b9acc89d4df0567d89d2b99b46c8f43a819b0f01df0281c86eece17b259ad91a

Sharing

Copy URL

Twitter E-mail

General

Target

b9acc89d4df0567d89d2b99b46c8f43a819b0f01df0281c86eece17b259ad91a
Size

664KB
MD5

6a99f4016fc534efb812e6bb1fccbbd0
SHA1

132a3098312b4ca4232d1ea71f3c3031fcf6c3ac
SHA256

b9acc89d4df0567d89d2b99b46c8f43a819b0f01df0281c86eece17b259ad91a
SHA512

298913f0bdcc91ba18f87e5cc2b857d458a91d7d19b21058bde45ae3f8650060bc5ce667cff0e958d107e443f88fa8cb892259796b7d7da3c56b606c763e01ed
SSDEEP

12288:Vsrut2Su8/dlIdpcnussEXptmBmBmBmBm0mBmBmBmluLuLuLu:Wry9lJBXpt6666t666

Score

N/A

Malware Config

Signatures

Files

b9acc89d4df0567d89d2b99b46c8f43a819b0f01df0281c86eece17b259ad91a
.exe windows x86

1a1c853083f4efe9e6f24ed6cc3a9fd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
SysFreeString

gdi32

CreateCompatibleDC
SetTextColor
GetStockObject
SelectObject
GetDeviceCaps
SetBkMode
SetBkColor
BitBlt
CreateSolidBrush
DeleteDC

advapi32

RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA

kernel32

lstrcmpiW
CompareStringA
GetOEMCP
VirtualAlloc
Sleep
VirtualFree
HeapCreate
IsValidCodePage
CreateProcessA
SizeofResource
InterlockedExchange
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
lstrlenW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
RemoveDirectoryA
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
UnmapViewOfFile
LCMapStringW
GetLastError
LeaveCriticalSection
HeapAlloc
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GetProcAddress
FindNextFileA
CreateFileMappingA
ResetEvent
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GlobalLock
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
SetEndOfFile
GetConsoleMode
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
GetExitCodeProcess
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetCommandLineA
GetSystemTimeAsFileTime
WaitForSingleObject
WriteFile
GetStringTypeA
lstrcmpiA
GetCPInfo
GetTempPathA
SetStdHandle
FreeEnvironmentStringsW
CreateFileA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetCommandLineW
HeapDestroy
FindFirstFileW
SetEvent
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetVersion
GetEnvironmentVariableA
RtlUnwind

user32

SetCursor
EnableWindow
CallWindowProcA
GetClientRect
InvalidateRect
DrawTextA
SystemParametersInfoA
GetSysColor
GetFocus
MessageBoxA
SetDlgItemTextA
EndDialog
SetForegroundWindow
LoadCursorA
ScreenToClient
GetDlgItem
CheckMenuItem
SetWindowTextA
SetWindowLongA
ReleaseCapture
SetCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
KillTimer
FillRect
CreateWindowExA
GetWindowLongA
RegisterClassA
EnableMenuItem
GetWindow
IsWindowEnabled
TranslateMessage
ShowWindow
UpdateWindow
GetMessageA
DestroyWindow
MoveWindow
SendMessageA
UnregisterClassA
GetCursorPos
GetDC
PeekMessageA
DispatchMessageA
SetWindowPos
ReleaseDC

Sections

.text
Size: 500KB - Virtual size: 499KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a1c853083f4efe9e6f24ed6cc3a9fd9

Headers

File Characteristics

Imports

oleaut32

gdi32

advapi32

kernel32

user32

Sections

.text Size: 500KB - Virtual size: 499KB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 88KB - Virtual size: 89KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 500KB - Virtual size: 499KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 88KB - Virtual size: 89KB

.rsrc
Size: 4KB - Virtual size: 3KB