1744879954a7c0f6d7a7a9f82834564870865ad28e3ca25116a7c55de163a01f

Sharing

Copy URL

Twitter E-mail

General

Target

1744879954a7c0f6d7a7a9f82834564870865ad28e3ca25116a7c55de163a01f
Size

554KB
MD5

718eaab61745c36bbb46a4912d17bfd7
SHA1

b259e3a6a91be02a07e4abf9b5ab37f05ac10ea9
SHA256

1744879954a7c0f6d7a7a9f82834564870865ad28e3ca25116a7c55de163a01f
SHA512

d9fbda0d07a4a3448fca5fb11a28c1580c6435f82eaf529e30127bd9cc6fba10827baab8c78dd113d0996a3550ca07803267a4e1f92e50d696a1af9f37f8d9a9
SSDEEP

6144:rXQZZywpIoi4PTmdfA3sfZ9SYr8IbOWQ8F:UHq4PUYcR95rFb

Score

N/A

Malware Config

Signatures

Files

1744879954a7c0f6d7a7a9f82834564870865ad28e3ca25116a7c55de163a01f
.exe windows x86

59a69b68d08786b60025cb7d83e700e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
DecodePointer
FlushFileBuffers
HeapReAlloc
HeapSize
GetProcAddress
GetModuleHandleW
GetProcessHeap
GetStringTypeW
LCMapStringW
GetSystemTimeAsFileTime
GetWindowsDirectoryW
GetCurrentDirectoryW
GetLocalTime
Sleep
CreateFileW
WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCPInfo
GetOEMCP
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetLastError
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
RtlUnwind
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetFileType
CloseHandle
GetStdHandle
WriteFile
MultiByteToWideChar
WideCharToMultiByte
ExitProcess
GetModuleHandleExW
GetACP
HeapFree
HeapAlloc
GetConsoleCP
GetConsoleMode
SetStdHandle
SetEndOfFile
ReadFile
ReadConsoleW
SetFilePointerEx
GetFileAttributesExW
SetFileAttributesW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetCommandLineW

user32

ClientToScreen
SystemParametersInfoW
CreateDialogIndirectParamW
GetWindowTextLengthW
GetWindowRect
GetSysColorBrush
CreatePopupMenu
RegisterClassExW
DispatchMessageW
ScreenToClient
FrameRect
GetForegroundWindow
DialogBoxIndirectParamW
GetClientRect
GetDesktopWindow

gdi32

Escape
TextOutW

comctl32

ImageList_Create
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_GetIcon
ImageList_EndDrag

ole32

OleUninitialize
OleCreate
OleInitialize

shlwapi

SHCreateStreamOnFileW
PathCanonicalizeW
PathIsRootW
PathIsURLW
StrCmpIW

advapi32

SystemFunction036

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 388KB - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59a69b68d08786b60025cb7d83e700e1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

ole32

shlwapi

advapi32

Sections

.text Size: 137KB - Virtual size: 136KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 47KB

.gfids Size: 512B - Virtual size: 180B

.rsrc Size: 388KB - Virtual size: 388KB

.text
Size: 137KB - Virtual size: 136KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 47KB

.gfids
Size: 512B - Virtual size: 180B

.rsrc
Size: 388KB - Virtual size: 388KB