8576b6cf60ef3c3941a260a5d36a40ab1617139a49c5fa770c78820e1bf6c2a3

Sharing

Copy URL Twitter E-mail

General

Target

8576b6cf60ef3c3941a260a5d36a40ab1617139a49c5fa770c78820e1bf6c2a3
Size

124KB
MD5

4f695847c4559b880a0ae021757b0950
SHA1

c7f75eacc7e2330f9378c1045d4b780667a22dd1
SHA256

8576b6cf60ef3c3941a260a5d36a40ab1617139a49c5fa770c78820e1bf6c2a3
SHA512

bc26809c9d253f19e0586e93203a62b272476a9d8779606e8e39a68885c677aa625e84aa30fcd7dbfcc12327b7d56b3f3950fec3c895ae4d7a0903051e06d504
SSDEEP

1536:oS6nvVWj01wqyXpjd+uCgyD2P22B9S+ZZ3QA5ng+vypXYknOmR3yVNemqa5vv3:oTGlVCb89S+3QA5ng+oXzLYca5n

Score

N/A

Malware Config

Signatures

Files

8576b6cf60ef3c3941a260a5d36a40ab1617139a49c5fa770c78820e1bf6c2a3
.exe windows x86

698afb1bfd2caac717e37d58df924efc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadKeyboardLayoutA
EmptyClipboard
DefWindowProcA
GetDoubleClickTime
LoadImageA
DrawTextW
CallWindowProcW
GetFocus
RegisterRawInputDevices
GetOpenClipboardWindow
InvalidateRect
IsClipboardFormatAvailable
VkKeyScanW
GetGUIThreadInfo
DrawAnimatedRects
GetForegroundWindow
IsCharAlphaA

comdlg32

CommDlgExtendedError

advapi32

RegCreateKeyA
RegOpenKeyExW
LookupPrivilegeValueW

gdi32

PtInRegion
ResetDCW
ColorCorrectPalette
OffsetRgn
PathToRegion
GetOutlineTextMetricsA
CreateSolidBrush
MoveToEx
RestoreDC
SetDCPenColor
GetEnhMetaFileHeader
GetBoundsRect
CreateFontIndirectA
CreateRectRgn
GetBitmapBits
CreateCompatibleDC
GdiSetBatchLimit
OffsetViewportOrgEx
GetObjectW
PolyDraw
Arc
GetGlyphOutlineW
GetViewportOrgEx
GetCharWidthFloatW
SetBrushOrgEx
PolylineTo
GetPath

kernel32

LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
HeapAlloc
LocalAlloc
ClearCommBreak
GetCurrentThreadId
SetLastError
GetThreadPriority
MulDiv
GetModuleFileNameA
GlobalCompact
SetCommMask
WritePrivateProfileStringA
GetLongPathNameW
DebugSetProcessKillOnExit
CreateEventA
GlobalMemoryStatusEx
GetTempFileNameW
GlobalMemoryStatus
FindNextFileW
GetLastError
HeapReAlloc
GetCommandLineA
GetStartupInfoA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapCreate
VirtualFree
HeapFree
VirtualAlloc
GetProcAddress
GetModuleHandleA
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
RtlUnwind
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

698afb1bfd2caac717e37d58df924efc

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

advapi32

gdi32

kernel32

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 14KB - Virtual size: 73KB

.rsrc Size: 34KB - Virtual size: 33KB

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 14KB - Virtual size: 73KB

.rsrc
Size: 34KB - Virtual size: 33KB