4a9de2ed4e4c9bc09171cd15ce0a900198f9cdd10a9133e76d68d6d07af8b71a

Sharing

Copy URL Twitter E-mail

General

Target

4a9de2ed4e4c9bc09171cd15ce0a900198f9cdd10a9133e76d68d6d07af8b71a
Size

324KB
MD5

91091a5616dca0d9d5475b9628970e60
SHA1

9fce421ce1c88d479b9cdcaaad4b21f31b4502e5
SHA256

4a9de2ed4e4c9bc09171cd15ce0a900198f9cdd10a9133e76d68d6d07af8b71a
SHA512

f7eb34915e22c4094c20f723588015f8eb2eca694edd50a83f3c92ba5fcda5131f55fc9105743e62910fd76afd5e241cf2403b69411f9e0ee42530ad7003175d
SSDEEP

6144:9IFuuuhmYBPLYgYfk1JMZwiigFX2uZVa9pXga7WdJFokrqN:9IQDlLYgYfWRgFX2Dga7WdJDrqN

Score

N/A

Malware Config

Signatures

Files

4a9de2ed4e4c9bc09171cd15ce0a900198f9cdd10a9133e76d68d6d07af8b71a
.exe windows x86

62915dfb23e90980bfc5aa414bb20ab9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

untfs

Format
Extend
Chkdsk
FormatEx
Recover
ChkdskEx

msvcrt

malloc
_initterm
free
??1type_info@@UAE@XZ
swprintf
_adjust_fdiv
??3@YAXPAX@Z
wcsncpy
wcscat
wcslen
realloc
_except_handler3
??2@YAPAXI@Z
wcscmp
__CxxFrameHandler
?terminate@@YAXXZ

kernel32

LocalFree
MultiByteToWideChar
VirtualFree
lstrlenA
GetProcAddress
OutputDebugStringA
RemoveDirectoryA
LeaveCriticalSection
HeapDestroy
SetLastError
HeapAlloc
lstrcpyW
GetEnvironmentStringsA
SetUnhandledExceptionFilter
FindResourceW
GetLastError
EnterCriticalSection
GetProcessHeap
lstrcatW
lstrcmpiW
HeapFree
GetSystemInfo
LoadLibraryA
InterlockedIncrement
GetTickCount
InterlockedDecrement
GetSystemTimeAsFileTime
lstrlenW
GetModuleFileNameW
FormatMessageW
lstrcpynW
GetUserDefaultLCID
GetCurrentProcessId
LoadLibraryExW
SizeofResource
DeleteCriticalSection
FreeLibrary
LoadResource
GetCurrentProcess
QueryPerformanceCounter
FlushInstructionCache

user32

DrawTextW
GetClientRect
GetSystemMetrics
GetParent
SendMessageW
SendDlgItemMessageW
GetWindow
SystemParametersInfoW
MapWindowPoints
DestroyWindow
CharNextW
DialogBoxParamW
GetWindowRect
SetWindowLongW
CreateDialogParamW
GetWindowLongW
GetDlgItemTextW
ShowWindow
MessageBoxW
LoadImageW
EnableWindow
SetWindowPos
CopyRect
SetDlgItemTextW
SetFocus
GetDialogBaseUnits
GetDlgItem
EndDialog
LoadStringW
SetWindowTextW

rpcrt4

NdrDllRegisterProxy
NdrCStdStubBuffer_Release
CStdStubBuffer_QueryInterface
CStdStubBuffer_Invoke
NdrOleAllocate
CStdStubBuffer_AddRef
NdrDllGetClassObject
CStdStubBuffer_Disconnect
CStdStubBuffer_Connect
NdrDllCanUnloadNow
CStdStubBuffer_CountRefs
NdrDllUnregisterProxy
NdrOleFree
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_IsIIDSupported

advapi32

RegQueryInfoKeyW
RegCloseKey
RegDeleteKeyW
TraceMessage
GetTraceEnableLevel
RegisterTraceGuidsW
GetTraceLoggerHandle
RegCreateKeyExW
RegSetValueExW
UnregisterTraceGuids
RegDeleteValueW
GetTraceEnableFlags
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetFolderPathW
ShellExecuteW

Sections

text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62915dfb23e90980bfc5aa414bb20ab9

Headers

DLL Characteristics

File Characteristics

Imports

untfs

msvcrt

kernel32

user32

rpcrt4

advapi32

shell32

Sections

text Size: 117KB - Virtual size: 117KB

.rdata Size: 174KB - Virtual size: 174KB

.rsrc Size: 30KB - Virtual size: 30KB

text
Size: 117KB - Virtual size: 117KB

.rdata
Size: 174KB - Virtual size: 174KB

.rsrc
Size: 30KB - Virtual size: 30KB