlobalLock
GlobalUnlock
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
LoadLibraryExW
SizeofResource
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
FindFirstFileW
FindNextFileW
GetLastError
FindClose
GetStringTypeA
CreateEventW
SetStdHandle
CompareStringA
SetEnvironmentVariableA
lstrcmpW
GetFullPathNameW
GetCurrentDirectoryW
lstrcmpiW
FindResourceW
LoadResource
LockResource
CompareStringW
lstrcatW
lstrcpynW
MultiByteToWideChar
ResumeThread
GetExitCodeThread
GetCurrentThreadId
CloseHandle
WaitForSingleObject
SetEvent
ResetEvent
LeaveCriticalSection
EnterCriticalSection
HeapAlloc
GetCurrentProcess
FlushInstructionCache
InterlockedIncrement
lstrlenA
lstrcpyW
lstrlenW
InterlockedDecrement
GetProcessHeap
HeapFree
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetEnvironmentStrings
GetStringTypeW

user32

GetMessageW
TranslateMessage
DispatchMessageW
SetWindowsHookExW
CallNextHookEx
UnhookWindowsHookEx
LoadImageW
GetActiveWindow
GetFocus
DrawFocusRect
GetDlgCtrlID
PtInRect
SetCapture
ReleaseCapture
PeekMessageW
ScreenToClient
DialogBoxParamW
GetClassNameW
CharLowerW
SetRectEmpty
LoadCursorW
PostQuitMessage
CreateDialogParamW
ScrollDC
IntersectRect
CopyRect
EqualRect
UnionRect
IsClipboardFormatAvailable
CloseClipboard
EnableWindow
SetCursor
IsDialogMessageW
SendDlgItemMessageW
IsDlgButtonChecked
CheckDlgButton
SetFocus
CreateWindowExW
OpenClipboard
GetClipboardData
wvsprintfW
MessageBoxA
GetCursorPos
DestroyWindow
GetForegroundWindow
SetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
GetWindow
GetWindowRect
SystemParametersInfoW
MapWindowPoints
MessageBoxW
GetDlgItem
SetDlgItemInt
GetDlgItemInt
IsWindowEnabled
IsWindowVisible
ShowWindow
BringWindowToTop
IsIconic
PostMessageW
EndDialog
BeginPaint
EndPaint
CallWindowProcW
SetWindowLongW
CharNextW
DefWindowProcW
ReleaseDC
GetDC
KillTimer
SetTimer
UnregisterClassW
FillRect
DrawTextW
LoadStringW
OffsetRect
SetRect
IsRectEmpty
IsWindow
AdjustWindowRectEx
GetParent
InvalidateRect
UpdateWindow
GetClientRect
SetWindowPos
GetMenu
SendMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
GetWindowLongW
GetSysColor
GetCapture
GetSystemMetrics

gdi32

ExcludeClipRect
IntersectClipRect
Ellipse
Rectangle
PatBlt
SetPixel
SetDIBColorTable
SetStretchBltMode
StretchBlt
CreateSolidBrush
CreatePen
MoveToEx
SelectClipRgn
SetBrushOrgEx
GdiFlush
CreateDIBSection
GetObjectW
GetStockObject
CreateCompatibleDC
SelectObject
SetViewportOrgEx
GetTextExtentPoint32W
CreateFontIndirectW
SetBkMode
SetTextColor
TextOutW
ExtTextOutW
SetBkColor
DeleteObject
DeleteDC
LineTo
BitBlt
CreateCompatibleBitmap

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegDeleteValueW
RegQueryInfoKeyW
RegCloseKey
RegEnumKeyExW

shell32

SHGetFileInfoW
SHGetDesktopFolder
ShellExecuteW
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW

ole32

CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemRealloc
CoTaskMemFree

oleaut32

VarUI4FromStr

shlwapi

PathIsDirectoryW
PathCanonicalizeW
PathIsRelativeW
PathFileExistsW

comctl32

ImageList_Create
ImageList_Destroy
ImageList_AddMasked
ImageList_Draw
ImageList_GetIconSize
_TrackMouseEvent
InitCommonControlsEx

Sections

.text
Size: 428KB - Virtual size: 425KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

846e473ee24261df878f2de246443ae8

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

Sections

.text Size: 428KB - Virtual size: 425KB

.rdata Size: 88KB - Virtual size: 84KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 100KB - Virtual size: 98KB

.text
Size: 428KB - Virtual size: 425KB

.rdata
Size: 88KB - Virtual size: 84KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 100KB - Virtual size: 98KB