d4a6bd545e35c0a4faffa099a72107ccdd07129e3f7987ee83dbc94b9699b59b

Sharing

Copy URL Twitter E-mail

General

Target

d4a6bd545e35c0a4faffa099a72107ccdd07129e3f7987ee83dbc94b9699b59b
Size

831KB
MD5

685a13dc1a472cfc73bbfc4d3713a0c6
SHA1

ba69150811cdee5eedb22193be9b4212768859b4
SHA256

d4a6bd545e35c0a4faffa099a72107ccdd07129e3f7987ee83dbc94b9699b59b
SHA512

594b0e5e435193477572d65cb8d764369bc3d9a643bc440d9f60980ba5eb319b9b550a0e7a40d5973e5d8faea9cb7c80a98c8641a444ce55849f575f169331bd
SSDEEP

24576:wispYt53YxDJnkMT+oIU+/rWCtaQc3MWfb19DNshgr:kYtaeyCoQc3NBbsi

Score

N/A

Malware Config

Signatures

Files

d4a6bd545e35c0a4faffa099a72107ccdd07129e3f7987ee83dbc94b9699b59b
.exe windows x86

694e45964108d0efe3dbe7adcd7e95b3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
SetSystemPaletteUse
SetTextJustification
GetNearestPaletteIndex
GetDCBrushColor
GetMapMode
GetTextCharacterExtra
GetTextAlign
GetNearestColor
GetObjectType
GetDCPenColor
GetPixelFormat
GetRandomRgn
GetFontLanguageInfo

kernel32

GetProcessHeap
GetFileType
LoadResource
MoveFileA
GlobalSize
GetCurrentThreadId
GlobalHandle
GetVersion
GetProcessId
GetLastError
LockResource
CloseHandle
SetFilePointer
GlobalFlags
IsProcessorFeaturePresent
GetCurrentProcessId
GetModuleHandleA
GetCurrentProcess
IsDebuggerPresent
GetTickCount
FlushFileBuffers
LocalFlags
GetProcAddress
CreateThread
LocalAlloc
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
CreateFileA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
SetHandleCount
GetFileAttributesA
GetCurrentDirectoryA
GetFullPathNameA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
HeapFree
GetModuleHandleW
ExitProcess
HeapAlloc
HeapReAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RaiseException
RtlUnwind
GetCommandLineA
GetStartupInfoA
LCMapStringA
LCMapStringW
GetCPInfo
GetTimeZoneInformation
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapCreate
VirtualFree
VirtualAlloc
WriteFile
GetStdHandle
GetModuleFileNameA
FreeLibrary
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
ReadFile

user32

GetWindowDC
GetKeyboardType
CallWindowProcA
IsWindowEnabled
GetDlgItemInt
SendMessageA
SetDlgItemTextA
GetForegroundWindow
GetMenuItemID
GetMenuItemCount
CheckDlgButton
GetWindowContextHelpId
GetMenuCheckMarkDimensions
GetWindowLongA
DrawTextA
GetMenu
GetDlgItem
GetInputState
LoadIconA
IsWindowUnicode
RemovePropA
EndPaint
ShowWindow
GetQueueStatus
GetDC
WindowFromDC
GetPropA
PostMessageA
BeginPaint
EndDialog
MoveWindow
SetFocus

Sections

.text
Size: 656KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

694e45964108d0efe3dbe7adcd7e95b3

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

user32

Sections

.text Size: 656KB - Virtual size: 656KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 122KB - Virtual size: 155KB

.text
Size: 656KB - Virtual size: 656KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 122KB - Virtual size: 155KB