75ff552409154a75e3a8f02d6cdab0a75728f40226ea6f74215db05e67570615

Sharing

Copy URL Twitter E-mail

General

Target

75ff552409154a75e3a8f02d6cdab0a75728f40226ea6f74215db05e67570615
Size

604KB
MD5

80498a766cb07c4022e81385fa4945f0
SHA1

00fff1493a7c58ce01d7e031ce0654adc3cb7277
SHA256

75ff552409154a75e3a8f02d6cdab0a75728f40226ea6f74215db05e67570615
SHA512

7cfc9c558c68a32f97fff10ae5b9e576e04c1be5cb00e6d9b88bee9a323a9c9687d2f3e4e7d87ca441c7f15bf8f854d91408714264c99b84489c33bb50589c27
SSDEEP

12288:/F/pZUaMz90fxgtnzCeyFCWZBjalon92cvrEJ1FK68zc84g:qDltnu9DA1FGo84g

Score

N/A

Malware Config

Signatures

Files

75ff552409154a75e3a8f02d6cdab0a75728f40226ea6f74215db05e67570615
.exe windows x86

01e2ab088f0d0d0f51ef1623b047293d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
GetProcessHeap
UnhandledExceptionFilter
ReadConsoleA
GetLastError
CloseHandle
HeapAlloc
SetHandleCount
LoadLibraryW
InterlockedIncrement
OutputDebugStringW
TlsGetValue
EnumCalendarInfoExW
FreeEnvironmentStringsW
TlsFree
LeaveCriticalSection
Sleep
GetModuleFileNameW
GetModuleHandleW
lstrcmpiW
IsValidLocale
GetCommandLineW
GetOEMCP
GetConsoleCP
UnmapViewOfFile
GetStdHandle
OutputDebugStringA
GetLocaleInfoW
GetProcAddress
CompareStringW
GetLocaleInfoA
SetEnvironmentVariableA
GetTimeZoneInformation
GetCPInfo
GlobalGetAtomNameA
GetStringTypeA
VirtualQuery
InterlockedDecrement
SetConsoleCtrlHandler
IsDebuggerPresent
FlushFileBuffers
GetTimeFormatA
MultiByteToWideChar
GetFileType
HeapReAlloc
InitializeCriticalSectionAndSpinCount
ExitProcess
CompareStringA
VirtualFree
VirtualAlloc
SetFilePointer
QueryPerformanceCounter
GetCurrentProcess
HeapDestroy
GetModuleHandleA
GetCurrentThread
GetUserDefaultLCID
HeapCreate
GetCurrentThreadId
IsValidCodePage
SetStdHandle
GetACP
GetDateFormatA
WriteConsoleA
TlsAlloc
lstrlenA
FreeLibrary
WriteFile
GetTickCount
GetStartupInfoW
WriteConsoleW
GetConsoleOutputCP
LCMapStringA
IsBadReadPtr
RtlUnwind
GetConsoleMode
GetSystemTimeAsFileTime
WideCharToMultiByte
HeapValidate
DebugBreak
CreateFileA
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStartupInfoA
GetStringTypeW
HeapFree
TerminateProcess
LoadLibraryA
GetFullPathNameA
RaiseException
TlsSetValue
EnumSystemLocalesA
GetModuleFileNameA
LCMapStringW
FindAtomA
SetLastError
EnumDateFormatsExA
InterlockedExchange
GetCurrentProcessId
DeleteCriticalSection
HeapSize

advapi32

RegEnumValueA
RegSetValueExA
StartServiceW
CryptDuplicateKey
RegQueryValueA
DuplicateToken
CryptGetDefaultProviderW
CryptVerifySignatureA
InitiateSystemShutdownW
RegSetValueA
LookupPrivilegeNameA
CryptEnumProvidersW
RevertToSelf
RegQueryInfoKeyA
RegQueryValueExW
LookupPrivilegeNameW
CryptEnumProviderTypesW

wininet

FtpCreateDirectoryW
InternetOpenUrlW
CreateUrlCacheGroup
ResumeSuspendedDownload
GopherGetLocatorTypeW

user32

EnumDesktopsA
DrawIcon
EnumWindows
CreateDialogIndirectParamA
WaitMessage
CharToOemA
CopyAcceleratorTableW
ShowScrollBar
GetLastActivePopup
DdeFreeStringHandle
CreateWindowExW
IsIconic
IsMenu

Sections

.text
Size: 274KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01e2ab088f0d0d0f51ef1623b047293d

Headers

File Characteristics

Imports

kernel32

advapi32

wininet

user32

Sections

.text Size: 274KB - Virtual size: 273KB

.data Size: 313KB - Virtual size: 313KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 274KB - Virtual size: 273KB

.data
Size: 313KB - Virtual size: 313KB

.rsrc
Size: 15KB - Virtual size: 15KB