01865e2ae861961ec155fa160a08600ef87829db7014d91a39bacaf97b5cb136

Sharing

Copy URL

Twitter E-mail

General

Target

01865e2ae861961ec155fa160a08600ef87829db7014d91a39bacaf97b5cb136
Size

134KB
MD5

79e84ed20692e47c3212ec8ecbc1cee0
SHA1

3f3a4aaa6df456514fde9b5092463cfc9bff787f
SHA256

01865e2ae861961ec155fa160a08600ef87829db7014d91a39bacaf97b5cb136
SHA512

c3f7199af1272eb593a37a23ac01313b27808df34be946610b6d862025688ef52ee7e836c0555efc0e864f8157e2e9dfb412ffefeba5a16d392b3252bee9812c
SSDEEP

3072:uuWvova3T+e8+FDZ1VIPT4wfF3qT+ZM5HRm/Rgf:2vovzelFDZj+45HQp

Score

N/A

Malware Config

Signatures

Files

01865e2ae861961ec155fa160a08600ef87829db7014d91a39bacaf97b5cb136
.exe windows x86

bb6fb2f7f4a8171c120e9392d840ca3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetCurrentProcess
SetEnvironmentVariableA
SetLastError
GetTimeFormatA
GetModuleHandleW
HeapReAlloc
GetFullPathNameA
EnterCriticalSection
MulDiv
FileTimeToSystemTime
lstrcatA
HeapSize
OutputDebugStringA
GetConsoleOutputCP
TlsSetValue
TlsAlloc
CreateFileW
InitializeCriticalSectionAndSpinCount
GetTickCount
HeapDestroy
FindFirstFileA
ExitProcess
GetProcessHeap
SetHandleCount
SetEndOfFile
lstrcmpA
GetEnvironmentStringsW
GetOEMCP
LoadResource
SizeofResource
SetCurrentDirectoryA
ReadFile
RaiseException
GetACP
GetStdHandle
GetUserDefaultLCID
lstrcpynA
GlobalAlloc
LeaveCriticalSection
WriteConsoleA
GetLocaleInfoA
lstrlenA
GlobalLock
GetConsoleMode
CompareStringA
IsValidCodePage
GetModuleFileNameA
VirtualAlloc
WriteConsoleW
LockResource
SetFilePointer
GetCurrentDirectoryA
GetLastError
UnmapViewOfFile
GetModuleHandleA
SetUnhandledExceptionFilter
GetLocaleInfoW
IsValidLocale
GetCurrentThreadId
GetDriveTypeA
GetCurrentThread
FreeLibrary
HeapAlloc
GetTimeZoneInformation
GlobalFree
WriteFile
EnumSystemLocalesA
GetProcAddress
LCMapStringA
FreeEnvironmentStringsW
IsDebuggerPresent
IsBadReadPtr
FindNextFileA
GetSystemTimeAsFileTime
HeapCreate
GetCurrentProcessId
GetFileSize
FindClose
GetDateFormatA
HeapFree
WriteConsoleOutputCharacterA
GetPrivateProfileStringW
SetConsoleMode
GetPrivateProfileIntW
VirtualProtectEx
lstrcpyW
GetStartupInfoA
GlobalUnlock
FindResourceA
WideCharToMultiByte
MultiByteToWideChar
DeleteCriticalSection
InterlockedExchange
LoadLibraryA
GetCommandLineA
TlsGetValue
GetEnvironmentStrings
CloseHandle
GetStringTypeA
QueryPerformanceCounter
IsProcessorFeaturePresent
FindResourceW
InterlockedDecrement
InitializeCriticalSection
GetConsoleCP
Sleep
SetStdHandle
TlsFree
GetStringTypeW
FreeEnvironmentStringsA
UnhandledExceptionFilter
CompareStringW
CreateFileA
GetFileType
MapViewOfFile
FileTimeToLocalFileTime
FatalAppExitA
FlushFileBuffers
TerminateProcess
InterlockedIncrement
GetVersionExA
SetConsoleCtrlHandler
GetCPInfo
VirtualQuery
VirtualFree
RtlUnwind
CreateFileMappingA
VirtualProtect
LCMapStringW
QueryPerformanceFrequency

user32

GetForegroundWindow
GetFocus
GetWindowRgn
EnumDisplayDevicesA
GetDC
SetFocus
LoadIconA
CallWindowProcA
SetWindowLongA
SetWindowRgn
SetDlgItemTextA
DrawTextA
GetClassInfoA
LoadStringA
MessageBoxA
GetWindow
GetWindowRect
SetCursorPos
ShowCursor
DispatchMessageA
SetCursor
GetAsyncKeyState
SystemParametersInfoA
EnumDisplaySettingsA
LoadCursorA
GetClassLongA
SetWindowTextA
TranslateAcceleratorA
GetDlgItemTextA
SetWindowPos
RegisterClassA
OpenClipboard
GetWindowLongA
GetClientRect
GetParent
GetWindowTextA
GetDlgItem
MoveWindow
EndDialog
IsWindowEnabled
DestroyWindow
PostQuitMessage
ShowWindow
GetDesktopWindow
IsWindowVisible
DrawTextW
GetMenu
GetSubMenu
GetCursorPos
SetClipboardData
EnumWindows
SetClassLongA
GetWindowPlacement
LoadMenuA
DestroyMenu
PeekMessageA
TrackPopupMenuEx
GetClassNameA
GetCapture
ScreenToClient
GetSystemMetrics
TranslateMessage
AdjustWindowRect
ReleaseCapture
CreateWindowExA
IsWindow
EnumChildWindows
GetIconInfo
OffsetRect
EnableWindow
PtInRect
SetRect
GetActiveWindow
CloseClipboard
mouse_event
IsIconic
PostMessageA
RedrawWindow
wsprintfA
SetCapture
CheckRadioButton
GetMessageA
IntersectRect
RegisterClipboardFormatA
DialogBoxParamA
SendMessageA
DefWindowProcA
ClientToScreen
ReleaseDC
LoadAcceleratorsA
CreateDialogIndirectParamA
GetKeyState
SetForegroundWindow

gdi32

CreateRectRgnIndirect
SetTextAlign
GetStockObject
PtInRegion
ExtEscape
GetPath
SelectObject
CreateFontIndirectA
SetTextColor
CombineRgn
SetBkColor
SetBkMode
DeleteObject
GetDeviceCaps
CreateDIBSection
SetMapMode
GetCharWidthA
CreateRectRgn
GetObjectA
EndPath
DeleteDC
GetTextExtentPoint32A
ExtTextOutA
GetTextMetricsA
CreateDCA
TextOutA
CreateCompatibleDC
CreateFontA
BeginPath
GetDIBits
GetDCOrgEx
CreatePolygonRgn
GetClipBox

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyA
RegDeleteValueA

ole32

CoCreateInstance
OleGetClipboard
CoInitialize
CoUninitialize

winmm

timeGetTime

iphlpapi

AddIPAddress

mprapi

MprAdminBufferFree

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.p0rple5
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.c0an5
Size: 1024B - Virtual size: 526B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat_0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb6fb2f7f4a8171c120e9392d840ca3a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

winmm

iphlpapi

mprapi

Sections

.text Size: 6KB - Virtual size: 5KB

.itext Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 38KB

.p0rple5 Size: 109KB - Virtual size: 108KB

.c0an5 Size: 1024B - Virtual size: 526B

.rsrc Size: 7KB - Virtual size: 7KB

.idat_0 Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 5KB

.itext
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 38KB

.p0rple5
Size: 109KB - Virtual size: 108KB

.c0an5
Size: 1024B - Virtual size: 526B

.rsrc
Size: 7KB - Virtual size: 7KB

.idat_0
Size: 2KB - Virtual size: 1KB