767f037c170f94c7793bb55449d9d9c23bb2ceec1607df66b91462e12dfbf996

Sharing

Copy URL

Twitter E-mail

General

Target

767f037c170f94c7793bb55449d9d9c23bb2ceec1607df66b91462e12dfbf996
Size

194KB
MD5

015238af7d848beaea8b0951b1468411
SHA1

ac841a64a5eb878438a7b9f52eba8f644bfec006
SHA256

767f037c170f94c7793bb55449d9d9c23bb2ceec1607df66b91462e12dfbf996
SHA512

892f87293645ef37ca47c3e52a6f81c564f36427bdf37f4c8814081348bdc360516a788b5bbc8ea084a1e8ec0a67f75e77c04a632118611c26797ce9f5113553
SSDEEP

3072:Kpx4w6ZQoDgOeSvqo8L3/lRmG3/heyxPiO6etheMKCqXbsQmtZOykxAuHvQQ8SgO:Kpx4wODgYAdGUP6etUMKtrsQa+WLbSgO

Score

N/A

Malware Config

Signatures

Files

767f037c170f94c7793bb55449d9d9c23bb2ceec1607df66b91462e12dfbf996
.exe windows x86

3bb5998cffc1163cb07b5f598093b500

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
InterlockedDecrement
GetCurrentProcess
FreeUserPhysicalPages
GetModuleHandleA
CreateEventA
IsValidLocale
TlsAlloc
IsBadCodePtr
EnumTimeFormatsW
SetMailslotInfo
GetPrivateProfileSectionNamesW
GlobalLock
LocalCompact
GetTempFileNameA
LocalUnlock
EnumResourceNamesW
QueueUserAPC
RequestWakeupLatency
FindNextVolumeA
OpenSemaphoreA
GetProcessAffinityMask
IsBadReadPtr
_lwrite
EnumLanguageGroupLocalesW
ResetWriteWatch
OpenSemaphoreW
WriteProfileSectionA
CreateFileW
GetProcessHeap
LocalCompact
FreeResource
GetThreadSelectorEntry
LocalCompact
EscapeCommFunction
DnsHostnameToComputerNameW
CloseHandle
InterlockedExchangeAdd
BackupSeek
_lread
GetPriorityClass
GlobalUnlock
LocalCompact
SetProcessPriorityBoost

user32

SystemParametersInfoW
CheckMenuRadioItem
DdeInitializeA
SwapMouseButton
CreateAcceleratorTableA
DestroyCaret
GetCaretPos
GetClassNameW
MapDialogRect
LoadStringA
SendMessageCallbackW
PackDDElParam
SwitchToThisWindow
GetSysColor
GetKeyNameTextA
OpenInputDesktop
UnregisterClassA
DefWindowProcW
ScrollWindowEx
DeleteMenu
GetSystemMetrics
GetClassInfoExA
SendMessageA
ChangeMenuA
DrawFocusRect
LoadCursorA
DestroyCursor
GetClassWord
CopyRect
GetScrollRange
SendDlgItemMessageW
DefFrameProcW
CharLowerA
ReplyMessage
CharPrevW
AppendMenuW
TabbedTextOutW
DestroyMenu
WindowFromDC
CharNextA
PostThreadMessageW
DialogBoxParamA
PostThreadMessageA
TranslateAcceleratorA
IsCharAlphaA
DestroyAcceleratorTable
GetWindowModuleFileNameW
LoadMenuIndirectA
CharNextW
LookupIconIdFromDirectoryEx
AttachThreadInput
DlgDirListComboBoxA
GetCursorInfo
GetKeyNameTextW
DefFrameProcA
SetMessageQueue
CharPrevExA
IMPSetIMEW
PeekMessageA
DefDlgProcA
LockSetForegroundWindow
SetDlgItemTextA
CloseWindow
RemovePropW
SetThreadDesktop
GetMessagePos
GetParent
SendIMEMessageExW
CharUpperW
ToAscii
SetWindowsHookA
LockWorkStation
ChangeMenuW
DrawIconEx
GetDlgItemTextA
TranslateAcceleratorW
SetUserObjectSecurity
GetTopWindow
LoadMenuA
TrackMouseEvent
DdeUnaccessData
DdeImpersonateClient
PostMessageW
GetWindowLongW
WinHelpW
SetMenuContextHelpId
GetMenuCheckMarkDimensions
CharToOemA
GetClassLongW
GetScrollInfo
ShowCaret
GetSubMenu
GetSysColorBrush
GetProcessWindowStation
EnumDesktopWindows
DrawEdge
GetDialogBaseUnits
ShowWindowAsync
CharUpperBuffA
GetUserObjectInformationW
TrackPopupMenu
DrawTextExA
DefMDIChildProcW
LockWindowUpdate
DdeQueryStringA
SetCaretBlinkTime
LoadMenuIndirectW
GetClassInfoW
ModifyMenuA

psapi

GetModuleBaseNameA
GetModuleFileNameExA
InitializeProcessForWsWatch

Sections

.text
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 263B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3bb5998cffc1163cb07b5f598093b500

Headers

File Characteristics

Imports

kernel32

user32

psapi

Sections

.text Size: 121KB - Virtual size: 121KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 64KB - Virtual size: 80KB

.edata Size: 512B - Virtual size: 263B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 121KB - Virtual size: 121KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 64KB - Virtual size: 80KB

.edata
Size: 512B - Virtual size: 263B

.rsrc
Size: 1KB - Virtual size: 1KB