317fec4108f6d85caa5c1589b983a87dc665140390975d2f96e54a8ab1ab2d34

Sharing

Copy URL

Twitter E-mail

General

Target

317fec4108f6d85caa5c1589b983a87dc665140390975d2f96e54a8ab1ab2d34
Size

1.1MB
MD5

56c9727d6d4e0af73218e73f62677000
SHA1

f4fc7ef9f53faf32cafb002f34ede7078175e6e9
SHA256

317fec4108f6d85caa5c1589b983a87dc665140390975d2f96e54a8ab1ab2d34
SHA512

ed26c12c583ba02ee32b542ff815841b813b0d8149eb010ef3671d02476f77608fa394fa60f8e0d4576a18f9c772fba48a471625026b2001453a8057d1cbd95d
SSDEEP

24576:AkjvRp0g/fKxVXnvUdVYk1HmyFtEP/2xn/8f7dwWS4X3RS5Y6jDZ2yRjbRCbw7ki:bjz0h5iN15tk2Wf7dhXhS5YQsANKhtm

Score

N/A

Malware Config

Signatures

Files

317fec4108f6d85caa5c1589b983a87dc665140390975d2f96e54a8ab1ab2d34
.zip
000000090000-0990.exe
.exe windows x86

52b6f9925181b207b99c579c99e10d60

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
Sleep
GetProcessHeap
HeapAlloc
GetStdHandle
SetConsoleCursorPosition
SystemTimeToFileTime
SetCommMask
_llseek
TlsGetValue
GetExitCodeThread
FindFirstVolumeMountPointA
GetFileAttributesA
SetConsoleMode
ReadConsoleInputA
CreateFileW
SetEnvironmentVariableA
CompareStringW
SetEndOfFile
HeapReAlloc
WriteConsoleW
GetStringTypeW
HeapSize
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CreateFileA
SetStdHandle
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ReadFile
GetSystemTimeAsFileTime
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
EnterCriticalSection
LeaveCriticalSection
GetLastError
MoveFileA
DeleteFileA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
EncodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
GetTimeZoneInformation
HeapFree
CloseHandle
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
SetFilePointer
RtlUnwind
IsProcessorFeaturePresent
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
GetModuleFileNameW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
MultiByteToWideChar

gdi32

GetObjectType
GetDCPenColor
FixBrushOrgEx
CreateScalableFontResourceA
GdiArtificialDecrementDriver
RestoreDC
SaveDC
PtVisible
Polygon
PlayEnhMetaFileRecord
ColorCorrectPalette
ExtCreateRegion

wininet

InternetCloseHandle
DeleteUrlCacheGroup
FtpCreateDirectoryW
SetUrlCacheEntryInfoA
FreeUrlCacheSpaceA
SetUrlCacheHeaderData
FtpRenameFileW
FindFirstUrlCacheEntryExW
FindNextUrlCacheEntryExW

setupapi

SetupAddInstallSectionToDiskSpaceListW
SetupQueueCopySectionW
SetupDiDestroyClassImageList
SetupDiOpenDeviceInfoA
SetupDiClassNameFromGuidW

wsnmp32

ord103
ord504
ord901
ord999
ord904

ole32

OleLoad
CreateObjrefMoniker
FmtIdToPropStgName
HACCEL_UserSize
OleUninitialize
OleRegGetMiscStatus
FreePropVariantArray
CreateILockBytesOnHGlobal
OleFlushClipboard

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52b6f9925181b207b99c579c99e10d60

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

wininet

setupapi

wsnmp32

ole32

Sections

.text Size: 93KB - Virtual size: 93KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 15KB - Virtual size: 26KB

.rsrc Size: 308KB - Virtual size: 308KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 93KB - Virtual size: 93KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 15KB - Virtual size: 26KB

.rsrc
Size: 308KB - Virtual size: 308KB

.reloc
Size: 8KB - Virtual size: 7KB