1b076bfa71121b0e9fe5bb9d8ba72c5a5fba54ca86f7685577b3062813b21001

Sharing

Copy URL Twitter E-mail

General

Target

1b076bfa71121b0e9fe5bb9d8ba72c5a5fba54ca86f7685577b3062813b21001
Size

308KB
MD5

5993c02e09f7ee95677a9a4e1daf280e
SHA1

468864624c9bb0bcfcab5a715f8e405e55d007a1
SHA256

1b076bfa71121b0e9fe5bb9d8ba72c5a5fba54ca86f7685577b3062813b21001
SHA512

676c9ded0a27aa9c66175cd2567341f8abec74c3cade28e1dc93028fe4e85e0f6e7d341d3777716eaf5b8390be183ce86cdc5a4fa94f7e18533ad2a97699e72e
SSDEEP

6144:zWl8MsuVbvG2kj6w9WsVc8nWpwJIM0EJa2GncDOHCZRiNQtZ:ql8FWvG2Q6wYsVc8nWpwuMlJaVpsRi

Score

N/A

Malware Config

Signatures

Files

1b076bfa71121b0e9fe5bb9d8ba72c5a5fba54ca86f7685577b3062813b21001
.exe windows x86

e691df0b0435631eb6260eb52c7c4607

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
MapDialogRect
DdeQueryStringW
GetSystemMetrics
UnhookWinEvent
SetWindowsHookA
SendMessageW
ScrollWindowEx
CharLowerBuffA
RemovePropA
RegisterClassA
KillTimer
DestroyWindow
DrawTextA
TranslateMessage
CreateCursor
ShowWindow
DefWindowProcW
EnumChildWindows
CopyImage
RegisterClassExA
SystemParametersInfoA
ChangeMenuA
CreateWindowExA
ArrangeIconicWindows
DlgDirListComboBoxW
GetUpdateRect
SetDlgItemTextW
UnregisterClassW
DdeSetQualityOfService
GetDlgItemTextA
wsprintfW
DdeImpersonateClient

gdi32

CombineTransform
CopyEnhMetaFileW
GetObjectType
CreateDCW
GetDeviceCaps
DrawEscape
SelectObject
GetObjectA
ExtEscape
GetFontData
SetMapMode
DeleteDC

kernel32

GetNamedPipeInfo
LCMapStringA
TlsGetValue
GetStartupInfoW
WaitNamedPipeA
RtlUnwind
GetProcessHeaps
LCMapStringW
HeapDestroy
UnhandledExceptionFilter
FillConsoleOutputCharacterW
IsBadWritePtr
HeapCreate
GetEnvironmentStringsW
GetCPInfo
GetTimeZoneInformation
ReadFile
FreeEnvironmentStringsW
CreateMutexA
GetCommandLineW
GetStringTypeW
LoadLibraryA
GetLastError
SetVolumeLabelA
DeleteCriticalSection
GetModuleFileNameA
HeapReAlloc
SetFilePointer
GetProcAddress
TerminateProcess
DebugActiveProcess
GetCurrentProcess
TlsSetValue
GetSystemTimeAsFileTime
QueryPerformanceCounter
CompareStringA
FillConsoleOutputAttribute
GetSystemTime
FreeEnvironmentStringsA
GetModuleFileNameW
LocalCompact
TlsAlloc
WriteFile
TlsFree
GetTickCount
VirtualQuery
InterlockedExchange
CompareStringW
VirtualFree
OpenMutexA
SetConsoleCursorInfo
GetCommandLineA
GetEnvironmentStrings
FlushFileBuffers
SetHandleCount
GetFileType
CloseHandle
GetCurrentThread
VirtualAlloc
GetCurrentProcessId
SetLastError
HeapAlloc
InitializeCriticalSection
GetLocalTime
CreateDirectoryExA
HeapFree
SetStdHandle
CreateEventW
WideCharToMultiByte
ExitProcess
SetEnvironmentVariableA
InterlockedIncrement
GetStdHandle
GetStringTypeA
GetVersion
InterlockedDecrement
EnterCriticalSection
GetCurrentThreadId
MultiByteToWideChar
LeaveCriticalSection
GetStartupInfoA
GetModuleHandleA

advapi32

LookupPrivilegeValueW
LookupPrivilegeValueA
RegQueryMultipleValuesW
RegCreateKeyExA
GetUserNameW
RegSetValueExA
GetUserNameA
CryptGetDefaultProviderA
RegSetValueA
CryptHashData
CreateServiceA
AbortSystemShutdownW
CryptEnumProviderTypesA
CryptSetProviderA
RegEnumKeyW
InitiateSystemShutdownA
CryptGenKey
InitiateSystemShutdownW
RegRestoreKeyA
CryptSetKeyParam
CryptReleaseContext
CryptDuplicateHash
RegEnumValueW

comctl32

ImageList_Draw
ImageList_DragShowNolock
ImageList_LoadImageA
InitCommonControlsEx
CreatePropertySheetPageA
CreateStatusWindowW
ImageList_ReplaceIcon
CreateStatusWindowA
ImageList_SetFilter
DrawStatusTextA

comdlg32

ReplaceTextA
GetSaveFileNameW
ChooseColorA

Sections

.text
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e691df0b0435631eb6260eb52c7c4607

Headers

File Characteristics

Imports

user32

gdi32

kernel32

advapi32

comctl32

comdlg32

Sections

.text Size: 124KB - Virtual size: 122KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 92KB - Virtual size: 114KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 124KB - Virtual size: 122KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 92KB - Virtual size: 114KB

.rsrc
Size: 20KB - Virtual size: 17KB