a61c98ea366af19c5b996674c2876d5a7f981e305342a0eaf0150b0ca6adf5bd

Sharing

Copy URL

Twitter E-mail

General

Target

a61c98ea366af19c5b996674c2876d5a7f981e305342a0eaf0150b0ca6adf5bd
Size

476KB
MD5

653d1a10b18c832f9a1668dfd2d2e622
SHA1

1b124dad73ee3005b47a0ea7ffcd6fcb7be3139a
SHA256

a61c98ea366af19c5b996674c2876d5a7f981e305342a0eaf0150b0ca6adf5bd
SHA512

954e62e3c8bf6f506aa8b87cdca1edcfcd49d085ea037873608f91ff71679d8fecfc0856c9716b247acc9e22837dad37dce88fe6dc8e03de93e5bef7f365f7d7
SSDEEP

12288:9s8I65X4f9cbWu/axAgPH7Yw+eVP3rn8jotmsa761N7toG2Rg:9RWuPubHVP3rmtsa7613sg

Score

N/A

Malware Config

Signatures

Files

a61c98ea366af19c5b996674c2876d5a7f981e305342a0eaf0150b0ca6adf5bd
.exe windows x86

8220c44b9ec583eaf2d99952e4383a01

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM

Imports

kernel32

GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
GetFileAttributesA
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
ExitProcess
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
HeapCreate
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
GetLocaleInfoW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
IsProcessorFeaturePresent
GetCPInfo
LCMapStringW
WideCharToMultiByte
GetStartupInfoW
HeapSetInformation
GetCommandLineA
MultiByteToWideChar
HeapReAlloc
HeapSize
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
LoadLibraryW
WriteConsoleW
SetStdHandle
GetExitCodeProcess
WaitForSingleObject
CreateFileW
CompareStringW
GetLastError
FormatMessageA
MulDiv
CreateFileA
CloseHandle
CreatePipe
WaitForMultipleObjects
LoadLibraryA
lstrcpyA
CreateProcessA
GetFileSize
GlobalAlloc
GlobalLock
FreeLibrary
GetFileAttributesW
ReadFile
GlobalUnlock
HeapAlloc
lstrcmpiA
LocalFree
GetModuleFileNameA
lstrlenA
Sleep
RtlUnwind
RaiseException
HeapFree
DecodePointer
EncodePointer
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
CreateToolhelp32Snapshot
Process32Next
GetProcAddress
SetLastError
SetEnvironmentVariableA

user32

DispatchMessageA
ShowScrollBar
GetClientRect
CheckMenuItem
GetDC
BeginPaint
wsprintfA
EndPaint
DefWindowProcA
SendMessageA
ReleaseDC
MessageBoxA
SetFocus
DestroyWindow
MoveWindow
ShowWindow
SendDlgItemMessageA
GetWindowLongA
CreateWindowExA
LoadBitmapA
LoadStringA
GetParent
CopyRect
DrawTextA
EndDeferWindowPos
GetMenu
MsgWaitForMultipleObjects
PeekMessageA
GetMessageA
GetFocus
IsDialogMessageA
TranslateMessage
GetDlgCtrlID
GetSystemMetrics
SetWindowPos
InvalidateRect
SetWindowLongA
LoadImageA
DestroyIcon
SetDlgItemTextA
EndDialog
GetDlgItemTextA
GetClassNameA
GetScrollInfo
SetDlgItemInt
DialogBoxParamA
ValidateRect
PostQuitMessage
GetDialogBaseUnits
OpenClipboard
EmptyClipboard
CopyImage
SetClipboardData
CloseClipboard
ReleaseCapture
GetClassLongA
SetClassLongA
GetSystemMenu
EnableMenuItem
GetDlgItem

gdi32

CreatePen
SelectObject
CreateSolidBrush
Rectangle
GetDeviceCaps
CreateFontA
SaveDC
DeleteObject
RestoreDC
GetTextExtentPoint32A
SetTextColor
CreateCompatibleBitmap
GetStockObject
PatBlt
DeleteDC
GetTextExtentPointA
StartDocA
StartPage
SetMapMode
SetWindowExtEx
SetViewportExtEx
SetViewportOrgEx
MoveToEx
LineTo
Polyline
EndPage
EndDoc
CreateCompatibleDC
SetBkMode
TextOutA

comdlg32

ChooseFontA
GetOpenFileNameA
FindTextW

advapi32

CredMarshalCredentialA
AddAce

shell32

SHGetFileInfoA

ole32

OleInitialize
CreateStreamOnHGlobal

oleaut32

OleSavePictureFile
OleLoadPicture

msimg32

GradientFill

shlwapi

StrDupA
StrChrA
PathFindExtensionA
PathFindFileNameA

comctl32

ord17
ImageList_ReplaceIcon
ImageList_Create
ImageList_Add

winhttp

WinHttpGetIEProxyConfigForCurrentUser

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8220c44b9ec583eaf2d99952e4383a01

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

msimg32

shlwapi

comctl32

winhttp

Sections

.text Size: 109KB - Virtual size: 108KB

.rdata Size: 256KB - Virtual size: 256KB

.data Size: 6KB - Virtual size: 14KB

.rsrc Size: 103KB - Virtual size: 103KB

.text
Size: 109KB - Virtual size: 108KB

.rdata
Size: 256KB - Virtual size: 256KB

.data
Size: 6KB - Virtual size: 14KB

.rsrc
Size: 103KB - Virtual size: 103KB