e738a379a4be2058186bbb5a4bd23c9d5f0bc4130c1afad3a975d84906159e9f

Sharing

Copy URL Twitter E-mail

General

Target

e738a379a4be2058186bbb5a4bd23c9d5f0bc4130c1afad3a975d84906159e9f
Size

437KB
MD5

66fd203ed575e2c85b7c67d4b6000ca0
SHA1

73346bc1ad847c5a1dd4b2c6ab9e611a4bde625c
SHA256

e738a379a4be2058186bbb5a4bd23c9d5f0bc4130c1afad3a975d84906159e9f
SHA512

9928a835e6d47d512a9bac08f0d31845f64404fb23d720f80a240478d5f0322c8b506196fae757e84345f80af70fe44b992d47606950cc20c4cfbbc1c746f5e0
SSDEEP

3072:lrVHM+8FCgGBMHkKDdJu1CJsJn7cgkbG4LcgPxMmEyRqGhfDHUtPeFkV02jqUa3I:lrW14MHibt7MHD10GZxFcFSG

Score

N/A

Malware Config

Signatures

Files

e738a379a4be2058186bbb5a4bd23c9d5f0bc4130c1afad3a975d84906159e9f
.exe windows x86

23d54d4c174f98378215dbd96d146744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
GetShortPathNameW
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTime
GetTempPathW
GetVersionExW
GlobalAlloc
GlobalFree
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalFree
GetLocaleInfoA
ReleaseMutex
ResetEvent
RtlUnwind
SetEvent
SetFilePointer
SetFilePointerEx
SetHandleCount
SetLastError
SetStdHandle
SizeofResource
GetProcAddress
SystemTimeToFileTime
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile
lstrcatW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenA
lstrlenW
GetLastError
GetFileType
GetExitCodeThread
GetEnvironmentStringsW
GetEnvironmentStrings
GetDateFormatW
GetCurrentThreadId
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushFileBuffers
FindResourceW
FileTimeToSystemTime
ExitProcess
EnterCriticalSection
DeviceIoControl
DeleteCriticalSection
GetOverlappedResult
GetOEMCP
GetModuleHandleA
GetModuleFileNameW
Sleep
GetModuleFileNameA
CreateThread
CreateMutexW
CreateFileW
CreateEventW
CompareStringW
MultiByteToWideChar
CloseHandle

user32

GetShellWindow
GetSysColor
LoadIconA
GetKeyboardType
UnregisterDeviceNotification
UnregisterClassW
TranslateMessage
SetWindowLongW
RegisterDeviceNotificationW
RegisterClassExW
PostThreadMessageW
PostQuitMessage
PostMessageW
LoadStringW
GetWindowLongW
GetMessageW
DispatchMessageW
DefWindowProcW
CreateWindowExW
CharNextW

gdi32

CreateMetaFileW
CreateSolidBrush
CancelDC
CreateCompatibleDC
CloseMetaFile

advapi32

GetTraceEnableLevel
GetTokenInformation
CryptReleaseContext
CryptGenRandom
CryptAcquireContextW
AdjustTokenPrivileges
GetTraceLoggerHandle
OpenProcessToken
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW
RegisterServiceCtrlHandlerW
RegisterTraceGuidsW
SetServiceStatus
StartServiceCtrlDispatcherW
TraceMessage
UnregisterTraceGuids
RegQueryValueExA
RegOpenKeyExA
GetTraceEnableFlags

ole32

CoCreateInstance
CoGetMalloc
CoInitializeEx
CoInitializeSecurity
CoRegisterClassObject
CoResumeClassObjects
CoRevokeClassObject
CoSuspendClassObjects
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CreateStreamOnHGlobal
PropVariantClear

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 414KB - Virtual size: 414KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23d54d4c174f98378215dbd96d146744

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 414KB - Virtual size: 414KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 414KB - Virtual size: 414KB

.rsrc
Size: 1KB - Virtual size: 1KB