f01c9ec88d93cf50154defaea82504439965b027803e1d6745776078849c5c88

Sharing

Copy URL

Twitter E-mail

General

Target

f01c9ec88d93cf50154defaea82504439965b027803e1d6745776078849c5c88
Size

263KB
MD5

dae754d1b31cf072e0c31f1889d7f591
SHA1

9ddc5244299510bdd5c85533611a32d4b50af9b1
SHA256

f01c9ec88d93cf50154defaea82504439965b027803e1d6745776078849c5c88
SHA512

dc6434776ded980ba6ce0d3f490564e92fc067b7c3238b7bfa964b18a116ff0bd962e4b599bc21f3a493b5ee8c1388f23ef23d5e6b04c7c0e7b31d21d432830b
SSDEEP

6144:j8BgxjV14R3KmAmFdEkHLl3txCKu68sF5BK7s2NU0y:j8BgjUh9Z3fq68s91

Score

N/A

Malware Config

Signatures

Files

f01c9ec88d93cf50154defaea82504439965b027803e1d6745776078849c5c88
.exe windows x86

974adde3ceda6dec7f3ec1953456269d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

DetectAutoProxyUrl
InternetWriteFileExW
InternetQueryFortezzaStatus
InternetDialA
GopherGetLocatorTypeW
InternetConfirmZoneCrossingA
DeleteUrlCacheContainerW
InternetConfirmZoneCrossingW
CreateUrlCacheContainerW
CommitUrlCacheEntryW
DeleteUrlCacheEntry

comdlg32

GetOpenFileNameW
ReplaceTextW

user32

SetUserObjectSecurity
DrawEdge
GetMenuBarInfo
SwitchToThisWindow
EnumWindows
ClipCursor
AppendMenuW
ModifyMenuW
OemToCharBuffW
DlgDirSelectExW
WinHelpW
DlgDirSelectComboBoxExA
CharUpperW
OffsetRect
CharToOemW
SetPropW
CheckMenuItem
MsgWaitForMultipleObjects

gdi32

DeviceCapabilitiesExA
SetICMProfileW
GetTextFaceA
MoveToEx
PlayEnhMetaFileRecord
SetICMMode
CreateBitmap
GetWindowExtEx
CreateBitmapIndirect
CreateColorSpaceW
UnrealizeObject
ModifyWorldTransform
ResizePalette
CreateDIBitmap
GetDCOrgEx
SetTextAlign
GetRegionData
CreateHatchBrush
DeleteDC
EndPage
EnumICMProfilesW
CreateMetaFileW
EndPath

kernel32

ExitProcess
HeapReAlloc
GetModuleFileNameA
GetTickCount
RtlUnwind
SetThreadPriority
GetCurrentProcess
IsBadWritePtr
LeaveCriticalSection
WideCharToMultiByte
GetStartupInfoA
HeapDestroy
QueryPerformanceCounter
TlsAlloc
UnlockFileEx
GetSystemTimeAsFileTime
LCMapStringW
GetLastError
FreeEnvironmentStringsW
EnterCriticalSection
SetHandleCount
WritePrivateProfileSectionW
GetCurrentThread
GetCurrentProcessId
GetCommandLineA
FreeEnvironmentStringsA
VirtualFree
GetCurrentThreadId
LCMapStringA
SetLastError
LoadLibraryA
GetStringTypeA
SetComputerNameW
SetEvent
TlsSetValue
GetStdHandle
GetModuleHandleA
LoadLibraryExW
InitializeCriticalSection
GetOEMCP
EnumCalendarInfoExA
MultiByteToWideChar
WriteFile
GetComputerNameA
ResumeThread
GetACP
GetFileType
VirtualAlloc
InterlockedExchange
WaitForSingleObject
FillConsoleOutputCharacterA
HeapFree
HeapAlloc
UnhandledExceptionFilter
CreateWaitableTimerW
GetStringTypeW
GlobalFix
TlsGetValue
TerminateProcess
GetVersion
DeleteCriticalSection
VirtualQuery
GetEnvironmentStringsW
GetCPInfo
GetProcAddress
GetEnvironmentStrings
FormatMessageW
HeapCreate
TlsFree

advapi32

RegQueryInfoKeyW
CreateServiceW
RegSetValueA
CryptSetProviderA
CryptGenRandom
LookupPrivilegeNameA
RegCreateKeyExW
CryptGetProvParam
CryptSetProviderExA
LookupSecurityDescriptorPartsW
RegEnumKeyExW
CryptGetHashParam
CryptSignHashA
RegReplaceKeyW
LookupAccountSidW
CryptAcquireContextW
GetUserNameW
LookupAccountNameW
CryptEnumProvidersW
CryptDestroyKey
RegCloseKey
InitializeSecurityDescriptor

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

974adde3ceda6dec7f3ec1953456269d

Headers

File Characteristics

Imports

wininet

comdlg32

user32

gdi32

kernel32

advapi32

Sections

.text Size: 144KB - Virtual size: 144KB

.data Size: 108KB - Virtual size: 107KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 144KB - Virtual size: 144KB

.data
Size: 108KB - Virtual size: 107KB

.rsrc
Size: 9KB - Virtual size: 9KB