c611ff0db0e7a2951685b778438c9c710268776426fd0c65c7f5ed9dfef41040

Sharing

Copy URL Twitter E-mail

General

Target

c611ff0db0e7a2951685b778438c9c710268776426fd0c65c7f5ed9dfef41040
Size

265KB
MD5

e7ea91bab631b5f5900b6b1855d9169b
SHA1

dc1f08ddd73d64de5aae6f3eb9631a9ab737730c
SHA256

c611ff0db0e7a2951685b778438c9c710268776426fd0c65c7f5ed9dfef41040
SHA512

1690525be3c448392a0c419601b4b3dbf10c57e46480ff2de32d956b56cab31c27de231cfd099a424fed4fde902f72cf9ae08af835065d7232ca77c5d8b85940
SSDEEP

3072:ul0rNiziuxKfqgbSCjj4tKIAveYYIBGXFAi7tqmSLDDvqTzq4ArDwzUfoTvX1ZW:s0rNiGigbShK/xYdAi7yDDv+GpEt7X

Score

N/A

Malware Config

Signatures

Files

c611ff0db0e7a2951685b778438c9c710268776426fd0c65c7f5ed9dfef41040
.exe windows x86

505b021b0093bf9f3f3925c624c76f57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
CreateIconFromResource
VkKeyScanExA
GetLastActivePopup
GetClipboardViewer
CreateIconIndirect
EqualRect
KillTimer
LoadAcceleratorsW

advapi32

RegQueryValueA
CryptVerifySignatureA
RegSaveKeyW
RegQueryValueExA
GetUserNameW
RegSetValueExA
CryptGetHashParam
CryptContextAddRef
RegDeleteValueW
CryptSetProviderW
RegCloseKey
AbortSystemShutdownW
CryptSetHashParam
RegQueryMultipleValuesA
CryptSetProviderExA
RegEnumKeyExW
RegCreateKeyA
LookupSecurityDescriptorPartsW

gdi32

Arc
Polygon
CloseFigure
OffsetWindowOrgEx
GetRegionData
SetWorldTransform
SelectClipPath
GetDeviceGammaRamp
GetEnhMetaFileDescriptionA
GetClipBox
SetViewportExtEx
GetTextExtentPoint32A
CombineTransform
RoundRect
CopyEnhMetaFileW
SetDIBitsToDevice
SetAbortProc

comdlg32

GetOpenFileNameW
GetSaveFileNameW
FindTextW
GetSaveFileNameA
FindTextA
ChooseColorW
ChooseColorA
GetOpenFileNameA
PrintDlgA
ReplaceTextA
ChooseFontW
ReplaceTextW

kernel32

GetStartupInfoW
IsValidCodePage
CompareStringA
GetSystemTimeAsFileTime
GetModuleFileNameA
TlsFree
GetOEMCP
Sleep
ExitProcess
WriteFile
GetStringTypeW
TlsGetValue
GetLocaleInfoW
GetProcAddress
GetCurrentThread
SetLastError
LoadLibraryA
VirtualQuery
HeapDestroy
LCMapStringA
RtlUnwind
IsDebuggerPresent
HeapReAlloc
VirtualAlloc
GetEnvironmentStringsW
MultiByteToWideChar
GetStdHandle
HeapSize
GetCurrentThreadId
GetStringTypeA
CompareStringW
GetStartupInfoA
GetUserDefaultLCID
VirtualFree
GetVersionExA
GetCPInfo
InitializeCriticalSection
EnumSystemLocalesA
IsValidLocale
GetProcessHeap
UnhandledExceptionFilter
SetEnvironmentVariableA
TlsSetValue
GetTimeFormatA
GetCurrentProcessId
InterlockedExchange
GetTickCount
GetModuleFileNameW
GetDateFormatA
HeapCreate
FreeLibrary
EnterCriticalSection
InterlockedDecrement
HeapAlloc
GetCommandLineW
LCMapStringW
InterlockedIncrement
WideCharToMultiByte
GetModuleHandleA
LeaveCriticalSection
FreeEnvironmentStringsW
GetCommandLineA
HeapFree
GetTimeZoneInformation
GetCurrentProcess
GetACP
QueryPerformanceCounter
SetConsoleCtrlHandler
FreeEnvironmentStringsA
lstrcmpA
GetLocaleInfoA
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
GetEnvironmentStrings
GetLastError
DeleteCriticalSection
SetHandleCount
GetFileType

wininet

InternetOpenUrlW
InternetFortezzaCommand
InternetQueryFortezzaStatus
InternetReadFileExA
UnlockUrlCacheEntryFile
FtpRemoveDirectoryA
FtpOpenFileA
HttpAddRequestHeadersW
InternetSetDialStateW
DeleteUrlCacheEntry
SetUrlCacheEntryGroupA
FtpPutFileEx
CreateUrlCacheEntryA
InternetLockRequestFile
InternetGetLastResponseInfoW

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

505b021b0093bf9f3f3925c624c76f57

Headers

File Characteristics

Imports

user32

advapi32

gdi32

comdlg32

kernel32

wininet

Sections

.text Size: 138KB - Virtual size: 138KB

.data Size: 114KB - Virtual size: 132KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 138KB - Virtual size: 138KB

.data
Size: 114KB - Virtual size: 132KB

.rsrc
Size: 11KB - Virtual size: 10KB