719e9aca2bff9d8998402cb69df7c1a02a39b3ce6883355e7f6335c5d7088b51

Sharing

Copy URL Twitter E-mail

General

Target

719e9aca2bff9d8998402cb69df7c1a02a39b3ce6883355e7f6335c5d7088b51
Size

2.8MB
MD5

1acdca0ca4cd7dda940bd9df2df0c069
SHA1

fe4412660555a6cbca2a7861d240a3638e562542
SHA256

719e9aca2bff9d8998402cb69df7c1a02a39b3ce6883355e7f6335c5d7088b51
SHA512

01e7fd9ff9eb82500fdf24cdba2e1c6bb03e4a856f3196653f6b009be1f50cc627753e477aecad95a778d0ff60a0abf22c83ffea02c8767c5f75dd693ee83731
SSDEEP

49152:LT5EiKG2L1Z+URpKaW2o97XX43qQs5zqfa54M/NuESIl1Z0RYrgo:pCR3fuX439sq0XNuEVl1ZEYUo

Score

1^/10

Malware Config

Signatures

Files

719e9aca2bff9d8998402cb69df7c1a02a39b3ce6883355e7f6335c5d7088b51
.exe windows x86

67ad0079d5920038f55ad5f1eab4c9cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
lstrcmpiA
lstrlenA
SetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
InitializeCriticalSection
DeleteCriticalSection
FlushInstructionCache
GetCurrentProcess
lstrcmpA
MulDiv
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
IsDBCSLeadByte
GlobalFree
GlobalHandle
FreeLibrary
LoadLibraryExA
WriteFile
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetFileSize
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
Sleep
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStdHandle
HeapCreate
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
VirtualQuery
VirtualProtect
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
InterlockedExchange
SetFilePointer
ReadFile
CreateFileA
CloseHandle
GetSystemInfo
GetModuleHandleA
LoadLibraryA
GetProcAddress
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
GetThreadLocale
GetLocaleInfoA
GetACP
MultiByteToWideChar
GetStringTypeA

user32

GetSystemMetrics
PostQuitMessage
MessageBoxA
GetWindowRect
SetWindowPos
MoveWindow
SetWindowTextA
DestroyWindow
EqualRect
ReleaseCapture
MapDialogRect
CreateDialogIndirectParamA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
ShowWindow
CopyRect
CreateAcceleratorTableA
IsWindow
GetDesktopWindow
GetFocus
SetFocus
DestroyAcceleratorTable
BeginPaint
EndPaint
CallWindowProcA
FillRect
UnregisterClassA
GetClassNameA
GetDlgItem
GetParent
IsChild
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
ClientToScreen
GetClientRect
CharNextA
GetSysColor
RegisterWindowMessageA
GetClassInfoExA
LoadCursorA
RegisterClassExA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
SendMessageA
IsDialogMessageA
SetWindowContextHelpId
GetWindow
SendDlgItemMessageA
CreateWindowExA
GetWindowLongA
SetWindowLongA

gdi32

GetStockObject
GetObjectA
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC

advapi32

RegSetValueExA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

ole32

CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoInitialize
CoUninitialize
CoTaskMemRealloc
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
StringFromGUID2

oleaut32

SysStringLen
VarUI4FromStr
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
SysStringByteLen
SysAllocString
SysAllocStringLen
SysFreeString

comctl32

InitCommonControlsEx

Sections

.text
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67ad0079d5920038f55ad5f1eab4c9cf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 132KB - Virtual size: 128KB

.bss Size: - Virtual size: 7.0MB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 12KB - Virtual size: 8KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 132KB - Virtual size: 128KB

.bss
Size: - Virtual size: 7.0MB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 40KB - Virtual size: 36KB