da0896b661bc8006bbb25c9f9b7f7e02cd17066085b81a7a9a2e74f7b22a8fc8

Sharing

Copy URL

Twitter E-mail

General

Target

da0896b661bc8006bbb25c9f9b7f7e02cd17066085b81a7a9a2e74f7b22a8fc8
Size

123KB
MD5

6ad08b6c9cb7e4490b085420e684cecc
SHA1

8142f87edd98eda503b2198e97fe24f51d2a36c5
SHA256

da0896b661bc8006bbb25c9f9b7f7e02cd17066085b81a7a9a2e74f7b22a8fc8
SHA512

392d78ac648d25fc2aef9a54a0dae3bfb3bd89b325facac37fdb2fafede22f477c55877fcbf9cc2d41122a4884d9b751ed0dfc9d6d6973913e684024eed9b71e
SSDEEP

3072:uUftjxUtuQAePyw5KxPGwgRLUkb4ZMZH:uIdXQ/Pyw5u7gRLUk8ZMZ

Score

N/A

Malware Config

Signatures

Files

da0896b661bc8006bbb25c9f9b7f7e02cd17066085b81a7a9a2e74f7b22a8fc8
.exe windows x86

1b0b96b71dd8b2f7bd533534b132dd4e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
LoadLibraryA
BuildCommDCBA
HeapAlloc
EnterCriticalSection
GetSystemTimeAsFileTime
InterlockedIncrement
OutputDebugStringW
UnhandledExceptionFilter
lstrcmpiW
CreateMutexW
WideCharToMultiByte
WaitForSingleObject
VirtualFree
GetModuleFileNameW
TerminateProcess
HeapFree
CreateThread
IsDebuggerPresent
SetLastError
SizeofResource
LoadLibraryExW
LeaveCriticalSection
LoadResource
WaitNamedPipeW
SetEvent
FlushInstructionCache
WaitForMultipleObjects
MultiByteToWideChar
CreateEventW
VirtualAlloc
FreeLibrary
GetCurrentProcess
InterlockedCompareExchange
TerminateThread
DeleteCriticalSection
Sleep
lstrlenW
FormatMessageW
LocalFree
GetCurrentThreadId
GetCurrentProcessId
FindResourceW
QueryPerformanceCounter
SetUnhandledExceptionFilter
CloseHandle
InterlockedExchange
ResetEvent
GetModuleHandleW
GetPriorityClass
InitializeCriticalSection
GetVersionExW
InterlockedDecrement
IsProcessorFeaturePresent
RaiseException
GetStartupInfoW
LoadLibraryW
ExitProcess
GetVersion
VirtualProtect
LoadLibraryExA
GetProcAddress
GetLastError
GetTickCount
ReleaseMutex
lstrlenA

user32

GetMessageW
AppendMenuW
CallWindowProcW
SetMenuItemInfoW
GetSysColorBrush
SetMenuDefaultItem
LoadImageW
DestroyMenu
RegisterWindowMessageW
GetMenuItemCount
SetTimer
PostMessageW
FillRect
TrackPopupMenu
GetClassInfoExW
KillTimer
CreateWindowExW
PostQuitMessage
DestroyIcon
GetSysColor
GetSubMenu
DefWindowProcW
LoadMenuW
LoadStringW
DispatchMessageW
SystemParametersInfoW
DrawIconEx
IsWindow
DrawTextW
GetMenuItemInfoW
ReleaseDC
SetForegroundWindow
FindWindowW
LoadCursorW
GetDoubleClickTime
IsMenu
GetDC
SetWindowLongW
CreatePopupMenu
TranslateMessage
RegisterClassExW
UnregisterClassA
GetSystemMetrics
DestroyWindow
DeleteMenu
CharNextW
GetCursorPos
GetWindowLongW

gdi32

SetTextColor
DeleteObject
SelectObject
CreateFontIndirectW
SetBkColor

advapi32

RegQueryValueExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
GetUserNameA
RegEnumValueW
RegOpenKeyExW
RegSetValueExW
RegNotifyChangeKeyValue
RegQueryInfoKeyW

ole32

CoTaskMemRealloc
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance

oleaut32

VarUI4FromStr

wldap32

ord197

Sections

.text
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.shit
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b0b96b71dd8b2f7bd533534b132dd4e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

wldap32

Sections

.text Size: 70KB - Virtual size: 69KB

.shit Size: - Virtual size: 9KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 35KB - Virtual size: 112KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 70KB - Virtual size: 69KB

.shit
Size: - Virtual size: 9KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 35KB - Virtual size: 112KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB