818470d729c7eac13f33b4e7e6dc679c92905caa6f96aaea999fefe663acd1ae

Sharing

Copy URL Twitter E-mail

General

Target

818470d729c7eac13f33b4e7e6dc679c92905caa6f96aaea999fefe663acd1ae
Size

368KB
MD5

aac9d517a76b419c6aecdbecb6b69ea0
SHA1

8fdaf87ccaf345972ada968b6af3ad46870d55f2
SHA256

818470d729c7eac13f33b4e7e6dc679c92905caa6f96aaea999fefe663acd1ae
SHA512

f54f34fcf2650a25e0236cb694d6de6fe18d454048a26994f9c06d8a6225811e3ad0ea1c39a6f1aae176ac9c554f0792e8a85706fb5fed8409d2ed0d29580ca4
SSDEEP

6144:3O/ESnNg483MXeObV9DAwZmxWL/UR70JjsDQGh2eqfCLZT1l:3cOjcXeObVgQAxUse69B

Score

N/A

Malware Config

Signatures

Files

818470d729c7eac13f33b4e7e6dc679c92905caa6f96aaea999fefe663acd1ae
.exe windows x86

f9279ff96a8395a31c04d4f4d7c30328

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

MultiByteToWideChar
InterlockedExchangeAdd
EnumSystemLocalesA
VirtualAlloc
FreeEnvironmentStringsW
CreateMutexA
GetSystemTimeAdjustment
IsValidCodePage
TerminateProcess
GetFileType
SetLastError
GetStartupInfoA
SetHandleCount
ReadConsoleOutputW
GetNamedPipeHandleStateW
ReleaseSemaphore
HeapSize
GetCommandLineA
WriteConsoleOutputAttribute
EnumSystemCodePagesW
GetProfileStringA
GetTimeZoneInformation
GetOEMCP
ExitProcess
VirtualFree
OpenMutexA
GetUserDefaultLCID
SetStdHandle
GetCPInfo
GetModuleFileNameA
GetStdHandle
ReadConsoleInputW
GetShortPathNameW
GetFileTime
GetDateFormatA
LCMapStringA
IsValidLocale
HeapFree
GetCurrentProcessId
LoadLibraryA
GetACP
GetStringTypeA
FlushFileBuffers
IsBadWritePtr
WaitNamedPipeW
TlsGetValue
UnlockFileEx
FillConsoleOutputCharacterW
EnterCriticalSection
CompareStringA
GetLocaleInfoA
GetProcAddress
TlsSetValue
TlsAlloc
SetEnvironmentVariableA
GetCurrentThreadId
HeapAlloc
QueryPerformanceCounter
HeapReAlloc
SetFilePointer
GetSystemTimeAsFileTime
RtlUnwind
HeapCreate
GetStringTypeW
DeleteAtom
GetTimeFormatA
GetModuleFileNameW
GetSystemInfo
CloseHandle
UnhandledExceptionFilter
GetLastError
GetTickCount
VirtualQuery
GetCurrentProcess
InitializeCriticalSection
FreeEnvironmentStringsA
InterlockedExchange
SetSystemTime
LeaveCriticalSection
SetFileAttributesA
WideCharToMultiByte
GetCurrentThread
CreateProcessA
LCMapStringW
TlsFree
GetFileAttributesExW
ReadFile
GetLocaleInfoW
GetEnvironmentStringsW
HeapDestroy
VirtualProtect
GetModuleHandleA
GetEnvironmentStrings
WriteFile
CompareStringW
DeleteCriticalSection
GetVersionExA

user32

TileWindows
RegisterClassA
DrawTextExW
GetSubMenu
InsertMenuW
UnhookWindowsHookEx
GetScrollRange
GetClassLongA
ExitWindowsEx
GetDesktopWindow
GetKeyboardLayout
RegisterClassExA
GetClassNameA
IsRectEmpty
WINNLSEnableIME
DdeDisconnectList
GetClassNameW

wininet

ShowClientAuthCerts
InternetOpenA
GetUrlCacheConfigInfoW
FreeUrlCacheSpaceA
ReadUrlCacheEntryStream
InternetGetCookieA
InternetUnlockRequestFile
InternetConnectW
InternetConnectA

Sections

.text
Size: 240KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9279ff96a8395a31c04d4f4d7c30328

Headers

File Characteristics

Imports

comctl32

kernel32

user32

wininet

Sections

.text Size: 240KB - Virtual size: 240KB

.rdata Size: 24KB - Virtual size: 53KB

.data Size: 91KB - Virtual size: 91KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 240KB - Virtual size: 240KB

.rdata
Size: 24KB - Virtual size: 53KB

.data
Size: 91KB - Virtual size: 91KB

.rsrc
Size: 10KB - Virtual size: 10KB