9e7ea48e063b7d4e499a596bec2ae78d8b06836723cbf9cde5a9fd7e22499776

Sharing

Copy URL Twitter E-mail

General

Target

9e7ea48e063b7d4e499a596bec2ae78d8b06836723cbf9cde5a9fd7e22499776
Size

411KB
MD5

6730d7e805fd35199d4478d86a814d8c
SHA1

78a746ce04d0a4ed233cd5c905d885af6d093d5e
SHA256

9e7ea48e063b7d4e499a596bec2ae78d8b06836723cbf9cde5a9fd7e22499776
SHA512

284f368eb6efc25dcf4d749eb220ad62e315ece62ea13e2192a17e32a25a0170c95c1ee5500d4562eb4e8dc419f52ca795e2ef4bd953e48eeb683a06ea4f9c95
SSDEEP

12288:tGGqe0qDF4trL/C1/Qgn4cblOs6y+gJnVKfzF:RqsSLm7bD6/9fzF

Score

N/A

Malware Config

Signatures

Files

9e7ea48e063b7d4e499a596bec2ae78d8b06836723cbf9cde5a9fd7e22499776
.exe windows x86

3700372270c88e21dcb348c58fd8ccc1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM

Imports

kernel32

GetACP
GetCPInfo
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
WriteFile
DeleteCriticalSection
SetHandleCount
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetOEMCP
InterlockedDecrement
GetCurrentThreadId
SetLastError
GetModuleHandleW
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DecodePointer
EncodePointer
IsProcessorFeaturePresent
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetFileType
InitializeCriticalSectionAndSpinCount
SetStdHandle
RtlUnwind
RaiseException
IsValidCodePage
HeapReAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
Sleep
LoadLibraryW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
WriteConsoleW
SetFilePointer
CloseHandle
MulDiv
FreeLibrary
GetLastError
GetStdHandle
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterA
FillConsoleOutputAttribute
SetConsoleCursorPosition
GetProcessHeap
HeapAlloc
HeapFree
AllocConsole
SetConsoleScreenBufferSize
HeapCreate
ExitProcess
GetTickCount
lstrcatA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
CreateFileW

user32

LoadBitmapA
LoadStringA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassExA
GetSubMenu
BeginPaint
GetClientRect
SetFocus
ReleaseDC
GetDC
SendMessageA
DefFrameProcA
DefMDIChildProcA
BeginDeferWindowPos
GetTabbedTextExtentA
InsertMenuItemA
GetDlgItemTextA
DefWindowProcA
GetMessageA
OffsetRect
DeferWindowPos
EndDeferWindowPos
CreateAcceleratorTableA
DestroyAcceleratorTable
EndPaint
CreatePopupMenu
PostQuitMessage
SetDlgItemInt
SendDlgItemMessageA
SetWindowLongA
IsDlgButtonChecked
GetDlgItem
EnableWindow
SetWindowTextA
CheckDlgButton
GetDlgItemInt
EndDialog
WindowFromPoint
GetParent
GetWindowTextLengthW
GetWindowTextW
SendMessageW
SetActiveWindow
DestroyWindow
CreateWindowExW
SetWindowTextW
GetMenu
CheckMenuItem
DrawTextExW
InvalidateRect
GetSysColorBrush
UpdateWindow
TranslateMessage
DispatchMessageA
SetDlgItemTextA
SetCursor
wsprintfA
EnumDesktopsA
ShowCursor
SetWindowPos
MessageBoxA
GetActiveWindow
GetKeyboardLayout
GetTopWindow
GetWindowLongA
IsWindowVisible
GetWindowThreadProcessId
GetWindow
ShowWindow
IsIconic
GetWindowTextLengthA
GetCursorPos
LoadMenuA

gdi32

Rectangle
LineTo
MoveToEx
GetRegionData
CreateSolidBrush
FillRgn
SetDCPenColor
SetMapMode
DeleteDC
CreateFontIndirectW
EndDoc
GetCurrentObject
GetObjectA
CreateFontIndirectA
SetBkMode
SetTextColor
StartDocA
StartPage
EndPage
SelectObject
GetStockObject
GetDeviceCaps
DeleteObject
StartDocW

comdlg32

PrintDlgW
FindTextW
ChooseFontW
PrintDlgA
ChooseFontA

comctl32

InitCommonControlsEx
CreatePropertySheetPageA
ord17
PropertySheetA

gdiplus

GdiplusShutdown
GdiplusStartup

imm32

ImmGetDescriptionA
ImmSetConversionStatus
ImmGetConversionStatus
ImmGetContext
ImmGetDefaultIMEWnd
ImmReleaseContext

setupapi

SetupDiSetDeviceRegistryPropertyA
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA
SetupDiGetClassInstallParamsA
SetupDiSetClassInstallParamsA
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList

Sections

.text
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 225KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.port
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.next
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lora
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.corn
Size: 512B - Virtual size: 205B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3700372270c88e21dcb348c58fd8ccc1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

comctl32

gdiplus

imm32

setupapi

Sections

.text Size: 70KB - Virtual size: 70KB

.rdata Size: 225KB - Virtual size: 225KB

.data Size: 4KB - Virtual size: 12KB

.port Size: 6KB - Virtual size: 6KB

.next Size: 4KB - Virtual size: 4KB

.lora Size: 7KB - Virtual size: 7KB

.corn Size: 512B - Virtual size: 205B

.rsrc Size: 90KB - Virtual size: 90KB

.text
Size: 70KB - Virtual size: 70KB

.rdata
Size: 225KB - Virtual size: 225KB

.data
Size: 4KB - Virtual size: 12KB

.port
Size: 6KB - Virtual size: 6KB

.next
Size: 4KB - Virtual size: 4KB

.lora
Size: 7KB - Virtual size: 7KB

.corn
Size: 512B - Virtual size: 205B

.rsrc
Size: 90KB - Virtual size: 90KB