5f6f736c9a4737e1aa0f1934551ec42fcde6418877bd1bd94a3a52836b903701

Sharing

Copy URL Twitter E-mail

General

Target

5f6f736c9a4737e1aa0f1934551ec42fcde6418877bd1bd94a3a52836b903701
Size

639KB
MD5

6874111d2c1b2e03c1852230acd06b50
SHA1

1a3732209a4e8f35c3e6f12642c9c0f1f4588a47
SHA256

5f6f736c9a4737e1aa0f1934551ec42fcde6418877bd1bd94a3a52836b903701
SHA512

0fa1b891107f06e6ede1b7d48a9c8f238532c7182ec114ecdbc0fb5c395d1fd912a4e298953a833fabfdbb39cf5f0b973c815ddf2f4ab9413d0b8014bedbe09b
SSDEEP

12288:mC8mYOzuvMZoCnVCpY5fsQ5ObXU1w9yt+kIfDFlD5LlR6rGmyapJNxjxb9vh9:mPYV1w9ytVIZld+G3abt19vz

Score

N/A

Malware Config

Signatures

Files

5f6f736c9a4737e1aa0f1934551ec42fcde6418877bd1bd94a3a52836b903701
.exe windows x86

50141970cda978ca1abccfd49f613239

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
FlushFileBuffers
WriteFile
SetEndOfFile
SetFilePointer
SetFileTime
SystemTimeToFileTime
DeleteFileA
SetFileAttributesA
FileTimeToSystemTime
FindClose
FindFirstFileA
GetLocalTime
lstrcatA
GetTempPathA
GetPrivateProfileIntA
GetDriveTypeA
WritePrivateProfileStringA
GetLogicalDriveStringsA
GetSystemDirectoryA
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
HeapAlloc
GetPrivateProfileStringA
GetFileSize
GetCurrentThreadId
GetCurrentProcessId
OutputDebugStringA
GetTickCount
IsBadReadPtr
MultiByteToWideChar
Sleep
ReadFile
GetVersion
lstrlenW
lstrcmpiW
CompareStringA
CompareStringW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetStringTypeExA
GetStringTypeExW
GlobalUnlock
GlobalLock
InterlockedIncrement
InterlockedDecrement
MulDiv
LoadLibraryExA
IsDBCSLeadByte
GetCommandLineA
ReleaseMutex
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateMutexA
RemoveDirectoryA
FindNextFileA
GetFileAttributesA
GetDiskFreeSpaceA
CopyFileA
SizeofResource
SuspendThread
MoveFileA
TerminateThread
OpenProcess
CreateProcessA
ProcessIdToSessionId
GetPrivateProfileSectionA
SetLastError
lstrcpynA
GetTempFileNameA
lstrcmpA
LocalFree
SetEnvironmentVariableA
GetLocaleInfoW
SetStdHandle
SetConsoleCtrlHandler
IsBadCodePtr
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileType
GetStdHandle
SetHandleCount
UnhandledExceptionFilter
GetTimeZoneInformation
GetStringTypeW
GetStringTypeA
GetOEMCP
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThread
TlsAlloc
TerminateProcess
IsBadWritePtr
VirtualFree
HeapCreate
SetUnhandledExceptionFilter
QueryPerformanceCounter
FatalAppExitA
GetCPInfo
LCMapStringW
LCMapStringA
GetStartupInfoA
CreateThread
ExitThread
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
HeapSize
HeapReAlloc
CreateDirectoryA
HeapDestroy
WideCharToMultiByte
FindResourceExA
FindResourceA
LoadResource
ResumeThread
LockResource
GetLastError
GetModuleHandleA
GetModuleFileNameA
CreateFileA
CloseHandle
DeviceIoControl
GetWindowsDirectoryA
LoadLibraryA
GetProcAddress
GlobalAlloc
GlobalFree
lstrcpyA
FreeLibrary
lstrlenA
GetProcessHeap
HeapFree
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetExitCodeThread
InterlockedExchange

user32

UnregisterClassA
MessageBeep
SetFocus
GetDlgItem
SetDlgItemTextA
SetWindowPos
SetWindowLongA
PostMessageA
GetWindowTextA
GetWindowTextLengthA
RegisterWindowMessageA
wsprintfA
IsWindow
EndDialog
DestroyWindow
GetWindowLongA
SetWindowTextA
GetWindowRect
ShowWindow
IsWindowEnabled
EnableWindow
GetLastActivePopup
MessageBoxA
IsDialogMessageA
MapWindowPoints
GetClientRect
SystemParametersInfoA
GetWindow
GetParent
CharUpperA
FindWindowA
wvsprintfA
DestroyIcon
LoadIconA
PostQuitMessage
SendMessageA
DefWindowProcA
PtInRect
GetCursorPos
DialogBoxParamA
SetForegroundWindow
KillTimer
GetDlgCtrlID
CharNextA
GetClassNameA
CreateDialogIndirectParamA
GetDC
ReleaseDC
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
CharUpperW
CharLowerW
CharLowerA
GetActiveWindow
GetSystemMetrics
LoadImageA

gdi32

GetDeviceCaps
GetObjectA
GetStockObject

advapi32

StartServiceA
CloseServiceHandle
CreateProcessAsUserA
GetSidLengthRequired
InitializeSid
GetSidSubAuthority
InitializeAcl
AddAce
GetLengthSid
CopySid
IsValidSid
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyA
RegSetValueExA
RegQueryValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
CreateServiceA
OpenServiceA
OpenSCManagerA
QueryServiceStatus

shell32

Shell_NotifyIconA

ole32

PropVariantClear
CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoInitializeSecurity

oleaut32

SetErrorInfo
GetErrorInfo
CreateErrorInfo
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElement
SafeArrayDestroy
VariantChangeType
SysAllocStringLen
VarBstrCat
SysStringLen
SysAllocString
VarUI4FromStr
VariantInit
VariantClear
VariantCopy
SysFreeString

shlwapi

PathRemoveFileSpecA
PathSkipRootA
PathFileExistsA
SHStrDupW

comctl32

InitCommonControlsEx

wininet

InternetCloseHandle
InternetAttemptConnect
InternetConnectA
InternetOpenA
InternetSetOptionA
InternetCrackUrlA
InternetReadFile
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
HttpAddRequestHeadersA

wsock32

WSACleanup
WSAStartup
ioctlsocket
htons
recv
send
select
closesocket
connect
WSAGetLastError
socket
ntohs
htonl
inet_addr

rpcrt4

UuidCreate

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 448KB - Virtual size: 444KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

50141970cda978ca1abccfd49f613239

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

wininet

wsock32

rpcrt4

version

Sections

.text Size: 448KB - Virtual size: 444KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 104KB - Virtual size: 104KB

.text
Size: 448KB - Virtual size: 444KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 104KB - Virtual size: 104KB