4a8289532528cec1a4c6976a2b92cd15d17b88bf49e802af8005b42d350e3b7a

Sharing

Copy URL

Twitter E-mail

General

Target

4a8289532528cec1a4c6976a2b92cd15d17b88bf49e802af8005b42d350e3b7a
Size

502KB
MD5

d1f11654b552fc73c74548de914aaad5
SHA1

61cab1d17ae4cccdb6e7a1d8c50a830c7a1a9042
SHA256

4a8289532528cec1a4c6976a2b92cd15d17b88bf49e802af8005b42d350e3b7a
SHA512

76865b1fc5c027327fe958caa0ecca7b119b2170976816a2fc343eafdbe3d7ee6e4d9661263e9184fd065e979905767aee118b3b0f65f605b886a7d50d20e74c
SSDEEP

6144:rv4eTV2Wp5/PNARNIyTHtVvc5kKZIc14+b1goq2vUyUwQtov58PaGe8WufhBfR:rFVJpRNAgs1KZIS1xt+XIqjR

Score

N/A

Malware Config

Signatures

Files

4a8289532528cec1a4c6976a2b92cd15d17b88bf49e802af8005b42d350e3b7a
.exe windows x86

f6471e375b82347a36cb8d2e916f7589

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
SetCommMask
VirtualAlloc
WaitCommEvent
GetModuleHandleA
VirtualProtect
FlushFileBuffers
CloseHandle
CreateFileW
HeapReAlloc
GetStringTypeW
LCMapStringW
MultiByteToWideChar
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
LoadLibraryW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
GetConsoleMode
GetConsoleCP
SetFilePointer
GetCurrentProcessId
SetCommTimeouts
QueryPerformanceCounter
GetLocalTime
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
HeapCreate
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleW
HeapFree
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DecodePointer
GetProcAddress
GetLastError
GetLogicalDriveStringsA
GlobalUnlock
SizeofResource
Sleep
GetLocaleInfoW
GetPrivateProfileIntA
GlobalAlloc
FindResourceExA
GetUserDefaultLangID
GetSystemTimeAsFileTime
GetLogicalDrives
GlobalLock
GetCurrentProcess
IsProcessorFeaturePresent
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
GetDriveTypeA
LoadLibraryExW
ClearCommError
LoadResource
GetTickCount
lstrlenA
VirtualQuery

user32

GetDlgCtrlID
GetSystemMetrics
ReleaseCapture
OpenClipboard
SetMenuDefaultItem
SetClipboardData
AppendMenuA
DialogBoxParamA
DrawFrameControl
SetDlgItemTextA
RegisterHotKey
ModifyMenuA
GetMenuItemCount
LoadCursorA
CheckMenuItem
CreateDialogParamW
GetSysColorBrush
CreatePopupMenu
SetMenu
EnumChildWindows
SetWindowPos
DefWindowProcA
EndDialog
GetDlgItem
SetWindowsHookA
EmptyClipboard
GetWindow
MoveWindow
MapWindowPoints
ShowOwnedPopups
DestroyWindow
SetWindowPlacement
SetCursor
CloseClipboard
UpdateLayeredWindow
SetTimer
GetWindowRect
InsertMenuItemA
RegisterClassExA
PostQuitMessage
SetCapture
KillTimer
GetSubMenu
DrawIconEx
GetParent
LoadMenuA
wsprintfA
GetClientRect
SendMessageA
PtInRect
GetDC
GetForegroundWindow
GetMenu
GetAsyncKeyState
SetWindowLongA
MessageBoxA
InvalidateRect
GetWindowLongA
GetClipboardData
CreateWindowExA
ReleaseDC
EnableMenuItem

gdi32

SelectObject
DeleteDC
ChoosePixelFormat
CreateCompatibleDC
CreateCompatibleBitmap
Ellipse
Escape

comdlg32

GetOpenFileNameA

advapi32

GetOldestEventLogRecord
OpenEventLogA
ImpersonateLoggedOnUser
GetNumberOfEventLogRecords

shell32

SHCreateShellItem
SHGetDesktopFolder

ole32

CreateILockBytesOnHGlobal
OleSetContainedObject
CoUninitialize
CoCreateInstance
StgCreateDocfile
CoInitialize
StgOpenStorage
StgCreateDocfileOnILockBytes
OleGetClipboard
OleCreateStaticFromData

oleaut32

SysAllocStringLen
VariantInit
RevokeActiveObject
SysFreeString
SysStringLen

odbc32

ord1
ord15
ord3
ord14
ord7
ord2
ord11

winmm

midiInAddBuffer
midiInGetDevCapsA

shlwapi

StrCmpNIA

comctl32

ord16

activeds

ord3
ord9

rpcrt4

UuidCreateSequential

gdiplus

GdipDeletePen
GdipDeleteFontFamily
GdipAddPathString
GdipDeletePath
GdipDeleteStringFormat
GdipCreatePen1
GdipCreatePath
GdipCreateFontFamilyFromName
GdipCreateStringFormat

opengl32

glShadeModel
glClear
glLoadIdentity
glViewport
glMatrixMode
glClearColor
glEnableClientState

glu32

gluOrtho2D

dbghelp

EnumerateLoadedModules

winhttp

WinHttpSendRequest

snmpapi

SnmpUtilIdsToA

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 367KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6471e375b82347a36cb8d2e916f7589

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

odbc32

winmm

shlwapi

comctl32

activeds

rpcrt4

gdiplus

opengl32

glu32

dbghelp

winhttp

snmpapi

Sections

.text Size: 83KB - Virtual size: 83KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 367KB - Virtual size: 366KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 83KB - Virtual size: 83KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 367KB - Virtual size: 366KB

.reloc
Size: 9KB - Virtual size: 9KB