6b5206262783629a0bfdbdc68116c77cab28e8648daadeda6730b9c48bcbf554

Sharing

Copy URL Twitter E-mail

General

Target

6b5206262783629a0bfdbdc68116c77cab28e8648daadeda6730b9c48bcbf554
Size

532KB
MD5

ef18f5e8da22fe4fa6e55ed22952903a
SHA1

dbea9689d89a0e48fc9e494d55b0c7b0ea5f57e2
SHA256

6b5206262783629a0bfdbdc68116c77cab28e8648daadeda6730b9c48bcbf554
SHA512

261971899e934a3abac8872f9faeb0fc6ba76ea9a1a95fe41a574472042a13ba0047072163ff0cf430ac5105161fb58b29f411851f168078edb0a2202591ccff
SSDEEP

12288:rO7f0QLSzubRBOdpXPS/6YX4mx9plzSHYAIz5U:rO7v+uGdp/S/jX4UpAZ02

Score

N/A

Malware Config

Signatures

Files

6b5206262783629a0bfdbdc68116c77cab28e8648daadeda6730b9c48bcbf554
.exe windows x86

1170758aa40a094da9c2d8e2f4bb5b33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
GetDeviceCaps
DeleteDC
SetTextColor
SelectObject

advapi32

RegCloseKey
RegCreateKeyExA

ole32

CoCreateInstance
CoUninitialize
CoTaskMemAlloc

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
VirtualFree
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
InterlockedExchange
GetModuleHandleW
GlobalLock
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
HeapCreate
GetLastError
LeaveCriticalSection
GetCurrentThreadId
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GetProcAddress
FindNextFileA
ResetEvent
CompareStringA
GlobalFree
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
WaitForMultipleObjects
GetStartupInfoW
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetVersion
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
HeapAlloc
SetFilePointer
CreateMutexA
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetPrivateProfileStringA
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
lstrcmpiA
GetCPInfo
GetTempPathA
SetStdHandle
FreeEnvironmentStringsW
LoadLibraryExW
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA

oleaut32

VariantClear
SysAllocString
SysStringLen

user32

GetDesktopWindow
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetTimer
wsprintfA
SetWindowTextA
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
PeekMessageA
SetFocus
MessageBoxA
DispatchMessageA
FillRect
CreateWindowExA
GetSubMenu
SetWindowLongA
EnableMenuItem
ReleaseDC
EnableWindow
SetCapture
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
DestroyWindow
SendMessageA
GetCursorPos
GetDC
GetWindowLongA
IsWindow
SetWindowPos
PostQuitMessage
SetForegroundWindow
GetSysColor
SystemParametersInfoA
IsWindowVisible
DrawTextA
InvalidateRect
GetClientRect
CallWindowProcA
SetCursor
EndDialog
GetFocus
TranslateMessage
SetDlgItemTextA
EndPaint

msvcrt

_strcmpi
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp

Sections

.text
Size: 280KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1170758aa40a094da9c2d8e2f4bb5b33

Headers

File Characteristics

Imports

gdi32

advapi32

ole32

kernel32

oleaut32

user32

msvcrt

Sections

.text Size: 280KB - Virtual size: 277KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 172KB - Virtual size: 171KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 280KB - Virtual size: 277KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 172KB - Virtual size: 171KB

.rsrc
Size: 4KB - Virtual size: 3KB