c61ac7d8e5ce8dc07a1ae865071a21ecf2b7bab0a1ddd26ba0117d91086329f9

Sharing

Copy URL Twitter E-mail

General

Target

c61ac7d8e5ce8dc07a1ae865071a21ecf2b7bab0a1ddd26ba0117d91086329f9
Size

275KB
MD5

fbb9d463f40ffd916f0cc6ddb2a36f67
SHA1

94779dfd3bbbddc32a324e42f7d0b0249e250ed0
SHA256

c61ac7d8e5ce8dc07a1ae865071a21ecf2b7bab0a1ddd26ba0117d91086329f9
SHA512

ac2da0d9a650355e53ff9c409e7aa1f8a62ec23df5de29564fa8d64b235e3c36d54d049980637348bd03764893d18b7aa643999f6ede579dbdfd51fc023b1292
SSDEEP

6144:9s9hSrwMIinm7ZRIblX8dS4m84+eRljDUHeGfQMt1KD:W9hSrphnm77IhXOBmJ+eRlpwQU

Score

N/A

Malware Config

Signatures

Files

c61ac7d8e5ce8dc07a1ae865071a21ecf2b7bab0a1ddd26ba0117d91086329f9
.exe windows x86

d5c71706357f047acbcd7befdfbd3f12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptDuplicateKey
LookupPrivilegeNameA
LookupPrivilegeDisplayNameW

gdi32

GetEnhMetaFileBits
AddFontResourceA
StartDocW
SetColorAdjustment
ExtCreateRegion
CreateRectRgn
SetSystemPaletteUse
ExtCreatePen
GdiPlayJournal
EnumFontFamiliesExA
ColorCorrectPalette
GetCurrentPositionEx
CloseEnhMetaFile
SetPixel
SetWindowExtEx
CreateMetaFileA
GetBrushOrgEx
PolyTextOutA
GetDeviceCaps
PolyBezier
GetCharABCWidthsW
GetBitmapDimensionEx
BeginPath

wininet

CommitUrlCacheEntryW
SetUrlCacheEntryGroupA
InternetUnlockRequestFile
RetrieveUrlCacheEntryStreamA
InternetGetConnectedStateExA
InternetSetOptionExW
FtpDeleteFileW
CreateUrlCacheEntryA
InternetConnectW
LoadUrlCacheContent
InternetCreateUrlA
IsUrlCacheEntryExpiredA
GopherOpenFileW
FreeUrlCacheSpaceA
HttpOpenRequestW
RetrieveUrlCacheEntryFileA
InternetShowSecurityInfoByURLA
InternetSetDialState
FtpOpenFileA
FtpGetFileSize
InternetOpenUrlA
ReadUrlCacheEntryStream

user32

DdeDisconnectList
GetUserObjectInformationA
LoadMenuW
CreateCursor
GetSystemMetrics
GetTabbedTextExtentA
CreateDialogIndirectParamW
LoadCursorA
DrawIcon

kernel32

VirtualQuery
LCMapStringW
WideCharToMultiByte
EnumSystemLocalesA
DeleteCriticalSection
UnhandledExceptionFilter
TerminateProcess
FreeLibrary
GetOEMCP
FreeEnvironmentStringsA
HeapDestroy
GetProcessHeap
CompareStringA
GetUserDefaultLCID
GetStdHandle
Sleep
GetProcAddress
CompareStringW
HeapSize
GetLocaleInfoA
InterlockedIncrement
GetStringTypeA
GetCommandLineW
HeapCreate
GetACP
GetCPInfo
VirtualFree
QueryPerformanceCounter
GetCurrentProcess
GetTickCount
ExitProcess
TlsAlloc
GetModuleFileNameW
GetModuleHandleA
IsValidLocale
lstrlenA
SetHandleCount
GetCurrentThread
HeapAlloc
CreateMailslotW
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStrings
HeapReAlloc
SetConsoleCtrlHandler
SetLastError
GetCommandLineA
GetStartupInfoW
TlsSetValue
GetEnvironmentStringsW
IsDebuggerPresent
EnterCriticalSection
GetTimeFormatA
TlsFree
LoadLibraryA
GetLastError
GetCurrentProcessId
SetUnhandledExceptionFilter
GetFileType
LeaveCriticalSection
GetModuleFileNameA
FindNextChangeNotification
GetVersionExW
GetCurrentThreadId
InterlockedExchange
RtlUnwind
GetTimeZoneInformation
WriteFile
GetSystemTimeAsFileTime
GetDateFormatA
VirtualAlloc
MultiByteToWideChar
GetLocaleInfoW
LCMapStringA
SetEnvironmentVariableA
GetVersionExA
GetStartupInfoA
InterlockedDecrement
TlsGetValue
GetStringTypeW
HeapFree
InitializeCriticalSection

comdlg32

PageSetupDlgW
ChooseFontW
ReplaceTextA
ReplaceTextW
ChooseColorA
GetSaveFileNameA
PageSetupDlgA
LoadAlterBitmap

Sections

.text
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5c71706357f047acbcd7befdfbd3f12

Headers

File Characteristics

Imports

advapi32

gdi32

wininet

user32

kernel32

comdlg32

Sections

.text Size: 121KB - Virtual size: 121KB

.data Size: 138KB - Virtual size: 138KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 121KB - Virtual size: 121KB

.data
Size: 138KB - Virtual size: 138KB

.rsrc
Size: 14KB - Virtual size: 14KB