9a950ec3d90df885e006b53dfbbd26f60ff31702d5bf8b3a70c8dc05de54504b

Sharing

Copy URL Twitter E-mail

General

Target

9a950ec3d90df885e006b53dfbbd26f60ff31702d5bf8b3a70c8dc05de54504b
Size

347KB
MD5

0ed42a1e6dab6d9976ed2de7cd4d538d
SHA1

133f7050dd67eaebf02989d284e3e8673a3aff18
SHA256

9a950ec3d90df885e006b53dfbbd26f60ff31702d5bf8b3a70c8dc05de54504b
SHA512

ecda5143a1100a603dfc74e965a68f0a640218115681b77fa3cabf7b5e141a5a011a212260ac70a77f803cdd061363217b4f3cd1af82ec11bc7e7b6de29a502c
SSDEEP

6144:ZETS/z0j7W12vEuTGU8epMWzSq0X99e5wT5K1wvcgw/OdBPf/UTBGuiU8F3uD:ZoA0j7WGEg18Y5zSpC5wT5K1WcgZBPnl

Score

N/A

Malware Config

Signatures

Files

9a950ec3d90df885e006b53dfbbd26f60ff31702d5bf8b3a70c8dc05de54504b
.exe windows x86

39d87ab4f2803411f9df8725f4a10b79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
DeleteDC
GetStockObject
SetTextColor
CreateCompatibleDC
SelectObject

advapi32

RegCloseKey
RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegDeleteValueW
RegSetValueExW
RegDeleteKeyA
RegSetValueExA

kernel32

VirtualAlloc
FindResourceA
Sleep
VirtualFree
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GlobalFree
lstrlenA
HeapCreate
LoadLibraryExW
GetLastError
LeaveCriticalSection
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
GetCurrentThreadId
FindNextFileW
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
GetStartupInfoW
DeleteFileA
CreateDirectoryA
LCMapStringW
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
lstrcmpiA
SetHandleCount
EnterCriticalSection
WriteConsoleW
InterlockedIncrement
GetVersion
GetLocaleInfoA
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetPrivateProfileStringA
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
GetSystemTime
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
GetOEMCP
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetExitCodeProcess
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
GetTempPathA
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
ExpandEnvironmentStringsA
LocalAlloc
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapFree
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetCurrentThread

user32

SetTimer
PtInRect
DispatchMessageA
SetWindowTextA
SetCapture
GetWindowRect
GetSystemMetrics
BeginPaint
GetMessageA
PeekMessageA
MapWindowPoints
FillRect
CreateWindowExA
GetWindowLongA
SetWindowLongA
RegisterClassA
EnableMenuItem
GetDlgItem
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
DestroyWindow
ClientToScreen
GetCursorPos
GetDC
EndPaint
IsWindow
SetWindowPos
PostQuitMessage
MoveWindow
SetForegroundWindow
ScreenToClient
LoadCursorA
LoadIconA
ReleaseDC
EndDialog
MessageBoxA
GetSysColor
PostMessageA
SystemParametersInfoA
IsWindowVisible
GetSubMenu
InvalidateRect
SendMessageA
GetClientRect
CallWindowProcA
GetWindow
SetCursor

ole32

CoCreateInstance
CoTaskMemFree

msvcrt

_strcmpi
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__dllonexit
_onexit
_controlfp

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39d87ab4f2803411f9df8725f4a10b79

Headers

File Characteristics

Imports

gdi32

advapi32

kernel32

user32

ole32

msvcrt

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 317KB - Virtual size: 316KB

.rsrc Size: 1024B - Virtual size: 880B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 317KB - Virtual size: 316KB

.rsrc
Size: 1024B - Virtual size: 880B