70ebe11187734cb120facc0fb7900d882aa43caab435d6e5fd478a9a9c369c84

Sharing

Copy URL Twitter E-mail

General

Target

70ebe11187734cb120facc0fb7900d882aa43caab435d6e5fd478a9a9c369c84
Size

244KB
MD5

6327c70d81bf8c70a72fbb5f1f4c7ef2
SHA1

103f235d5d79cb8a16cc67da410b5810d460ae75
SHA256

70ebe11187734cb120facc0fb7900d882aa43caab435d6e5fd478a9a9c369c84
SHA512

d48ce28cc36fa81e6dd35ae2a07a8203e36ba4faff1ab8a1fbeb9f0d8a11518bcb982439d6a9541bf32a330d8a74e50ea48592a3aaf4bda9abbb5a4c2ab54fcf
SSDEEP

3072:F+U4Dnvsaw2PWXZkqxNzSQIRhYzv6wW+IIAcLAQXx/l/34CepMdz/Jw6Rl6DlZkY:Fx4DvsgWq0ZSpRhY7LAiN/ZyMdzZ9e

Score

N/A

Malware Config

Signatures

Files

70ebe11187734cb120facc0fb7900d882aa43caab435d6e5fd478a9a9c369c84
.exe windows x86

50492f9cf15e8557e82a71ad7a228e95

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
FlushFileBuffers
WriteConsoleW
SetStdHandle
LoadLibraryW
IsProcessorFeaturePresent
HeapReAlloc
GetStringTypeW
MultiByteToWideChar
LCMapStringW
RtlUnwind
GetConsoleMode
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
CompareStringW
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetConsoleCP
CreateFileW
GetTimeZoneInformation
WideCharToMultiByte
CloseHandle
GetVersionExA
OutputDebugStringA
Sleep
HeapFree
GetLastError
GetCurrentThreadId
SetLastError
GetModuleHandleW
LoadLibraryA
GetProcAddress
HeapCreate
GetCurrentProcess
TlsFree
HeapAlloc
QueryPerformanceCounter
FreeLibrary
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
SetEnvironmentVariableA
LeaveCriticalSection
EnterCriticalSection
EncodePointer
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
HeapSetInformation
GetTimeFormatA
GetDateFormatA
GetCommandLineA

user32

SendMessageW
SetWindowTextA
PostMessageA
AppendMenuA
FindWindowA
LoadCursorA
DialogBoxParamA
SetDlgItemTextA
MoveWindow
UpdateWindow
ShowWindow
GetCursorPos
SetWindowPos
EndDialog
GetSystemMenu
ScreenToClient
GetWindowRect
SendDlgItemMessageA
GetMenuItemID
GetSubMenu
SetForegroundWindow
LoadStringA
GetParent
LoadIconA
MenuItemFromPoint
GetCapture
GetForegroundWindow
GetMenu
GetMenuItemRect
TrackPopupMenuEx
SetWindowLongA
GetScrollInfo
InvalidateRect
GetWindowLongA
SetClassLongA
GetDlgItem

gdi32

SelectObject
CreateCompatibleDC
CreateDIBSection

winspool.drv

ClosePrinter

ole32

CoCreateInstance

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocString

avifil32

AVIStreamSampleToTime
AVIStreamGetFrameOpen
AVIStreamLength
AVIStreamOpenFromFileA
AVIFileInit
AVIStreamInfoA

msvfw32

DrawDibOpen

gdiplus

GdipCreatePen1
GdipFree
GdipDeletePen
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromFile
GdipAlloc
GdipDisposeImage
GdipCloneImage
GdipDrawLineI
GdipCreateFromHDC

opengl32

glNormal3f
glBegin
glVertex3f
glEnd
glClear

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50492f9cf15e8557e82a71ad7a228e95

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

ole32

oleaut32

avifil32

msvfw32

gdiplus

opengl32

Sections

.text Size: 69KB - Virtual size: 69KB

.rdata Size: 153KB - Virtual size: 152KB

.data Size: 6KB - Virtual size: 24KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 69KB - Virtual size: 69KB

.rdata
Size: 153KB - Virtual size: 152KB

.data
Size: 6KB - Virtual size: 24KB

.rsrc
Size: 14KB - Virtual size: 14KB