d5ba0f1c01cf12f57cca93996d2f87191c9420afbbd116d3757060d780338d29

Sharing

Copy URL

Twitter E-mail

General

Target

d5ba0f1c01cf12f57cca93996d2f87191c9420afbbd116d3757060d780338d29
Size

285KB
MD5

c25b6469a89826074b513d45b76c4c6a
SHA1

cd13f2ee1af78f3f48edb595fc90358415e5ebe1
SHA256

d5ba0f1c01cf12f57cca93996d2f87191c9420afbbd116d3757060d780338d29
SHA512

a9314292c946ad2c63165f241ab4bc3dbb5626b14b7fb5d6606dbf8d789040a50e7eb5777721568fbc32bed4d0a4e815dd423096a92026c319d4d96dcc3fc5f7
SSDEEP

6144:0PMFNxNdI3M8vhT9EfS9mG4LZnIkpsEcdwM2Gw/ATq:ACATpBgG1Euw/Gw/Am

Score

N/A

Malware Config

Signatures

Files

d5ba0f1c01cf12f57cca93996d2f87191c9420afbbd116d3757060d780338d29
.exe windows x86

5b516fbfc567b3d423cf78039fdcaabc

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

winscard

SCardControl

user32

ReleaseCapture
OffsetRect
GetMenuStringW
LoadStringW
MoveWindow
UnregisterClassA
GetMenu
LoadIconA
SetActiveWindow
GetClientRect
SetWindowTextW
DestroyIcon
PostMessageW
RegisterClassW
GetSubMenu
GetCursorPos
MessageBeep
DefWindowProcW
ReleaseDC
SetWindowPos
CheckMenuItem
DrawFocusRect
SendMessageW
SetWindowLongW
PtInRect
CreateWindowExA
GetActiveWindow
SetTimer
DestroyMenu
CreateWindowExW

kernel32

TlsGetValue
CompareStringW
CompareStringA
VirtualQuery
GetSystemInfo
VirtualProtect
GetTimeZoneInformation
GetLocaleInfoW
LCMapStringW
WideCharToMultiByte
LCMapStringA
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
HeapReAlloc
HeapAlloc
InitializeCriticalSection
LoadLibraryExA
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
OutputDebugStringA
Sleep
GetACP
GetCPInfo
EnterCriticalSection
FatalAppExitA
VirtualAlloc
GetVersionExA
GetEnvironmentStringsW
IsDebuggerPresent
GetCommandLineA
GetTickCount
GetEnvironmentStrings
GetLastError
GetProcAddress
LoadLibraryW
GetCurrentThread
ExitProcess
GetOEMCP
SetEvent
lstrlenW
GetCurrentProcess
FormatMessageW
CloseHandle
LeaveCriticalSection
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
RtlUnwind
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
SetEnvironmentVariableA
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThreadId
GetModuleHandleA
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter

ole32

OleCreate
OleInitialize
CoUninitialize

Sections

.text
Size: 254KB - Virtual size: 254KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b516fbfc567b3d423cf78039fdcaabc

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

winscard

user32

kernel32

ole32

Sections

.text Size: 254KB - Virtual size: 254KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 1024B - Virtual size: 664B

.text
Size: 254KB - Virtual size: 254KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 1024B - Virtual size: 664B