b9605f80ee0f224142ca3d2f614d618c64eb7d351ea21f95bc7d56fed56e69e6

Sharing

Copy URL

Twitter E-mail

General

Target

b9605f80ee0f224142ca3d2f614d618c64eb7d351ea21f95bc7d56fed56e69e6
Size

260KB
MD5

6e262f942aa819fe4555bc41df893c60
SHA1

ebcbdece979ecdb400e2dfe2a101ed15a8a1de25
SHA256

b9605f80ee0f224142ca3d2f614d618c64eb7d351ea21f95bc7d56fed56e69e6
SHA512

736a5547b4c953d052575f959830f447a9a8f55d817cefa1704b1ec1e2a4f934ece18041d6ca10f28c4f245b384840e4388da4bb7520be64d6f3773000d85cbd
SSDEEP

6144:wj16JTe7QDT1lC7H0q6k+RCoXe8xrubntZ8u:m8JC8DT1lsHZv4BekEtZh

Score

N/A

Malware Config

Signatures

Files

b9605f80ee0f224142ca3d2f614d618c64eb7d351ea21f95bc7d56fed56e69e6
.exe windows x86

b713b4b1a5c4a7173f3cc28554e7fc06

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostMessageW
CallWindowProcW
VkKeyScanExW
ReplyMessage
RegisterClipboardFormatW
SendMessageW
GetTabbedTextExtentW
GetDialogBaseUnits
LoadIconA
InsertMenuA
DdeInitializeA

urlmon

CoInternetGetProtocolFlags
ObtainUserAgentString
CopyStgMedium
IsAsyncMoniker

shell32

Shell_NotifyIconA
DragFinish
ShellExecuteW
DragQueryFileW
ExtractIconExW
ShellExecuteExW
DuplicateIcon
FindExecutableA
ShellExecuteA

ole32

OleCreateFromFileEx
OleCreateLinkToFile
CoImpersonateClient
CreateILockBytesOnHGlobal
WriteClassStg
CoGetInstanceFromFile

wininet

FindNextUrlCacheEntryA
InternetCrackUrlA
InternetConfirmZoneCrossing
HttpEndRequestW
HttpAddRequestHeadersA
InternetGoOnline

gdi32

AddFontResourceW
AngleArc
CreateDIBPatternBrushPt
CreateDIBSection
CreateDIBPatternBrush
AddFontResourceA
CreateBitmap

ws2_32

setsockopt
gethostbyaddr
bind
closesocket
shutdown
htons

opengl32

glTexGeni
wglUseFontBitmapsW
glDeleteLists
glVertex4iv
glPolygonMode
glRotatef
glPixelTransferi
glGenLists

kernel32

CloseHandle
HeapSize
SetFilePointer
GetStringTypeW
MultiByteToWideChar
LCMapStringW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapReAlloc
HeapAlloc
LoadLibraryW
WriteConsoleW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapFree
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
InterlockedDecrement
GetCurrentThreadId
SetStdHandle
CreateFileW
RtlUnwind
PurgeComm
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
WriteFile
GetModuleFileNameA
WaitForSingleObject
SetWaitableTimer
GetLastError
CreateWaitableTimerA
InitializeCriticalSection
AreFileApisANSI
GenerateConsoleCtrlEvent
GetEnvironmentVariableA
GetDiskFreeSpaceExW
GetCommandLineA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent
EnterCriticalSection
LeaveCriticalSection
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
GetProcAddress
GetModuleHandleW
ExitProcess

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b713b4b1a5c4a7173f3cc28554e7fc06

Headers

DLL Characteristics

File Characteristics

Imports

user32

urlmon

shell32

ole32

wininet

gdi32

ws2_32

opengl32

kernel32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 10KB - Virtual size: 20KB

.rsrc Size: 208KB - Virtual size: 212KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 10KB - Virtual size: 20KB

.rsrc
Size: 208KB - Virtual size: 212KB