eaff6e5fa32d1a859bc8472a31142a4b9fe585041cf981d144e13b4e75f43c24

Sharing

Copy URL Twitter E-mail

General

Target

eaff6e5fa32d1a859bc8472a31142a4b9fe585041cf981d144e13b4e75f43c24
Size

263KB
MD5

6b857f1060802613f959b4ca72ad93de
SHA1

b268c81b1690ef90f52edd8e5a674c0d9b065aa0
SHA256

eaff6e5fa32d1a859bc8472a31142a4b9fe585041cf981d144e13b4e75f43c24
SHA512

97e97b787b760bfe5137a073ca8b3a1cdd4ca1aabcc996720624d7e783bb08d2fe854fba61dc9896c45c82d08837efa14373ec268f823e444bdabc6ec052a015
SSDEEP

6144:+hP7boQOHt0ARz6mC5Db9Z6/+IDsRfSF6AjKrqzwODfVx/HvwO:+FkxHCARzpkb9nI+sdkqEODdxXP

Score

N/A

Malware Config

Signatures

Files

eaff6e5fa32d1a859bc8472a31142a4b9fe585041cf981d144e13b4e75f43c24
.exe windows x86

26d19c471f3206c370c6e4d04c57f090

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

VkKeyScanA
RegisterClassExW
GetClipboardFormatNameW
CharNextW
LoadMenuA
RemoveMenu
DdeUninitialize
GetClassLongA
IsRectEmpty
GetClipboardSequenceNumber
GetMenuContextHelpId
SetRect
PaintDesktop
MonitorFromRect
DestroyIcon
NotifyWinEvent
SetClassWord
UnregisterClassA

gdi32

ModifyWorldTransform
FixBrushOrgEx
Pie
CreateBitmapIndirect
SetBkColor
BitBlt
GetPolyFillMode
CreateFontA
SetGraphicsMode
PolyBezierTo
GetBkColor
GetFontData
GetTextExtentPoint32A

advapi32

RegOpenKeyExW
CryptEnumProviderTypesW
RegCreateKeyExA
RegSetValueW
CryptAcquireContextW
ReportEventA
RegQueryValueW
CryptGetDefaultProviderA

wininet

InternetAlgIdToStringA
UnlockUrlCacheEntryFile
CreateUrlCacheGroup
HttpCheckDavCompliance
InternetOpenA
FtpRemoveDirectoryW
FtpCommandA
FtpOpenFileW
InternetCloseHandle
InternetConfirmZoneCrossingA
InternetShowSecurityInfoByURLA
SetUrlCacheGroupAttributeA
InternetShowSecurityInfoByURL
InternetSetDialStateA
InternetQueryDataAvailable
InternetQueryOptionW
GopherOpenFileA
InternetSetFilePointer
GopherFindFirstFileW
IsUrlCacheEntryExpiredW

kernel32

HeapAlloc
VirtualAlloc
HeapFree
EnumSystemLocalesA
MultiByteToWideChar
GetStartupInfoA
IsValidCodePage
GetACP
VirtualProtect
GetTimeFormatA
IsValidLocale
GetCurrentThreadId
GetModuleFileNameW
RtlUnwind
SetEnvironmentVariableA
SetLastError
VirtualQuery
TlsAlloc
GetCurrentProcess
GetFileType
HeapReAlloc
TlsFree
InterlockedExchange
GetLastError
SetHandleCount
CompareStringA
EnterCriticalSection
WriteFile
GetStringTypeW
VirtualFree
GetStringTypeA
GetCommandLineW
GetEnvironmentStrings
GetLocaleInfoA
GetCurrentThread
TerminateProcess
GetSystemTimeAsFileTime
GetDateFormatA
FreeEnvironmentStringsW
WideCharToMultiByte
IsBadWritePtr
GetCommandLineA
GetStartupInfoW
InitializeCriticalSection
GetEnvironmentStringsW
GetModuleHandleA
GetSystemInfo
DeleteCriticalSection
HeapDestroy
LCMapStringA
GetUserDefaultLCID
CompareStringW
GetProcAddress
GetLocaleInfoW
GetModuleFileNameA
HeapSize
UnhandledExceptionFilter
TlsGetValue
GetOEMCP
ExitProcess
LeaveCriticalSection
LCMapStringW
GetCPInfo
LoadLibraryA
GetVersionExA
TlsSetValue
GetTimeZoneInformation
GetCurrentProcessId
QueryPerformanceCounter
FreeEnvironmentStringsA
GetTickCount
GetStdHandle
HeapCreate

comdlg32

GetFileTitleA
GetOpenFileNameW
GetSaveFileNameW
GetOpenFileNameA
ChooseFontA
PrintDlgW
FindTextA
ReplaceTextW
PageSetupDlgA
ReplaceTextA
PrintDlgA
ChooseColorW
LoadAlterBitmap
ChooseColorA

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26d19c471f3206c370c6e4d04c57f090

Headers

File Characteristics

Imports

user32

gdi32

advapi32

wininet

kernel32

comdlg32

Sections

.text Size: 114KB - Virtual size: 113KB

.data Size: 136KB - Virtual size: 135KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 114KB - Virtual size: 113KB

.data
Size: 136KB - Virtual size: 135KB

.rsrc
Size: 12KB - Virtual size: 12KB