4a394d708ca551bad4384929cc5bb8f08244dabf68670d6b8a91db94e3e3adf1

Sharing

Copy URL

Twitter E-mail

General

Target

4a394d708ca551bad4384929cc5bb8f08244dabf68670d6b8a91db94e3e3adf1
Size

338KB
MD5

a250a7cff5ba00718bbeeb74ba2475a1
SHA1

22eecb5066dfb496a3defadb80aa7496a57bced4
SHA256

4a394d708ca551bad4384929cc5bb8f08244dabf68670d6b8a91db94e3e3adf1
SHA512

7d5a642bc7481d66fc3432432e1e9ab3d6cea2bb470aa393ac84115c627bb4329b79daf65ea5eedc288e6fd75657117b29b047568336ddc771d5470486940a15
SSDEEP

6144:S6/HuVY4R1fUWrY4DvbyofsvolDesaUi27dkk/W+gfz:S6/OVfj8WrY4DzyusCeZBedkk/W+g7

Score

N/A

Malware Config

Signatures

Files

4a394d708ca551bad4384929cc5bb8f08244dabf68670d6b8a91db94e3e3adf1
.exe windows x86

f920f4ca34de7e8d1e0db18162cbfd4e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY

Imports

kernel32

LockResource
GetThreadPriority
GetModuleHandleA
GetWindowsDirectoryW
lstrcpyA
FlushFileBuffers
LocalAlloc
SetPriorityClass
GetStringTypeW
LCMapStringW
WriteConsoleW
HeapSize
HeapAlloc
IsProcessorFeaturePresent
SetStdHandle
CloseHandle
Sleep
LoadLibraryA
GetProcAddress
GetLastError
SetThreadPriority
HeapCreate
SizeofResource
GetPriorityClass
GetCommandLineA
GetCurrentThread
GetCurrentProcess
LoadResource
HeapFree
IsValidCodePage
GetOEMCP
GetACP
HeapReAlloc
FindResourceA
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
ExitProcess
DecodePointer
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
RtlUnwind
MultiByteToWideChar
DeleteCriticalSection
LoadLibraryW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
GetStdHandle
CreateFileW

user32

DispatchMessageA
ShowWindow
DefWindowProcA
MonitorFromWindow
CreateWindowExA
UpdateWindow
GetDC
GetMonitorInfoA
EndPaint
DestroyWindow
PostQuitMessage
LoadMenuA
SendMessageA
BeginPaint

gdi32

DeleteObject
SelectObject
Rectangle
FillRgn
SetDCPenColor
GetTextMetricsA
GetStockObject
CreateSolidBrush
EnumFontsA

netapi32

NetGetJoinInformation

shlwapi

PathGetArgsA

gdiplus

GdipDisposeImage
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromFile

rasapi32

RasHangUpA
RasGetErrorStringA
RasDialA

dxva2

GetVCPFeatureAndVCPFeatureReply
GetMonitorBrightness

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kss
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.relont
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.try
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.get
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f920f4ca34de7e8d1e0db18162cbfd4e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

netapi32

shlwapi

gdiplus

rasapi32

dxva2

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 11KB

.kss Size: 144KB - Virtual size: 144KB

.relont Size: 53KB - Virtual size: 53KB

.wata Size: 5KB - Virtual size: 4KB

.try Size: 3KB - Virtual size: 3KB

.get Size: 3KB - Virtual size: 3KB

.rsrc Size: 67KB - Virtual size: 67KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 11KB

.kss
Size: 144KB - Virtual size: 144KB

.relont
Size: 53KB - Virtual size: 53KB

.wata
Size: 5KB - Virtual size: 4KB

.try
Size: 3KB - Virtual size: 3KB

.get
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 67KB - Virtual size: 67KB

.reloc
Size: 6KB - Virtual size: 5KB