cd502c2b896bf70a5b3ce37b6768287458a664a4413eeb46aa8d00969f0e16ae

Sharing

Copy URL

Twitter E-mail

General

Target

cd502c2b896bf70a5b3ce37b6768287458a664a4413eeb46aa8d00969f0e16ae
Size

492KB
MD5

93589657cde01e5c3578362bd683841a
SHA1

8b7f67ae73243240d8a56cbf9f7102b13bbf2442
SHA256

cd502c2b896bf70a5b3ce37b6768287458a664a4413eeb46aa8d00969f0e16ae
SHA512

eb8c5d77d3fba5584f9f91f1593df5c471c63b1a23cd27239c0eb20d8f42f2de5431f9f4e43eaa47e5080fb2dde171a964aadadda5b7b2a96b8015760e8ce70d
SSDEEP

12288:ThTihA8nxmNpSk+nFWxQSIomhOUHJZTS2ORk4PgRGPhZ99ZUD/PKBK9f4fzYB0:r2+XRqwJnEqK4sB0

Score

N/A

Malware Config

Signatures

Files

cd502c2b896bf70a5b3ce37b6768287458a664a4413eeb46aa8d00969f0e16ae
.exe windows x86

32258ca5e1ece13f29fe6e773e2c010d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetInstanceExplorer
FreeIconList

comdlg32

GetOpenFileNameA
GetSaveFileNameW
PrintDlgW
ChooseFontW
PrintDlgA
GetFileTitleW
GetFileTitleA
ChooseColorW
ReplaceTextA
ChooseColorA
FindTextW
PageSetupDlgW
FindTextA
ChooseFontA
LoadAlterBitmap
GetOpenFileNameW
PageSetupDlgA
GetSaveFileNameA

wininet

InternetConnectW
InternetCreateUrlW
GetUrlCacheConfigInfoW
FtpGetFileA
FtpCreateDirectoryA
InternetSetDialStateW
InternetTimeFromSystemTimeA
FtpGetCurrentDirectoryW
LoadUrlCacheContent
GopherOpenFileW

user32

OemToCharA
SetMenuContextHelpId
DdeFreeDataHandle
DrawCaption
DlgDirListA
OemToCharW
GetGuiResources
CreateCaret
IntersectRect
UnhookWindowsHook
GetClassInfoA
EnableMenuItem
CreateIcon
DrawStateA

kernel32

LoadResource
TerminateProcess
VirtualLock
RtlUnwind
WritePrivateProfileSectionA
GetVersionExA
lstrcatA
GetOEMCP
LoadLibraryA
GetCommandLineA
GetEnvironmentStrings
IsValidLocale
HeapDestroy
LCMapStringA
SetConsoleCtrlHandler
MultiByteToWideChar
GetStartupInfoA
HeapSize
GetLastError
HeapReAlloc
ExitProcess
CompareStringA
GetFileAttributesA
GetCurrentProcessId
FindFirstFileExA
GetModuleFileNameA
GetStringTypeW
GetTimeFormatA
QueryPerformanceCounter
GlobalReAlloc
lstrlenW
Sleep
IsValidCodePage
GetCurrentThreadId
GetProcAddress
GetCurrentThread
GetLocaleInfoW
SetUnhandledExceptionFilter
CompareStringW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetTickCount
GetEnvironmentStringsW
GetLogicalDrives
GetProfileIntW
TlsSetValue
GetStringTypeA
InitializeCriticalSection
GetModuleHandleA
TlsAlloc
FreeLibrary
InterlockedDecrement
IsDebuggerPresent
LeaveCriticalSection
InterlockedIncrement
VirtualAlloc
GetLocaleInfoA
GlobalFree
WideCharToMultiByte
DeleteCriticalSection
HeapAlloc
InterlockedExchange
LCMapStringW
HeapCreate
SetLastError
UnhandledExceptionFilter
TlsGetValue
GetTimeZoneInformation
GetCPInfo
GetDateFormatA
FreeEnvironmentStringsA
VirtualFree
VirtualQuery
EnterCriticalSection
GetUserDefaultLCID
GetProcessHeap
ContinueDebugEvent
SetHandleCount
LockFileEx
GetStdHandle
GetACP
TlsFree
HeapFree
EnumSystemLocalesA
GetSystemTimeAsFileTime
GetFileType
GetCurrentProcess
WriteFile

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32258ca5e1ece13f29fe6e773e2c010d

Headers

File Characteristics

Imports

shell32

comdlg32

wininet

user32

kernel32

Sections

.text Size: 164KB - Virtual size: 163KB

.data Size: 314KB - Virtual size: 313KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 164KB - Virtual size: 163KB

.data
Size: 314KB - Virtual size: 313KB

.rsrc
Size: 13KB - Virtual size: 13KB