6b82ecab665bd2700c1524ef887a302ee62d399c553f85d0b7456570f1996ff4

Sharing

Copy URL Twitter E-mail

General

Target

6b82ecab665bd2700c1524ef887a302ee62d399c553f85d0b7456570f1996ff4
Size

424KB
MD5

6dead4f6ae07e355499dd5234201af50
SHA1

e9236ba65f3ecf2b255329e6e7ad4bb2214a54ff
SHA256

6b82ecab665bd2700c1524ef887a302ee62d399c553f85d0b7456570f1996ff4
SHA512

6dbafc16c679ac02a4225d56386fb391f99071843ae7af0b48d4fc4d4256e1f8ef2d6b12b02f7b36164a690ca34296dd166df881a7e7561d711fbd2b2d63ad39
SSDEEP

6144:gOAMnTnsdZWfjBqoqqzOKoTttacVM8ToCtZ7lS86HoABZQX+jUcPQlh:hXnkZWVqoqqz0LUmIHoAzH

Score

N/A

Malware Config

Signatures

Files

6b82ecab665bd2700c1524ef887a302ee62d399c553f85d0b7456570f1996ff4
.exe windows x86

ecbff55c9c215a3e529184dd06bb4ee2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
GetDeviceCaps
SelectObject
SetBkColor
CreateSolidBrush

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

FindResourceW
UnmapViewOfFile
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
SetStdHandle
GetVersion
GetModuleHandleW
GlobalLock
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
CompareStringA
RaiseException
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
SizeofResource
FileTimeToLocalFileTime
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
HeapCreate
LCMapStringW
GetLastError
LeaveCriticalSection
HeapAlloc
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
ResetEvent
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
SetEvent
GetStartupInfoW
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
VirtualFree
GetTickCount
QueryPerformanceCounter
GetExitCodeProcess
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
GlobalAlloc
InterlockedDecrement
TerminateProcess
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
InitializeCriticalSection
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
GetEnvironmentVariableA
FormatMessageW
LocalFree
GetOEMCP
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
LoadLibraryW
GetCPInfo
FreeEnvironmentStringsW
CreateFileA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetCurrentThread
RtlUnwind
FatalAppExitA
SetConsoleCtrlHandler
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
SetEnvironmentVariableA
Sleep
FindResourceA
VirtualAlloc
IsBadWritePtr

advapi32

RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExW
RegOpenKeyExA
RegCloseKey
RegSetValueExA

user32

BeginPaint
PostQuitMessage
SetWindowPos
IsWindow
SetCursor
CallWindowProcA
SendMessageA
InvalidateRect
IsWindowVisible
SystemParametersInfoA
GetSysColor
MessageBoxA
SetDlgItemTextA
SetForegroundWindow
GetDesktopWindow
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
CreateWindowExA
CheckMenuItem
SetWindowTextA
EndDialog
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
SetFocus
EndPaint
FillRect
SetTimer
GetWindowLongA
RegisterClassA
EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
PeekMessageA
EnableWindow
SetWindowLongA
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetClientRect
UnregisterClassA
ReleaseDC
GetCursorPos
GetDC
DispatchMessageA

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ecbff55c9c215a3e529184dd06bb4ee2

Headers

File Characteristics

Imports

gdi32

version

kernel32

advapi32

user32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 340KB - Virtual size: 339KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 340KB - Virtual size: 339KB

.rsrc
Size: 4KB - Virtual size: 3KB