a96e91f298ef4831beceb75bb27664397035990ec7a3915fae04fdfba80acc94

Sharing

Copy URL Twitter E-mail

General

Target

a96e91f298ef4831beceb75bb27664397035990ec7a3915fae04fdfba80acc94
Size

310KB
MD5

7065d6153ed5417fefade0c00886f95a
SHA1

4c2749ab49c3d3e2f4ae9a9987adf0e0bd3060a7
SHA256

a96e91f298ef4831beceb75bb27664397035990ec7a3915fae04fdfba80acc94
SHA512

496859881f7df7f84fc77e22d9b2d1f835c4934db351a6e3651c808a556cd4bef93c3555d8be7396b68e42562c9cc05caf787e342cb7a26a62be19be029f090d
SSDEEP

3072:fAy7tWr2ZlvSrCoAucLNFQxCCeYeZ+juUHbDP4+Da+IUvDesIatoCSqL/FADkUrR:aCZl6rCQc5e/fuw3Ja+IUqsIaKfU/eJR

Score

N/A

Malware Config

Signatures

Files

a96e91f298ef4831beceb75bb27664397035990ec7a3915fae04fdfba80acc94
.exe windows x86

c71ac6ffcea3587fb8a6c3424bf2ad05

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
SetWindowTextA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
SetWindowLongA
SendMessageA
DefWindowProcA
DrawTextA
CharUpperW
CharPrevW
DispatchMessageW
PeekMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
ExitWindowsEx
FindWindowExW
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
IsWindow
GetPriorityClipboardFormat
ModifyMenuA
NotifyWinEvent
GetListBoxInfo
ToUnicode
LoadMenuA
GetNextDlgTabItem
DestroyIcon
LoadImageA
SubtractRect
GetClassWord
MessageBoxW

gdi32

GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject
BeginPath
CloseEnhMetaFile
Arc
CheckColorsInGamut
AddFontResourceW
Chord
ColorMatchToTarget
CloseFigure
CreateDIBPatternBrushPt
SetBkColor

kernel32

GetStringTypeA
LCMapStringW
LCMapStringA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
RtlUnwind
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
GetStringTypeW
TlsGetValue
GetStdHandle
HeapCreate
HeapReAlloc
VirtualFree
HeapFree
DeleteCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoA
GetSystemTimeAsFileTime
HeapAlloc
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetLocaleInfoA
RaiseException
HeapSize
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsAlloc
lstrcmpW
FreeEnvironmentStringsW
GetConsoleCursorInfo
OpenJobObjectA
GetLogicalDrives
FindFirstVolumeW
MapViewOfFile
VirtualAlloc
LocalReAlloc
lstrlenW
DeleteFileW
FindFirstFileW
FindNextFileW
FindClose
SetFilePointer
MultiByteToWideChar
ReadFile
WriteFile
lstrlenA
MulDiv
WideCharToMultiByte
GetPrivateProfileStringW
WritePrivateProfileStringW
FreeLibrary
LoadLibraryExW
GetModuleHandleW
GlobalFree
GetExitCodeProcess
WaitForSingleObject
GlobalAlloc
ExpandEnvironmentStringsW
lstrcmpiW
RemoveDirectoryW
lstrcpyA
GetVersion
GetSystemDirectoryW
GetVersionExW
lstrcpyW
OpenProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress
lstrcatW
GetTempFileNameW
CreateFileW
lstrcmpiA
CreateProcessW
LoadLibraryW
GetWindowsDirectoryA
DeleteFileA
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
LoadLibraryExA
ExpandEnvironmentStringsA
lstrcmpA
CloseHandle
GetSystemDirectoryA
lstrcatA
GetTempFileNameA
RemoveDirectoryA
CreateProcessA
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceA
lstrcpynA
SetErrorMode
GetCommandLineA
GetTempPathA
SetFileTime
ExitProcess
CopyFileA
GetCurrentProcess
GetModuleFileNameA
GetFileSize
CreateFileA

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c71ac6ffcea3587fb8a6c3424bf2ad05

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 154KB - Virtual size: 154KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 52KB - Virtual size: 152KB

.rsrc Size: 85KB - Virtual size: 84KB

.text
Size: 154KB - Virtual size: 154KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 52KB - Virtual size: 152KB

.rsrc
Size: 85KB - Virtual size: 84KB