8df30f0139678f4d5aaf705e2bd9605a3429bc84e99406a7d4e40a1a1ee35ff2

Sharing

Copy URL Twitter E-mail

General

Target

8df30f0139678f4d5aaf705e2bd9605a3429bc84e99406a7d4e40a1a1ee35ff2
Size

368KB
MD5

4f95f17aede550f7ffed70e191f8062a
SHA1

3d2cca73337e658c4ff29d09c1a8906e86d747bb
SHA256

8df30f0139678f4d5aaf705e2bd9605a3429bc84e99406a7d4e40a1a1ee35ff2
SHA512

ccf9b2d830e1799fe6d6dba2ab95087062deafe94604debcf8c6058a9e079439f2d8d0a8a5a1d9aaf351e7c546a51b09c7d70ade2b233143fa9e96bdb101cdee
SSDEEP

6144:REwUJ2FVaP6YL9d9hVyCApQU7TE3nyY23tpRiHUtsloci8vaziSKlLv/fscymJy:m8VayOVyzJPEiJt5+oc+zhO8cq

Score

N/A

Malware Config

Signatures

Files

8df30f0139678f4d5aaf705e2bd9605a3429bc84e99406a7d4e40a1a1ee35ff2
.exe windows x86

8df263ecfe77520cd6613c86945d47c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantClear
SysAllocStringLen
SysFreeString
SysAllocString
SysStringLen

kernel32

IsValidCodePage
CreateProcessA
SizeofResource
GetCurrentThreadId
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
GetConsoleMode
CompareStringA
RaiseException
InterlockedCompareExchange
Sleep
HeapSize
WideCharToMultiByte
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
FindNextFileA
CreateFileMappingA
ResetEvent
lstrcpyA
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
SetEvent
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
UnmapViewOfFile
TlsAlloc
GetTickCount
QueryPerformanceCounter
GetOEMCP
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
GetVersion
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
LeaveCriticalSection
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
LoadLibraryExA
lstrcmpiW
WriteFile
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
SetLastError
GetCurrentThread
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetCommandLineA
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetCPInfo
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
CreateFileA
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
GetStdHandle
CreateProcessW
FindResourceA
VirtualAlloc
GetVersionExA
GetModuleFileNameA

advapi32

RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA

user32

SetForegroundWindow
LoadCursorA
ClientToScreen
GetDlgItem
SetWindowTextA
SetWindowLongA
ReleaseCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
PeekMessageA
SetFocus
PtInRect
EndPaint
FillRect
CreateWindowExA
GetSubMenu
EnableMenuItem
EndDialog
IsWindowEnabled
TranslateMessage
SetWindowPos
EnableWindow
ShowWindow
UpdateWindow
GetMessageA
DestroyWindow
GetClientRect
GetCursorPos
GetDC
DispatchMessageA
IsWindow
ReleaseDC
PostQuitMessage
SendMessageA
CallWindowProcA
GetFocus
SetCursor
MessageBoxA
GetSysColor
GetKeyState
SystemParametersInfoA
LoadStringA
InvalidateRect

gdi32

GetDeviceCaps
SetTextColor
SelectObject
DeleteObject
GetStockObject
CreateSolidBrush

msvcrt

exit
_controlfp

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 346KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8df263ecfe77520cd6613c86945d47c8

Headers

File Characteristics

Imports

oleaut32

kernel32

advapi32

user32

gdi32

msvcrt

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 346KB - Virtual size: 346KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 346KB - Virtual size: 346KB

.rsrc
Size: 1KB - Virtual size: 1KB