169c335f148191d151fc6d1fc7c73fdbc697dc5fd67c26ea43e23b7a950b7b59

Sharing

Copy URL Twitter E-mail

General

Target

169c335f148191d151fc6d1fc7c73fdbc697dc5fd67c26ea43e23b7a950b7b59
Size

495KB
MD5

5c46532a0f53f2cfb80790553c025c2d
SHA1

3ec0d35c6a24f5e76d1080dd6c3ca6c297ca0361
SHA256

169c335f148191d151fc6d1fc7c73fdbc697dc5fd67c26ea43e23b7a950b7b59
SHA512

a4f272b2c8b816db6f103e9a755bd3df76fb54897fc2e869635c36bde34383bd640939b3127125ecfe60bb49bb69d62cf8b63411f22619bfbe180c8de517ab93
SSDEEP

12288:bmFcaytrV40PfSKsLIQ5+xfB0Od26Jtt6O7oWX79s:ftrV1HcCT26N6eoWX7q

Score

N/A

Malware Config

Signatures

Files

169c335f148191d151fc6d1fc7c73fdbc697dc5fd67c26ea43e23b7a950b7b59
.exe windows x86

a50d04666098c804d7175a0be06a813c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRect
BeginPaint
GetClientRect
EndPaint
PostQuitMessage
DefWindowProcA
FindWindowA
IsIconic
ShowWindow
SetForegroundWindow
LoadCursorA
RegisterClassA
CreateWindowExA
MessageBoxA
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

SelectObject
GetStockObject
DeleteObject
MoveToEx
LineTo
CreatePen

kernel32

GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
CreateFileA
GetTimeZoneInformation
GetLocaleInfoW
LoadLibraryW
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
CloseHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetFilePointer
FreeEnvironmentStringsA
GetCommandLineA
GetStartupInfoA
GetProcAddress
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
GetCurrentThread
HeapValidate
IsBadReadPtr
GetModuleHandleA
IsDebuggerPresent
RaiseException
DebugBreak
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
LoadLibraryA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep
ExitProcess
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
HeapDestroy
HeapCreate
HeapFree
VirtualFree
WriteFile
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
HeapAlloc
GetModuleFileNameW
HeapSize
HeapReAlloc
VirtualAlloc
GetProcessHeap
VirtualQuery
FreeLibrary
SetConsoleCtrlHandler
InterlockedExchange
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetTimeFormatA
GetDateFormatA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
LCMapStringA
LCMapStringW

Sections

.textbss
Size: - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a50d04666098c804d7175a0be06a813c

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.textbss Size: - Virtual size: 183KB

.text Size: 384KB - Virtual size: 384KB

.rdata Size: 76KB - Virtual size: 76KB

.data Size: 7KB - Virtual size: 15KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 22KB - Virtual size: 27KB

.textbss
Size: - Virtual size: 183KB

.text
Size: 384KB - Virtual size: 384KB

.rdata
Size: 76KB - Virtual size: 76KB

.data
Size: 7KB - Virtual size: 15KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 22KB - Virtual size: 27KB