fcec4929c1b18ff53849de4b1724e4e10c3e4af0037603aab2e178b17d143576

Sharing

Copy URL Twitter E-mail

General

Target

fcec4929c1b18ff53849de4b1724e4e10c3e4af0037603aab2e178b17d143576
Size

160KB
MD5

67996702dab123405d6bede189637770
SHA1

355d98de9ccca146db556b91f5e102adcd42dddb
SHA256

fcec4929c1b18ff53849de4b1724e4e10c3e4af0037603aab2e178b17d143576
SHA512

fc2b80fc5feb3ff997d3e1aad6acf5502d9be919ebbfa58dee7ef2d6e3a643be6c13ac3c5ab96a914783aaffbcd8e95bc2ceb5082f4d013026351398cfac6045
SSDEEP

3072:Tq4EyTQb5SILiJyjR8uLixhOm2W3GgOOU9lym0ht4:T5sELyp8dG8iiC

Score

N/A

Malware Config

Signatures

Files

fcec4929c1b18ff53849de4b1724e4e10c3e4af0037603aab2e178b17d143576
.exe windows x86

7d04f4830a94ad824e690c1873cac722

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
LeaveCriticalSection
WriteFile
ExitProcess
GetVersionExW
CloseHandle
WideCharToMultiByte
GetOEMCP
LCMapStringW
HeapReAlloc
SetFilePointer
DeleteCriticalSection
GetACP
GetModuleFileNameW
CreateThread
GetModuleFileNameA
CreateEventW
GetTickCount
CreateFileA
FreeLibraryAndExitThread
lstrlenW
VirtualAlloc
GetModuleHandleW
GetVersionExA
GetStartupInfoA
CreateEventA
InterlockedIncrement
GetStdHandle
GetCurrentProcess
GetCurrentDirectoryA
GetCurrentProcessId
QueryPerformanceCounter
InterlockedDecrement
GetModuleHandleA
GetCurrentThread
GetCurrentThreadId
GetStartupInfoW
CompareFileTime
CreateMutexA
CompareStringA
GetTimeZoneInformation
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetLocaleInfoW
GetLocaleInfoA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapDestroy
HeapCreate
VirtualFree
GetSystemTimeAsFileTime
FatalAppExitA
EnterCriticalSection
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSection
GetCPInfo
Sleep
RtlUnwind
HeapSize
MultiByteToWideChar
SetEnvironmentVariableA

user32

GetSystemMetrics

gdi32

CreateRectRgnIndirect
CreateDIBitmap
SetTextColor
GetDeviceCaps
CreateFontIndirectW
GetStretchBltMode
CreateFontIndirectA
GetStockObject
ExtSelectClipRgn
SetBkColor
SetMapMode
DeleteDC
RectVisible
CreateDIBSection
SetBkMode
GetObjectW
PatBlt
GetClipBox
CreateSolidBrush
LineTo
CreatePalette
CreateCompatibleBitmap
BitBlt
SelectPalette
SelectClipRgn
CreateBitmap
GetTextExtentPoint32W
DeleteObject
CreateCompatibleDC
SetStretchBltMode
SetWindowOrgEx
MoveToEx
ExtTextOutW
Rectangle
RealizePalette
GetObjectA
RestoreDC
ExtTextOutA
CreatePenIndirect
ExtCreatePen

ole32

CoQueryProxyBlanket
CoTaskMemFree
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CLSIDFromString
OleRun
OleGetClipboard
CreateBindCtx
OleInitialize

msi

ord46

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d04f4830a94ad824e690c1873cac722

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

msi

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 40KB - Virtual size: 90KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 40KB - Virtual size: 90KB

.rsrc
Size: 16KB - Virtual size: 12KB