13b3620097c14470bea7abaa79af80a7d97cacb2c89936fe9d5de9e48bf155a0

Sharing

Copy URL Twitter E-mail

General

Target

13b3620097c14470bea7abaa79af80a7d97cacb2c89936fe9d5de9e48bf155a0
Size

433KB
MD5

6db7d759c946f822a3e5e4b4a72658b1
SHA1

20b1d0289fe92ebfd3b97bf65328e63c317f1370
SHA256

13b3620097c14470bea7abaa79af80a7d97cacb2c89936fe9d5de9e48bf155a0
SHA512

35fafeab59d11ad4dfa6fb57734ecad6604880d98ed85d4540c149b1a2da10a4356acdafc86f76ae8ca3ce0efa48c4dbe42946d690768e5f56b708e1d4cc236b
SSDEEP

6144:GtU8o1I8vYJxuufZGTgBVZZlF1T3D16P1hWFlF320ONCC7h486G:GtUp1tvYJpfjvlF1TEP+lFvKh40

Score

N/A

Malware Config

Signatures

Files

13b3620097c14470bea7abaa79af80a7d97cacb2c89936fe9d5de9e48bf155a0
.exe windows x86

06d5d6514128dfcd5458b43e25930f8f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WaitForSingleObject
CreateFileMappingA
CreateSemaphoreA
LocalFree
LocalAlloc
GetProcessHeap
HeapCreate
GetLastError
CloseHandle
Process32Next
CreateToolhelp32Snapshot
GlobalMemoryStatusEx
WriteConsoleW
SetStdHandle
FlushFileBuffers
HeapReAlloc
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapSize
LoadLibraryW
MapViewOfFile
GetConsoleMode
GetConsoleCP
SetFilePointer
RtlUnwind
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
ReleaseSemaphore
Sleep
HeapAlloc
lstrlenA
GetProcAddress
GetCurrentProcess
SetPriorityClass
GetPriorityClass
lstrcpyA
SetThreadPriority
GetCurrentThread
GetModuleHandleA
GetThreadPriority
LoadLibraryA
CreateFileW
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleW
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DecodePointer
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent
EnterCriticalSection
LeaveCriticalSection

user32

TrackPopupMenu
SendDlgItemMessageW
GetClassLongA
SetClassLongA
GetSystemMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
SendMessageA
GetClientRect
InvalidateRect
LoadIconA
LoadCursorA
RegisterClassExA
GetClipboardFormatNameA
GetSysColor
wsprintfA
OpenClipboard
EnumClipboardFormats
BroadcastSystemMessageA
GetClipboardData
CloseClipboard
SetRect
UnionRect
CreateWindowExA
GetDC
DeleteMenu
DispatchMessageA
DestroyWindow
GetMenu
GetSubMenu
CheckMenuItem
SetWindowPos
GetMenuState
PostQuitMessage
LoadMenuA
MessageBeep
MessageBoxA
DefWindowProcA
EnumWindows
ClientToScreen

gdi32

DeleteObject
SelectPalette
CreatePen
SelectObject
Polyline
CreateSolidBrush
TextOutA
Rectangle
GetStockObject
CreateFontIndirectA

comdlg32

FindTextW

advapi32

CredEnumerateA

odbc32

ord12
ord24
ord19
ord72
ord107
ord75

psapi

GetProcessMemoryInfo

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

rpcrt4

UuidCreate
UuidToStringA
RpcStringFreeA

rasapi32

RasDialA

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 251KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06d5d6514128dfcd5458b43e25930f8f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

odbc32

psapi

version

rpcrt4

rasapi32

Sections

.text Size: 50KB - Virtual size: 50KB

.rdata Size: 251KB - Virtual size: 251KB

.data Size: 4KB - Virtual size: 11KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 117KB - Virtual size: 116KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 50KB - Virtual size: 50KB

.rdata
Size: 251KB - Virtual size: 251KB

.data
Size: 4KB - Virtual size: 11KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 117KB - Virtual size: 116KB

.reloc
Size: 8KB - Virtual size: 8KB