c4560b86ac7cc98a8c2d2e40199395d040ebc48b9b4b4f0651a903e312128932

Sharing

Copy URL Twitter E-mail

General

Target

c4560b86ac7cc98a8c2d2e40199395d040ebc48b9b4b4f0651a903e312128932
Size

280KB
MD5

66b38b2e8e03f7b26645e069d9ee5f74
SHA1

936dbd7ee9209047d2f0255e54f9d584d9b93307
SHA256

c4560b86ac7cc98a8c2d2e40199395d040ebc48b9b4b4f0651a903e312128932
SHA512

82c4fc90ce83a39f77c0ba75f93226a7c53bbb7b75f3f031ba6a8914b607b6617b4d146a29f5831afa72ba83862fbbc65cc49451a70da26dac62d12887aab1ae
SSDEEP

6144:UxPLeiCMjenccYsf9GGuabbOYAN0zkY0m:UxPLTCfccYsfXuafOr0z

Score

N/A

Malware Config

Signatures

Files

c4560b86ac7cc98a8c2d2e40199395d040ebc48b9b4b4f0651a903e312128932
.exe windows x86

1a5b8635b8a5e0cead1001e58f252834

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

EnumProcesses
GetModuleFileNameExW

shell32

ShellExecuteW
ShellExecuteExW
SHGetFolderPathW

wininet

InternetOpenW
HttpOpenRequestW
InternetReadFile
InternetCrackUrlW
InternetCloseHandle
InternetConnectW
HttpSendRequestW

version

VerQueryValueW

kernel32

CreateFileW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetModuleHandleW
LoadLibraryW
FindResourceExW
GetLastError
LoadResource
LockResource
FreeResource
SetEvent
DeleteFileW
SetProcessShutdownParameters
CreateEventW
SetConsoleCtrlHandler
WaitForSingleObject
GetProcAddress
InterlockedIncrement
InterlockedDecrement
OpenEventW
CloseHandle
Sleep
GetModuleFileNameW
GetCommandLineW
TerminateProcess
OpenProcess
FindFirstFileW
FlushFileBuffers
FindResourceW
CreateDirectoryW
MultiByteToWideChar
FindClose
CopyFileW
GetPrivateProfileStringW
WritePrivateProfileStringW
WideCharToMultiByte
GetEnvironmentVariableW
SetEnvironmentVariableW
SetFilePointer
SetStdHandle
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
GetCurrentDirectoryA
WriteConsoleA
GetConsoleOutputCP
GetLocaleInfoW
WriteConsoleW
GetTimeZoneInformation
CreateFileA
SetEndOfFile
GetDriveTypeA
CompareStringA
CompareStringW
FindNextFileW
FreeLibrary
GetFullPathNameW
GetModuleFileNameA
LocalAlloc
SetEnvironmentVariableA
InterlockedExchange
LoadLibraryA
RaiseException
InterlockedCompareExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetSystemTimeAsFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeW
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlUnwind
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetCPInfo
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapSize
ExitProcess
ReadFile
WriteFile
GetConsoleCP
GetConsoleMode
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
IsValidCodePage
GetStdHandle

user32

GetDlgItem
SendMessageW
DialogBoxIndirectParamW
MessageBoxW
SetWindowTextW
EndDialog
LoadIconW
SetWindowPos
GetDesktopWindow
GetWindowRect
LoadStringW
GetWindowTextW

gdi32

DeleteObject
CreateFontIndirectW

advapi32

RegEnumKeyExW
RegDeleteValueW
RegCreateKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyW
RegSetValueExW
RegCreateKeyExW

ole32

CoCreateGuid

Sections

.text
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

V_SHRDHO
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a5b8635b8a5e0cead1001e58f252834

Headers

File Characteristics

Imports

psapi

shell32

wininet

version

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 208KB - Virtual size: 205KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 8KB - Virtual size: 14KB

V_SHRDHO Size: 4KB - Virtual size: 4B

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 208KB - Virtual size: 205KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 8KB - Virtual size: 14KB

V_SHRDHO
Size: 4KB - Virtual size: 4B

.rsrc
Size: 20KB - Virtual size: 17KB