e99c3a08ece419e1055af9cfaaa05eb5d8e0871a5f3a110ff6f1667b32ed6ca1

Sharing

Copy URL Twitter E-mail

General

Target

e99c3a08ece419e1055af9cfaaa05eb5d8e0871a5f3a110ff6f1667b32ed6ca1
Size

207KB
MD5

759c3ab359f710fe67c6696f0fdecfff
SHA1

311e2dcff7abe11bec0475a3b9c1ece6c96d1a67
SHA256

e99c3a08ece419e1055af9cfaaa05eb5d8e0871a5f3a110ff6f1667b32ed6ca1
SHA512

c08c764623b07f075cd330f9fe75a07dc430c44e5ced6ef456b938ad8fc2a56e72b9c96177f28e330a03597ab2a47ab216e74d48e0d15bbfc0e88322e1c5576f
SSDEEP

6144:m7VzSjllzO3j7W0Je3nx9aCOYKe60629bbICacn:mGQW93rap1e606KpV

Score

N/A

Malware Config

Signatures

Files

e99c3a08ece419e1055af9cfaaa05eb5d8e0871a5f3a110ff6f1667b32ed6ca1
.exe windows x86

941e46b026737df53a5fd4494b771f1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntA
GetCurrentProcess
SetThreadPriority
LeaveCriticalSection
IsBadWritePtr
CreateIoCompletionPort
lstrcpyW
lstrcmpiW
lstrlenA
ReleaseSemaphore
GetFullPathNameW
WaitForSingleObject
GetCurrentThread
DeleteCriticalSection
lstrcpynW
GetLastError
GlobalMemoryStatus
WriteFile
GetFileSize
GlobalFree
DeleteFileW
GlobalAlloc
IsBadCodePtr
GetVersionExW
FreeLibrary
QueryPerformanceCounter
SetUnhandledExceptionFilter
MultiByteToWideChar
InterlockedIncrement
GetTimeZoneInformation
lstrcpyA
CreateSemaphoreW
OutputDebugStringW
VirtualFree
GetCurrentProcessId
ResetEvent
WaitForMultipleObjects
SetFilePointer
InterlockedDecrement
GetSystemTimeAsFileTime
GlobalHandle
GetFileAttributesW
lstrcmpW
PostQueuedCompletionStatus
GlobalUnlock
CreateFileW
WideCharToMultiByte
CreateEventW
SetEvent
GetPrivateProfileStringW
HeapAlloc
LoadLibraryW
GetProcAddress
SetEndOfFile
GetSystemInfo
EnterCriticalSection
GlobalLock
GetDiskFreeSpaceW
lstrlenW
CloseHandle
CreateThread
GetSystemDefaultLangID
GetProcessHeap
InitializeCriticalSection
GetModuleFileNameA
GetACP
IsBadReadPtr
GetQueuedCompletionStatus
HeapFree
GetTickCount
GetThreadPriority
ReadFile
MulDiv
InterlockedExchange

ncobjapi

WmiEventSourceDisconnect
WmiCommitObject
WmiCreateObjectWithProps
WmiDestroyObject
WmiSetAndCommitObject
WmiCreateObjectWithFormat
WmiAddObjectProp
WmiIsObjectActive
WmiEventSourceConnect
WmiCreateObject

user32

InvalidateRect
GetDesktopWindow
SetDlgItemTextW
GetAsyncKeyState
SetDlgItemInt
ReleaseDC
GetDC
IsRectEmpty
PeekMessageW
GetDlgItem
GetWindowLongW
GetDlgItemInt
TranslateMessage
DispatchMessageW
DestroyWindow
LoadStringW
SendMessageW
ClientToScreen
DefWindowProcW
LoadCursorW
SetWindowLongW
CreateDialogParamW
GetWindowRect
ShowWindow
EnableWindow
CheckRadioButton
IsWindowVisible
IsWindow
GetClientRect
SetCursor
MoveWindow
CheckDlgButton

ole32

CoTaskMemFree
CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoCreateInstance

nddeapi

NDdeGetShareSecurityA
NDdeIsValidShareNameA
NDdeGetTrustedShareW
NDdeIsValidAppTopicListA
NDdeIsValidAppTopicListW
NDdeGetShareSecurityW
NDdeGetTrustedShareA
NDdeGetErrorStringA

ifsutil

?AddEntry@AUTOREG@@SGEPBVWSTRING@@@Z
?AddEdge@DIGRAPH@@QAEEKK@Z
?AddVolumeName@MOUNT_POINT_MAP@@QAEEPAVWSTRING@@0@Z
?AddStart@NUMBER_SET@@QAEEVBIG_INT@@@Z
?CheckAndAdd@NUMBER_SET@@QAEEVBIG_INT@@PAE@Z
?CheckAndAdd@SPARSE_SET@@QAEEVBIG_INT@@PAE@Z
?CheckAndRemove@NUMBER_SET@@QAEEVBIG_INT@@PAE@Z
?AddNext@NUMBER_SET@@QAEEVBIG_INT@@@Z

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 511KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

941e46b026737df53a5fd4494b771f1e

Headers

File Characteristics

Imports

kernel32

ncobjapi

user32

ole32

nddeapi

ifsutil

Sections

.text Size: 79KB - Virtual size: 79KB

.rdata Size: 59KB - Virtual size: 58KB

.data Size: 62KB - Virtual size: 511KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 79KB - Virtual size: 79KB

.rdata
Size: 59KB - Virtual size: 58KB

.data
Size: 62KB - Virtual size: 511KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 1KB