128f81651546c73e792f17f3e0adc79363458ff9187dbf9bb193c277f4017b97

Sharing

Copy URL Twitter E-mail

General

Target

128f81651546c73e792f17f3e0adc79363458ff9187dbf9bb193c277f4017b97
Size

155KB
MD5

0260846a2c00b4aff3e6df502cb9c580
SHA1

309a62890ab4eb8a20324042b3684e08ccaa746e
SHA256

128f81651546c73e792f17f3e0adc79363458ff9187dbf9bb193c277f4017b97
SHA512

fb8cfedc2cb0c6fa3226a64d519c0b80d486ccfe451d225efce4e8bd6f0753b03d480fc3271cde5acff40b1fd99215b9154f31924f53ce04c66da9992b1ffd08
SSDEEP

1536:4QPwGZDM6tKuxckvGXh2JEgukuf5kep3VPUBbtolI+bL8d2Awmeyh5llkcwW2kH1:4QPwGnWkS2r/uNGVtB+vNhmeyh5dO+

Score

N/A

Malware Config

Signatures

Files

128f81651546c73e792f17f3e0adc79363458ff9187dbf9bb193c277f4017b97
.exe windows x86

d68d5e596af60b14167538e665671c9e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TabbedTextOutA
ChangeClipboardChain
EnableMenuItem
EnableWindow
GetWindowDC
MoveWindow
SetMenuItemInfoA
AppendMenuA
CreatePopupMenu
SetWindowTextA
DestroyIcon
LoadIconA
InvalidateRect
CharLowerA
LoadBitmapA
KillTimer
IsZoomed
DestroyMenu
IsDlgButtonChecked
IsWindowEnabled
SetFocus
GetCursorPos
ScreenToClient
SendMessageA
OpenClipboard
CloseClipboard
CallWindowProcA
MessageBeep
wsprintfA
MessageBoxA
CharUpperA
GetClipboardData
EnumClipboardFormats
EmptyClipboard
ClientToScreen
SystemParametersInfoA
SystemParametersInfoW
GetCapture
OpenInputDesktop

shell32

ShellExecuteA
DragAcceptFiles
DragFinish
SHGetFileInfoA
DragQueryFileA

advapi32

GetFileSecurityW

gdi32

GetSystemPaletteUse
CreateCompatibleDC
GetLogColorSpaceA
GetNearestColor
SetMetaRgn
SetPixelV
GetArcDirection
SetViewportOrgEx
GetTextMetricsW
GetPixel
SelectPalette
RectInRegion
GetKerningPairsA
GetWorldTransform
GetPolyFillMode
GetTextFaceA

dbghelp

ImageNtHeader
ImageRvaToSection
ImageRvaToVa

crypt32

CertFreeCertificateContext

comctl32

ImageList_Add
InitCommonControlsEx
ImageList_Remove
ImageList_Create
ImageList_ReplaceIcon
ImageList_Destroy

kernel32

LeaveCriticalSection
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
GetLocaleInfoA
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
EnterCriticalSection
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
HeapReAlloc
RtlUnwind
RaiseException
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
TlsAlloc
TlsGetValue
DeleteCriticalSection
GetFileType
HeapSize
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapCreate
FindFirstFileA
RtlCaptureStackBackTrace
DisconnectNamedPipe
LocalAlloc
DecodePointer
AssignProcessToJobObject
MapUserPhysicalPages
RequestWakeupLatency
GetTapeStatus
GlobalDeleteAtom
lstrcmpW
CreateEventW
WriteProcessMemory
VirtualAlloc
lstrcpyW
FindResourceExW
SetStdHandle
GetCommandLineA
MulDiv
Sleep
ReadFile
GetCurrentProcessId
GetProcAddress
GetModuleHandleA
ReadProcessMemory
OpenProcess
CloseHandle
SetThreadPriority
SetCurrentDirectoryA
ExitProcess
VirtualLock
VirtualUnlock
GetPrivateProfileStringA
WritePrivateProfileStringA
SetEndOfFile
CreateFileMappingA
MapViewOfFile
CopyFileA
lstrlenA
lstrcatA
lstrcpynA
CreateProcessA
SetFileAttributesA
GetSystemTimeAsFileTime
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetTimeZoneInformation
GetModuleHandleW
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d68d5e596af60b14167538e665671c9e

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

advapi32

gdi32

dbghelp

crypt32

comctl32

kernel32

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 15KB - Virtual size: 33KB

.rsrc Size: 52KB - Virtual size: 52KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 15KB - Virtual size: 33KB

.rsrc
Size: 52KB - Virtual size: 52KB