a65b2ea41d7753aaa5c6f105a54a59a985dafabc142a8f52cce7466123b02cff

Sharing

Copy URL

Twitter E-mail

General

Target

a65b2ea41d7753aaa5c6f105a54a59a985dafabc142a8f52cce7466123b02cff
Size

137KB
MD5

91e66d1b95b3a5fe0a2d1b24a6954360
SHA1

efd5948f2f0e6150a95977a6b4b77b26f7c81a14
SHA256

a65b2ea41d7753aaa5c6f105a54a59a985dafabc142a8f52cce7466123b02cff
SHA512

3731cf177145becd34536d06fe242b1f7cd8fb557d0a1b0a7527eec5eff7db435e13f263f3e15692f4bd0bf976e232f0630f7f50387e54fb940da523122998db
SSDEEP

3072:HKIx3w835x4UrstfBS1xgMhx/Mb6H1f51HUL8HVClTsdVKILrzcVlfnJGlYy/:HFQUeJID86HNLmTsdYILIRJGlY

Score

N/A

Malware Config

Signatures

Files

a65b2ea41d7753aaa5c6f105a54a59a985dafabc142a8f52cce7466123b02cff
.exe windows x86

02ed6d0465f2946d0ebd885f0afc1769

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
CloseHandle
ReadFile
WriteConsoleA
TerminateProcess
GetOEMCP
GetFileAttributesW
SetFileAttributesW
GetFullPathNameW
LCMapStringA
UnlockFile
FlushFileBuffers
GetSystemDefaultLCID
GetWindowsDirectoryW
UnhandledExceptionFilter
LoadResource
CompareStringA
CreateDirectoryW
InterlockedIncrement
GetProcAddress
GetTickCount
MultiByteToWideChar
GlobalHandle
GetCommandLineW
FindClose
GlobalFree
GetConsoleOutputCP
HeapFree
IsDebuggerPresent
GetCPInfo
GetStringTypeA
GetModuleFileNameA
LockResource
DuplicateHandle
GlobalLock
GetFileSize
GetVolumeInformationW
ExpandEnvironmentStringsA
MulDiv
SetEndOfFile
IsValidCodePage
WriteConsoleW
GetStartupInfoA
HeapSize
DeleteFileA
ExitProcess
RtlUnwind
GetStartupInfoW
GetCurrentProcess
InterlockedExchange
TlsAlloc
TlsFree
GetCurrentThreadId
GetStringTypeW
MoveFileA
lstrlenA
GetLocaleInfoW
FindResourceW
InitializeCriticalSectionAndSpinCount
SizeofResource
lstrlenW
LCMapStringW
CreateFileA
GetProcessHeap
SetFilePointer
RaiseException
GetConsoleCP
GlobalUnlock
SetHandleCount
CompareStringW
GetLocaleInfoA
FindResourceExW
Sleep
LocalFree
SetStdHandle
LoadLibraryW
InitializeCriticalSection
GlobalDeleteAtom
LoadLibraryA
GlobalAddAtomW
GetVersionExW
GetThreadLocale
SetEnvironmentVariableA
GetFileAttributesA
FileTimeToLocalFileTime
SetLastError
GetStdHandle
LocalAlloc
TlsSetValue
lstrcmpA
GetFileType
HeapAlloc
SetErrorMode
FormatMessageW
FindFirstFileW
GetModuleHandleA
DeleteCriticalSection
GetUserDefaultUILanguage
WideCharToMultiByte
GetVersionExA
VirtualQuery
GetEnvironmentStringsW
ConvertDefaultLocale
FreeEnvironmentStringsW
TlsGetValue
FreeResource
GetCurrentThread
SetFileAttributesA
GetFileTime
VirtualProtect
FreeLibrary
GlobalReAlloc
FileTimeToSystemTime
GetCurrentProcessId
VirtualFree
GetACP
LocalReAlloc
GlobalFindAtomW
LeaveCriticalSection
GlobalFlags
EnumResourceLanguagesW
EnterCriticalSection
GlobalAlloc
GetSystemInfo
FindNextFileW
GetLastError
WritePrivateProfileStringW
GetSystemTimeAsFileTime
HeapCreate
QueryPerformanceCounter
GetModuleHandleW
lstrcpynW
VirtualProtectEx
GetModuleFileNameW
WriteFile
GetTimeZoneInformation
HeapReAlloc
InterlockedDecrement
SetUnhandledExceptionFilter
CreateFileW
GetFileSizeEx
VirtualAlloc
LockFile
lstrcmpW

user32

AdjustWindowRectEx
GetWindow
GetWindowPlacement
GetMenuItemID
CopyAcceleratorTableW
PostMessageW
RegisterClassW
GetMenuCheckMarkDimensions
GetDC
SetCapture
CharNextW
IsChild
CallWindowProcW
EnableMenuItem
SetWindowTextW
SetWindowsHookExW
CopyRect
GetClassInfoExW
PostThreadMessageW
DestroyWindow
SendMessageW
ClientToScreen
GetMenuItemCount
DestroyMenu
SetPropW
CheckMenuItem
IsDialogMessageW
EndDialog
GetClientRect
ReleaseCapture
GetDesktopWindow
GetWindowThreadProcessId
DrawTextW
GetNextDlgTabItem
SetWindowPos
MoveWindow
EnumDisplayDevicesW
GetForegroundWindow
RegisterWindowMessageW
SetActiveWindow
GetMenu
GetSystemMetrics
ValidateRect
EqualRect
PostQuitMessage
WinHelpW
GetParent
GetCursorPos
SetForegroundWindow
LoadBitmapW
SendDlgItemMessageW
GetDlgItem
DefWindowProcW
GetWindowTextW
GetTopWindow
LoadCursorW
GetSysColorBrush
SetCursor
LoadIconW
EnableWindow
IsRectEmpty
ModifyMenuW
InvalidateRgn
DispatchMessageW
UpdateWindow
GetSysColor
SendDlgItemMessageA
IntersectRect
OffsetRect
GetCapture
DrawTextExW
TabbedTextOutW
CallNextHookEx
SetRect
MapWindowPoints
GetClassInfoW
InvalidateRect
GetActiveWindow
BeginPaint
GetDlgCtrlID
ShowWindow
IsWindowVisible
GetWindowRect
SystemParametersInfoA
PtInRect
IsWindow
GetMessageW
RegisterClipboardFormatW
CreateDialogIndirectParamW
SetFocus
UnhookWindowsHookEx
RemovePropW
UnregisterClassW
CharUpperW
CreateWindowExW
IsIconic
MessageBoxW
SetWindowContextHelpId
SetMenuItemBitmaps
ReleaseDC
GetMessagePos
TranslateMessage
GrayStringW
GetClassNameW
GetPropW
GetWindowDC
PeekMessageW
SetMenu
GetLastActivePopup
GetFocus
SetWindowLongW
MessageBeep
MapDialogRect
GetSubMenu
GetClassLongW
GetWindowLongW
GetMessageTime
GetMenuState
EndPaint
IsWindowEnabled
GetKeyState
GetNextDlgGroupItem

advapi32

RegEnumKeyExW
RegEnumKeyW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegOpenKeyW
RegCreateKeyExW
RegQueryValueExW
RegQueryValueW
RegCloseKey

ole32

OleInitialize
CoTaskMemAlloc
OleUninitialize
CLSIDFromString
StgCreateDocfileOnILockBytes
OleFlushClipboard
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
CoRevokeClassObject
CoGetClassObject
CoCreateInstance
CoUninitialize
CoRegisterMessageFilter
CoTaskMemFree
CreateILockBytesOnHGlobal
CoInitialize
CLSIDFromProgID
CoFreeUnusedLibraries

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.purple
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cian
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat_0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02ed6d0465f2946d0ebd885f0afc1769

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 8KB - Virtual size: 8KB

.itext Size: 8KB - Virtual size: 7KB

.data Size: - Virtual size: 50KB

.purple Size: 102KB - Virtual size: 101KB

.cian Size: 1024B - Virtual size: 708B

.rsrc Size: 14KB - Virtual size: 14KB

.idat_0 Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.itext
Size: 8KB - Virtual size: 7KB

.data
Size: - Virtual size: 50KB

.purple
Size: 102KB - Virtual size: 101KB

.cian
Size: 1024B - Virtual size: 708B

.rsrc
Size: 14KB - Virtual size: 14KB

.idat_0
Size: 2KB - Virtual size: 1KB