db03837279c32fb45819858a919c3d18b6996637a61a971fb6b5b89d9a55caf3

Sharing

Copy URL

Twitter E-mail

General

Target

db03837279c32fb45819858a919c3d18b6996637a61a971fb6b5b89d9a55caf3
Size

140KB
MD5

4831e3d0cbba1228ca22cf226b2d9400
SHA1

5dca577dd07fba015e0e626314f8f0c5a39ff1e1
SHA256

db03837279c32fb45819858a919c3d18b6996637a61a971fb6b5b89d9a55caf3
SHA512

82b2d49b9c340952804e31d635fc0c00a2db5f9cf5fb6cb927733bead39c32673c82b78a99275e53b3f585e2cc3cecbfee46a74a384c48d1a4f956463cb7b99b
SSDEEP

1536:ftmsd0eJlcw+qsA/CrcxSsZ5YMxmqw0xWnqVqWWhZF+Kon9pBj:ftPhcwZsA/CccsZSQhvyhZIln9p

Score

N/A

Malware Config

Signatures

Files

db03837279c32fb45819858a919c3d18b6996637a61a971fb6b5b89d9a55caf3
.exe windows x86

69404db7be3e56fa72b273fa273ba329

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
SetThreadPriority
WinExec
GetProcAddress
ReleaseMutex
FreeLibrary
OpenMutexA
GetVersionExA
UnmapViewOfFile
GetACP
lstrcpyA
lstrlenA
WaitForSingleObject
ResetEvent
CloseHandle
DeviceIoControl
GetTickCount
Sleep
CreateThread
CreateFileA
CreateMutexA
CreateFileMappingA
CreateEventA
lstrcpynA
LoadLibraryA
MapViewOfFile
GetStringTypeW
LCMapStringA
MultiByteToWideChar
LCMapStringW
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
HeapAlloc
RtlUnwind
HeapFree
WriteFile
HeapCreate
HeapDestroy
VirtualFree
GetFileType
GetStdHandle
GetEnvironmentVariableA
GetEnvironmentStringsW
GetStringTypeA
ExitThread
SetHandleCount
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetEnvironmentStrings

user32

PostMessageA
EnumChildWindows
GetAsyncKeyState
SendMessageA
GetKeyState
GetClassNameA
GetWindowRect
GetCursorPos
PtInRect
ChildWindowFromPoint
GetParent
WindowFromPoint
FillRect
DrawIconEx
GetDC
ReleaseDC
GetSysColor
AppendMenuA
DestroyIcon
SetSystemCursor
DestroyWindow
GetWindowLongA
CreatePopupMenu
FindWindowA
SetForegroundWindow
DestroyMenu
ClientToScreen
TrackPopupMenu
MessageBoxA
PostQuitMessage
DefWindowProcA
RegisterClassExA
LoadIconA
LoadCursorA
GetMessageA
CreateWindowExA
ShowWindow
GetDesktopWindow
TranslateMessage
DispatchMessageA
GetWindowTextA
GetForegroundWindow
SystemParametersInfoA
GetSystemMetrics
LoadImageA

gdi32

TextOutA
GetBkColor
SetTextColor
DeleteObject
CreateSolidBrush
SetBkColor
SetTextAlign
GetTextExtentPoint32A

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

shell32

Shell_NotifyIconA

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

69404db7be3e56fa72b273fa273ba329

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 17KB

.rsrc Size: 16KB - Virtual size: 15KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 17KB

.rsrc
Size: 16KB - Virtual size: 15KB

.rmnet
Size: 60KB - Virtual size: 60KB