40eef3cfeb0231946b15be1913901c1abb564f8736b04b6d2247f1827facf21d

Sharing

Copy URL Twitter E-mail

General

Target

40eef3cfeb0231946b15be1913901c1abb564f8736b04b6d2247f1827facf21d
Size

524KB
MD5

194ffe6d54f5c5d3e44a31bc1729605f
SHA1

d5668c2290237cea8e77d1dbbc87065ee6f2448f
SHA256

40eef3cfeb0231946b15be1913901c1abb564f8736b04b6d2247f1827facf21d
SHA512

e02bc6702fefcbea871f57862ba0ff5fadb3a3962cd883b7b5bf36729a1d3730b32b1029c1b280a9660a22e837cae6c0099e1dfe8f2da7afc10fb1d2cf2f1578
SSDEEP

12288:t+pEujI4oDxJhcGq0gipbxvPhDAROOYbefS9cChRyoHB:6jInJSGnhERd0d9rhRpHB

Score

N/A

Malware Config

Signatures

Files

40eef3cfeb0231946b15be1913901c1abb564f8736b04b6d2247f1827facf21d
.exe windows x86

67bc61874f2c6fa9610e6bcd011d8bb8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
Sleep
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
SetStdHandle
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
WriteConsoleA
CreateFileW
GetTimeZoneInformation
GlobalLock
DuplicateHandle
FindNextFileA
CreateFileMappingA
FindFirstFileA
WriteFile
CompareStringW
GetSystemInfo
GetProcAddress
GetWindowsDirectoryA
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
CloseHandle
WriteConsoleW
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
VirtualQuery
GetVersion
InterlockedDecrement
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
LeaveCriticalSection
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
CreateEventA
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
GetEnvironmentVariableA
FormatMessageW
LocalFree
SetEvent
GetStringTypeW
HeapReAlloc
GetCommandLineA
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
GetCPInfo
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindFirstFileW
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
GetConsoleOutputCP
GetStdHandle
GetProcessHeap
lstrcpynA
GetACP
GetModuleHandleW
SizeofResource
CreateProcessA
WideCharToMultiByte
UnmapViewOfFile
VirtualFree
FindResourceW
VirtualAlloc
HeapFree
GetOEMCP

user32

GetCursorPos
GetDC
EndPaint
IsWindow
ReleaseDC
PostQuitMessage
ScreenToClient
LoadIconA
UpdateWindow
GetClientRect
MoveWindow
DestroyWindow
SetWindowPos
GetParent
SetForegroundWindow
EndDialog
SystemParametersInfoA
IsWindowVisible
InvalidateRect
SendMessageA
CallWindowProcA
GetFocus
SetCursor
FillRect
ShowWindow
EnableWindow
GetWindow
GetWindowLongA
SetTimer
DispatchMessageA
PtInRect
SetFocus
PeekMessageA
BeginPaint
GetSystemMetrics
GetWindowRect
SetCapture
SetWindowLongA
CreateWindowExA
GetDesktopWindow
GetDlgItem

advapi32

RegQueryValueExA
RegOpenKeyExA

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
SysAllocString

gdi32

SetBkMode
SelectObject
SetTextColor
GetStockObject
DeleteDC
BitBlt
SetBkColor
CreateSolidBrush

msvcrt

_strcmpi
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_cexit
_controlfp

Sections

.text
Size: 320KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67bc61874f2c6fa9610e6bcd011d8bb8

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

gdi32

msvcrt

Sections

.text Size: 320KB - Virtual size: 318KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 120KB - Virtual size: 118KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 320KB - Virtual size: 318KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 120KB - Virtual size: 118KB

.rsrc
Size: 4KB - Virtual size: 3KB