f5e10abd33a1eb92efa9651b139af5dbbfd03f1e26ad6adc38426a02a92c0a4b

Sharing

Copy URL Twitter E-mail

General

Target

f5e10abd33a1eb92efa9651b139af5dbbfd03f1e26ad6adc38426a02a92c0a4b
Size

228KB
MD5

0734fa5d5c25f5f2f80ecdd460586720
SHA1

f6319efe5f89ef6ac04a76752cf3e5fab1e200d1
SHA256

f5e10abd33a1eb92efa9651b139af5dbbfd03f1e26ad6adc38426a02a92c0a4b
SHA512

a8362e1c61a6491a0493c599e40457dc57b45663fb0f1f14c028ec72937b8e6a7bb02199c2f6f379653854357404943792043f59fe8503896c572e0723e9b50b
SSDEEP

3072:gSrIY6TY5FqEYqawg0OB8lHjuwYb7xojruE+ZqGeDGPBN9mdtEP:p6TY5TYryUYDWojruxdJjpP

Score

N/A

Malware Config

Signatures

Files

f5e10abd33a1eb92efa9651b139af5dbbfd03f1e26ad6adc38426a02a92c0a4b
.exe windows x86

79e3291b65c772c76e471c15abfd2027

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetFileAttributesA
GetFileSize
GetFileTime
lstrcatA
TlsAlloc
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetVersion
lstrcmpA
GetCurrentThreadId
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetProcessVersion
GlobalFlags
GetCPInfo
GetOEMCP
ExitProcess
RtlUnwind
GetTimeZoneInformation
GetSystemTime
RaiseException
SetStdHandle
GetACP
HeapSize
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetStartupInfoA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedExchange
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
UnlockFile
LockFile
FlushFileBuffers
lstrcpyA
lstrlenA
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
ReleaseMutex
OpenFileMappingA
GetEnvironmentVariableA
GetShortPathNameA
SetPriorityClass
ResumeThread
LocalAlloc
CreateMutexA
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GetModuleHandleA
OutputDebugStringA
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcpynA
FormatMessageA
LocalFree
SetLastError
SetFileAttributesA
WriteFile
LocalFileTimeToFileTime
SetFileTime
CreateDirectoryA
DosDateTimeToFileTime
SystemTimeToFileTime
ReadFile
DuplicateHandle
GetFileType
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetPrivateProfileStringA
UnmapViewOfFile
SetFilePointer
SetEndOfFile
CreateFileA
CreateFileMappingA
MapViewOfFile
SetEvent
GetCurrentProcess
WideCharToMultiByte
CreateToolhelp32Snapshot
Process32First
Process32Next
TerminateProcess
CreateProcessA
GetLastError
CreateEventA
PostQueuedCompletionStatus
InterlockedExchangeAdd
GetQueuedCompletionStatus
HeapAlloc
TerminateThread
GetProcessHeap
HeapFree
GetSystemInfo
CreateIoCompletionPort
GetCurrentProcessId
GetLocalTime
GetModuleFileNameA
GetCurrentDirectoryA
GetTickCount
DeleteFileA
OpenProcess
WaitForSingleObject
CreateThread
CloseHandle
GetCommandLineA
Sleep

user32

SetWindowTextA
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GetClassNameA
PtInRect
ClientToScreen
PostQuitMessage
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA
LoadIconA
PostMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
GetClientRect
CopyRect
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
DispatchMessageA
GetKeyState
CallNextHookEx
PeekMessageA
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
MessageBoxA
EnableWindow
UnhookWindowsHookEx
LoadStringA
GetSystemMetrics
CharUpperA

gdi32

PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

InitializeSecurityDescriptor
GetLengthSid
SetSecurityDescriptorDacl
AllocateAndInitializeSid
InitializeAcl
AdjustTokenPrivileges
AddAccessAllowedAce
FreeSid
OpenProcessToken
LookupPrivilegeValueA

shell32

ord51

comctl32

ord17

ws2_32

gethostbyaddr
recv
send
accept
ioctlsocket
connect
select
socket
WSAEventSelect
WSAIoctl
htons
bind
listen
closesocket
recvfrom
getpeername
ntohs
WSARecv
WSASocketA
setsockopt
WSAGetLastError
inet_addr
gethostbyname
WSAAddressToStringA
gethostname
WSACleanup
WSAStartup
htonl
inet_ntoa
ntohl
__WSAFDIsSet
sendto
WSASend

wininet

InternetGetLastResponseInfoA
HttpQueryInfoA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetOpenUrlA
InternetCloseHandle
InternetOpenA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA

iphlpapi

GetIpAddrTable
GetBestInterface

Sections

.text
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LPPlatfo
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

79e3291b65c772c76e471c15abfd2027

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ws2_32

wininet

iphlpapi

Sections

.text Size: 156KB - Virtual size: 153KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 32KB - Virtual size: 43KB

LPPlatfo Size: 4KB - Virtual size: 4B

.text
Size: 156KB - Virtual size: 153KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 32KB - Virtual size: 43KB

LPPlatfo
Size: 4KB - Virtual size: 4B