62936790cf0abf44c1e0e01fa856cf4715d50370f71ff45a8d04473d1e42b158

Sharing

Copy URL Twitter E-mail

General

Target

62936790cf0abf44c1e0e01fa856cf4715d50370f71ff45a8d04473d1e42b158
Size

125KB
MD5

43c66559a44c71fb6db4d6ea2fcca37a
SHA1

79b6c0bc05c3e83a467a3ff1e17345a8cd55e6a5
SHA256

62936790cf0abf44c1e0e01fa856cf4715d50370f71ff45a8d04473d1e42b158
SHA512

030939e231d50a21831696118223b539800c1c0c30a4369464fcc8c76bcd83e260746209b7a964b856cb5c6a103989770e83735b1797b39422518580ddfca9d4
SSDEEP

1536:JiaiUk2Va0vwZzRXk1OJjV5OcI/j6/ju2yjEoXJKXX0JSkRxWMSC7jGN0f:JTdkMa8usOxTBI/j6/aBI8uiSiZjGqf

Score

N/A

Malware Config

Signatures

Files

62936790cf0abf44c1e0e01fa856cf4715d50370f71ff45a8d04473d1e42b158
.exe windows x86

235e4caf15754b2c090efe8bf5146912

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
SetEnvironmentVariableA
InitializeCriticalSection
HeapAlloc
GetStdHandle
GetUserDefaultLCID
GetVersionExA
VirtualFree
LoadLibraryA
FindClose
GetLocaleInfoA
IsValidLocale
LCMapStringW
lstrcpynA
GetLocalTime
GetFileAttributesA
FileTimeToSystemTime
GetDriveTypeA
GetSystemTime
GetStringTypeW
HeapFree
ReleaseMutex
GetLocaleInfoW
GetUserDefaultUILanguage
lstrlenA
GetModuleFileNameA
WaitForSingleObject
GetModuleHandleExW
SetConsoleMode
GetShortPathNameA
SetVolumeLabelA
LocalUnlock
CreateMutexA
GetCurrentProcess
SetConsoleCtrlHandler
ExitProcess
WideCharToMultiByte
GetFileTime
GetConsoleMode
GetFileType
SetHandleCount
IsValidCodePage
InterlockedExchange
GetEnvironmentVariableA
FindFirstFileA
CompareStringW
HeapDestroy
GetProcAddress
GetConsoleScreenBufferInfo
SetStdHandle
HeapCreate
LeaveCriticalSection
GetFullPathNameA
GetStringTypeA
VirtualAlloc
GetTimeZoneInformation
GetModuleHandleA
LCMapStringA
GetDriveTypeA
CompareStringA
GetStartupInfoA
SetThreadPriorityBoost
GetProcessHeap
GlobalFlags
CreateFileA
FindNextFileA
lstrcmpiA
FindVolumeClose
GetVolumeInformationA
EnumSystemLocalesA

shlwapi

SHDeleteValueA
PathFileExistsW
PathRemoveBackslashA

shell32

SHGetSpecialFolderPathW
ShellExecuteExA
ExtractIconExA

ole32

OleUninitialize
CoCreateInstance
OleInitialize

urlmon

CreateURLMoniker

user32

EnableWindow
GetParent
DrawTextA
CharPrevA
SystemParametersInfoA
DestroyWindow
LoadIconA
GetDlgItem
RegisterClassA
GetWindowTextA
PostQuitMessage
LoadBitmapA
EndDialog
CharNextA
GetDlgItemTextA
ScreenToClient
LoadCursorA
FillRect
SendDlgItemMessageA
SetRect
BeginPaint
IsWindowVisible
SetDlgItemTextA
CreateDialogParamA
GetWindowRect
SetWindowPos
EndPaint
SetClassLongA
GetDesktopWindow
GetClientRect

gdi32

IntersectClipRect
SelectObject
SetBkColor
CreatePen
OffsetClipRgn
GetClipRgn
GetNearestColor
SetTextColor
GetStockObject
CreateRectRgn

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

235e4caf15754b2c090efe8bf5146912

Headers

File Characteristics

Imports

kernel32

shlwapi

shell32

ole32

urlmon

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 35KB

.rsrc Size: 2KB - Virtual size: 1KB

.rdata Size: 48KB - Virtual size: 87KB

.xdata Size: 60KB - Virtual size: 60KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 35KB

.rsrc
Size: 2KB - Virtual size: 1KB

.rdata
Size: 48KB - Virtual size: 87KB

.xdata
Size: 60KB - Virtual size: 60KB