876c7faadea5fe0f77637825fdbf1137943f75167e4dc95905bcfa337677b88c

Sharing

Copy URL Twitter E-mail

General

Target

876c7faadea5fe0f77637825fdbf1137943f75167e4dc95905bcfa337677b88c
Size

230KB
MD5

773bc22a628df261b360d5bb6d0f8f36
SHA1

cab4e705b4b2e17b9738aae3631ec8ec4a5e858d
SHA256

876c7faadea5fe0f77637825fdbf1137943f75167e4dc95905bcfa337677b88c
SHA512

834bd71c39d56022e33b6113814e7f3a50609bf0b00738eb342e5f61202a01deac2a363d2fa8ffbc773ba1b69d0c89e20fd35254a7c1a97355f4368563e13294
SSDEEP

3072:P7azfGLnV6hi5ROj0Unoo9xVebcdzrNIskr07sjvWXR26G6eKJnT3NLkK5JkBJfz:yGL4hi5RLcwdj4AjuU6eKFaK52C0f

Score

N/A

Malware Config

Signatures

Files

876c7faadea5fe0f77637825fdbf1137943f75167e4dc95905bcfa337677b88c
.exe windows x86

3b7e37ea3705d195f6dfdb8f6c7a52ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
_time64
isxdigit
strtoul
towupper
islower
iswspace
toupper
iswxdigit
_mbctoupper
_exit
strchr
iswlower
isspace
wcstoul
sscanf
swscanf
sprintf
wcschr

wininet

FtpFindFirstFileW
InternetCloseHandle
GetUrlCacheEntryInfoA
InternetOpenA
HttpSendRequestA
InternetFindNextFileA
HttpOpenRequestW
HttpOpenRequestA
HttpQueryInfoW
InternetSetOptionW
GetUrlCacheEntryInfoW
HttpSendRequestW
CommitUrlCacheEntryA
InternetSetOptionA
InternetConnectW
InternetReadFile
FtpOpenFileW
InternetCrackUrlW
InternetCrackUrlA
FtpOpenFileA
InternetConnectA
FtpFindFirstFileA
InternetFindNextFileW
HttpQueryInfoA
InternetOpenW
CommitUrlCacheEntryW

shlwapi

PathRemoveArgsW
PathIsUNCW
PathRemoveExtensionA
PathIsNetworkPathW
PathRelativePathToW
PathIsNetworkPathA
ChrCmpIA
PathRemoveFileSpecW
PathRenameExtensionA
ord10
StrCmpNIW
PathIsUNCServerShareW
ord15
PathRemoveBackslashW
PathBuildRootA
PathRemoveExtensionW
PathAddExtensionA
PathIsPrefixA
PathAppendW
PathRemoveBlanksA
PathMakeSystemFolderA
PathAddBackslashA
PathRemoveBackslashA
ord8
ord155
PathIsSameRootA
PathIsUNCServerA
PathIsContentTypeW
PathRenameExtensionW
PathIsContentTypeA
ord9
ord7
PathIsFileSpecA
PathRelativePathToA
PathBuildRootW
PathParseIconLocationW
PathIsDirectoryW
PathAddBackslashW
PathRemoveBlanksW
PathIsRootW
ord157
PathQuoteSpacesA
PathCombineW
PathAddExtensionW
ChrCmpIW
PathIsRelativeA
PathIsLFNFileSpecW
PathRemoveArgsA
IsCharSpaceA
PathMatchSpecW
ord158
PathMakePrettyW
PathIsPrefixW
PathIsRootA
PathIsLFNFileSpecA

kernel32

LoadLibraryA
GetLastError
InterlockedExchange
FreeLibrary
GetProcAddress
LocalAlloc
RaiseException

user32

GetKeyNameTextW
IsWindow
SetWindowLongA
IsCharAlphaW
PostMessageW
LoadImageW
SendDlgItemMessageA
SendMessageTimeoutW
SetScrollRange
CreateAcceleratorTableW
GetProcessWindowStation
LoadStringA
CreateDialogParamA
PostThreadMessageA
SetDlgItemTextA
DdeQueryStringA
SwitchDesktop
CreatePopupMenu
DestroyCursor
DdeCmpStringHandles
GetWindowLongA
CreateWindowStationA
CharPrevW
CharNextW
DefDlgProcA
SetWindowsHookExW
EnableWindow
SetClipboardViewer
UnpackDDElParam
VkKeyScanW
RemovePropW
wvsprintfW
IsClipboardFormatAvailable
CharNextExA
RegisterWindowMessageA
GetClassInfoExW
LoadAcceleratorsW
SetSysColors
GetWindowLongW
BroadcastSystemMessageW
SendDlgItemMessageW
GetSysColor
LoadStringW
EnumWindowStationsW
SetDlgItemTextW
LoadCursorA
ChangeDisplaySettingsA
WinHelpW
DispatchMessageW
MapVirtualKeyW

gdi32

GetTextExtentPoint32W
GetROP2
CreateHatchBrush
CreateDIBSection
GetTextFaceA
RemoveFontResourceW
GetTextExtentExPointA
CreateEllipticRgnIndirect
ExtTextOutA
DeleteEnhMetaFile
CopyMetaFileA
ExtFloodFill
CreateRectRgnIndirect
GetMapMode
GetNearestColor
GetFontData
SetBitmapBits
TranslateCharsetInfo
SetDIBitsToDevice
SetTextColor
GetDIBits
PlayMetaFileRecord
SelectClipRgn
SetMapMode
FillRgn
GetTextExtentExPointW
CreateRectRgn
ResizePalette
GetObjectA
CreateICW
BeginPath
BitBlt
GetLayout
SetWindowExtEx
Polygon
CreateFontIndirectW
SetBrushOrgEx
SetBkColor
SetDIBColorTable
ExcludeClipRect
GetTextCharsetInfo
CreateBitmap
CreateDCW
ExtTextOutW
StretchDIBits
GetSystemPaletteUse
EnumFontFamiliesA
GetNearestPaletteIndex
GetTextMetricsA
CreateDIBitmap
CreateEnhMetaFileW
CreateICA

advapi32

CredUnmarshalCredentialA
ReadEventLogA
RegOpenKeyA
InitializeSid
RegSaveKeyA
TraceMessageVa
CreateProcessAsUserW
RegQueryValueExW
RegQueryValueExA
AccessCheck
RegEnumKeyW
ReadEncryptedFileRaw
SetSecurityDescriptorGroup
OpenEventLogW
RegisterEventSourceW
CreateProcessAsUserA

Exports

Exports

?Skipilkho@@YGXXZ

Sections

.text
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b7e37ea3705d195f6dfdb8f6c7a52ed

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

wininet

shlwapi

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 197KB - Virtual size: 197KB

.data Size: 19KB - Virtual size: 19KB

.rsrc Size: 512B - Virtual size: 468B

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 197KB - Virtual size: 197KB

.data
Size: 19KB - Virtual size: 19KB

.rsrc
Size: 512B - Virtual size: 468B

.reloc
Size: 11KB - Virtual size: 11KB