078c8d2bb9c1fcde7407c456709a077b201d4d34db72e814623d4ecc8a84263d

Sharing

Copy URL Twitter E-mail

General

Target

078c8d2bb9c1fcde7407c456709a077b201d4d34db72e814623d4ecc8a84263d
Size

382KB
MD5

62f0c114c622e27a746220f2b0ac3090
SHA1

06977f5e1723ebd2edd7b4974e1cc31ef83fdcaa
SHA256

078c8d2bb9c1fcde7407c456709a077b201d4d34db72e814623d4ecc8a84263d
SHA512

70c9b926bfc0eabb2165e8da42ac677b0cf519ba3e1cace9b04ecc77332b234484acd7416b085684cf5bd610abb65d47f61dbfbb13a3c21d8a8e077e59a0e861
SSDEEP

6144:5m+ghN9+sTgfdIDz1pee29fLvaUJZ51MK98kiYrSQ8TdDEzR9DFU2rbz:5m+MN9Nkfd1RfmUPLMK6kiWAx8q2vz

Score

N/A

Malware Config

Signatures

Files

078c8d2bb9c1fcde7407c456709a077b201d4d34db72e814623d4ecc8a84263d
.exe windows x86

82158c61e0992771e54e212f0a309252

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

FindNextFileA
EnumDateFormatsA
LoadLibraryExA
FillConsoleOutputAttribute
GetVersionExA
CloseHandle
LocalFree
CreateFileW
GetProcessHeap
SetEndOfFile
HeapReAlloc
HeapSize
FlushFileBuffers
SetStdHandle
WriteConsoleW
LoadLibraryW
GetStringTypeW
LCMapStringW
SetFilePointer
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
HeapAlloc
GetEnvironmentStringsW
GetModuleFileNameA
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
WriteFile
ExitProcess
IsProcessorFeaturePresent
GetCurrentThreadId
SetLastError
GetModuleHandleW
TlsFree
LocalAlloc
GetConsoleScreenBufferInfo
FindClose
GetProcAddress
GetLastError
FindFirstFileA
GetStdHandle
GlobalUnlock
MultiByteToWideChar
GetTimeZoneInformation
GetSystemDirectoryA
ReadFile
SetTimeZoneInformation
SetConsoleCursorPosition
lstrcpynA
lstrlenA
GetFileSize
FillConsoleOutputCharacterA
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DecodePointer
GetStartupInfoW
HeapSetInformation
HeapFree
HeapCreate
Sleep
GlobalAlloc
GetCommandLineA
GlobalLock
FreeEnvironmentStringsW
GetCurrentProcess
CreateFileA
SetHandleCount
CreateDirectoryA

user32

GetWindow
ModifyMenuA
GetDialogBaseUnits
FindWindowA
EnableWindow
SetWindowTextA
IsWindowVisible
BeginDeferWindowPos
CheckRadioButton
IsWindow
CreateDialogParamW
IsDlgButtonChecked
DestroyWindow
SetActiveWindow
InsertMenuItemA
PostQuitMessage
SendDlgItemMessageA
GetWindowDC
GetTabbedTextExtentA
GetParent
IsWindowEnabled
KillTimer
FindWindowExA
ExitWindowsEx
SendMessageA
GetWindowTextA
CreateWindowExA
GetDlgItem
EndDialog
DefWindowProcA
SendMessageTimeoutA
CheckDlgButton

gdi32

GetObjectA
MoveToEx
LineTo
GetStockObject
DeleteObject
SelectObject
Rectangle
SetDCPenColor

advapi32

OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA

shell32

SHGetDesktopFolder

ole32

CreateBindCtx
CreateStreamOnHGlobal

oleaut32

OleSavePictureFile
OleLoadPicture
SysAllocString

ws2_32

WSACleanup
gethostbyname
inet_addr
WSAStartup
inet_ntoa

winmm

timeSetEvent
timeBeginPeriod

crypt32

CertFreeCertificateChain
CertGetCertificateChain
CertVerifyCertificateChainPolicy

iphlpapi

GetAdaptersInfo
SendARP

shlwapi

PathFindFileNameA
StrDupA

comctl32

InitCommonControlsEx

rpcrt4

UuidFromStringA

dbghelp

EnumerateLoadedModules

setupapi

SetupDiCreateDeviceInfoList

wtsapi32

WTSEnumerateSessionsA

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82158c61e0992771e54e212f0a309252

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

ws2_32

winmm

crypt32

iphlpapi

shlwapi

comctl32

rpcrt4

dbghelp

setupapi

wtsapi32

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 127KB - Virtual size: 127KB

.data Size: 122KB - Virtual size: 130KB

.rsrc Size: 60KB - Virtual size: 59KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 127KB - Virtual size: 127KB

.data
Size: 122KB - Virtual size: 130KB

.rsrc
Size: 60KB - Virtual size: 59KB

.reloc
Size: 9KB - Virtual size: 8KB