e6bb450358e56ec1e9dce9bcf916a2928bc33b8647f088ad8cef93f45a9ed995

Sharing

Copy URL

Twitter E-mail

General

Target

e6bb450358e56ec1e9dce9bcf916a2928bc33b8647f088ad8cef93f45a9ed995
Size

380KB
MD5

18aa0bef445d1f25073ced4b063fd0e0
SHA1

73421424218777d3f41089962b66ab3142c6b983
SHA256

e6bb450358e56ec1e9dce9bcf916a2928bc33b8647f088ad8cef93f45a9ed995
SHA512

e120e45b2a3149f3359828ba9907d91936f8f7c99d5ece7966c1cdbd31a16bdadd57461226e77cef5474a5f4050ad15f9b425992411ffaeabddb79b7b40ea8f8
SSDEEP

6144:mK5THZhSpD/gc/ZZCtNi4e0WrhMNb1uicaKdIxrtp/USuOIJ0:mK5LyjV/ZZCtk4eVsJ0eT/1R

Score

N/A

Malware Config

Signatures

Files

e6bb450358e56ec1e9dce9bcf916a2928bc33b8647f088ad8cef93f45a9ed995
.exe windows x86

fecbceb17fec160225bb70f60edc4a9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetGetConnectedState

shlwapi

StrStrIA

ws2_32

WSACleanup

oleacc

ObjectFromLresult
AccessibleObjectFromWindow

kernel32

InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetTickCount
FindClose
FindFirstFileA
GetFileAttributesA
SetFileAttributesA
DeleteFileA
FindNextFileA
RemoveDirectoryA
GetVersionExA
GetWindowsDirectoryA
CloseHandle
OpenProcess
WriteFile
lstrlenA
CreateFileA
lstrcatA
lstrcpyA
GetSystemDirectoryA
GetComputerNameA
CreateDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
lstrcpynA
GetProcAddress
LoadLibraryA
FreeLibrary
GetLocalTime
ExpandEnvironmentStringsA
CreateProcessA
TerminateProcess
Sleep
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
lstrlenW
MultiByteToWideChar
SetErrorMode
GetModuleHandleA
WaitForMultipleObjects
GetCurrentProcessId
GlobalUnlock
GlobalLock
InterlockedDecrement
lstrcmpiA
GlobalAddAtomA
ReleaseMutex
CopyFileA
CreateMutexA
WideCharToMultiByte
GetSystemInfo
VirtualProtect
IsBadCodePtr
IsBadReadPtr
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetOEMCP
HeapSize
SetFilePointer
GetSystemTimeAsFileTime
QueryPerformanceCounter
FlushFileBuffers
SetUnhandledExceptionFilter
TlsAlloc
GetCurrentThreadId
SetLastError
TlsFree
GetStringTypeW
GetStringTypeA
CompareStringW
CompareStringA
GetDateFormatA
SetEnvironmentVariableA
GetTimeFormatA
LCMapStringW
LCMapStringA
HeapReAlloc
GetCPInfo
GetCommandLineA
GetStartupInfoA
GetCurrentProcess
CreateThread
ResumeThread
TlsGetValue
TlsSetValue
ExitThread
GetLastError
FindResourceA
LoadResource
LockResource
SizeofResource
GetModuleFileNameA
SetEndOfFile
ReadFile
GetLocaleInfoW
InterlockedIncrement
RtlUnwind
VirtualQuery
GetTimeZoneInformation
RaiseException
SetStdHandle
HeapAlloc
HeapFree
LocalFree
ExitProcess

user32

LoadCursorA
RegisterClassA
CreateWindowExA
GetMessageA
PostQuitMessage
DialogBoxParamA
DefWindowProcA
RegisterHotKey
PostMessageA
GetTopWindow
SendMessageTimeoutA
IsWindow
MapVirtualKeyA
GetParent
RegisterWindowMessageA
GetWindowTextLengthA
IsWindowVisible
GetActiveWindow
GetForegroundWindow
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
EmptyClipboard
CloseClipboard
LoadIconA
GetDesktopWindow
GetDC
ReleaseDC
FindWindowExA
GetDlgItem
GetSystemMetrics
SetWindowPos
SendDlgItemMessageA
EnumWindows
wsprintfA
MessageBoxA
GetWindowLongA
GetWindowThreadProcessId
PeekMessageA
DispatchMessageA
TranslateMessage
SetTimer
DestroyWindow
EndDialog
KillTimer
SendMessageA
MoveWindow
ShowWindow
FindWindowA
EnumChildWindows
GetClassNameA
UnregisterHotKey
GetKeyState

gdi32

CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteDC
DeleteObject
GetStockObject

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegCloseKey
GetUserNameA

shell32

ShellExecuteA

ole32

CoTaskMemFree
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoInitialize

oleaut32

SysFreeString
SysAllocStringLen
SysStringLen
VariantInit
VariantClear
VariantCopy
SysAllocStringByteLen
SysStringByteLen
GetErrorInfo

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fecbceb17fec160225bb70f60edc4a9e

Headers

File Characteristics

Imports

wininet

shlwapi

ws2_32

oleacc

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 224KB - Virtual size: 223KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 12KB - Virtual size: 30KB

.rsrc Size: 104KB - Virtual size: 103KB

.text
Size: 224KB - Virtual size: 223KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 12KB - Virtual size: 30KB

.rsrc
Size: 104KB - Virtual size: 103KB