202d447dd21430fae1a77180a81dd134

Sharing

Copy URL Twitter E-mail

General

Target

202d447dd21430fae1a77180a81dd134
Size

1.1MB
MD5

202d447dd21430fae1a77180a81dd134
SHA1

eba8011afe9ce523e7de292f16c72dee9de683ef
SHA256

24a5af5c55bb799a08cd2ae6632c32c16cb2f02708fd228fae194e11e357665f
SHA512

1415b5293679ac1926de53a28ebf1b58f87fdb0c99e7bf10ee469e5347eed685e252d26ed2d05d4b1268d605bc232820276a8fed4a1bb4dc1894ffe736f2fe3b
SSDEEP

24576:nyzG0AYPdQaDAePKBuQ83T78duXSYvnyxvSPxJBWYKTLezQq:SKEQ0KQpJBXKTqzV

Score

1^/10

Malware Config

Signatures

Files

202d447dd21430fae1a77180a81dd134
.exe windows:4 windows x86 arch:x86

2782364926e82b22e9def733cb150124

Code Sign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

msimg32

AlphaBlend

comctl32

_TrackMouseEvent

riched20

ord4

kernel32

FreeResource
FindResourceW
LockResource
LoadResource
HeapAlloc
ExpandEnvironmentStringsW
SetEndOfFile
WriteFile
GetFileSize
ReadFile
SetFilePointer
GetExitCodeProcess
SuspendThread
ResumeThread
WaitForSingleObject
Sleep
GetCurrentThreadId
CreateEventW
ResetEvent
SetEvent
FindFirstFileW
FindClose
FindNextFileW
WideCharToMultiByte
MultiByteToWideChar
QueryPerformanceCounter
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
ReleaseSemaphore
CreateSemaphoreW
InitializeCriticalSection
GlobalUnlock
GlobalFree
GlobalLock
GlobalAlloc
GetTickCount
MulDiv
InterlockedIncrement
OutputDebugStringW
GetSystemTimeAsFileTime
HeapFree
GetModuleHandleA
SetLastError
LocalAlloc
CreateProcessA
lstrcmpW
VerifyVersionInfoW
VerSetConditionMask
lstrcmpA
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
ExitProcess
HeapSize
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
RaiseException
RtlUnwind
HeapReAlloc
CreateThread
ExitThread
GetStartupInfoW
GetVersionExA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedExchange
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
GetPrivateProfileStringW
GetCurrentProcess
WritePrivateProfileStringW
SizeofResource
GetProcessHeap
LoadLibraryExW
CreateDirectoryW
CreateFileW
GetSystemDirectoryW
DeleteFileW
GetCurrentDirectoryW
GetFileAttributesW
GetLocaleInfoA
SetFileTime
GetFullPathNameW
RemoveDirectoryW
lstrlenW
SetCurrentDirectoryW
SetFileAttributesW
InterlockedDecrement
CreateFileA
GetVersionExW
GetSystemInfo
LoadLibraryW
LocalFree
GetProcAddress
FreeLibrary
OpenProcess
TerminateProcess
GetSystemTime
Module32FirstW
SystemTimeToFileTime
CreateToolhelp32Snapshot
CreateProcessW
CloseHandle
Module32NextW
GetLastError
GetModuleFileNameW
GetModuleHandleW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
VirtualFree
GetCurrentProcessId
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
VirtualAlloc
LoadLibraryA
GetThreadLocale

user32

ReleaseCapture
GetMessageW
GetFocus
TranslateAcceleratorW
SetCaretPos
UpdateLayeredWindow
SetWindowRgn
GetUpdateRect
DispatchMessageW
TranslateMessage
SetCapture
ScreenToClient
SetFocus
PostMessageW
ShowCaret
CreateCaret
ReleaseDC
IsWindow
EndPaint
BeginPaint
MonitorFromWindow
DestroyWindow
CreateWindowExW
GetKeyState
OffsetRect
SetPropW
DestroyIcon
EnableWindow
HideCaret
GetClassInfoExW
CallWindowProcW
GetMonitorInfoW
IsWindowEnabled
GetCursorPos
DrawFocusRect
IsRectEmpty
IntersectRect
PtInRect
RegisterClassW
CharNextW
SetCursor
LoadBitmapW
CharNextA
GetActiveWindow
GetPropW
LoadImageW
DrawTextW
FillRect
CopyImage
DrawIconEx
CharPrevW
MoveWindow
RedrawWindow
GetSysColor
ClientToScreen
GetAsyncKeyState
ChildWindowFromPointEx
DestroyAcceleratorTable
InvalidateRgn
LoadStringW
GetSystemMetrics
ShowWindow
SetWindowTextW
IsZoomed
GetWindowRect
GetWindowTextW
SystemParametersInfoW
GetClientRect
GetParent
IsWindowVisible
IsIconic
GetWindowTextLengthW
IsChild
MapWindowPoints
GetWindow
PostQuitMessage
SendMessageW
FindWindowW
GetWindowThreadProcessId
MessageBoxW
GetWindowLongW
SetTimer
SetForegroundWindow
SetWindowLongW
KillTimer
SetWindowPos
RegisterClassExW
LoadCursorW
DefWindowProcW
CreateAcceleratorTableW
InvalidateRect
GetDC

gdi32

SetBitmapBits
GetBitmapBits
CreateSolidBrush
TextOutW
GetTextExtentPoint32W
GetDeviceCaps
SetBkColor
CreateCompatibleBitmap
RoundRect
ExtTextOutW
GetCharABCWidthsW
ExtSelectClipRgn
SetBkMode
StretchBlt
Rectangle
BitBlt
GetTextMetricsW
CreatePen
CreateFontIndirectW
LineTo
CreateCompatibleDC
CreateRoundRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreateRectRgn
GetStockObject
MoveToEx
GetObjectW
DeleteDC
SetStretchBltMode
GetClipBox
DeleteObject
CreateDIBSection
SetTextColor
SelectObject
SelectClipRgn
CombineRgn
EnumFontsW

advapi32

CheckTokenMembership
AllocateAndInitializeSid
FreeSid
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumValueW
RegQueryValueExW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW

shell32

SHGetSpecialFolderPathW
ShellExecuteExW
SHGetPathFromIDListW
SHBrowseForFolderW

ole32

CreateStreamOnHGlobal
DoDragDrop
CLSIDFromString
CLSIDFromProgID
OleLockRunning
CoCreateInstance
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoInitializeEx

oleaut32

SysAllocString
OleLoadPicture
VariantClear
SysFreeString

Sections

.text
Size: 804KB - Virtual size: 802KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2782364926e82b22e9def733cb150124

Code Sign

Signer

Headers

File Characteristics

Imports

version

msimg32

comctl32

riched20

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 804KB - Virtual size: 802KB

.rdata Size: 132KB - Virtual size: 129KB

.data Size: 16KB - Virtual size: 24KB

.tls Size: 4KB - Virtual size: 9B

.rsrc Size: 140KB - Virtual size: 139KB

.text
Size: 804KB - Virtual size: 802KB

.rdata
Size: 132KB - Virtual size: 129KB

.data
Size: 16KB - Virtual size: 24KB

.tls
Size: 4KB - Virtual size: 9B

.rsrc
Size: 140KB - Virtual size: 139KB