fd57c3997a036f00b2d5900bb9a22c1b4b2398e1b55da9f7dc15f77b94cf15c5

Sharing

Copy URL

Twitter E-mail

General

Target

fd57c3997a036f00b2d5900bb9a22c1b4b2398e1b55da9f7dc15f77b94cf15c5
Size

651KB
MD5

50a08a816cb70e37d55c04562403dec0
SHA1

7e91a8791aef15d39b298275e71d90577fe5b789
SHA256

fd57c3997a036f00b2d5900bb9a22c1b4b2398e1b55da9f7dc15f77b94cf15c5
SHA512

d895e7f209accdfbd62831d9c25d0ea3abe3dd715e862d88373462d67319ed57b7c96d08f769568561ad15c291acb89bd140366404cffd353594001f1fd9f0b4
SSDEEP

12288:IeKdJ2OIIi1hx9S46FElhd4vfY8JDILd+dXogTsc/Eh4zdXK97n7qDurxstRTwGq:w8Px9S46F+d4vfY2ULd+dXogTscMh4pe

Score

N/A

Malware Config

Signatures

Files

fd57c3997a036f00b2d5900bb9a22c1b4b2398e1b55da9f7dc15f77b94cf15c5
.exe windows x86

48251e45678620d435052d1ec3e91737

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegEnumValueW
RegOpenKeyExW
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextW

kernel32

GlobalAlloc
InterlockedDecrement
InterlockedIncrement
GetSystemDirectoryW
FindFirstFileW
FindNextFileW
FindClose
IsValidLanguageGroup
LocalAlloc
LocalFree
ExpandEnvironmentStringsW
GetSystemWindowsDirectoryW
CreateFileW
GetFileSize
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetCPInfo
GetStringTypeW
IsDBCSLeadByteEx
EnumSystemCodePagesW
IsValidCodePage
RegisterApplicationRestart
LoadLibraryW
FreeLibrary
GetACP
GlobalLock
GlobalUnlock
GetLocaleInfoW
GetThreadLocale
EncodePointer
CloseHandle
GlobalFree
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleA
QueryPerformanceCounter
CompareStringW
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
HeapSetInformation
UnhandledExceptionFilter
GetModuleHandleW
DecodePointer
FindResourceW
LoadResource
SizeofResource
LockResource
lstrcmpW
lstrlenW
MulDiv
WideCharToMultiByte
MultiByteToWideChar

gdi32

SetBkMode
GetLayout
ExtTextOutW
GetTextExtentPoint32W
EnumFontFamiliesExW
GetFontData
GetCharWidth32W
CreateFontW
UnrealizeObject
TextOutW
CreateCompatibleBitmap
GetTextExtentPointW
CreateDIBitmap
CreateCompatibleDC
DeleteDC
GetObjectW
GetTextAlign
SetTextAlign
GetDeviceCaps
BitBlt
CreateSolidBrush
PatBlt
GetStockObject
SetTextColor
SetBkColor
CreatePen
MoveToEx
LineTo
CreateFontIndirectW
DeleteObject
TranslateCharsetInfo
SelectObject
GetTextMetricsW

user32

SetScrollPos
SetScrollRange
GetDlgItemTextW
SetWindowTextW
GetParent
GetDlgCtrlID
GetWindowTextW
PostMessageW
GetWindowTextLengthW
ValidateRect
GetAsyncKeyState
GetMessageTime
GetCursorPos
ScreenToClient
WindowFromPoint
GetUpdateRect
SetCapture
DefWindowProcW
PtInRect
GetMessagePos
EndPaint
BeginPaint
MapWindowPoints
GetWindowDC
ClientToScreen
GetKeyboardLayout
RegisterClassW
LoadCursorW
EnumChildWindows
LoadIconW
GetFocus
PostQuitMessage
FillRect
UpdateWindow
CreateDialogParamW
DispatchMessageW
TranslateMessage
IsDialogMessageW
GetMessageW
AdjustWindowRectEx
SetRect
SetScrollInfo
GetScrollInfo
UnregisterClassW
GetDesktopWindow
RegisterClipboardFormatW
InvalidateRect
IsWindowEnabled
SendDlgItemMessageW
EnableWindow
SetDlgItemTextW
ReleaseCapture
ShowCursor
LoadStringW
SetFocus
CallWindowProcW
DestroyWindow
CreateWindowExW
KillTimer
SetTimer
MoveWindow
ShowWindow
GetWindowInfo
GetDlgItem
SendMessageW
GetSystemMetrics
DrawFocusRect
GetSysColor
GetDC
ReleaseDC
GetClassNameW
GetWindowLongW
SetWindowLongW
GetClientRect
GetWindowRect

msvcrt

memcpy
_vsnwprintf
memset
towupper
free
malloc
_controlfp
_except_handler4_common
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
??3@YAXPAX@Z
calloc
realloc
wcsncpy_s
_wcsupr
wcsstr
_wtol
swscanf_s
??2@YAPAXI@Z

comctl32

ord17

ole32

CoCreateInstance
OleUninitialize
DoDragDrop
CoGetMalloc
OleInitialize

getuname

GetUName

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp0
Size: 500KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48251e45678620d435052d1ec3e91737

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

msvcrt

comctl32

ole32

getuname

Sections

.text Size: 52KB - Virtual size: 52KB

.data Size: 1024B - Virtual size: 133KB

.rsrc Size: 91KB - Virtual size: 91KB

.reloc Size: 5KB - Virtual size: 5KB

.vmp0 Size: 500KB - Virtual size: 1.6MB

.text
Size: 52KB - Virtual size: 52KB

.data
Size: 1024B - Virtual size: 133KB

.rsrc
Size: 91KB - Virtual size: 91KB

.reloc
Size: 5KB - Virtual size: 5KB

.vmp0
Size: 500KB - Virtual size: 1.6MB