d06a2e6279324dc0155e445068cd17a77b48fdae6941ecc3f7d1f0336c2d5d3a

Sharing

Copy URL Twitter E-mail

General

Target

d06a2e6279324dc0155e445068cd17a77b48fdae6941ecc3f7d1f0336c2d5d3a
Size

46KB
MD5

534d4aa1711ec3ea27e07d8ea2d18150
SHA1

b3a1fc7e0f718179cc8365a6c7b07bfabf08fa4b
SHA256

d06a2e6279324dc0155e445068cd17a77b48fdae6941ecc3f7d1f0336c2d5d3a
SHA512

3c868ab82cebf8eab7a5ba01fd5ef33ba9f50a7f3012433ab41bb45cba908e603616a7a319e115fbc4ba341f27ba3d37d7042756e4467f5bf5d2a0ace22c6308
SSDEEP

768:R9cwhuxcJ9hzIp4KMy/JS6iccG6MoJrQ:rpuCLFJy/JRiBMom

Score

N/A

Malware Config

Signatures

Files

d06a2e6279324dc0155e445068cd17a77b48fdae6941ecc3f7d1f0336c2d5d3a
.exe windows x86

480914071cb3ba620b5274d1628fb317

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CreateStreamOnHGlobal

gdi32

CreateCompatibleDC
DeleteDC
DeleteObject
SelectObject
BitBlt
CreateCompatibleBitmap

gdiplus

GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToStream
GdiplusShutdown
GdiplusStartup
GdipDisposeImage
GdipCreateBitmapFromFile
GdipCreateBitmapFromHBITMAP

user32

SendMessageA
ReleaseDC
RegisterHotKey
OpenClipboard
MessageBoxA
MapVirtualKeyA
IsClipboardFormatAvailable
GetWindowTextA
GetWindowRect
SetWindowsHookExA
GetKeyboardState
GetKeyState
GetKeyNameTextA
GetForegroundWindow
GetDC
GetClipboardData
GetClassNameA
EnumChildWindows
CloseClipboard
CallNextHookEx
ToAscii
UnhookWindowsHookEx
GetMessageA

kernel32

lstrlenA
lstrcmpA
lstrcatA
WideCharToMultiByte
Sleep
RtlZeroMemory
RtlMoveMemory
ReleaseMutex
ReadFile
OpenMutexA
MultiByteToWideChar
LeaveCriticalSection
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GlobalAlloc
GetTimeFormatA
CloseHandle
CreateFileA
CreateMutexA
CreatePipe
CreateProcessA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExpandEnvironmentStringsA
FindFirstFileA
GetFileSize
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcessHeap
GetTickCount

advapi32

GetUserNameA

wininet

InternetCloseHandle
InternetConnectA
InternetOpenA
InternetOpenUrlA
InternetReadFile
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA

shell32

ShellExecuteA

avicap32

capCreateCaptureWindowA

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

480914071cb3ba620b5274d1628fb317

Headers

File Characteristics

Imports

ole32

gdi32

gdiplus

user32

kernel32

advapi32

wininet

shell32

avicap32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 7KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 7KB

.rsrc
Size: 31KB - Virtual size: 30KB