31e7f9cf7110631e1fab471c6d91f0a31080b3d096c2db0be4153f276c6860cf

Sharing

Copy URL Twitter E-mail

General

Target

31e7f9cf7110631e1fab471c6d91f0a31080b3d096c2db0be4153f276c6860cf
Size

302KB
MD5

151b1b40babc0a3161cec8881efb56a5
SHA1

fec46b26a6dd0b0378e4699a6542913e1e6faf21
SHA256

31e7f9cf7110631e1fab471c6d91f0a31080b3d096c2db0be4153f276c6860cf
SHA512

8b3c3085df1ae3c6749b1c11f6d9518b1e949f96a4d114aa6e1c9472ca167a72ca9258c43e5c8a297a474ba19f84fbab48cd18293e7e68828e4aff5b30dad63e
SSDEEP

6144:6dYcGgiKT36d8eh0okImUyswdrI3aAtpOopNySnSBU59amIM9:6dYEF36dfW7Imkwdr9mf/aBU59a2

Score

N/A

Malware Config

Signatures

Files

31e7f9cf7110631e1fab471c6d91f0a31080b3d096c2db0be4153f276c6860cf
.exe windows x86

b1c5cef2c2c1b734b4f55b2cdeb8da0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetGetCookieW

user32

GetComboBoxInfo
GetTabbedTextExtentW
GetMenuContextHelpId
MonitorFromRect
MapDialogRect
GetWindowThreadProcessId
SetMenuItemBitmaps
CallWindowProcA
ChangeDisplaySettingsExA
GetScrollInfo

advapi32

CryptReleaseContext
CryptAcquireContextW
CryptSetHashParam
CryptCreateHash
RegReplaceKeyA
RegEnumValueW
CryptEncrypt
CryptDecrypt
RegOpenKeyExW
RegConnectRegistryW

comdlg32

ReplaceTextA
PageSetupDlgW
ChooseColorW
ChooseFontW
FindTextA
LoadAlterBitmap
PrintDlgA
FindTextW
ChooseColorA
PageSetupDlgA

kernel32

SetLastError
GetACP
GetEnvironmentStrings
GetStartupInfoA
GetOEMCP
GetEnvironmentStringsW
CompareStringW
GetVersionExA
FreeEnvironmentStringsW
IsValidCodePage
GetCurrentProcess
HeapFree
MultiByteToWideChar
CompareStringA
UnhandledExceptionFilter
GetLocaleInfoA
TlsGetValue
VirtualFree
TlsSetValue
LoadLibraryW
DeleteCriticalSection
GetCommandLineA
GetStringTypeW
FreeEnvironmentStringsA
EnumSystemLocalesA
WideCharToMultiByte
GetLocaleInfoW
TlsAlloc
GetCurrentThread
LeaveCriticalSection
GetTimeFormatA
RtlUnwind
GetProcAddress
GetCurrentProcessId
GetFileType
IsValidLocale
InterlockedExchange
HeapCreate
InitializeCriticalSection
GetTimeZoneInformation
GetDateFormatA
WriteFile
GetSystemInfo
GetLastError
GetStringTypeA
GetStdHandle
QueryPerformanceCounter
ExitProcess
HeapDestroy
GetCPInfo
LCMapStringW
SetEnvironmentVariableA
EnterCriticalSection
VirtualQuery
LoadLibraryA
GetCurrentThreadId
VirtualAlloc
TlsFree
GetModuleHandleA
HeapSize
GetSystemTimeAsFileTime
GetTickCount
GetModuleFileNameA
GetUserDefaultLCID
IsBadWritePtr
SetHandleCount
HeapReAlloc
LCMapStringA
TerminateProcess
HeapAlloc
VirtualProtect

shell32

FindExecutableA
ExtractIconExA
SHGetSpecialFolderLocation
FreeIconList
RealShellExecuteA
SHBrowseForFolderA
DragFinish
SHGetDesktopFolder
SheChangeDirA
DragQueryFileAorW

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1c5cef2c2c1b734b4f55b2cdeb8da0b

Headers

File Characteristics

Imports

wininet

user32

advapi32

comdlg32

kernel32

shell32

Sections

.text Size: 152KB - Virtual size: 152KB

.data Size: 139KB - Virtual size: 138KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 152KB - Virtual size: 152KB

.data
Size: 139KB - Virtual size: 138KB

.rsrc
Size: 9KB - Virtual size: 9KB