f66ea9afc1081d8f5f523a4bc25c2ef118443b52ce9dd0458a1799d654841e2e

Sharing

Copy URL

Twitter E-mail

General

Target

f66ea9afc1081d8f5f523a4bc25c2ef118443b52ce9dd0458a1799d654841e2e
Size

320KB
MD5

6a403f671588bbcee78045b0aafccac0
SHA1

1bfd9b5c5c1de85ac327b772439ea16034797ec6
SHA256

f66ea9afc1081d8f5f523a4bc25c2ef118443b52ce9dd0458a1799d654841e2e
SHA512

c9e6224a066aaf4ec4a688217f77fe12e4c365c774be55e715ca4ecad094d112b02e47e904f3ba473324e8593268f982768e6d348d2e7a722b2e2d1b4f92530a
SSDEEP

6144:4LQhkKwYhNGEY3onoR3/gzD0kVySRj2QBM0pX4ahOlyaffKtYbxCVf5rtg7Es:RhwAU/3onoRvgPzRRj0kXji1ffKyUVf0

Score

N/A

Malware Config

Signatures

Files

f66ea9afc1081d8f5f523a4bc25c2ef118443b52ce9dd0458a1799d654841e2e
.exe windows x86

e7b4a13e51709c5a5ebe3919b740f1e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
SetUnhandledExceptionFilter
EnterCriticalSection
GetProcessHeap
SizeofResource
DeleteCriticalSection
GetProcAddress
SetLastError
HeapDestroy
FlushInstructionCache
GetSystemTimeAsFileTime
lstrcpyW
LoadResource
HeapFree
GetUserDefaultLCID
GetTickCount
lstrlenW
GetEnvironmentStringsA
GetSystemInfo
GetCurrentProcessId
GetCurrentProcess
FormatMessageW
GetLastError
InterlockedDecrement
lstrcmpiW
FindResourceW
HeapAlloc
OutputDebugStringA
LocalFree
VirtualFree
MultiByteToWideChar
InterlockedIncrement
LeaveCriticalSection
FreeLibrary
GetModuleFileNameW
LoadLibraryA
lstrcatW
lstrlenA
RemoveDirectoryA
lstrcpynW

msvcrt

_initterm
??2@YAPAXI@Z
wcscmp
free
malloc
wcscat
_except_handler3
wcslen
??3@YAXPAX@Z
_adjust_fdiv
__CxxFrameHandler
wcsncpy
?terminate@@YAXXZ
swprintf
??1type_info@@UAE@XZ
realloc

user32

GetWindow
SetWindowPos
LoadStringW
GetDlgItemTextW
MessageBoxW
CharNextW
SetFocus
GetWindowLongW
DestroyWindow
DrawTextW
EndDialog
DialogBoxParamW
SetDlgItemTextW
GetSystemMetrics
SystemParametersInfoW
CopyRect
SetWindowLongW
GetClientRect
SendDlgItemMessageW
GetDialogBaseUnits
SetWindowTextW
LoadImageW
GetParent
GetDlgItem
ShowWindow
MapWindowPoints
GetWindowRect
SendMessageW
CreateDialogParamW
EnableWindow

advapi32

RegisterTraceGuidsW
UnregisterTraceGuids
RegEnumKeyExW
RegCreateKeyExW
TraceMessage
RegQueryInfoKeyW
RegDeleteKeyW
GetTraceLoggerHandle
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
GetTraceEnableFlags
RegDeleteValueW
GetTraceEnableLevel
RegSetValueExW

rpcrt4

CStdStubBuffer_IsIIDSupported
CStdStubBuffer_QueryInterface
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
NdrOleAllocate
IUnknown_Release_Proxy
CStdStubBuffer_Invoke
NdrDllRegisterProxy
IUnknown_QueryInterface_Proxy
NdrOleFree
CStdStubBuffer_AddRef
CStdStubBuffer_DebugServerQueryInterface
NdrDllGetClassObject
NdrDllUnregisterProxy
CStdStubBuffer_CountRefs
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
IUnknown_AddRef_Proxy

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoSetProxyBlanket
CoTaskMemAlloc

untfs

Format
ChkdskEx
Extend
Chkdsk
Recover
FormatEx

shell32

SHGetFolderPathW
ShellExecuteW

gdi32

SetBkMode

Sections

text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7b4a13e51709c5a5ebe3919b740f1e2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

rpcrt4

ole32

untfs

shell32

gdi32

Sections

text Size: 114KB - Virtual size: 114KB

.rdata Size: 173KB - Virtual size: 173KB

.rsrc Size: 30KB - Virtual size: 30KB

text
Size: 114KB - Virtual size: 114KB

.rdata
Size: 173KB - Virtual size: 173KB

.rsrc
Size: 30KB - Virtual size: 30KB