f9be36610a68f7a786496f1f8493244cf62e75ecca788a8b6379c7abd5f5b78d

Sharing

Copy URL Twitter E-mail

General

Target

f9be36610a68f7a786496f1f8493244cf62e75ecca788a8b6379c7abd5f5b78d
Size

88KB
MD5

675da02552958ae1583703a9f8f7ae80
SHA1

395228b5838359882fbd645f5e79cd8777be85c9
SHA256

f9be36610a68f7a786496f1f8493244cf62e75ecca788a8b6379c7abd5f5b78d
SHA512

0c5c2836d49459a830bc05f90194a25197e421fab369665c420425a6c9060338f984513845860647a54b40c157f4279c734743a5f762f04e29fe84bedabcc423
SSDEEP

1536:rryL7pAdsBZhfT6HXXlKLhDIcYdAqFt/KbPA15dh2PbbNmtD8PWpyc:rryL7MAhfT6nlK0cYOX015dhGNmtD8

Score

N/A

Malware Config

Signatures

Files

f9be36610a68f7a786496f1f8493244cf62e75ecca788a8b6379c7abd5f5b78d
.exe windows x86

d805bb8f7a9c5c2b1890e2851ddf5159

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetSystemTimeAsFileTime
VirtualProtect
HeapSize
ReadFile
HeapCreate
InitializeCriticalSection
VirtualAlloc
RtlUnwind
GetCPInfo
GetEnvironmentStrings
ExitProcess
GetProcAddress
LCMapStringA
GetLastError
FindClose
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
FindFirstFileA
UnhandledExceptionFilter
DeleteCriticalSection
CloseHandle
TlsFree
IsBadWritePtr
TlsGetValue
SetHandleCount
HeapDestroy
InterlockedExchange
CreateDirectoryA
LeaveCriticalSection
GetPrivateProfileIntA
GetCurrentProcess
GetSystemInfo
SetEndOfFile
FindNextFileA
EnterCriticalSection
GetVersionExA
GetEnvironmentStringsW
GetPrivateProfileStringA
LoadLibraryA
FreeEnvironmentStringsW
VirtualQuery
GetStringTypeA
GetStdHandle
IsBadReadPtr
TlsSetValue
SetUnhandledExceptionFilter
GetUserDefaultLCID
GetTickCount
WriteFile
WideCharToMultiByte
GetModuleHandleA
HeapReAlloc
SetLastError
GetCommandLineA
GetFileType
WritePrivateProfileStringA
TlsAlloc
GetStartupInfoA
HeapFree
MoveFileA
CreateFileA
GetEnvironmentVariableA
lstrcmpiA
VirtualProtectEx
LoadLibraryExA
GetVersion
GlobalAddAtomW
HeapAlloc
GetNumberFormatA
QueryPerformanceCounter
IsBadCodePtr
GetOEMCP
GetLocaleInfoA
GetPrivateProfileSectionNamesA
GetACP
GetStringTypeW
GetCurrentProcessId
ExpandEnvironmentStringsA
LCMapStringW
GetCurrentThreadId
SetFilePointer

user32

GetWindowLongA
CheckRadioButton
CreateDialogParamA
GetNextDlgTabItem
GetDlgItem
CheckDlgButton
GetWindowRect
SetWindowTextA
ShowWindow
SetWindowLongA
DialogBoxParamA
EndDialog
IsDlgButtonChecked
FillRect
FindWindowExA
MoveWindow
GetWindowTextA
TranslateMessage
GetParent
GetDlgItemTextA
ScreenToClient
GetSystemMetrics
SendMessageA
IsWindowVisible
EnableWindow
CreateWindowExA

gdi32

CreateSolidBrush
SetBkColor
GetBkColor
TextOutA
GetWindowExtEx
GetStockObject
SetTextAlign
DeleteObject

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

msvcrt

isalpha
toupper
_itoa
_acmdln
wctomb
isdigit
isspace
strstr
strchr
__p__fmode
wcspbrk
strcspn
_stricmp
memcpy
strncmp
calloc
__set_app_type
tolower
atoi
_initterm
free
_exit
?terminate@@YAXXZ
malloc
exit
memset
_snprintf
_amsg_exit
_ltoa
strrchr
_cexit
wcstol
_CIacos
_CItan

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d805bb8f7a9c5c2b1890e2851ddf5159

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 5KB - Virtual size: 45KB

.data2 Size: 512B - Virtual size: 16B

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 5KB - Virtual size: 45KB

.data2
Size: 512B - Virtual size: 16B

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 3KB - Virtual size: 2KB