acdseeclassic_US[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

acdseeclassic_US.exe
Size

4.6MB
MD5

668721f371b0652910bb3b64f09ddbe5
SHA1

bcab1ffefd910f993a36f11f06806a4dec68acb6
SHA256

d25a3639c0f19943721e6b9a55f5f63d3f0f368440813667fb6ec3d60f88d174
SHA512

ab2175747f1a02fbfc7bf439b804221ab87b042892bcabe612dac262aa3d1042100ad937a5446196e2f7e0a03473cbf96ed811af65f5d6c9ae0479ebb76c4ebb
SSDEEP

98304:kWSbO/s+BVMPlVd6kGt6jPqNbZvL+QDuyf1Q9iFXHBp5wefBCa4G:ZSbtSkGt6jCNbNfiqa9UHKefRf

Score

N/A

Malware Config

Signatures

Files

acdseeclassic_US.exe
.exe windows x86

44078230eb8e38e45ff1300355d1b1a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
CreateFileA
ReadFile
WriteFile
SetFilePointer
OpenFile
CreateDirectoryA
GetVersionExA
DeleteFileA
CreateProcessA
FreeLibrary
LoadLibraryExA
GetTempPathA
FindClose
MoveFileA
GetShortPathNameA
SetEvent
OpenEventA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
FindNextFileA
OutputDebugStringA
GetModuleHandleA
ExpandEnvironmentStringsA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetModuleFileNameA
FindFirstFileA
GetCurrentProcess
OpenProcess
TerminateProcess
LoadLibraryA
GetLastError
WideCharToMultiByte
lstrcpyA
GetProcAddress
lstrlenA
CloseHandle
WaitForSingleObject
ReleaseMutex
GetLocalTime
GetTempFileNameA
GetStringTypeW
GetSystemTime
GetStringTypeA
HeapReAlloc
HeapAlloc
SetEndOfFile
FlushFileBuffers
SetEnvironmentVariableA
CompareStringW
CompareStringA
RtlUnwind
GetStartupInfoA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
LCMapStringW
FreeEnvironmentStringsA
MultiByteToWideChar
HeapCreate
LCMapStringA
GetEnvironmentVariableA
IsBadWritePtr
HeapDestroy
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetVersion
GetCommandLineA
GetTimeZoneInformation
VirtualAlloc
SetStdHandle
ExitProcess
HeapFree
SetHandleCount
GetStdHandle
VirtualFree
GetACP
GetCPInfo
GetFileType
GetOEMCP

user32

GetWindowThreadProcessId
MessageBoxA
PeekMessageA
EnumWindows
GetWindowTextA
PostMessageA
wsprintfA
LoadStringA
DestroyWindow
IsWindow
CreateDialogParamA
SendDlgItemMessageA
ShowWindow
SendMessageA
IsDialogMessageA
DispatchMessageA
TranslateMessage
GetWindowLongA
GetWindowRect
SetWindowPos
SetWindowLongA
GetSystemMetrics

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
RegSetValueExA
RegCreateKeyExA

ole32

OleUninitialize
OleInitialize

comctl32

ord17

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44078230eb8e38e45ff1300355d1b1a1

Headers

File Characteristics

Imports

kernel32

user32

version

advapi32

ole32

comctl32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 16KB - Virtual size: 21KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 16KB - Virtual size: 21KB

.rsrc
Size: 16KB - Virtual size: 12KB