e8326fbb7a1bd456a17272db3b06cd3cbf94d170a31195cf5fb55e34344d4a5b

Sharing

Copy URL

Twitter E-mail

General

Target

e8326fbb7a1bd456a17272db3b06cd3cbf94d170a31195cf5fb55e34344d4a5b
Size

278KB
MD5

66e2094a2f5a64f511ff5219ad435d00
SHA1

15816b5680bf5758d17f706e8d6890ae901783c2
SHA256

e8326fbb7a1bd456a17272db3b06cd3cbf94d170a31195cf5fb55e34344d4a5b
SHA512

4286cda9bfeba0915fe1f0b7c8ac5d09d9e820ffeb5fe50405d7fb15cb2811711f559a80433d0c4e29ddbca039577a36fee1f6270ee88f6dfad00991fac2f8c3
SSDEEP

6144:qInsN4YCRMN2CYWbBqq0TBZv3ldOSsQLH5Ap:XnsOVRa2vWV0TPv3+SsPp

Score

N/A

Malware Config

Signatures

Files

e8326fbb7a1bd456a17272db3b06cd3cbf94d170a31195cf5fb55e34344d4a5b
.exe windows x86

622214342ec2566add2ff7613e3c68e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSASocketA
setsockopt
sendto
recvfrom
gethostbyaddr
WSAStartup
WSACleanup
gethostbyname

wininet

InternetOpenA
FtpCreateDirectoryA
FtpSetCurrentDirectoryA
FtpPutFileA
InternetConnectA
InternetCloseHandle

winmm

timeGetTime

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
SizeofResource
LockResource
LoadResource
FindResourceA
Sleep
MultiByteToWideChar
GetVersionExA
LoadLibraryA
FreeLibrary
GetModuleHandleA
CloseHandle
OpenProcess
GetProcAddress
FileTimeToDosDateTime
SystemTimeToFileTime
GetLocalTime
FindClose
FileTimeToLocalFileTime
FindFirstFileA
CreateFileA
GetLastError
ReadFile
WriteFile
SetFilePointer
GetTickCount
GetCurrentProcessId
lstrcmpiA
WideCharToMultiByte
FreeEnvironmentStringsW
WriteConsoleW
GlobalMemoryStatus
GetLocaleInfoA
GetUserDefaultLCID
GetTimeZoneInformation
HeapSize
GetFileType
SetHandleCount
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
HeapCreate
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
GetStdHandle
ExitProcess
GetCurrentThreadId
SetLastError
GetEnvironmentStringsW
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetTempPathA
GetConsoleOutputCP
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CompareStringA
CompareStringW
GetSystemInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetStartupInfoA
GetCommandLineA
InterlockedDecrement
InterlockedIncrement
DeleteFileA
FindNextFileA
RaiseException
RtlUnwind
ExitThread
ResumeThread
CreateThread
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
FileTimeToSystemTime

user32

GetWindowLongA
PostQuitMessage
LoadBitmapA
FillRect
GetClientRect
EnumWindows
GetWindowTextW
GetClassNameW
GetWindowThreadProcessId
IsWindowVisible
wsprintfA
LoadStringW
MessageBoxW
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
GetDlgItemTextW
DialogBoxParamA
BeginPaint
EndPaint
GetDlgItemTextA
SendDlgItemMessageA
KillTimer
EndDialog
LoadStringA
MessageBoxA
GetDlgItem
EnableWindow
SetTimer
DefWindowProcA

gdi32

TextOutA
CreateCompatibleDC
GetStockObject
SelectObject
SetBkColor
BitBlt
DeleteObject
DeleteDC
SetTextAlign

advapi32

RegCloseKey
RegEnumKeyA
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA

shell32

SHGetFolderPathAndSubDirA

ole32

CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateInstance

oleaut32

VariantClear
SysAllocString
SysFreeString

Sections

.text
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

622214342ec2566add2ff7613e3c68e3

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

wininet

winmm

version

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 149KB - Virtual size: 149KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 8KB - Virtual size: 151KB

.rsrc Size: 75KB - Virtual size: 75KB

.text
Size: 149KB - Virtual size: 149KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 8KB - Virtual size: 151KB

.rsrc
Size: 75KB - Virtual size: 75KB