67162daf6a64cee283e202a162b09e8b0b62e4c2604e5bb904538d7897596643

Sharing

Copy URL Twitter E-mail

General

Target

67162daf6a64cee283e202a162b09e8b0b62e4c2604e5bb904538d7897596643
Size

292KB
MD5

6e6e08be0ebb4a90106675e911fc5aa0
SHA1

92e30e2ef9e8817e564441adb9a24a6a64ee3e4c
SHA256

67162daf6a64cee283e202a162b09e8b0b62e4c2604e5bb904538d7897596643
SHA512

08605afa02f22928207b1f2b55080384107de64fd3401e1d008624e93afbec3b5ad1deb91c600a124205197a380150b82fe1f3c32de56a8f8cf76090ba69e75d
SSDEEP

6144:fTzq3YmDnHcSv2rvcjyc3HXtaO4HG6zizTQxkMAlroEdxk6:ru3FnHcHrvcdaM6G/FFZd

Score

N/A

Malware Config

Signatures

Files

67162daf6a64cee283e202a162b09e8b0b62e4c2604e5bb904538d7897596643
.exe windows x86

56cb7d320cc92b93747b97cbb9cc68fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DuplicateHandle
EndUpdateResourceA
GetSystemDefaultLangID
GetSystemDirectoryW
EraseTape
GetSystemTime
DebugBreak
GetOverlappedResult
WritePrivateProfileSectionW
LocalLock
GetTimeZoneInformation
QueryDosDeviceW
SetFileAttributesA
EnumResourceNamesW
CreateEventA
GetCommandLineW
ReadConsoleA
GetStringTypeExW
CreateWaitableTimerA
GenerateConsoleCtrlEvent
IsBadWritePtr
WriteFile
SetNamedPipeHandleState
VirtualAllocEx
SetSystemTime
ReadConsoleInputW
RemoveDirectoryW
OpenSemaphoreW
lstrcpyA
GetBinaryTypeW
GetCommModemStatus
SetEnvironmentVariableW
OutputDebugStringW
SetConsoleOutputCP
SetConsoleWindowInfo
FormatMessageW
GetConsoleCursorInfo
_hread
CreateDirectoryExA
GetDiskFreeSpaceW
GetCurrentProcess
AreFileApisANSI
GetPrivateProfileStringW
SwitchToFiber
PrepareTape
GetDiskFreeSpaceExA
GetVolumeInformationW
GetACP
WriteConsoleOutputCharacterA
VirtualProtect
SetStdHandle
LocalFileTimeToFileTime
GetTapeStatus
FlushConsoleInputBuffer
GetEnvironmentStringsW
GetShortPathNameA
SetTimeZoneInformation
PurgeComm
WritePrivateProfileStringA
GetTempPathW
LoadResource
VirtualUnlock
lstrcpynA
SetProcessWorkingSetSize
FreeResource
GetFileAttributesA
CreateProcessA
FindFirstFileA
LocalReAlloc
GlobalAddAtomA
WriteConsoleOutputW
GetShortPathNameW
GetConsoleMode
IsBadReadPtr
GetCurrentDirectoryW
GetComputerNameW
IsValidLocale
CreateDirectoryW
ReadDirectoryChangesW
GetModuleHandleA
_lopen
SetProcessAffinityMask
UnhandledExceptionFilter
CopyFileExW
GetUserDefaultLangID
EnumSystemCodePagesA
ReadConsoleOutputA
LocalSize
GetEnvironmentVariableW
CompareStringA
FindCloseChangeNotification
FindNextChangeNotification
EnumTimeFormatsW
_llseek
CreatePipe
FindResourceExW
FreeLibraryAndExitThread
GetThreadContext
VirtualAlloc
GetStartupInfoA

user32

DestroyCursor
SetDlgItemInt
InsertMenuA
SendMessageTimeoutA
GetWindowContextHelpId
wvsprintfW
IsWindowVisible
SetCursorPos
UnregisterClassW
ReleaseCapture
GetMenu
RemovePropA
GetClassNameA
GetMenuItemRect
IsDialogMessageW
SystemParametersInfoA
NotifyWinEvent
GetClientRect
OpenInputDesktop
GetWindowThreadProcessId
CharLowerBuffW
SetRect
SubtractRect
EnumWindowStationsA
ChildWindowFromPointEx
ChangeMenuA
CallWindowProcW
PostMessageA
CreateDialogParamA
BringWindowToTop
EnumChildWindows
GetParent
AdjustWindowRect
AttachThreadInput
OffsetRect
ScrollWindow
GetClipboardFormatNameW
BeginPaint
RegisterWindowMessageW
DrawTextExA
GetKeyState
ShowCaret
RegisterClassW
SetClipboardData
PostThreadMessageA
EnumWindowStationsW
EnumDesktopsA
SendDlgItemMessageW
InvertRect
ToUnicode
VkKeyScanW

gdi32

CreateDIBitmap
Arc
ModifyWorldTransform
CreateBitmapIndirect
ExtTextOutA
CreateDIBSection
CreateDCA
SetPixelV
DeleteDC
GetEnhMetaFileHeader
GetGlyphOutlineA

comdlg32

PageSetupDlgA
GetOpenFileNameA

advapi32

StartServiceCtrlDispatcherW
CryptAcquireContextW
LookupPrivilegeValueW
GetSecurityDescriptorLength
RegEnumKeyW
GetSecurityDescriptorControl

shell32

Shell_NotifyIconW
DragAcceptFiles
SHGetPathFromIDListA
DragQueryPoint
SHFileOperationW
ExtractIconExW
SHChangeNotify
SHGetSettings
Shell_NotifyIconA
DragFinish

ole32

CoInitializeEx
CoFreeUnusedLibraries
CoGetClassObject
CoReleaseServerProcess
CoUninitialize
ReadClassStm

shlwapi

wnsprintfA
StrFormatKBSizeW
UrlCombineW
SHEnumValueW
PathGetDriveNumberA
PathAppendA
StrChrW
SHAutoComplete
AssocCreate
PathAddExtensionW
StrRetToBufW
PathFindNextComponentW

msvcrt

__p__commode
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_snwprintf
sscanf
vfprintf
_controlfp
_chsize
_mbslen
strstr
_wcsrev
_kbhit
_splitpath
clock
_stricmp
atof
_strcmpi
fclose
clearerr
_mbsrchr
_write
_chdrive
vfwprintf
_wtoi
_wsplitpath
_wsopen
_mbsstr
fputws
floor
bsearch
_wctime
_wsetlocale
getc
_mbsnbcpy
strcoll
_wmakepath
isalpha
_ltow
wcslen
_beginthread
_access
_pipe
_wstrtime
_fstat
_wchmod
getchar
rewind
fwrite
putchar
__setusermatherr
_adjust_fdiv
_initterm
__p__fmode
__set_app_type
_except_handler3

Sections

oieake
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

kcaqc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

agicoya
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yeecay
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56cb7d320cc92b93747b97cbb9cc68fc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

msvcrt

Sections

oieake Size: 4KB - Virtual size: 2KB

kcaqc Size: 8KB - Virtual size: 6KB

agicoya Size: 268KB - Virtual size: 265KB

yeecay Size: 8KB - Virtual size: 6KB

oieake
Size: 4KB - Virtual size: 2KB

kcaqc
Size: 8KB - Virtual size: 6KB

agicoya
Size: 268KB - Virtual size: 265KB

yeecay
Size: 8KB - Virtual size: 6KB