6da4fa0be8f6a46467dc9230df7e8724cb6d255fea5ac8b597c628aa7519dd70

Sharing

Copy URL Twitter E-mail

General

Target

6da4fa0be8f6a46467dc9230df7e8724cb6d255fea5ac8b597c628aa7519dd70
Size

160KB
MD5

01c7b08514d11f32069c20c0f4a77c70
SHA1

32f5393d038575efb010d02667317e84989d7aa0
SHA256

6da4fa0be8f6a46467dc9230df7e8724cb6d255fea5ac8b597c628aa7519dd70
SHA512

4c9abfe4f1c5571005614beee8bac28a3a3ac5f25030f5e955d54125c6b6e3d842fe5ec0ca2429ae18e473d629a13baf62d51b0dd415d69e9c3c7c1c82d336a5
SSDEEP

3072:Tq4EyTQb5SILiJyjR8uLixhOm2W3GgOOU9lyc0ht4:T5sELyp8dG8iIC

Score

N/A

Malware Config

Signatures

Files

6da4fa0be8f6a46467dc9230df7e8724cb6d255fea5ac8b597c628aa7519dd70
.exe windows x86

7d04f4830a94ad824e690c1873cac722

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
LeaveCriticalSection
WriteFile
ExitProcess
GetVersionExW
CloseHandle
WideCharToMultiByte
GetOEMCP
LCMapStringW
HeapReAlloc
SetFilePointer
DeleteCriticalSection
GetACP
GetModuleFileNameW
CreateThread
GetModuleFileNameA
CreateEventW
GetTickCount
CreateFileA
FreeLibraryAndExitThread
lstrlenW
VirtualAlloc
GetModuleHandleW
GetVersionExA
GetStartupInfoA
CreateEventA
InterlockedIncrement
GetStdHandle
GetCurrentProcess
GetCurrentDirectoryA
GetCurrentProcessId
QueryPerformanceCounter
InterlockedDecrement
GetModuleHandleA
GetCurrentThread
GetCurrentThreadId
GetStartupInfoW
CompareFileTime
CreateMutexA
CompareStringA
GetTimeZoneInformation
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetLocaleInfoW
GetLocaleInfoA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapDestroy
HeapCreate
VirtualFree
GetSystemTimeAsFileTime
FatalAppExitA
EnterCriticalSection
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSection
GetCPInfo
Sleep
RtlUnwind
HeapSize
MultiByteToWideChar
SetEnvironmentVariableA

user32

GetSystemMetrics

gdi32

CreateRectRgnIndirect
CreateDIBitmap
SetTextColor
GetDeviceCaps
CreateFontIndirectW
GetStretchBltMode
CreateFontIndirectA
GetStockObject
ExtSelectClipRgn
SetBkColor
SetMapMode
DeleteDC
RectVisible
CreateDIBSection
SetBkMode
GetObjectW
PatBlt
GetClipBox
CreateSolidBrush
LineTo
CreatePalette
CreateCompatibleBitmap
BitBlt
SelectPalette
SelectClipRgn
CreateBitmap
GetTextExtentPoint32W
DeleteObject
CreateCompatibleDC
SetStretchBltMode
SetWindowOrgEx
MoveToEx
ExtTextOutW
Rectangle
RealizePalette
GetObjectA
RestoreDC
ExtTextOutA
CreatePenIndirect
ExtCreatePen

ole32

CoQueryProxyBlanket
CoTaskMemFree
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CLSIDFromString
OleRun
OleGetClipboard
CreateBindCtx
OleInitialize

msi

ord46

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d04f4830a94ad824e690c1873cac722

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

msi

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 40KB - Virtual size: 90KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 40KB - Virtual size: 90KB

.rsrc
Size: 16KB - Virtual size: 12KB