0c31e5cd83426cd6786fa0f18627d291724f6d79db3e4d09dd71afc5d5861624

Sharing

Copy URL Twitter E-mail

General

Target

0c31e5cd83426cd6786fa0f18627d291724f6d79db3e4d09dd71afc5d5861624
Size

211KB
MD5

4d6d208daff274177dbd6b478c145ce0
SHA1

214e538ff2cbeee6923a94dff037bd7696657809
SHA256

0c31e5cd83426cd6786fa0f18627d291724f6d79db3e4d09dd71afc5d5861624
SHA512

d24d7cfbea9be91f8180caf8a8a1dc4744825d01f6c893296edce67076a0fc1c5df5c30f9582309179f4f3d201687e72f28ae6bc283496a2d6e77e0f1f604d4d
SSDEEP

6144:iSjN9uegHscLZZCYuTevHYipPTPw90ed2gt:h9uxHfiYQhePTPqd2gt

Score

N/A

Malware Config

Signatures

Files

0c31e5cd83426cd6786fa0f18627d291724f6d79db3e4d09dd71afc5d5861624
.exe windows x86

2f6c7d25d85dbf8e555bf2a14bcf0cbe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
GetProcAddress
GetSystemInfo
GetModuleHandleA
DeleteFileW
GetModuleFileNameW
LoadLibraryW
InitializeCriticalSection
GetModuleHandleW
FreeLibrary
FlushFileBuffers
GetSystemDirectoryW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetTickCount
GetCurrentProcessId
CloseHandle
DeviceIoControl
GetLastError
InitializeCriticalSectionAndSpinCount
LoadLibraryA
DeleteCriticalSection
GetLocaleInfoA
CreateFileW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
GetConsoleMode
GetConsoleCP
CreateFileA
SystemTimeToFileTime
GetSystemTimeAsFileTime
LocalFileTimeToFileTime
SetFilePointerEx
WriteFile
ReadFile
GetFileSizeEx
OutputDebugStringW
FormatMessageW
MultiByteToWideChar
SetLastError
GetCurrentThreadId
LocalFree
GetSystemTime
GetEnvironmentVariableW
CreateMutexW
TlsGetValue
HeapAlloc
SetEnvironmentVariableW
HeapFree
WaitForSingleObject
GetProcessHeap
TlsSetValue
OpenThread
ReleaseMutex
TlsAlloc
TlsFree
GetStartupInfoW
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
Sleep
HeapSize
ExitProcess
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
SetFilePointer
WideCharToMultiByte
RaiseException

user32

SetWindowTextW
FindWindowW
PostMessageW
GetWindowRect
GetParent
GetSystemMetrics
GetDesktopWindow
GetClassInfoW
RegisterClassW
SetWindowPos
DialogBoxParamW
GetDlgItem
EndDialog
LoadStringW

advapi32

RegCloseKey
OpenServiceW
OpenSCManagerW
DeleteService
CloseServiceHandle
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegEnumKeyExW

shlwapi

PathRemoveFileSpecW
SHDeleteValueW
PathFileExistsW
SHDeleteKeyW
PathCombineW

imm32

ImmDisableIME

wininet

InternetGetConnectedState

urlmon

URLDownloadToCacheFileW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.lrdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2f6c7d25d85dbf8e555bf2a14bcf0cbe

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shlwapi

imm32

wininet

urlmon

version

Sections

.text Size: 83KB - Virtual size: 83KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 5KB - Virtual size: 15KB

.rsrc Size: 21KB - Virtual size: 20KB

.reloc Size: 7KB - Virtual size: 7KB

.lrdata Size: 68KB - Virtual size: 68KB

.text
Size: 83KB - Virtual size: 83KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 5KB - Virtual size: 15KB

.rsrc
Size: 21KB - Virtual size: 20KB

.reloc
Size: 7KB - Virtual size: 7KB

.lrdata
Size: 68KB - Virtual size: 68KB