a6158ed3f07516b3603c67fb4e6aea0ba0aac2338500e6009b63df1f1744dfdb

Sharing

Copy URL Twitter E-mail

General

Target

a6158ed3f07516b3603c67fb4e6aea0ba0aac2338500e6009b63df1f1744dfdb
Size

698KB
MD5

62d107210b42bb7fc039d8393b1073a9
SHA1

904efc3c0ebec30671ca28efcdb745662817fd9c
SHA256

a6158ed3f07516b3603c67fb4e6aea0ba0aac2338500e6009b63df1f1744dfdb
SHA512

72376c635c8a39cdad7f306092c559ba7665ab057df35f7bdf1ca0062e9dc237549eead56f45289bcbd060ca710e2ab36669f0283871eecb3db22feef8c30b96
SSDEEP

12288:8j7pcZPxs/xUb2gambfl0gC3YC/EAgCYBBBpA5HctgXp3PLB2nK1M2nI01xTF7Y:/ZZs/xonGNEAWK5HSgXp4gnIKf

Score

N/A

Malware Config

Signatures

Files

a6158ed3f07516b3603c67fb4e6aea0ba0aac2338500e6009b63df1f1744dfdb
.exe windows x86

f11733e74b5273d20e77f9ed50c1ec7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragEnter
ImageList_Read
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_Duplicate
InitCommonControlsEx

wininet

InternetOpenUrlA
SetUrlCacheEntryInfoA
GopherOpenFileW
UnlockUrlCacheEntryFile
InternetSecurityProtocolToStringA
GetUrlCacheHeaderData
SetUrlCacheConfigInfoW

kernel32

IsValidLocale
GetTimeFormatA
GetConsoleMode
InterlockedExchange
GetCommandLineA
HeapReAlloc
SetConsoleCtrlHandler
SetFilePointer
InterlockedDecrement
GetDateFormatA
EnterCriticalSection
GetModuleFileNameW
AllocConsole
FreeLibrary
LoadLibraryA
WriteConsoleA
TlsAlloc
GetLastError
GetProcAddress
CloseHandle
OutputDebugStringW
LCMapStringW
CreateFileA
GetStringTypeW
FreeEnvironmentStringsA
SetLastError
IsValidCodePage
ReadFile
GetOEMCP
GetStartupInfoW
CommConfigDialogA
lstrlenA
VirtualQuery
RtlUnwind
TlsSetValue
TerminateProcess
SetUnhandledExceptionFilter
GetCurrentThread
GetCPInfo
GetStringTypeA
HeapAlloc
GetCommandLineW
GetLocaleInfoA
GetVersionExA
GetCurrentProcessId
GetModuleHandleA
GetSystemTimeAsFileTime
GetUserDefaultLCID
HeapFree
GetACP
WriteConsoleW
GetProcessHeap
CompareStringW
FreeEnvironmentStringsW
IsDebuggerPresent
GetEnvironmentStringsW
GetEnvironmentStrings
CompareStringA
GetStdHandle
EnumSystemLocalesA
WideCharToMultiByte
DeleteCriticalSection
LoadLibraryW
GetFileAttributesW
GetCurrentThreadId
WriteFile
SetEnvironmentVariableA
CreateMutexA
GetCurrentProcess
HeapValidate
UnhandledExceptionFilter
IsBadReadPtr
HeapDestroy
GetComputerNameA
LCMapStringA
AddAtomW
GetLocaleInfoW
InitializeCriticalSection
RaiseException
GetConsoleOutputCP
QueryPerformanceCounter
InterlockedIncrement
LeaveCriticalSection
VirtualAlloc
GetConsoleCP
OutputDebugStringA
GetModuleFileNameA
MultiByteToWideChar
GlobalUnlock
GetSystemTime
SetStdHandle
GetCompressedFileSizeW
GetCalendarInfoA
GetStartupInfoA
HeapCreate
DebugBreak
GetTimeZoneInformation
SetHandleCount
TlsFree
VirtualFree
GetTickCount
ExitProcess
OpenMutexA
FlushFileBuffers
GetFileType
TlsGetValue

shell32

DragFinish

user32

SetMenuItemBitmaps
GetNextDlgTabItem
GetListBoxInfo
RegisterClassA
RegisterClassExA
IsWindowEnabled

Sections

.text
Size: 461KB - Virtual size: 460KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 97KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f11733e74b5273d20e77f9ed50c1ec7e

Headers

File Characteristics

Imports

comctl32

wininet

kernel32

shell32

user32

Sections

.text Size: 461KB - Virtual size: 460KB

.rdata Size: 97KB - Virtual size: 124KB

.data Size: 118KB - Virtual size: 118KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 461KB - Virtual size: 460KB

.rdata
Size: 97KB - Virtual size: 124KB

.data
Size: 118KB - Virtual size: 118KB

.rsrc
Size: 21KB - Virtual size: 20KB