1959b41294655f4e91ead86aae44a37a48c58fc163f8086858984b3caf069818

Sharing

Copy URL Twitter E-mail

General

Target

1959b41294655f4e91ead86aae44a37a48c58fc163f8086858984b3caf069818
Size

580KB
MD5

9c7b47804b80847de2491b228c9b2024
SHA1

560f9cd9a036aac8064145845d8d672d447a4ba6
SHA256

1959b41294655f4e91ead86aae44a37a48c58fc163f8086858984b3caf069818
SHA512

26f7c2ac13f03aca734b8141348908ca9db0d31a7f20345ab2527a2693eb1ddaf83db57de5325122b0ce503ed10db827c56f9424dd18c8f1de705fd62563712c
SSDEEP

6144:6xlF+htP92R4EvWxlKoxc+eXTlHPACt2XZC5nqYGjLg+6iFwEI9dhkeMa6wPvQ3v:hhtPoTvtj+slBcXM5GjLNiEkdhx6TV

Score

N/A

Malware Config

Signatures

Files

1959b41294655f4e91ead86aae44a37a48c58fc163f8086858984b3caf069818
.exe windows x86

06e1661165c8f16279a3283785aef53a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
GetExitCodeThread
GetTempFileNameA
GetBinaryTypeA
lstrcmpiA
GetPrivateProfileSectionW
FindClose
GetProcessHeap
GetLogicalDriveStringsA
LocalAlloc
GetSystemDirectoryA
GetThreadPriority
GetCurrentActCtx
lstrcpynA
GetFileInformationByHandle
GetProfileIntW
FlushConsoleInputBuffer
Module32First
GetModuleFileNameW
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetUserDefaultUILanguage
GetFileSizeEx
GetLocaleInfoW
GlobalHandle
GetStringTypeExA
FlushInstructionCache
GetUserDefaultLangID
Module32Next
GetConsoleDisplayMode
GetStartupInfoW
GetCurrentConsoleFont
GetTimeFormatW
EnumTimeFormatsA
GetShortPathNameA
LoadLibraryExA
GetProcessIdOfThread
GetFileType
DebugBreakProcess
FindVolumeMountPointClose
SleepEx
LockFileEx
DebugActiveProcessStop

wininet

FindFirstUrlCacheEntryExW
FindFirstUrlCacheEntryExA
FindCloseUrlCache
FindNextUrlCacheEntryExW

shlwapi

StrCmpLogicalW
StrFormatByteSizeA

winmm

DefDriverProc

oleaut32

GetErrorInfo
GetRecordInfoFromGuids
VarI8FromR8

msvcrt

_time64
fputs

ws2_32

socket

gdi32

GetTextExtentPoint32A
GetTextCharset
ExtTextOutW
GetClipRgn
ExtEscape
GetRegionData
GetTextExtentPoint32W
FrameRgn
DeleteColorSpace
SetDCPenColor
ExtCreateRegion
DeleteEnhMetaFile
DeleteObject

comdlg32

GetOpenFileNameW

winspool.drv

GetPrinterDataW

urlmon

FindMimeFromData
FaultInIEFeature

secur32

GetUserNameExW

advapi32

InitializeSid
GetSidLengthRequired
CryptCreateHash
NotifyChangeEventLog
GetSecurityDescriptorOwner

user32

GetDlgItemInt
DeferWindowPos
GetWindowWord
DefWindowProcW
GetUpdateRect
LookupIconIdFromDirectory
GetMessagePos
DefWindowProcA
GetKeyState
LoadKeyboardLayoutA
SetMenu
GetScrollRange
GetDoubleClickTime
HiliteMenuItem
GetProcessWindowStation
CharPrevExA
GetUpdateRgn
PostQuitMessage
GetThreadDesktop
IsClipboardFormatAvailable
GetMenuDefaultItem
ActivateKeyboardLayout
AttachThreadInput
WindowFromDC
GetAncestor

ole32

OleDuplicateData

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06e1661165c8f16279a3283785aef53a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

wininet

shlwapi

winmm

oleaut32

msvcrt

ws2_32

gdi32

comdlg32

winspool.drv

urlmon

secur32

advapi32

user32

ole32

Sections

.text Size: 180KB - Virtual size: 177KB

.rdata Size: 336KB - Virtual size: 335KB

.data Size: 32KB - Virtual size: 42KB

.idata Size: 8KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 16KB - Virtual size: 12KB

.text
Size: 180KB - Virtual size: 177KB

.rdata
Size: 336KB - Virtual size: 335KB

.data
Size: 32KB - Virtual size: 42KB

.idata
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 16KB - Virtual size: 12KB