0e574f92d595d6705f283dde0f887c08556283375cb34682af5972e1c6885bb7

Sharing

Copy URL Twitter E-mail

General

Target

0e574f92d595d6705f283dde0f887c08556283375cb34682af5972e1c6885bb7
Size

160KB
MD5

04664b3bae3be464c48d5b947c79f3cf
SHA1

0593037030eb69c3924ad04a0c2891acfd35c118
SHA256

0e574f92d595d6705f283dde0f887c08556283375cb34682af5972e1c6885bb7
SHA512

e3408b076ce328c39c80679d65685e81c4efa47f662cbeb8cbaeb90ea1e1c974cb93fc036026a10e45b90c9db75d5a436c8ffe0f247177b75b7df494222e558b
SSDEEP

3072:ZlolnKftTnZheiQ1gqb5PhaCRD08oOF5C91QMh1crACA7fQyzuTWeqm3FUi5j:wlp5wvQMmACSfcKe

Score

N/A

Malware Config

Signatures

Files

0e574f92d595d6705f283dde0f887c08556283375cb34682af5972e1c6885bb7
.exe windows x86

32093e022463866e60bc381d6e25d20b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
DispatchMessageA
InvalidateRect
PtInRect
LoadCursorA
FindWindowA
GetSysColor
SetForegroundWindow
IsRectEmpty
SetScrollPos
ShowOwnedPopups
ReleaseDC
DrawTextA
DrawIcon
UnhookWindowsHookEx
GetKeyState
GetFocus
DestroyCursor
GetSystemMetrics
RegisterClipboardFormatA
WinHelpA
AdjustWindowRectEx
GetCursorPos
GetDC
UpdateWindow
GetMessageA
GetSysColorBrush
CheckMenuItem
LoadIconA
SetMenu

kernel32

GetCurrentProcess
LocalFileTimeToFileTime
MultiByteToWideChar
GetModuleHandleA
IsBadWritePtr
InterlockedIncrement
GetLocaleInfoW
lstrcpyA
LocalFree
lstrlenW
lstrcatA
GetModuleHandleW
GetEnvironmentStrings
VirtualProtect
GetCommandLineA
GetDriveTypeA
FreeEnvironmentStringsA
GetUserDefaultLangID

msvcrt

__getmainargs
__set_app_type
calloc
_XcptFilter
getenv
_initterm
__setusermatherr
strrchr
_write
_except_handler3
__p__commode
free
fputc
_adjust_fdiv
_onexit
fwrite
__p___initenv
exit
strcpy
signal
malloc
atoi
strncpy
__p__fmode
_exit
_vsnprintf
_controlfp
fclose
abort
strstr

advapi32

RegOpenKeyExW
ControlService
OpenServiceW
SetSecurityDescriptorDacl
RegQueryValueExW
RegOpenKeyW
RegFlushKey
GetUserNameA
RegQueryValueExA
CryptDestroyHash
CryptReleaseContext
AllocateAndInitializeSid
RegDeleteValueW
AddAccessAllowedAce
RegEnumValueA
RegEnumKeyExW
CryptHashData
RegEnumKeyExA
RegQueryValueA
RegDeleteKeyA
InitializeSecurityDescriptor
AdjustTokenPrivileges
SetSecurityDescriptorOwner

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32093e022463866e60bc381d6e25d20b

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 77KB - Virtual size: 77KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 39KB - Virtual size: 38KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 77KB - Virtual size: 77KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 39KB - Virtual size: 38KB