f6a99f87d5f4f69f3bbedcf5b73abb4a63de8cf1b0dd5e7ac290b188aaa236e7

Sharing

Copy URL Twitter E-mail

General

Target

f6a99f87d5f4f69f3bbedcf5b73abb4a63de8cf1b0dd5e7ac290b188aaa236e7
Size

400KB
MD5

2a764d2bf4c8235e6972be2013470900
SHA1

dd6d4c352eae0e25cd2499902be042556022f0ec
SHA256

f6a99f87d5f4f69f3bbedcf5b73abb4a63de8cf1b0dd5e7ac290b188aaa236e7
SHA512

fe2b205bfb31aaf42198fe3ec02d31727ea3e3d89201e145ccde8c66326834fa8c955fedce19849b6158b34c357eb3970106d0f6b3d0a9f65185a54784fe7974
SSDEEP

6144:DeKq3M7jbrvPJ68pMQLXvb/9OcGYwa5w6QlmR3UpRCT:yM7j/vxLMoXr9kRaZmm8I

Score

N/A

Malware Config

Signatures

Files

f6a99f87d5f4f69f3bbedcf5b73abb4a63de8cf1b0dd5e7ac290b188aaa236e7
.exe windows x86

43fac87a6c2c7f196ada082b6ac07e5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
WSACleanup

kernel32

SetStdHandle
GetStringTypeW
GetStringTypeA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetTickCount
InterlockedExchangeAdd
InterlockedIncrement
WaitForSingleObject
SetEvent
CloseHandle
CreateThread
CreateEventW
DisconnectNamedPipe
CancelIo
GetOverlappedResult
GetLastError
WriteFile
ReadFileEx
Sleep
InterlockedDecrement
WaitForMultipleObjectsEx
ConnectNamedPipe
CreateNamedPipeW
ResetEvent
OpenEventW
SetThreadPriority
WaitForMultipleObjects
CreateFileW
ReadFile
DeviceIoControl
GetVersionExW
GetCommModemStatus
ClearCommError
SetLastError
PurgeComm
WaitCommEvent
SetCommMask
SetupComm
SetCommTimeouts
GetCommState
SetCommState
WideCharToMultiByte
WriteConsoleA
FlushFileBuffers
CreateSemaphoreW
ReleaseSemaphore
ReleaseMutex
CreateMutexW
OutputDebugStringW
SetEndOfFile
QueryPerformanceFrequency
GetLocalTime
GetDateFormatW
GetFileAttributesW
GetCurrentThreadId
GetModuleFileNameW
GetFileSize
DeleteFileW
QueryPerformanceCounter
SetFileAttributesW
CopyFileW
SetFilePointer
CreateDirectoryW
GetCurrentProcessId
LoadLibraryW
GetProcAddress
FreeLibrary
LocalFree
LocalAlloc
GetConsoleCP
GetLocaleInfoA
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetSystemTimeAsFileTime
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
GetConsoleOutputCP
WriteConsoleW
CreateFileA
MultiByteToWideChar
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
RtlUnwind
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetStdHandle
GetModuleFileNameA
HeapSize
ExitProcess
GetCPInfo
GetConsoleMode

user32

wsprintfW
LoadStringW
LoadAcceleratorsW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
CreateWindowExW
SetWindowPos
LoadCursorW
RegisterClassExW
BeginPaint
EndPaint
PostQuitMessage
DefWindowProcW
DestroyWindow
DialogBoxParamW
EndDialog
KillTimer
SetTimer
PostMessageW
LoadIconW

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegQueryValueExW
RegCloseKey
RegCreateKeyExW

shell32

SHGetFolderPathW

shlwapi

PathAppendW

Sections

.text
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 196KB - Virtual size: 1.3MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

43fac87a6c2c7f196ada082b6ac07e5a

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

advapi32

shell32

shlwapi

Sections

.text Size: 108KB - Virtual size: 104KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 8KB - Virtual size: 220KB

.rsrc Size: 48KB - Virtual size: 46KB

.vmp0 Size: 196KB - Virtual size: 1.3MB

.text
Size: 108KB - Virtual size: 104KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 8KB - Virtual size: 220KB

.rsrc
Size: 48KB - Virtual size: 46KB

.vmp0
Size: 196KB - Virtual size: 1.3MB