98cf4a6ec055499454853ccd4501d3b42f02d9c288bfbaeb3636a0c9cd27dea9

Sharing

Copy URL Twitter E-mail

General

Target

98cf4a6ec055499454853ccd4501d3b42f02d9c288bfbaeb3636a0c9cd27dea9
Size

435KB
MD5

54f3482383b408339b0229dbf37eea65
SHA1

379f84a550177d723e5af06c72c5a794d48699de
SHA256

98cf4a6ec055499454853ccd4501d3b42f02d9c288bfbaeb3636a0c9cd27dea9
SHA512

22755a43a851977ddebbc2dc1a380866d6f9e4df17afede56b9d577f3b5e13c9b44deb59a17613f50765f6c433e22174915f51354f9f6962a082577971775684
SSDEEP

12288:ua6yKrdU/ySzNlX366chU7lRarwoBXYnNbvNk1:gtq6Sz+9ilJ7DNk

Score

N/A

Malware Config

Signatures

Files

98cf4a6ec055499454853ccd4501d3b42f02d9c288bfbaeb3636a0c9cd27dea9
.exe windows x86

2f11cf90406b5ebb78be8e1502b9141b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawFocusRect
GetMenuBarInfo
TrackPopupMenu
EnumDisplaySettingsW
TabbedTextOutW
MonitorFromRect
ScrollWindowEx
GetListBoxInfo
SetMenuItemBitmaps
ChangeDisplaySettingsA
DdeKeepStringHandle
CascadeWindows
GetClassNameW
IsChild
InternalGetWindowText
CreateDialogIndirectParamW
GetCursor
MapVirtualKeyExW
ChildWindowFromPoint
SetMenuItemInfoA
OemToCharBuffA

gdi32

SetWorldTransform
GetPaletteEntries
ColorMatchToTarget
LineTo

wininet

InternetGetConnectedStateEx
FindFirstUrlCacheContainerA
FindFirstUrlCacheEntryW
InternetDial
FtpRenameFileW

advapi32

LookupPrivilegeNameW
RegSaveKeyA
RegQueryInfoKeyA
CryptReleaseContext
CryptDeriveKey
CryptDuplicateHash
RegNotifyChangeKeyValue
RegEnumValueW
ReportEventW
CryptAcquireContextW
RegQueryValueExA
RevertToSelf
CryptSetProviderA
AbortSystemShutdownA
LookupAccountSidW
RegRestoreKeyW
RegDeleteKeyW
RegSetKeySecurity
InitiateSystemShutdownA

kernel32

TerminateProcess
GetStdHandle
MultiByteToWideChar
GetTickCount
ExitProcess
VirtualAlloc
WideCharToMultiByte
GetLastError
GetStringTypeW
LocalShrink
GetACP
GetOEMCP
GetStringTypeA
InterlockedExchange
GetEnvironmentStrings
EnumSystemLocalesA
TlsSetValue
UnhandledExceptionFilter
GetCurrentProcess
IsValidCodePage
TlsAlloc
GetTimeZoneInformation
GetCurrentThread
FreeEnvironmentStringsW
HeapReAlloc
GetCommandLineA
LeaveCriticalSection
HeapSize
IsBadWritePtr
VirtualQuery
DeleteCriticalSection
GetModuleFileNameA
GetStartupInfoA
GetLocaleInfoW
SetLastError
GetEnvironmentStringsW
HeapCreate
GetCurrentThreadId
GetCPInfo
GetVersionExA
EnterCriticalSection
CompareStringA
IsValidLocale
GetLocaleInfoA
GetFileType
GetSystemTimeAsFileTime
LoadLibraryA
SetConsoleScreenBufferSize
HeapDestroy
GetDateFormatA
FreeEnvironmentStringsA
CompareStringW
HeapFree
GetUserDefaultLCID
QueryPerformanceCounter
LCMapStringW
GetSystemInfo
GetModuleHandleA
SetHandleCount
WriteFile
RtlUnwind
LCMapStringA
TlsGetValue
SetEnvironmentVariableA
GetTimeFormatA
GetProcAddress
VirtualFree
InitializeCriticalSection
TlsFree
VirtualProtect
GetCurrentProcessId
HeapAlloc

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 307KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f11cf90406b5ebb78be8e1502b9141b

Headers

File Characteristics

Imports

user32

gdi32

wininet

advapi32

kernel32

Sections

.text Size: 111KB - Virtual size: 111KB

.data Size: 307KB - Virtual size: 311KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 111KB - Virtual size: 111KB

.data
Size: 307KB - Virtual size: 311KB

.rsrc
Size: 16KB - Virtual size: 15KB