8ce6c2ff5aef6e16b7746d0d06db6d9528dd6b34ca019fcc1a2052c800a94c16

Sharing

Copy URL

Twitter E-mail

General

Target

8ce6c2ff5aef6e16b7746d0d06db6d9528dd6b34ca019fcc1a2052c800a94c16
Size

2.8MB
MD5

bce175bc1c2c24f3f45c5e6682c3a62b
SHA1

d386c47871e7997506c086a9298ff2c14d3f7a22
SHA256

8ce6c2ff5aef6e16b7746d0d06db6d9528dd6b34ca019fcc1a2052c800a94c16
SHA512

07ed8edb31db024c27a923bcfd5042cad50a625f08c756c5f1d9cc5cee745767a35dcb93b78a53f4e2114196cafcd28ce4b687dbb61129d15d43881b9cec37e9
SSDEEP

49152:LTOK1vnePjjjjjvXoLqVEBYqVkSgEP1h6JQU2x3SK493rhM/NuESIl1Z0RYrgo:G2vnePjjjjjfAESB1htzq3INuEVl1ZEO

Score

1^/10

Malware Config

Signatures

Files

8ce6c2ff5aef6e16b7746d0d06db6d9528dd6b34ca019fcc1a2052c800a94c16
.exe windows x86

67ad0079d5920038f55ad5f1eab4c9cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
lstrcmpiA
lstrlenA
SetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
InitializeCriticalSection
DeleteCriticalSection
FlushInstructionCache
GetCurrentProcess
lstrcmpA
MulDiv
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
IsDBCSLeadByte
GlobalFree
GlobalHandle
FreeLibrary
LoadLibraryExA
WriteFile
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetFileSize
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
Sleep
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStdHandle
HeapCreate
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
VirtualQuery
VirtualProtect
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
InterlockedExchange
SetFilePointer
ReadFile
CreateFileA
CloseHandle
GetSystemInfo
GetModuleHandleA
LoadLibraryA
GetProcAddress
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
GetThreadLocale
GetLocaleInfoA
GetACP
MultiByteToWideChar
GetStringTypeA

user32

GetSystemMetrics
PostQuitMessage
MessageBoxA
GetWindowRect
SetWindowPos
MoveWindow
SetWindowTextA
DestroyWindow
EqualRect
ReleaseCapture
MapDialogRect
CreateDialogIndirectParamA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
ShowWindow
CopyRect
CreateAcceleratorTableA
IsWindow
GetDesktopWindow
GetFocus
SetFocus
DestroyAcceleratorTable
BeginPaint
EndPaint
CallWindowProcA
FillRect
UnregisterClassA
GetClassNameA
GetDlgItem
GetParent
IsChild
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
ClientToScreen
GetClientRect
CharNextA
GetSysColor
RegisterWindowMessageA
GetClassInfoExA
LoadCursorA
RegisterClassExA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
SendMessageA
IsDialogMessageA
SetWindowContextHelpId
GetWindow
SendDlgItemMessageA
CreateWindowExA
GetWindowLongA
SetWindowLongA

gdi32

GetStockObject
GetObjectA
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC

advapi32

RegSetValueExA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

ole32

CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoInitialize
CoUninitialize
CoTaskMemRealloc
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
StringFromGUID2

oleaut32

SysStringLen
VarUI4FromStr
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
SysStringByteLen
SysAllocString
SysAllocStringLen
SysFreeString

comctl32

InitCommonControlsEx

Sections

.text
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67ad0079d5920038f55ad5f1eab4c9cf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 132KB - Virtual size: 128KB

.bss Size: - Virtual size: 7.0MB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 12KB - Virtual size: 8KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 132KB - Virtual size: 128KB

.bss
Size: - Virtual size: 7.0MB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 40KB - Virtual size: 36KB