7ddfc4574560bde92a0133b8608ef5056db56f6285f2c9ab141e8404f974a747

Sharing

Copy URL Twitter E-mail

General

Target

7ddfc4574560bde92a0133b8608ef5056db56f6285f2c9ab141e8404f974a747
Size

493KB
MD5

d818c2a4f0007b2c36e6a42d7c98ccf2
SHA1

06e72584ab512c7c1384085ba0ef7a036a8e96dd
SHA256

7ddfc4574560bde92a0133b8608ef5056db56f6285f2c9ab141e8404f974a747
SHA512

7f4046ca0d6b89b903405bb5995cb4454d27bfbf5ee8247c4c1d0f4a1051727947027384ffe8715e2783607b30d2accdbef954233704812e9a29a75acfafd773
SSDEEP

12288:sKgce35o9VYZu4jWl+DFCc5l4GTjOBDN0t:Vgd35o0u+WlGCcX4uOBh0t

Score

N/A

Malware Config

Signatures

Files

7ddfc4574560bde92a0133b8608ef5056db56f6285f2c9ab141e8404f974a747
.exe windows x86

4f4dbd22dd379d7bafbbb5c3bc6efedb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FindFirstUrlCacheEntryW
GopherCreateLocatorA
InternetAlgIdToStringA
GopherFindFirstFileW
FindFirstUrlCacheEntryExW
InternetGetConnectedStateExW
FindNextUrlCacheGroup
GetUrlCacheEntryInfoA
FindCloseUrlCache
HttpCheckDavCompliance
FtpCommandA

advapi32

DuplicateToken
CryptDestroyHash
RegEnumKeyExW

comdlg32

GetSaveFileNameW
PrintDlgA
PageSetupDlgW
PrintDlgW
GetFileTitleA
PageSetupDlgA

user32

DeferWindowPos
GetMenuItemInfoW
ExcludeUpdateRgn
GrayStringA
AttachThreadInput
GetMenuContextHelpId
EnableScrollBar
MonitorFromRect
SetWindowsHookA
EnumWindows
SetUserObjectInformationW
GetDoubleClickTime
DdeUnaccessData
UnionRect
DdeCreateStringHandleA
TabbedTextOutW
ToUnicodeEx

kernel32

EnumSystemLocalesA
IsValidLocale
HeapDestroy
Sleep
GetVersionExA
GetStdHandle
TlsAlloc
TlsFree
SetLastError
GetStartupInfoA
LCMapStringA
CompareStringA
IsDebuggerPresent
GetSystemTimeAsFileTime
GetLocaleInfoA
VirtualAlloc
GetCPInfo
TerminateProcess
GetLocaleInfoW
GetLastError
SetHandleCount
GetModuleHandleA
HeapSize
LeaveCriticalSection
InitializeCriticalSection
GetTickCount
ExitProcess
GetProcAddress
GetEnvironmentStrings
CompareStringW
InterlockedIncrement
VirtualQuery
TlsGetValue
WriteFile
GetTimeFormatA
LoadLibraryA
RtlUnwind
GetACP
GetFileType
FreeEnvironmentStringsA
GetCurrentThreadId
EnterCriticalSection
InterlockedDecrement
GetModuleFileNameA
GetUserDefaultLCID
GetOEMCP
VirtualFree
GetProcessHeap
IsValidCodePage
DeleteCriticalSection
MultiByteToWideChar
InterlockedExchange
FreeLibrary
GetCurrentProcessId
SetFileTime
QueryPerformanceCounter
WideCharToMultiByte
GetCurrentThread
GetEnvironmentStringsW
SetEnvironmentVariableA
GetDateFormatA
GetCommandLineA
GetTimeZoneInformation
SetUnhandledExceptionFilter
HeapReAlloc
HeapFree
HeapAlloc
HeapCreate
UnhandledExceptionFilter
TlsSetValue
GetCurrentProcess
GetStringTypeA
FreeEnvironmentStringsW
LCMapStringW
SetConsoleCtrlHandler
GetStringTypeW

gdi32

GetICMProfileA
GetViewportOrgEx
SetArcDirection
GetTextCharacterExtra
EndDoc
SetICMProfileA
SetBitmapBits
SetBoundsRect
GetKerningPairsA
FillRgn
CreateDCW
GetRasterizerCaps
GetCharWidthFloatW
GetViewportExtEx
SetWindowOrgEx
SetStretchBltMode
SetEnhMetaFileBits
SetICMMode
CloseMetaFile
GetMapMode
PolylineTo
PlayMetaFileRecord
GetRgnBox
StartDocW
CreateRectRgnIndirect

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 278KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f4dbd22dd379d7bafbbb5c3bc6efedb

Headers

File Characteristics

Imports

wininet

advapi32

comdlg32

user32

kernel32

gdi32

Sections

.text Size: 208KB - Virtual size: 207KB

.data Size: 278KB - Virtual size: 278KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 208KB - Virtual size: 207KB

.data
Size: 278KB - Virtual size: 278KB

.rsrc
Size: 6KB - Virtual size: 5KB