57db0c58456f81e25648b28bac1473045716ba0c71d4b9b4a2bc4329b44aed6c

Sharing

Copy URL Twitter E-mail

General

Target

57db0c58456f81e25648b28bac1473045716ba0c71d4b9b4a2bc4329b44aed6c
Size

162KB
MD5

a0df263a16078a9631ed5e150f3d06d0
SHA1

fbaf6ee24f9fa2c0c94fc3c9ef8d3a491f144437
SHA256

57db0c58456f81e25648b28bac1473045716ba0c71d4b9b4a2bc4329b44aed6c
SHA512

4f6c751478bcfd28792b45e6704cb057961cdd6450663499a49ec3cb1688b3a0298445dfbcf93a9db57d5e30893420aa5b4e5b9e3727d1cd96c5d97c590e94c7
SSDEEP

3072:Ba4LTcdC4paDlyCXHIBqZMa6Y0brrAdReXF1WvO3n/AeGwcfSqfIq5:04LTn8+yE/ZMa6frAqXqWPxGwc3f1

Score

N/A

Malware Config

Signatures

Files

57db0c58456f81e25648b28bac1473045716ba0c71d4b9b4a2bc4329b44aed6c
.exe windows x86

27b2a158f10c82c0fef8862de7b9c27a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetProfileStringW
LoadLibraryW
GetSystemDefaultLCID
SetConsoleHardwareState
ZombifyActCtx
FreeEnvironmentStringsW
AddConsoleAliasA
AddLocalAlternateComputerNameA
DebugSetProcessKillOnExit
TransactNamedPipe
GetNativeSystemInfo
GetPrivateProfileSectionW
GlobalUnfix
SetThreadContext
LocalAlloc
FindFirstFileExW
BackupRead
GetStartupInfoW
GlobalGetAtomNameW
lstrlen
GlobalCompact
GetDiskFreeSpaceExW
UnregisterWaitEx
GetCPInfo
GetBinaryTypeA
CommConfigDialogA

polstore

IPSecCopyFilterData
IPSecCopyNegPolData
IPSecCopyAuthMethod
IPSecImportPolicies
IPSecGetAssignedPolicyData
IPSecSetFilterData
IPSecDeleteFilterData
IPSecSetPolicyData
IPSecDeleteISAKMPData

olecli32

DefCreateFromClip
OleGetLinkUpdateOptions
OleEnumObjects
WEP
OleQueryCreateFromClip
LeUpdate
ErrQueryOpen
OleRequestData
BmChangeData
OleIsDcMeta
SetNextNetDrive
LeEnumFormat
ErrExecute
OleCreateLinkFromFile
OleQuerySize
LeReconnect
LeSetUpdateOptions
OleRevertClientDoc
ObjQueryName
MfGetData
OleQueryOutOfDate
DibClone
BmRelease
ErrSetUpdateOptions
LeChangeData

winscard

SCardIntroduceReaderA
SCardControl
SCardListInterfacesA
SCardBeginTransaction
SCardGetStatusChangeA
SCardConnectW
SCardGetAttrib
SCardForgetReaderGroupW
SCardFreeMemory
SCardGetCardTypeProviderNameA
SCardGetProviderIdA
SCardIntroduceCardTypeA
SCardCancel
SCardIntroduceReaderGroupA
SCardReleaseStartedEvent
SCardListReaderGroupsA
SCardIntroduceReaderW
SCardTransmit
SCardRemoveReaderFromGroupW
SCardListReaderGroupsW
SCardGetCardTypeProviderNameW

gdi32

UpdateColors
GetCharABCWidthsA
SetPaletteEntries
StartDocA
CloseMetaFile
GdiGetPageHandle
EngGetCurrentCodePage
SetICMProfileA
DdEntry33
EngLineTo
GetFontAssocStatus
EngStretchBltROP
PlayMetaFileRecord
GetDeviceCaps
EngCreateSemaphore
GetCharWidth32A
DdEntry16
GdiConvertToDevmodeW

msvcrt

memmove
_abnormal_termination
_ismbstrail
__set_app_type
__p__wcmdln
_set_SSE2_enable
_ctype
frexp
_amsg_exit
wcsrchr
log10
_strnicmp
__getmainargs
_wcsset
exit
fwscanf
_adj_fprem1
_lrotr
__p__commode
_mbctohira
___mb_cur_max_func
puts
_sleep

imm32

ImmLockImeDpi
ImmIsIME
ImmIMPGetIMEW
ImmRegisterWordW
ImmAssociateContext
ImmGetVirtualKey
ImmNotifyIME
ImmSendIMEMessageExW
ImmGetDefaultIMEWnd
ImmEnumRegisterWordA
ImmWINNLSEnableIME
ImmGetCompositionFontA
ImmGetRegisterWordStyleA
ImmEscapeA

user32

DefWindowProcW
PostQuitMessage
RegisterClassW

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 46B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27b2a158f10c82c0fef8862de7b9c27a

Headers

File Characteristics

Imports

kernel32

polstore

olecli32

winscard

gdi32

msvcrt

imm32

user32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 16KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 46B

.data Size: 27KB - Virtual size: 27KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 16KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 46B

.data
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 1KB - Virtual size: 1KB