01af7e174e565cf735df2bee4ccf594eeea676f816e74a1b12bd064dc3f2b1a6

Sharing

Copy URL Twitter E-mail

General

Target

01af7e174e565cf735df2bee4ccf594eeea676f816e74a1b12bd064dc3f2b1a6
Size

823KB
MD5

aeef2cc8f8805629bc5680b812d6e163
SHA1

d079348c3ddd9c399ddbffc99b228df584bd57eb
SHA256

01af7e174e565cf735df2bee4ccf594eeea676f816e74a1b12bd064dc3f2b1a6
SHA512

1ab1570e6d4e5f9223bcfc2c57dc6084695bddfe17dcb5967efef53f28e3badc9713b46a04a46a15a5d53637bbe03b7401da51e8977e089a8055b032c03e5503
SSDEEP

12288:UwFM1aUtXqucfnTFO3N2Izto1rj1AuKOrn+xjhUVBgxR:bFM1aOXquQTINFxi/1AtOr+MVBG

Score

N/A

Malware Config

Signatures

Files

01af7e174e565cf735df2bee4ccf594eeea676f816e74a1b12bd064dc3f2b1a6
.exe windows x86

eeae5548f9b37b6055864db1b101a89a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetLastError
VirtualAlloc
LoadLibraryW
GetSystemTimeAsFileTime
Sleep
GetModuleFileNameA
GetTickCount
GetModuleFileNameW
UnhandledExceptionFilter
SetLastError
LocalAlloc
CloseHandle
InterlockedCompareExchange
GetCurrentProcess
Sleep
GetTickCount
GetLastError
LeaveCriticalSection
CloseHandle
HeapAlloc
GetCurrentProcess
ReadFile
FreeLibrary
HeapFree
SetLastError
HeapAlloc
LeaveCriticalSection
GetCurrentThreadId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetCurrentProcessId
FreeLibrary
QueryPerformanceCounter
FreeLibrary
GetVersionExA
InterlockedDecrement
GetTickCount
DeleteCriticalSection
HeapFree
GetProcessHeap
lstrlenA
HeapAlloc
lstrlenA
GetModuleFileNameA
GetCurrentProcess
ReadFile
VirtualProtect
lstrlenA
CreateFileW
VirtualProtect
SetLastError
CreateThread
GetSystemTimeAsFileTime
LocalFree
VirtualAlloc
EnterCriticalSection
InterlockedExchange
DisableThreadLibraryCalls
GetVersionExA
HeapAlloc
GetModuleHandleA
LocalFree
VirtualProtect
InterlockedIncrement
GetLastError
MultiByteToWideChar
GetSystemTimeAsFileTime
DeleteCriticalSection
GetProcessHeap
DisableThreadLibraryCalls
Sleep
GetModuleHandleA
MultiByteToWideChar
GetProcessHeap
InterlockedIncrement
LocalFree
HeapFree
GetCurrentThreadId
VirtualProtect
SetLastError
LocalFree
HeapAlloc
HeapFree
InitializeCriticalSection
LoadLibraryW
CloseHandle
LoadLibraryA
VirtualAlloc
lstrlenA
DisableThreadLibraryCalls
VirtualProtect
HeapAlloc
GetModuleFileNameW
GetModuleHandleW
VirtualProtect
LocalFree
HeapDestroy
DeleteCriticalSection
GetModuleHandleA
HeapDestroy
GetModuleFileNameA
GetModuleFileNameA
HeapAlloc

user32

SetFocus
SetTimer
DefWindowProcW
DispatchMessageW
GetFocus
GetFocus
CharNextW
TranslateMessage
CharNextW
MessageBoxW
SetCursor
SetWindowLongW
GetWindowRect
GetSysColor
LoadCursorW
DefWindowProcW
LoadStringW
SendMessageW
GetDC
GetFocus
wsprintfA
LoadStringW
DefWindowProcW
GetFocus
DialogBoxParamW
GetWindowRect
GetSystemMetrics
TranslateMessage
PostMessageW
BeginPaint
TranslateMessage
DefWindowProcW
CharNextW
SetCursor
CreateWindowExW
SetCursor
ShowWindow
GetSysColor
LoadIconW
DestroyWindow
wsprintfA
GetParent
DefWindowProcW
CharNextW
MessageBoxW
DispatchMessageW
SetWindowTextW
DialogBoxParamW
EndDialog
IsDlgButtonChecked
SetFocus
GetSystemMetrics
PostMessageW
InvalidateRect
GetWindowRect
SetDlgItemTextW
SetTimer
LoadIconW
PostMessageW
ShowWindow
IsWindow
CharNextW
SetCursor
ReleaseDC
GetWindowLongW
EnableWindow
GetDesktopWindow
GetSysColor
DestroyWindow
IsDlgButtonChecked
ReleaseDC
LoadStringW
SetForegroundWindow
LoadStringW
KillTimer
GetParent
ReleaseDC
BeginPaint
wsprintfA
GetParent
GetSysColor
CharNextW
GetParent
PostMessageW
TranslateMessage
GetDC
DispatchMessageW
GetParent
DestroyWindow
MessageBoxW
GetDlgItem
SetTimer
GetFocus
GetParent
InvalidateRect
DestroyWindow
EnableWindow
SendDlgItemMessageW
SetCursor
GetWindowRect
IsWindow
SetFocus
GetDC
DefWindowProcW
EndDialog

Sections

.text
Size: 734KB - Virtual size: 992KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eeae5548f9b37b6055864db1b101a89a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 734KB - Virtual size: 992KB

.data Size: - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 734KB - Virtual size: 992KB

.data
Size: - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB