01383ffbff82aece0508c61403a0ded6e5b92e567f6b1c8cf8447ddb40bd80e6

Sharing

Copy URL Twitter E-mail

General

Target

01383ffbff82aece0508c61403a0ded6e5b92e567f6b1c8cf8447ddb40bd80e6
Size

843KB
MD5

61cf78740c4463cb238a12dfed534672
SHA1

b38f0609da9b3fd1cdb9193e53f08ac278b5cefb
SHA256

01383ffbff82aece0508c61403a0ded6e5b92e567f6b1c8cf8447ddb40bd80e6
SHA512

b4e04fb14738c3940c6e4fcd861e44df7dd26b50b64a909c800dec885501006ad2acdd10725a09a99a5f4974b1fa16bef49aec469b87a0a8a7ea2afbc7e3461b
SSDEEP

24576:2+wivX5gsYdtqWpFjMVdl6A1raYTrcAkbr:2JMX5gjtNp8eA1raYTw3r

Score

N/A

Malware Config

Signatures

Files

01383ffbff82aece0508c61403a0ded6e5b92e567f6b1c8cf8447ddb40bd80e6
.exe windows x86

afc2c489622f72e37ae4a85200475296

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadBitmapA
SetWindowPos
IsWindow
DispatchMessageW
GetCursorPos
SendMessageA
GetClientRect
DestroyWindow
GetParent
UpdateWindow
ShowWindow
EnableWindow
TranslateMessage
IsWindowEnabled
GetWindow
LoadStringA
EnableMenuItem
RegisterClassA
GetWindowLongA
CreateWindowExA
FillRect
PostQuitMessage
SetFocus
PeekMessageA
BeginPaint
KillTimer
DefWindowProcA
GetSystemMetrics
GetWindowRect
IsIconic
PostMessageA
ReleaseCapture
SetWindowLongA
SetWindowTextA
DispatchMessageA
SetTimer
GetDlgItem
SetCursor
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
EndDialog
SetDlgItemTextA
SetForegroundWindow
ReleaseDC
MessageBoxA
GetSysColor
SystemParametersInfoA
InvalidateRect
CallWindowProcA

kernel32

FlushFileBuffers
IsDebuggerPresent
GetModuleFileNameW
GetTimeZoneInformation
GetModuleFileNameA
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
SetEndOfFile
HeapDestroy
HeapFree
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
LocalAlloc
SetErrorMode
FreeEnvironmentStringsW
SetStdHandle
WideCharToMultiByte
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
GetOEMCP
LocalFree
InitializeCriticalSection
LoadResource
FindClose
InterlockedDecrement
FormatMessageA
OutputDebugStringA
SetLastError
GetLastError
GetVersion
GetCurrentThreadId
GetCommandLineA
GetCurrentThread
GetModuleHandleA
GetCurrentProcessId
ExitProcess
HeapAlloc
GetProcessHeap
CompareStringA
VirtualAlloc
FindResourceA
Sleep
VirtualFree
FindResourceW
UnmapViewOfFile
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
InterlockedExchange
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCommandLineW
LockResource
SizeofResource
CreateProcessW
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
UnhandledExceptionFilter
GlobalLock
DuplicateHandle
FindFirstFileW
ResetEvent
FindFirstFileA
lstrcmpA
CompareStringW
GetSystemInfo
GetProcAddress
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
GetVersionExW
lstrcmpiA
SetHandleCount
EnterCriticalSection
WriteConsoleW
SetCurrentDirectoryA
InterlockedIncrement
CreateEventW
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
FindNextFileA
GetLocalTime
MultiByteToWideChar
LoadLibraryExW
TlsGetValue

advapi32

RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW

gdi32

GetDeviceCaps
SetBkColor
DeleteObject

oleaut32

SysStringLen
SysFreeString

msvcrt

_cexit
_exit
exit
_controlfp

Sections

.text
Size: 793KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afc2c489622f72e37ae4a85200475296

Headers

File Characteristics

Imports

user32

kernel32

advapi32

gdi32

oleaut32

msvcrt

Sections

.text Size: 793KB - Virtual size: 1.1MB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 23KB - Virtual size: 23KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 793KB - Virtual size: 1.1MB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 23KB - Virtual size: 23KB

.rsrc
Size: 18KB - Virtual size: 17KB