6ee176a46165824b8d6c8d35d22461962de074f9d92a1ef2d13249d112841ed0

Sharing

Copy URL

Twitter E-mail

General

Target

6ee176a46165824b8d6c8d35d22461962de074f9d92a1ef2d13249d112841ed0
Size

143KB
MD5

164186ece7e389979854a10a9c98c000
SHA1

92560b1b7faba5613dc184513e52d3ead22ad282
SHA256

6ee176a46165824b8d6c8d35d22461962de074f9d92a1ef2d13249d112841ed0
SHA512

5b697cf1a87a95e7dcc29f2d439578e74d47692867f4c0efa45b1137e0e2d3953464b1344fcb47ca269f0845fceae01aaede8fb9d1e4e4315a42dd1d479626ae
SSDEEP

3072:nH5MoKDWUlmAFMzFNapan3pJz1s73JgaS0+B1q3i:nWoKZv0Yan3pcLq1B

Score

N/A

Malware Config

Signatures

Files

6ee176a46165824b8d6c8d35d22461962de074f9d92a1ef2d13249d112841ed0
.exe windows x86

76e004a0f31567fefd98a2a95a70f341

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InitializeCriticalSection
GetSystemDirectoryW
GetUserDefaultLCID
GetStdHandle
EnterCriticalSection
GetCurrentThreadId
HeapAlloc
GetStartupInfoW
GetDateFormatA
MulDiv
CompareStringW
RaiseException
LCMapStringA
VirtualQuery
GetFileType
FindNextChangeNotification
LocalFree
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
FindResourceW
GetCommandLineW
LoadLibraryExW
WaitForMultipleObjects
LoadResource
GetTempFileNameW
GetComputerNameW
DeleteCriticalSection
lstrlenW
InterlockedDecrement
GetFileSize
GetTimeFormatA
HeapFree
HeapReAlloc
GetModuleFileNameA
InterlockedCompareExchange
TlsGetValue
GetStartupInfoA
GetModuleHandleW
CloseHandle
GetWindowsDirectoryW
GetFileAttributesW
WritePrivateProfileSectionW
SetConsoleCtrlHandler
UnhandledExceptionFilter
GetConsoleOutputCP
CreateFileW
lstrcmpiW
WideCharToMultiByte
InterlockedExchange
GlobalLock
GetStringTypeW
DebugBreak
WinExec
GetCurrentProcessId
lstrcpynW
InterlockedIncrement
SetLastError
lstrcatW
LockResource
GetProcAddress
FormatMessageW
VerLanguageNameW
WaitForSingleObject
CopyFileW
FreeLibrary
IsDebuggerPresent
SetHandleCount
IsProcessorFeaturePresent
LoadLibraryW
TlsAlloc
VirtualFree
lstrlenA
OutputDebugStringW
QueryPerformanceCounter
OpenEventW
HeapDestroy
SetStdHandle
LocalAlloc
ResetEvent
WriteConsoleA
CompareStringA
GlobalUnlock
Sleep
FindAtomA
LoadLibraryExA
GetVersion
FileTimeToSystemTime
LeaveCriticalSection
GetFileAttributesExW
WritePrivateProfileStringW
GetPrivateProfileStringW
EnumSystemLocalesA
GetStringTypeA
GetDateFormatW
GlobalSize
ExpandEnvironmentStringsA
GetEnvironmentStringsW
FindFirstChangeNotificationW
lstrcmpW
IsValidCodePage
MultiByteToWideChar
GetCurrentProcess
GetCPInfo
ExitProcess
GlobalAlloc
TlsSetValue
FreeEnvironmentStringsW
GetModuleFileNameW
RtlUnwind
CreateFileA
CreateThread
LoadLibraryA
GetTempPathW
GetModuleHandleA
HeapCreate
WriteConsoleW
GetSystemDefaultLangID
IsValidLocale
GetLastError
SizeofResource
LCMapStringW
HeapSize
ExpandEnvironmentStringsW
GetCurrentThread
SystemTimeToTzSpecificLocalTime
GetVersionExW
FlushInstructionCache
lstrcpynA
GetConsoleCP
GetOEMCP
lstrcpyW
GetPrivateProfileIntW
GetConsoleMode
ReadFile

user32

DestroyWindow
EndDialog
SetWindowTextW
ReleaseDC
InvalidateRect
GetClientRect
LoadMenuW
SetCaretPos
CreatePopupMenu
GetActiveWindow
DragDetect
SetWindowsHookExW
GetSystemMenu
DrawEdge
ShowScrollBar
UnhookWindowsHookEx
SetClipboardData
GetCapture
GetSysColorBrush
InsertMenuW
GetWindowDC
OffsetRect
WindowFromPoint
GetDlgCtrlID
CharLowerW
LoadImageW
EnableWindow
GetMenuItemInfoW
RedrawWindow
GetWindowLongW
RegisterClipboardFormatW
GetDoubleClickTime
BeginDeferWindowPos
SetScrollInfo
IsMenu
PeekMessageW
SetMenu
DefFrameProcW
DrawFrameControl
SetForegroundWindow
CharNextW
EmptyClipboard
PostQuitMessage
GetKeyState
GetParent
GetDesktopWindow
DispatchMessageW
CopyRect
LoadAcceleratorsW
FrameRect
IsWindowEnabled
CreateCaret
EnableMenuItem
UpdateWindow
SetWindowPos
GetMenuDefaultItem
DrawMenuBar
SetScrollPos
TranslateMessage
GetFocus
SetCapture
GetWindowTextW
wvsprintfW
RemoveMenu
ModifyMenuW
PostMessageW
GetMenu
ReleaseCapture
SetMenuDefaultItem
RegisterClassExW
DestroyCaret
RegisterClassW
GetDlgItemTextW
SetDlgItemTextW
LoadCursorW
MonitorFromWindow
GetDC
IsClipboardFormatAvailable
DrawFocusRect
GetWindowRect
CreateWindowExW
MapWindowPoints
GetClassLongW
UnregisterClassW
SetDlgItemInt
KillTimer
SetRectEmpty
GetMonitorInfoW
EndDeferWindowPos
MoveWindow
EqualRect
SetMenuItemInfoW
GetWindowLongA
GetScrollInfo
SetFocus
IsChild
GetSystemMetrics
GetWindowPlacement
TranslateMDISysAccel
GetDlgItemInt
BeginPaint
SetParent
GetClassInfoW
LoadStringW
SystemParametersInfoW
CallNextHookEx
ClientToScreen
GetMenuItemID
CloseClipboard
DefMDIChildProcW
ScrollWindowEx
UnregisterClassA
SendMessageW
GetMessageW
CallWindowProcW
OpenClipboard
DialogBoxParamW
IsWindowVisible
MessageBeep
TrackPopupMenu
GetWindowTextLengthW
GetCursorPos
GetClassNameW
FindWindowW
BringWindowToTop
FillRect
GetMessagePos
InflateRect
RegisterWindowMessageW
DeferWindowPos
IntersectRect
DestroyMenu
SetCursor
MessageBoxW
TrackPopupMenuEx
GetMenuStringW
EndPaint
SetTimer
AppendMenuW
GetWindowThreadProcessId
TranslateAcceleratorW
PtInRect
ScreenToClient
DefWindowProcW
LockWindowUpdate
LoadIconW
LoadStringA
GetSubMenu
GetWindow

gdi32

Polyline
SetTextColor
SetBkMode
GetTextExtentPointW
CreateSolidBrush
DeleteDC
GetStockObject
GetClipBox
SetPolyFillMode
RealizePalette
TextOutW
DPtoLP
SetBrushOrgEx
BitBlt
GetTextMetricsW
CreatePatternBrush
GetTextExtentPoint32W
SetBkColor
GetObjectW
CreateBitmap
Rectangle
DeleteObject
GetDeviceCaps
SelectClipRgn
RestoreDC
CreatePalette
LineTo
CreateCompatibleDC
ExtTextOutW
SetWindowOrgEx
CreateCompatibleBitmap
CreatePen
CreateDIBSection
SelectPalette
SelectObject
SetViewportOrgEx
LPtoDP
MoveToEx
IntersectClipRect
PatBlt
GetViewportOrgEx
Polygon
SaveDC
CreateFontIndirectW
GetClipRgn
CreateRectRgn
CreateFontW

oleaut32

VarI4FromStr
VarUI4FromStr
VarDecCmp
VarR8FromStr
SystemTimeToVariantTime
SysFreeString
VarDecFromStr

wsock32

ntohs
shutdown
gethostbyname
connect
ioctlsocket
WSAAsyncSelect
accept
WSASetLastError
recv
socket
bind
inet_addr
htons
send
closesocket
WSAGetLastError
getpeername
listen
getsockname

msvcrt

strncmp
_XcptFilter
wcslen
__CxxFrameHandler
memmove
atol
__p__commode
exit
localtime
rand
fopen
sprintf
_except_handler3
_ftol
_strnicmp
_setmbcp
_acmdln
fwrite
__dllonexit
_i64toa
_adjust_fdiv
_exit
_controlfp
strchr
_purecall
_initterm
__getmainargs
time
__setusermatherr
fclose
_stricmp
__set_app_type
__p__fmode
atoi
_onexit

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76e004a0f31567fefd98a2a95a70f341

Headers

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

wsock32

msvcrt

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 6KB - Virtual size: 43KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 6KB - Virtual size: 43KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 6KB