6c01177294dfe2795d4818e8ceec350ce2ca994039419f132e80d59ed02330d6

Sharing

Copy URL Twitter E-mail

General

Target

6c01177294dfe2795d4818e8ceec350ce2ca994039419f132e80d59ed02330d6
Size

444KB
MD5

6fce8afcac6a01b4f93e60d3bd8d8e1c
SHA1

29f652f11f175ef6d93e889765d5dcebc45d4088
SHA256

6c01177294dfe2795d4818e8ceec350ce2ca994039419f132e80d59ed02330d6
SHA512

fea5be286204f4bba43eca4198f38620e3f7498650bf2244555a134c5caebddf06aa8bff287eb9a7492b28b66381e6bea248b9db64840fd25649cfc17706fe83
SSDEEP

12288:V9cvZUi5trgyoOp2UvJd6D8n7Hs4mQMyj+K:CZUi5xEOplvEy7MTQMyj+K

Score

N/A

Malware Config

Signatures

Files

6c01177294dfe2795d4818e8ceec350ce2ca994039419f132e80d59ed02330d6
.exe windows x86

3bf5be1dfd6c1f29e4db0c855dc2ca9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyMenu
PostQuitMessage
GetDC
GetCursorPos
ReleaseDC
UnregisterClassA
SendMessageA
GetClientRect
DestroyWindow
GetMessageA
GetParent
UpdateWindow
ShowWindow
EnableWindow
PeekMessageA
TranslateMessage
IsWindowEnabled
LoadStringA
DispatchMessageA
RegisterClassA
GetWindowLongA
CreateWindowExA
SetFocus
BeginPaint
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
SetWindowLongA
SetWindowTextA
GetSubMenu
SetTimer
GetDlgItem
ScreenToClient
LoadIconA
GetDesktopWindow
SetForegroundWindow
FillRect
GetSysColor
GetKeyState
SystemParametersInfoA
InvalidateRect
DrawTextA
SetCursor

kernel32

SetEvent
SetFileAttributesA
FormatMessageW
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
GetStringTypeA
GetCPInfo
GetTempPathA
FreeEnvironmentStringsW
LoadLibraryExW
CreateFileA
ExpandEnvironmentStringsA
lstrcatA
LocalAlloc
LocalFree
GetEnvironmentVariableA
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
HeapDestroy
GetFileAttributesW
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
VirtualFree
VirtualQuery
WriteFile
HeapCreate
IsValidCodePage
TlsGetValue
SetStdHandle
InterlockedExchange
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateEventW
GlobalLock
DuplicateHandle
FindNextFileA
CreateFileMappingA
CompareStringA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcAddress
DeleteFileW
GetTimeZoneInformation
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
GetCurrentThreadId
SetEndOfFile
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
GetLocaleInfoA

gdi32

DeleteObject
GetDeviceCaps
SetTextColor
CreateCompatibleDC
BitBlt
CreateSolidBrush
SelectObject

advapi32

RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_strcmpi

Sections

.text
Size: 324KB - Virtual size: 321KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 632B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3bf5be1dfd6c1f29e4db0c855dc2ca9e

Headers

File Characteristics

Imports

user32

kernel32

gdi32

advapi32

msvcrt

Sections

.text Size: 324KB - Virtual size: 321KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 92KB - Virtual size: 88KB

.rsrc Size: 4KB - Virtual size: 632B

.text
Size: 324KB - Virtual size: 321KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 92KB - Virtual size: 88KB

.rsrc
Size: 4KB - Virtual size: 632B