08e45de0ecda45edd0afae056eb5428c22a9b0e8d5e6879e6317f669a14bd434

Sharing

Copy URL Twitter E-mail

General

Target

08e45de0ecda45edd0afae056eb5428c22a9b0e8d5e6879e6317f669a14bd434
Size

47KB
MD5

62809f7aca786626351fecca589d1a98
SHA1

8d83611d2c6bb31c7f553a89abdd521dcfeb6050
SHA256

08e45de0ecda45edd0afae056eb5428c22a9b0e8d5e6879e6317f669a14bd434
SHA512

666329070f6f9868cfc2b7f019a8833ba60e1fd09b366f4ea395a89ef574362e6d955c375cf1eb90b2cc6694985cb103b87c90a47bf6c64a86337f31bbf1dc34
SSDEEP

768:iuGXL30P9XV9+fiX6QLPNRS0aAl1wMy/JS6iccG6MoJrQ:8BfiX6QLPNRHaiy/JRiBMom

Score

N/A

Malware Config

Signatures

Files

08e45de0ecda45edd0afae056eb5428c22a9b0e8d5e6879e6317f669a14bd434
.exe windows x86

06dd9acc5c5203eed1f923b900192bd5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoUninitialize
CreateStreamOnHGlobal
CoCreateInstance

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
DeleteObject
GetPath
SelectObject

gdiplus

GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToStream
GdiplusShutdown
GdiplusStartup

user32

OpenClipboard
MessageBoxIndirectA
MessageBoxA
MapVirtualKeyA
LoadIconA
IsClipboardFormatAvailable
GetWindowTextA
GetWindowRect
GetMessageA
RegisterHotKey
GetKeyState
GetKeyNameTextA
GetForegroundWindow
GetDC
GetClipboardData
GetClassNameA
EnumChildWindows
CloseClipboard
CallNextHookEx
ReleaseDC
SendMessageA
SetWindowsHookExA
ToAscii
UnhookWindowsHookEx
GetKeyboardState

kernel32

ExitProcess
lstrlenA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
WideCharToMultiByte
TerminateProcess
Sleep
RtlZeroMemory
RtlMoveMemory
ReleaseMutex
ReadFile
Process32Next
Process32First
OpenProcess
OpenMutexA
MultiByteToWideChar
LeaveCriticalSection
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalLock
CloseHandle
CreateDirectoryA
CreateFileA
CreateMutexA
CreatePipe
CreateProcessA
CreateThread
CreateToolhelp32Snapshot
DeleteCriticalSection
EnterCriticalSection
GetFileSize
ExpandEnvironmentStringsA
FindFirstFileA
GetCurrentProcess
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcessHeap
GetStartupInfoA
GetTickCount
GetTimeFormatA
GlobalAlloc
GlobalFree

advapi32

OpenProcessToken
LookupPrivilegeValueA
GetUserNameA
AdjustTokenPrivileges

wininet

HttpSendRequestA
InternetCloseHandle
InternetConnectA
InternetOpenA
InternetOpenUrlA
InternetReadFile
HttpOpenRequestA
HttpAddRequestHeadersA
HttpQueryInfoA

shell32

ShellExecuteA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

06dd9acc5c5203eed1f923b900192bd5

Headers

File Characteristics

Imports

ole32

gdi32

gdiplus

user32

kernel32

advapi32

wininet

shell32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 9KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 9KB

.rsrc
Size: 31KB - Virtual size: 30KB