1f99ec041c050a375aecc7772f8b4f1940ba11f9670b0285ae53042dde7ae83b

Sharing

Copy URL Twitter E-mail

General

Target

1f99ec041c050a375aecc7772f8b4f1940ba11f9670b0285ae53042dde7ae83b
Size

328KB
MD5

7783ff1c109dc22ef7f9312407d020b0
SHA1

1c643185f39bb24d034e6621ecddda30b2a12566
SHA256

1f99ec041c050a375aecc7772f8b4f1940ba11f9670b0285ae53042dde7ae83b
SHA512

26420bcb6c186e49ef9c0fe90ad7f2e680da8d774c37e3c0c8f1e940f7772a7545c64b04487e618c57f959d8470ac675667dcb1959dc56a4d0d317d5c7859995
SSDEEP

3072:8Z+vder7tP8Iek/XeyVinrM5XIYwE/rvB2JNZQUb98PXCB33V/cQYTfobXcCB3oV:cOeFZfinr8XIYXmNW0ePXkFYCcnh

Score

N/A

Malware Config

Signatures

Files

1f99ec041c050a375aecc7772f8b4f1940ba11f9670b0285ae53042dde7ae83b
.exe windows x86

5fc25d52753abd9b1e6d489f0fc53e15

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeResource
CreateMutexW
GetLastError
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
GlobalUnlock
GetOEMCP
GetACP
GetCPInfo
Sleep
InitializeCriticalSection
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
GlobalLock
GlobalAlloc
lstrlenW
MultiByteToWideChar
CreateThread
GetModuleHandleA
LoadLibraryA
TlsSetValue
TlsAlloc
TlsGetValue
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
HeapReAlloc
RtlUnwind
GetProcAddress
HeapFree
HeapAlloc
GetCommandLineA
GetVersionExA
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc

user32

GetClientRect
InvalidateRect
BeginPaint
ReleaseDC
EndPaint
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassExA
ShowWindow
DefWindowProcA
GetWindowTextA
SetWindowTextA
GetMessageA
CreateWindowExW
SendMessageW
SetFocus
SetWindowPos
GetWindowLongA
SetWindowLongA
GetWindowThreadProcessId
GetClassNameA
GetForegroundWindow
CallWindowProcA
FrameRect
InflateRect
MoveWindow
SetWindowRgn
GetDC
DestroyWindow
SendMessageA
UpdateWindow
DispatchMessageA
TranslateMessage

gdi32

CreateSolidBrush
CreateRoundRectRgn
GetDeviceCaps
CreateFontIndirectA

advapi32

RegOpenKeyExA

ole32

CreateStreamOnHGlobal

gdiplus

GdipDrawImageRectI
GdipAlloc
GdiplusStartup
GdipGetImageWidth
GdipGetImageHeight
GdipCreateFromHDC
GdipDeleteGraphics
GdipLoadImageFromStream
GdipCloneImage
GdipDisposeImage
GdipFree

comctl32

_TrackMouseEvent

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fc25d52753abd9b1e6d489f0fc53e15

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

gdiplus

comctl32

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 6KB

.rsrc Size: 272KB - Virtual size: 272KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 272KB - Virtual size: 272KB