cb7d79baf0921ad59f8f8d63523a5211a2c85fa671c0c6c7aac6366b22600ee6

Sharing

Copy URL Twitter E-mail

General

Target

cb7d79baf0921ad59f8f8d63523a5211a2c85fa671c0c6c7aac6366b22600ee6
Size

289KB
MD5

9c1ea6b08e0d92bdaa4d10ca0eefe6ae
SHA1

c5c2e6e5aa49099afcd31224566a22ef49a19deb
SHA256

cb7d79baf0921ad59f8f8d63523a5211a2c85fa671c0c6c7aac6366b22600ee6
SHA512

a47340d87d9babb60ab612f39b25b7bbeed5527229ad4bbf7499343e0aabdbc3d94c1984be47feb59a596c957516ac817278632579f8b754da23796aa232d69a
SSDEEP

6144:r2fr4mnfF4aVvNiRFOxwEkk9bB0Rh6L/GmhFv+BJNP:rovrHiThpk9ueLGv9

Score

N/A

Malware Config

Signatures

Files

cb7d79baf0921ad59f8f8d63523a5211a2c85fa671c0c6c7aac6366b22600ee6
.exe windows x86

16a555c56a816101cca093af73e44583

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

ReportEventA
CryptHashSessionKey

comdlg32

PrintDlgW
ChooseColorA
GetOpenFileNameA
FindTextW
GetOpenFileNameW
GetSaveFileNameA
GetFileTitleA
ChooseFontA
GetSaveFileNameW
GetFileTitleW
FindTextA
PrintDlgA
ReplaceTextA
LoadAlterBitmap
PageSetupDlgW
ChooseFontW
PageSetupDlgA

gdi32

GetTextExtentPointA
GetKerningPairsA

wininet

FtpFindFirstFileW
InternetGetLastResponseInfoW
CreateUrlCacheContainerA
ShowClientAuthCerts
FindFirstUrlCacheEntryW
UnlockUrlCacheEntryFileW
FtpRemoveDirectoryA
FindCloseUrlCache
InternetInitializeAutoProxyDll
FindFirstUrlCacheContainerA
InternetGetCookieA
InternetConfirmZoneCrossingW

kernel32

LCMapStringA
SetLastError
TlsAlloc
QueryPerformanceCounter
CreateRemoteThread
RtlUnwind
GetCPInfo
VirtualAlloc
GetDateFormatA
TransmitCommChar
GetCurrentDirectoryW
WriteFile
GetProcAddress
GetConsoleScreenBufferInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetFileType
HeapReAlloc
GlobalReAlloc
GetEnvironmentStrings
ReadConsoleW
HeapCreate
FreeEnvironmentStringsA
SetEvent
WideCharToMultiByte
InterlockedExchange
GetStartupInfoA
HeapAlloc
EnumResourceTypesA
LeaveCriticalSection
GetCurrentThreadId
GetLastError
GetStringTypeW
MultiByteToWideChar
GetCommandLineA
ExitProcess
TerminateProcess
CreateFileMappingW
GetACP
DeleteCriticalSection
GetStringTypeA
GetStdHandle
SetCurrentDirectoryW
UnhandledExceptionFilter
WritePrivateProfileStringA
HeapFree
GetCurrentThread
GetSystemTimeAsFileTime
LoadLibraryA
VirtualFree
HeapDestroy
TlsFree
SetHandleCount
GetTempPathW
IsBadWritePtr
InitializeCriticalSection
LCMapStringW
GetCurrentProcessId
GetModuleHandleA
GetTickCount
TlsGetValue
GetVersion
GetCurrentProcess
GetModuleFileNameA
EnterCriticalSection
lstrcmpW
VirtualQuery
SetConsoleTitleA
TlsSetValue
GetOEMCP

user32

CreateIconFromResourceEx

Sections

.text
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16a555c56a816101cca093af73e44583

Headers

File Characteristics

Imports

advapi32

comdlg32

gdi32

wininet

kernel32

user32

Sections

.text Size: 143KB - Virtual size: 143KB

.data Size: 134KB - Virtual size: 134KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 143KB - Virtual size: 143KB

.data
Size: 134KB - Virtual size: 134KB

.rsrc
Size: 10KB - Virtual size: 10KB