9430efc52de02ceeca9e63f4ce3bc0c7d7b444f440d571ad95091e0bdd5d7801

Sharing

Copy URL Twitter E-mail

General

Target

9430efc52de02ceeca9e63f4ce3bc0c7d7b444f440d571ad95091e0bdd5d7801
Size

116KB
MD5

6ec59d1cc4ad026d2b03585183d439f0
SHA1

49159c3dce94a9b4c405c643c9a234d706749de4
SHA256

9430efc52de02ceeca9e63f4ce3bc0c7d7b444f440d571ad95091e0bdd5d7801
SHA512

ef329e61b63113482254ec05570150960c06681efb46d7cfd98d726a1b8bdd208d7dd5f9f94d6ccfc36d0bc65d5e00fcac4dcf23205099acdc3aba732814ee94
SSDEEP

3072:U+x5HCLJC0hPvevcCemspJeYydywTN2VjHEVU:U+x5mJvhPecCeT7S2

Score

N/A

Malware Config

Signatures

Files

9430efc52de02ceeca9e63f4ce3bc0c7d7b444f440d571ad95091e0bdd5d7801
.exe windows x86

fb5e555c19b51d288c09e6f03f05b7c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
GetProcessHeap
SetFileTime
Sleep
GetLastError
GetCurrentDirectoryW
GetTempFileNameA
LocalAlloc
CreatePipe
ConvertDefaultLocale
GetFileTime
GetUserDefaultUILanguage
GetVersionExA
GetCurrentProcessId
LocalFree
DeleteFileA
CreateFileW
GetComputerNameW
FlushFileBuffers
HeapReAlloc
GetStringTypeW
LCMapStringW
SetStdHandle
LoadLibraryW
HeapSize
WriteConsoleW
RtlUnwind
MultiByteToWideChar
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
QueryPerformanceCounter
HeapAlloc
GetLocaleInfoA
lstrcmpA
ExitProcess
SetFilePointer
GetSystemTimeAsFileTime
GetTickCount
HeapCreate
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
DeleteFileW
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
EncodePointer
IsProcessorFeaturePresent
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetProcAddress
GetModuleHandleW
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
CloseHandle

user32

GetWindowTextA
GetWindow
GetDlgItemTextA
GetDlgCtrlID
EndPaint
DestroyAcceleratorTable
InsertMenuItemA
GetMenuItemID
LoadCursorA
SendMessageA
BeginPaint
GetSubMenu
CreateDialogIndirectParamW
CreateAcceleratorTableA
LoadBitmapW
GetMenuItemCount
IsWindow
CreateWindowExW
SendMessageW
UpdateWindow
EnableWindow

gdi32

SetDCBrushColor
SetBkMode
DeleteObject
TextOutA
AddFontResourceA

oleaut32

GetErrorInfo

ws2_32

WSAStartup
inet_addr
htons
socket

shlwapi

PathIsUNCW

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb5e555c19b51d288c09e6f03f05b7c3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

ws2_32

shlwapi

Sections

.text Size: 51KB - Virtual size: 51KB

.rdata Size: 50KB - Virtual size: 49KB

.data Size: 4KB - Virtual size: 11KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 51KB - Virtual size: 51KB

.rdata
Size: 50KB - Virtual size: 49KB

.data
Size: 4KB - Virtual size: 11KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 7KB - Virtual size: 7KB