4e700052218fad27e6d641b8b29297a730f4b49d3ec52101226ab0925015a507

Sharing

Copy URL Twitter E-mail

General

Target

4e700052218fad27e6d641b8b29297a730f4b49d3ec52101226ab0925015a507
Size

299KB
MD5

0400694e4ba3fd8d73bf90a91c5095b0
SHA1

40de6cfa9bb5e501f471994dc95b55e36ffdd2d2
SHA256

4e700052218fad27e6d641b8b29297a730f4b49d3ec52101226ab0925015a507
SHA512

84816eae199586601991bd0b963444733a1225b9038ca76d2d9bcd5345b12ca31faab196ca5e1967663f5c4b29df2ce02778fdbe7a2df781074ed65be2d8663f
SSDEEP

6144:OZqcsEVKyjzKRCMgMryYcYXJg2YAh7HcRk2X:TbEpPKRCMqdY5gGKRZX

Score

N/A

Malware Config

Signatures

Files

4e700052218fad27e6d641b8b29297a730f4b49d3ec52101226ab0925015a507
.exe windows x86

58f08b56f5d8422e2d0de9039c792933

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AnyPopup
CreateIconFromResourceEx
GetDC
SetFocus
EndDialog
wsprintfW
CreateDialogParamW
GetCursorPos
FindWindowExW
GetAsyncKeyState
RegisterClassW
SetDlgItemTextA
MsgWaitForMultipleObjectsEx
GetDlgItem
ClientToScreen
SendMessageTimeoutW
SendMessageTimeoutA
GetScrollPos
GetSystemMetrics
GetKeyboardType
GetNextDlgTabItem
GetUserObjectInformationA
IsZoomed
GetSysColor
OpenClipboard

shell32

ShellExecuteA

ole32

OleGetClipboard
CoGetMalloc

advapi32

AdjustTokenPrivileges

gdi32

GetCharWidthA
RectVisible
TextOutA
GetArcDirection
DPtoLP
Polygon
SetSystemPaletteUse
DeleteDC
SetDeviceGammaRamp
EndPage
GetNearestPaletteIndex
ExcludeClipRect
LineTo
GetTextMetricsW
GdiSetBatchLimit
CloseFigure
Escape
GetCharWidthW

kernel32

IsValidCodePage
LoadLibraryA
GetACP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
HeapAlloc
HeapReAlloc
RtlUnwind
GetLocaleInfoA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize
GetOEMCP
GetStringTypeA
GlobalUnfix
GetFileType
CheckRemoteDebuggerPresent
SetProcessShutdownParameters
ConvertThreadToFiber
GlobalCompact
GetNumaNodeProcessorMask
VirtualAlloc
GetProcessAffinityMask
GetProcessHandleCount
GetNumaAvailableMemoryNode
CancelWaitableTimer
FileTimeToDosDateTime
GetPrivateProfileStringA
GlobalMemoryStatus
SetLastError
lstrcpynA
GlobalReAlloc
TlsGetValue
GetSystemDirectoryW
VirtualProtect
GetComputerNameA
WaitForMultipleObjects
TlsAlloc
IsBadReadPtr
SetHandleCount
SystemTimeToFileTime
FlushFileBuffers
SetEnvironmentVariableA
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
GetModuleHandleW
GetProcAddress
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
GetLastError
InterlockedDecrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
DeleteCriticalSection
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58f08b56f5d8422e2d0de9039c792933

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

kernel32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 56KB - Virtual size: 56KB

.data Size: 13KB - Virtual size: 147KB

.rsrc Size: 183KB - Virtual size: 183KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 56KB - Virtual size: 56KB

.data
Size: 13KB - Virtual size: 147KB

.rsrc
Size: 183KB - Virtual size: 183KB