77e3ef3e74f459e4036ecca9538a5343a260ba22fedfddf983aaa9d446597847

Sharing

Copy URL Twitter E-mail

General

Target

77e3ef3e74f459e4036ecca9538a5343a260ba22fedfddf983aaa9d446597847
Size

245KB
MD5

ee3dd9372309151a65ca04a7a69a8d88
SHA1

1561879f474e855af06a86a6fa2baba667817fe2
SHA256

77e3ef3e74f459e4036ecca9538a5343a260ba22fedfddf983aaa9d446597847
SHA512

af05face34c348aa1af4b8f0921248e481c041cbc66cbc46010e6744bf65c8a844bd5d667652ed1db3e19f693e0380d6c4e1e9ff48886aca2553cbc79a9efda0
SSDEEP

6144:vDrTevHfcA2Il3EzDmQOb+nf7RRVQOBmQrTxN:vDrTYQWcYbE7Htr

Score

N/A

Malware Config

Signatures

Files

77e3ef3e74f459e4036ecca9538a5343a260ba22fedfddf983aaa9d446597847
.exe windows x86

952f275f9be3fe56d342d6829f6722e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LookupPrivilegeValueA
DuplicateTokenEx
RegNotifyChangeKeyValue
GetUserNameW
RegDeleteValueW
RegCreateKeyExA

gdi32

GetMapMode
GetRgnBox
PlayMetaFileRecord
EnumFontFamiliesExA
EnumICMProfilesA
CreateBitmap
SetDIBits
AnimatePalette
ResetDCA
CreateHatchBrush
GetNearestColor
RoundRect

comdlg32

PageSetupDlgW

wininet

GopherOpenFileW
GopherCreateLocatorA
UnlockUrlCacheEntryFileW
GetUrlCacheGroupAttributeW
FtpFindFirstFileA
FtpCommandW
InternetSetDialStateA
InternetFortezzaCommand
SetUrlCacheConfigInfoW
InternetShowSecurityInfoByURLA
CreateUrlCacheGroup
InternetGetConnectedStateEx
InternetSecurityProtocolToStringW
InternetCanonicalizeUrlA
FindNextUrlCacheContainerW
InternetSetCookieA

kernel32

SetConsoleCursorPosition
HeapFree
LoadLibraryA
HeapLock
UnhandledExceptionFilter
GetCPInfo
GetEnvironmentStringsW
GetFileType
GetOEMCP
FileTimeToSystemTime
GetStringTypeExW
HeapAlloc
GetStdHandle
HeapReAlloc
LeaveCriticalSection
InterlockedIncrement
WriteFile
GetTickCount
InitializeCriticalSection
HeapCreate
InterlockedExchange
QueryPerformanceCounter
GetStringTypeW
GlobalUnfix
WriteProfileSectionA
TerminateProcess
TlsGetValue
IsBadWritePtr
GetCurrentThread
GetStartupInfoA
SetHandleCount
GetProcAddress
DeleteCriticalSection
GetModuleHandleA
GetCurrentThreadId
GetCurrencyFormatW
EnterCriticalSection
VirtualFree
GetEnvironmentStrings
FreeEnvironmentStringsA
GetEnvironmentVariableW
TlsSetValue
WideCharToMultiByte
GetACP
VirtualAlloc
GetDateFormatW
FreeEnvironmentStringsW
ExitProcess
RtlUnwind
GetModuleFileNameA
LCMapStringW
GetEnvironmentStringsA
GetVersion
GetCurrentProcessId
VirtualQuery
GetLastError
GetPrivateProfileStringA
TlsFree
GetCommandLineA
ReadConsoleW
HeapDestroy
GetStringTypeA
SetLastError
MultiByteToWideChar
TlsAlloc
GlobalAddAtomA
GetFullPathNameW
LCMapStringA
DeleteFileW
GetSystemTimeAsFileTime
GetProcessAffinityMask
GetTimeZoneInformation
GetPrivateProfileStructA
GetCurrentProcess
CreateWaitableTimerA
SetThreadAffinityMask

user32

ModifyMenuW
OpenIcon
BeginPaint
AdjustWindowRect
MessageBoxExW
CreateDialogParamW
ShowScrollBar
CreateCaret

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

952f275f9be3fe56d342d6829f6722e3

Headers

File Characteristics

Imports

advapi32

gdi32

comdlg32

wininet

kernel32

user32

Sections

.text Size: 108KB - Virtual size: 107KB

.data Size: 131KB - Virtual size: 130KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 108KB - Virtual size: 107KB

.data
Size: 131KB - Virtual size: 130KB

.rsrc
Size: 5KB - Virtual size: 5KB