2636bb924da8a92bdb52433bd621ab7a015ab2cadb642e168b491743f645d866

Sharing

Copy URL Twitter E-mail

General

Target

2636bb924da8a92bdb52433bd621ab7a015ab2cadb642e168b491743f645d866
Size

320KB
MD5

5d80e25b8e3ea7a20fa6974dd3f75ed0
SHA1

bdbb071fa3382993144b2fd9af9e0105819a97e5
SHA256

2636bb924da8a92bdb52433bd621ab7a015ab2cadb642e168b491743f645d866
SHA512

5c30bdeb45a8e25f89bf4d02a0389854988d904bbb2ed5f8955cca11f3102725ebc2c863ae1d7023c9bb9173496eb7af7b2e102ebdea12e79f1e237d47e6efc5
SSDEEP

6144:SF116OVODevp95BiPnMfxs9OQ/AXFgRuTGbmS:AbgevL5BSMfG4FWT

Score

N/A

Malware Config

Signatures

Files

2636bb924da8a92bdb52433bd621ab7a015ab2cadb642e168b491743f645d866
.exe windows x86

7b5537fd486e526e05dbc06f8f9acb7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleA
ExpandEnvironmentStringsW
GetStringTypeExW
SetHandleCount
WritePrivateProfileStringW
GetFullPathNameA
VirtualQuery
GetCommModemStatus
WriteFile
SetTimeZoneInformation
RemoveDirectoryA
EnumResourceLanguagesW
GetFileAttributesA
GetCurrentDirectoryW
CreateEventA
SetSystemTime
VirtualAlloc
SetConsoleOutputCP
SearchPathW
GlobalDeleteAtom
lstrcpyA
GetLongPathNameA
EnumSystemCodePagesA
UnmapViewOfFile
FindNextChangeNotification
GetFileAttributesExA
GetSystemTime
GetModuleHandleA
GetStartupInfoA

user32

GetActiveWindow
IsCharAlphaW
GetUserObjectInformationA
GetSysColor
CreateWindowExA
wsprintfA
GetClipboardSequenceNumber
CharUpperBuffA
SetUserObjectInformationW
InvertRect
LoadImageW
GetIconInfo
SendMessageW
CharLowerBuffA
DefMDIChildProcA
TrackPopupMenuEx
CreateAcceleratorTableA
InsertMenuW
GetGuiResources
GetMonitorInfoA
RedrawWindow
ChangeDisplaySettingsW
RemovePropW
DestroyCursor
SetWindowContextHelpId
UnhookWindowsHook
GetUserObjectSecurity
TrackMouseEvent

gdi32

GetTextCharsetInfo
FillRgn
GetRegionData
CreateFontIndirectW
EndPage
GetCharWidth32A
GetCharacterPlacementA
PlayEnhMetaFile
RoundRect
GetTextFaceA
WidenPath
CreateDCA
SetRectRgn
GetViewportOrgEx
Arc
CreateDIBPatternBrushPt
SetWindowExtEx
SetBitmapBits
AddFontResourceW
GetLayout
GetNearestColor

comdlg32

ChooseFontW
GetFileTitleW
ChooseColorW

advapi32

EnumServicesStatusW
RegNotifyChangeKeyValue
InitiateSystemShutdownW
GetFileSecurityA

shell32

SHAddToRecentDocs
SHBrowseForFolderA
SHLoadInProc

ole32

OleCreateFromData
OleSave
RevokeDragDrop

oleaut32

LoadTypeLi

comctl32

CreatePropertySheetPageA
ord17
ImageList_Merge
ImageList_SetBkColor

shlwapi

PathRemoveBackslashW
wnsprintfA
PathIsDirectoryA
wnsprintfW
PathIsUNCW
StrStrW
StrRChrA
PathIsUNCA
PathGetArgsW
SHRegOpenUSKeyW
SHRegSetUSValueW
StrCmpLogicalW
UrlIsW
PathCompactPathExW

msvcrt

_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__p__fmode
__set_app_type
_except_handler3
_controlfp
__p__commode

Sections

mkoqmik
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ggmkk
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

kquemm
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wiwaw
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b5537fd486e526e05dbc06f8f9acb7c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

msvcrt

Sections

mkoqmik Size: 4KB - Virtual size: 2KB

ggmkk Size: 4KB - Virtual size: 3KB

kquemm Size: 268KB - Virtual size: 264KB

wiwaw Size: 40KB - Virtual size: 39KB

mkoqmik
Size: 4KB - Virtual size: 2KB

ggmkk
Size: 4KB - Virtual size: 3KB

kquemm
Size: 268KB - Virtual size: 264KB

wiwaw
Size: 40KB - Virtual size: 39KB