9e51dcad8cb7a1938eedd459bb32fa6ecd2e4c090f8a046a88bb2d1acfc9297b

Sharing

Copy URL Twitter E-mail

General

Target

9e51dcad8cb7a1938eedd459bb32fa6ecd2e4c090f8a046a88bb2d1acfc9297b
Size

375KB
MD5

045fefb5d6bac0dc462cb024f43c89bd
SHA1

7dc482a879b76f5810737e69236430007b9fc029
SHA256

9e51dcad8cb7a1938eedd459bb32fa6ecd2e4c090f8a046a88bb2d1acfc9297b
SHA512

1007b9ea53f86f0cbcfc04b731a872ece04a8aaa0674a81339fc4d45a340eab8e273584872b02da381018503bc4e6c1ced36c7d4171a6cc6bfe9796ad11b6d2c
SSDEEP

6144:3aYIhr6rhGCXGrP0sLwYoEfMDTwGtdTtH9fckMRwM9L9PNaFR1VwQxIDSECgIMsZ:3aYe6rhrcbLRoU+T3zTtdBMFpN6VwQxZ

Score

N/A

Malware Config

Signatures

Files

9e51dcad8cb7a1938eedd459bb32fa6ecd2e4c090f8a046a88bb2d1acfc9297b
.exe windows x86

66efcbbc96ba77a7670f0999b6108857

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM

Imports

kernel32

CreateFileW
WriteConsoleW
GetProcessHeap
SetEndOfFile
HeapReAlloc
GetStringTypeW
LCMapStringW
HeapSize
FlushFileBuffers
GetConsoleMode
GetConsoleCP
IsProcessorFeaturePresent
SetStdHandle
SetFilePointer
Sleep
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryW
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
SetHandleCount
lstrcpyA
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
ReadFile
MultiByteToWideChar
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
GetModuleFileNameW
GetStdHandle
WriteFile
DecodePointer
GetModuleHandleW
GetSystemTime
GetFileInformationByHandle
CloseHandle
ReleaseMutex
CreatePipe
WaitForMultipleObjects
LockResource
LoadLibraryA
GetProcAddress
GetLastError
CreateProcessA
SizeofResource
GetEnvironmentStrings
ExitProcess
HeapCreate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
HeapFree
FreeEnvironmentStringsA
WaitForSingleObject
LoadResource
FreeLibrary
FindResourceA
CreateFileA
GetFullPathNameA
GetEnvironmentStringsW

user32

GetDialogBaseUnits
GetDlgCtrlID
DestroyIcon
LookupIconIdFromDirectory
MoveWindow
EndDeferWindowPos
GetMessageA
EnumDisplayMonitors
UpdateLayeredWindow
ScreenToClient
GetWindowRect
PostQuitMessage
SendDlgItemMessageA
FillRect
MsgWaitForMultipleObjects
DrawTextA
LoadStringA
GetFocus
LoadBitmapA
wsprintfA
GetClientRect
SetFocus
SendMessageA
CreateIconIndirect
GetIconInfo
GetDC
IsDialogMessageA
TranslateMessage
InflateRect
OffsetRect
GetWindowTextA
GetKeyboardLayout
MessageBoxA
InvalidateRect
LookupIconIdFromDirectoryEx
CreateAcceleratorTableA
GetWindowLongA
CreateWindowExA
PeekMessageA
ReleaseDC
GetDlgItem
EndDialog
DefWindowProcA
CharLowerBuffA
CreateIconFromResource
SetWindowPos
ShowWindow
GetSysColorBrush
FrameRect
CreateWindowExW
DispatchMessageA
DeferWindowPos
MessageBoxW
ReleaseCapture
BeginDeferWindowPos
GetSystemMetrics
SetWindowTextA
LoadImageA
EnableWindow

gdi32

DeleteObject
CreateCompatibleDC
SelectObject
PatBlt
GetTextExtentPoint32A
SetTextColor
DeleteDC
CreateDIBSection
SetBrushOrgEx
CreateBitmap
SetBkMode
CreatePatternBrush

advapi32

CryptGetHashParam

shell32

SHGetFileInfoA
SHGetFolderPathW
SHGetFolderPathA
DragFinish
DragQueryFileA

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

shlwapi

StrToIntExA

comctl32

ImageList_ReplaceIcon
ImageList_Create
ImageList_GetIcon

gdiplus

GdipCreateFromHDC
GdipDeleteGraphics

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

sensapi

IsNetworkAlive

Sections

.text
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66efcbbc96ba77a7670f0999b6108857

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

version

shlwapi

comctl32

gdiplus

imm32

sensapi

Sections

.text Size: 222KB - Virtual size: 222KB

.rdata Size: 46KB - Virtual size: 46KB

.data Size: 9KB - Virtual size: 16KB

.rsrc Size: 89KB - Virtual size: 89KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 222KB - Virtual size: 222KB

.rdata
Size: 46KB - Virtual size: 46KB

.data
Size: 9KB - Virtual size: 16KB

.rsrc
Size: 89KB - Virtual size: 89KB

.reloc
Size: 6KB - Virtual size: 6KB