553cebfb4f6aab50390207ec9d0370edad33d7c7ac99d32b12481d4f452ebb77

Sharing

Copy URL

Twitter E-mail

General

Target

553cebfb4f6aab50390207ec9d0370edad33d7c7ac99d32b12481d4f452ebb77
Size

344KB
MD5

1eb9fe6bed911288e1e184b838cab440
SHA1

ace940ecdb5f34ac018930ae7e9ff14333c6fbcf
SHA256

553cebfb4f6aab50390207ec9d0370edad33d7c7ac99d32b12481d4f452ebb77
SHA512

6aa7aa4c00b997d6e1a1fc33deb72e596cf62830260feaca628c675464266c62d55b2f4a31596ff3da0b0dafd503bbd7f68a5bf7c9daa63b8e571ed540c78b9f
SSDEEP

3072:R2nC/5lyotZhIEOWEux+vqcnclbj1wu/sgwzcVsC4cepFrOJEvkYYYPYZ5YYYYYF:sWyotzIYtaqEY1P/twlcur6bbvjZr

Score

N/A

Malware Config

Signatures

Files

553cebfb4f6aab50390207ec9d0370edad33d7c7ac99d32b12481d4f452ebb77
.exe windows x86

b9673d762348a5d26b067efdd47ce4b1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDoubleClickTime
LoadAcceleratorsW
IsCharAlphaW
GetForegroundWindow
GetUpdateRect
GetSystemMenu
CharUpperW
ChangeMenuA
CharToOemA
SetClassLongW
SendMessageA
IsWindowVisible
SetCapture

mprapi

MprAdminServerDisconnect

winmm

midiStreamOut

ole32

CoMarshalInterThreadInterfaceInStream
CoGetStandardMarshal
OleRegGetMiscStatus

shlwapi

SHQueryValueExA
wnsprintfW
SHRegGetUSValueA
StrRChrIA

winscard

SCardReleaseContext

ws2_32

connect

kernel32

CreateThread
GetComputerNameA
GetCurrentProcess
FlsGetValue
SearchPathA
ScrollConsoleScreenBufferA
GetCommandLineA
IsBadStringPtrW

wininet

FindFirstUrlCacheGroup

gdi32

CopyMetaFileW
Polygon

netapi32

NetLocalGroupSetInfo

rasapi32

RasValidateEntryNameW

oleaut32

DispGetParam
VarDecFromR8
RegisterTypeLi
VarR4FromDate

psapi

GetModuleFileNameExW

shell32

SHFormatDrive

secur32

EnumerateSecurityPackagesW

esent

JetEscrowUpdate

imm32

ImmIsIME

crypt32

CryptVerifyDetachedMessageSignature
CertEnumCRLsInStore

rpcrt4

UuidHash

advapi32

RegRestoreKeyW
RegSetValueExW
ClearEventLogA

setupapi

SetupDiChangeState
SetupDiDestroyDriverInfoList

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

LngAgI.d
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

NpHL
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9673d762348a5d26b067efdd47ce4b1

Headers

DLL Characteristics

File Characteristics

Imports

user32

mprapi

winmm

ole32

shlwapi

winscard

ws2_32

kernel32

wininet

gdi32

netapi32

rasapi32

oleaut32

psapi

shell32

secur32

esent

imm32

crypt32

rpcrt4

advapi32

setupapi

Sections

.text Size: 16KB - Virtual size: 15KB

LngAgI.d Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 6KB

NpHL Size: 132KB - Virtual size: 128KB

.rsrc Size: 180KB - Virtual size: 179KB

.reloc Size: 4KB - Virtual size: 388B

.text
Size: 16KB - Virtual size: 15KB

LngAgI.d
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 6KB

NpHL
Size: 132KB - Virtual size: 128KB

.rsrc
Size: 180KB - Virtual size: 179KB

.reloc
Size: 4KB - Virtual size: 388B