0a7607e929729ea84cfed3d35a639b182a9a4304958a422a63f530832c4a036c

Sharing

Copy URL

Twitter E-mail

General

Target

0a7607e929729ea84cfed3d35a639b182a9a4304958a422a63f530832c4a036c
Size

177KB
MD5

34806fa43b9a940a6646fc89b5493490
SHA1

60fb689a09dbbed09bf463c3dc124a7270d3d836
SHA256

0a7607e929729ea84cfed3d35a639b182a9a4304958a422a63f530832c4a036c
SHA512

38173e5c4c2803aa53d5b1147c2f9b73570399276052674e6315f15253b04b33af0fc17b9bc34459491a22577b3d75ce68e76d1a1bf987f3331b37101499ad51
SSDEEP

3072:sCs7NVYa+WpthD3V+Olu4jZWVByUvLUKg6IChhIA5+opLvdg/x3Gm:ShVYfCtVrBQy/H6IkSA5tCx

Score

N/A

Malware Config

Signatures

Files

0a7607e929729ea84cfed3d35a639b182a9a4304958a422a63f530832c4a036c
.exe windows x86

36329d1c378e96513e786038f3d14792

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveFileSpecW
PathAppendW

kernel32

HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetCurrentProcess
FindResourceExW
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
LoadResource
LockResource
SizeofResource
FindResourceW
Sleep
FreeLibrary
LoadLibraryW
OpenProcess
WaitForMultipleObjects
GetCommandLineW
SetLastError
EnterCriticalSection
LeaveCriticalSection
SetEvent
WaitForSingleObject
CreateMutexW
CreateEventW
CreateThread
GetCurrentThreadId
FlushInstructionCache
LocalFree
SetDllDirectoryW
HeapDestroy
GetLastError
RaiseException
CloseHandle
DecodePointer
TlsAlloc
TlsGetValue
VirtualAlloc
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
CreateFileW
FlushFileBuffers
WriteConsoleW
SetStdHandle
OutputDebugStringW
SetFilePointerEx
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
GetStringTypeW
IsValidCodePage
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetFileType
GetStdHandle
GetStartupInfoW
TlsSetValue
VirtualFree
LoadLibraryExA
EncodePointer
ExitThread
LoadLibraryExW
IsDebuggerPresent
IsProcessorFeaturePresent
RtlUnwind
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
TlsFree

advapi32

RegDeleteKeyW
RegQueryInfoKeyW
RegOpenKeyExW
RegCloseKey

ole32

StringFromGUID2
CoReleaseServerProcess
CoAddRefServerProcess
CoResumeClassObjects
CoRevokeClassObject
CoRegisterClassObject
CoInitializeEx
CoUninitialize
CoCreateInstance

oleaut32

UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
SysStringLen
SysAllocString
SysFreeString

user32

LoadCursorW
SetWindowLongW
GetWindowLongW
CharNextW
CharUpperW
IsWindow
CreateWindowExW
GetClassInfoExW
RegisterClassExW
CallWindowProcW
PostQuitMessage
DefWindowProcW
PostThreadMessageW
DispatchMessageW
TranslateMessage
GetWindowThreadProcessId
PostMessageW
FindWindowW
UnregisterClassW
RegisterWindowMessageW
GetMessageW

comctl32

InitCommonControlsEx

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

36329d1c378e96513e786038f3d14792

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

advapi32

ole32

oleaut32

user32

comctl32

Sections

.text Size: 65KB - Virtual size: 64KB

.rdata Size: 28KB - Virtual size: 28KB

.data Size: 5KB - Virtual size: 13KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 69KB - Virtual size: 72KB

.text
Size: 65KB - Virtual size: 64KB

.rdata
Size: 28KB - Virtual size: 28KB

.data
Size: 5KB - Virtual size: 13KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 69KB - Virtual size: 72KB