7503a51ddfae1127ade0396bfabc8819cb3e5552bbb3931a6f6a2aeca128964f

Sharing

Copy URL Twitter E-mail

General

Target

7503a51ddfae1127ade0396bfabc8819cb3e5552bbb3931a6f6a2aeca128964f
Size

548KB
MD5

66142f77a4e727947ad7e95923921690
SHA1

8a5196ca059d7a25dec0779d07a66819b64a3b6f
SHA256

7503a51ddfae1127ade0396bfabc8819cb3e5552bbb3931a6f6a2aeca128964f
SHA512

37f8dce07542fa83900cc876f18e015347bed5ffa666c6e9c8e1f7431caa9d2048e107ac7c73a1f4d9ba342f65dc8f304e603e33b9f277a012d45f1c90ba60bc
SSDEEP

6144:nNMSd9Q8GDbtXkkkkkkjn7D32oV4J7zeqBocJcsn7ctcR+c/cgv5nFi/tWQS680W:NCLt0kkkkkHDvVM7zeqBogFi/tm680lo

Score

N/A

Malware Config

Signatures

Files

7503a51ddfae1127ade0396bfabc8819cb3e5552bbb3931a6f6a2aeca128964f
.exe windows x86

c8212188507a123bd671a24cd437c763

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

tapi32

lineDrop
lineNegotiateAPIVersion
lineOpen
lineClose
lineSetDevConfig
lineGetDevConfig
lineTranslateDialog
lineGetID
lineGetDevCaps
lineShutdown
lineInitialize
lineSetCurrentLocation
lineDeallocateCall
lineGetCountry
lineGetTranslateCaps
lineMakeCall

kernel32

HeapDestroy
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetStartupInfoA
GetTickCount
lstrcpyA
SetEvent
SetCommState
GetCommState
EscapeCommFunction
SetCommTimeouts
CreateFileA
WritePrivateProfileStringA
lstrcpynA
GetPrivateProfileStringA
ClearCommError
GlobalAlloc
GetModuleFileNameA
FreeLibrary
MultiByteToWideChar
GetProcAddress
GetLastError
LoadLibraryA
CreateThread
GetCurrentThreadId
CloseHandle
Sleep
GetExitCodeThread
GetVersion
WaitForSingleObject
CreateEventA
GetOverlappedResult
ReadFile
WriteFile
FlushFileBuffers
WriteConsoleW
HeapCreate
WriteConsoleA
SetStdHandle
HeapSize
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
RtlUnwind
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
WideCharToMultiByte
LCMapStringA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
GetProcessHeap
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStdHandle
VirtualFree
VirtualAlloc
TerminateProcess
HeapReAlloc
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
GetConsoleOutputCP
GetVersionExA
GetCommandLineA
HeapAlloc
HeapFree
ExitProcess

user32

FindWindowA
GetMessageA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterClassA
DefWindowProcA
GetCursorPos
SetWindowsHookExA
TrackPopupMenu
DestroyMenu
UnhookWindowsHookEx
LoadMenuA
ModifyMenuA
DrawMenuBar
GetSubMenu
GetDlgItem
EnableWindow
SetForegroundWindow
IsDlgButtonChecked
CheckDlgButton
CreateDialogParamA
DialogBoxParamA
GetFocus
SendDlgItemMessageA
EndDialog
GetWindow
SetWindowTextA
SetDlgItemTextA
SetFocus
GetDesktopWindow
AppendMenuA
CreatePopupMenu
GetDC
ReleaseDC
InvalidateRect
ShowWindow
DestroyWindow
GetWindowRect
SystemParametersInfoA
GetSystemMetrics
SetWindowPos
CallNextHookEx
PostMessageA
CreateWindowExA
wsprintfA
MessageBoxA
LoadImageA
DestroyIcon
PostQuitMessage

gdi32

GetTextExtentPoint32A
TextOutA
DeleteObject

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteValueA

shell32

Shell_NotifyIconA

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8212188507a123bd671a24cd437c763

Headers

File Characteristics

Imports

tapi32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 24KB - Virtual size: 79KB

.rsrc Size: 444KB - Virtual size: 444KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 24KB - Virtual size: 79KB

.rsrc
Size: 444KB - Virtual size: 444KB