8d0c39777ac5ab85f55144297ed1aebf27980191b127921eb9a5b26ff9bc1a07

Sharing

Copy URL

Twitter E-mail

General

Target

8d0c39777ac5ab85f55144297ed1aebf27980191b127921eb9a5b26ff9bc1a07
Size

2.1MB
MD5

f79541bde0390fa17fe77490ae57ede4
SHA1

74cf35b9c1bff1a27717f07cdf73a840ba68a601
SHA256

8d0c39777ac5ab85f55144297ed1aebf27980191b127921eb9a5b26ff9bc1a07
SHA512

5f9f0b4ddd9de10f8b22167c16d2d288ad381d59d4b2bb02f0346fde36d8f122ce922c065735c0ee58ac9e36d97e9f7323f7dc2da2d1512f0a9c8e25d44dbb41
SSDEEP

49152:V4HlGwcI1e+T+vRgVnqdzIZNAkgmF496M1sVSixiPJtg:VE6I1SqVnqdzIZukgMVETg

Score

N/A

Malware Config

Signatures

Files

8d0c39777ac5ab85f55144297ed1aebf27980191b127921eb9a5b26ff9bc1a07
.exe windows x86

e2e36503c81bf9b6f2429dea82f71197

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetACP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
SetFilePointerEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetFileType
GetModuleFileNameW
GetStdHandle
GetProcessHeap
IsDebuggerPresent
GetCurrentThreadId
HeapSize
GetModuleHandleExW
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
GetFileInformationByHandle
CompareStringW
GetTimeFormatW
GetDateFormatW
IsProcessorFeaturePresent
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetLastError
GetTimeZoneInformation
LoadLibraryExW
OutputDebugStringW
ReadConsoleW
SetStdHandle
WriteConsoleW
SetEnvironmentVariableA
FlushConsoleInputBuffer
FillConsoleOutputCharacterA
GetFileAttributesA
CreateFileA
GetStartupInfoA
CreateProcessA
LoadLibraryW
LoadLibraryA
GetLocalTime
CreatePipe
PurgeComm
CloseHandle
ExitProcess
ReadFile
WaitForSingleObject
GetLastError
TerminateProcess
GlobalAlloc
GetProcAddress
MultiByteToWideChar
GetModuleHandleA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCommandLineW
RtlUnwind
RaiseException
HeapAlloc
HeapFree
GetCPInfo
CreateFileW
lstrcmpW
LCMapStringW
GlobalSize
GlobalFree
WriteFile
DecodePointer
EncodePointer
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetStringTypeW
WideCharToMultiByte
SetEndOfFile

user32

EnableWindow
SetWindowTextW
EnumDesktopsA
GetWindowTextW
GetDlgItem
DefWindowProcA
PostQuitMessage
CreateWindowExA
ShowWindow
DrawFrameControl
GetShellWindow
MoveWindow
SetWindowPos
CreateDialogParamA
DialogBoxParamA
SetDlgItemTextA
CheckRadioButton
CharUpperBuffA
CharLowerA
CharNextA
CharPrevA
SendInput
EndDialog
DialogBoxParamW
SendMessageW
wsprintfW
SendMessageA
SystemParametersInfoA
LoadIconA
LoadCursorA
UnhookWindowsHookEx
FindWindowA
GetDesktopWindow
OffsetRect
FrameRect
DrawFocusRect
SetCaretPos
HideCaret
CreateCaret
SetCursor
GetWindowRect
GetClientRect
LockWindowUpdate
EndPaint
BeginPaint
ReleaseDC
GetDCEx
GetDC
SetForegroundWindow
UpdateWindow
InsertMenuA
GetSystemMetrics
KillTimer
SetTimer

gdi32

SetViewportOrgEx
SetViewportExtEx
CreateDIBSection
GetTextMetricsA
SetMapMode
SetDIBitsToDevice
SetBkMode
SelectObject
Rectangle
GetStockObject
GetCharWidth32A
Ellipse
DeleteObject
DeleteDC
CreateSolidBrush
CreateHatchBrush
CreateCompatibleDC
BitBlt
SetWindowExtEx

comdlg32

GetSaveFileNameW
GetOpenFileNameW
GetOpenFileNameA

advapi32

LsaAddAccountRights
LookupPrivilegeValueW
MakeAbsoluteSD2
SetSecurityDescriptorDacl
InitializeSecurityDescriptor

shell32

SHGetDesktopFolder
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc

ole32

CreateStreamOnHGlobal
CLSIDFromString
CoMarshalInterface
CoInitialize

comctl32

CreateStatusWindowW

wininet

FtpSetCurrentDirectoryA

ws2_32

WSAEventSelect

winmm

mciSendCommandA

shlwapi

PathCombineA

pdh

PdhGetFormattedCounterValue
PdhCloseQuery
PdhCollectQueryData
PdhAddCounterA
PdhOpenQueryA
PdhRemoveCounter
PdhMakeCounterPathA

gdiplus

GdipSaveImageToStream
GdipCreateBitmapFromStream
GdipAlloc
GdipFree
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromHBITMAP

opengl32

glLineWidth
glLineStipple
glEnable

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo

tapi32

phoneGetRing

Sections

.text
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2e36503c81bf9b6f2429dea82f71197

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

wininet

ws2_32

winmm

shlwapi

pdh

gdiplus

opengl32

setupapi

tapi32

Sections

.text Size: 460KB - Virtual size: 459KB

.rdata Size: 223KB - Virtual size: 223KB

.data Size: 11KB - Virtual size: 25KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 460KB - Virtual size: 459KB

.rdata
Size: 223KB - Virtual size: 223KB

.data
Size: 11KB - Virtual size: 25KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB