aba58a538ddf0baacac81549d8df3bce4418ced27f9b4b489e75b9a7d179c751

Sharing

Copy URL Twitter E-mail

General

Target

aba58a538ddf0baacac81549d8df3bce4418ced27f9b4b489e75b9a7d179c751
Size

168KB
MD5

44df27b149571be58694c5ad6a1847b0
SHA1

e6ef702739157eca7f00562163cdec468621a561
SHA256

aba58a538ddf0baacac81549d8df3bce4418ced27f9b4b489e75b9a7d179c751
SHA512

a7b0025d2383076286d1281b8bcb646a564738f10237db7c87fd4e43e6dbfec82b586dd27f47239bd1fbaa26563c616a3579d8c4d0790fd34b3a83f1e8c5f0b1
SSDEEP

3072:f5yz78Mad60Hh6Ey1hLFzzIQ4WXkkZw8xbo+uyozOP68u4:f5tHhTy1hLFfIQ4WU+dbol3ONu4

Score

N/A

Malware Config

Signatures

Files

aba58a538ddf0baacac81549d8df3bce4418ced27f9b4b489e75b9a7d179c751
.exe windows x86

b131809f6b8dde12b7f6d6932b6f1862

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCompressedFileSizeW
CreateWaitableTimerW
PostQueuedCompletionStatus
GetSystemDefaultLangID
GetCommandLineW
GetEnvironmentVariableW
GetDriveTypeW
GetSystemDefaultUILanguage
FindResourceW
GetLogicalDriveStringsW
HeapFree
GetEnvironmentStringsW
ExitThread
GetSystemDefaultLCID
GetCommandLineA
GetDriveTypeA
lstrcatA
GetBinaryTypeW
GetEnvironmentVariableA
GetACP
SetCurrentDirectoryA
GetStdHandle
GetLogicalDriveStringsA
SetFileApisToOEM
GetModuleHandleA
GetDiskFreeSpaceExA
CreateProcessA
GetFileAttributesW
OpenSemaphoreA

user32

CreateCursor
GetTopWindow
CharToOemBuffW
wvsprintfA
RegisterWindowMessageA
IsZoomed
SetLastErrorEx
OemToCharW
GetClassLongA
MonitorFromRect
GetScrollPos
DialogBoxParamA
FindWindowA
UpdateWindow
SetWindowTextA
AllowSetForegroundWindow
GetSystemMetrics
SystemParametersInfoA
HiliteMenuItem
CheckRadioButton
GetKeyboardType
DdeQueryStringA
SetThreadDesktop
DrawMenuBar
InSendMessageEx
GetWindowLongW
GetKeyboardLayout
DrawTextExA
FindWindowW
GetProcessWindowStation
GetParent
IsClipboardFormatAvailable
SetMenuItemBitmaps
UnregisterClassW
IsCharAlphaA
InsertMenuItemA
VkKeyScanW
SetCursor
DdeInitializeW
DestroyWindow
IsCharUpperA
DefMDIChildProcA
GetMessagePos
IsRectEmpty

gdi32

GetTextExtentPointW
GetStockObject
EnumFontFamiliesExW

ole32

CoInitialize

Exports

Exports

?HonePitsOlesdyneToshlayom@@YG_KACUKnitAlanHons@@ACUtagMSG@@U_GUID@@AC_J@Z
?SecsGedserneexpoWoreWisexi@@YG_KAC_KPC_JACD@Z
?SkipTowypingWadswackTaka@@YGKPC_KMACURitzLadsEide@@USofaSlotZees@@PCN@Z
?Vetodarefazehoger@@YG_KPCHPC_KPCU_SYSTEMTIME@@PC_J@Z

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b131809f6b8dde12b7f6d6932b6f1862

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.data Size: 27KB - Virtual size: 26KB

.rsrc Size: 24KB - Virtual size: 24KB

.xdata Size: 12KB - Virtual size: 12KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 84KB - Virtual size: 84KB

.data
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 24KB - Virtual size: 24KB

.xdata
Size: 12KB - Virtual size: 12KB

.reloc
Size: 18KB - Virtual size: 18KB