98f7c42d5dc6a139c77b66223c782135dece6516f06e5f69f3dfcd9b65d7dbaa

Sharing

Copy URL Twitter E-mail

General

Target

98f7c42d5dc6a139c77b66223c782135dece6516f06e5f69f3dfcd9b65d7dbaa
Size

96KB
MD5

a06d206553870a2de33d47d65c9b94d0
SHA1

c1f95ee7f4e6f34226b7c043c59bd840874f7941
SHA256

98f7c42d5dc6a139c77b66223c782135dece6516f06e5f69f3dfcd9b65d7dbaa
SHA512

2b8a22c5e6de3f82322d4766f1368ceb57790fb6e7c9d6e88395da43bf85a6e9dffc440234ec110f5a59e8d939c833f04ca928b0114a9f2b9ea2647a254a4103
SSDEEP

1536:KpSaYwOKaAObVF6ngt26KHLMgBbjJFc4tQrPvHBc62sVWlFnihg:RNKdn0KHLMgBbfc4tEP/Bc6Ybih

Score

N/A

Malware Config

Signatures

Files

98f7c42d5dc6a139c77b66223c782135dece6516f06e5f69f3dfcd9b65d7dbaa
.exe windows x86

0531022b32af9d6b211341dc9293a3bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CreateDirectoryW
FindFirstFileA
DeleteFileA
GetLogicalDriveStringsA
CreateWaitableTimerW
GetStartupInfoW
OpenEventW
GetCommandLineW
FormatMessageA
GetLocalTime
LoadLibraryA
CreateSemaphoreA
GetProfileIntW
GetLocaleInfoW
HeapFree
GetACP
ReplaceFileW
CreateMutexW
GetFileSize
GetProcAddress
CreateEventA

uxtheme

GetThemeColor
SetWindowTheme
DrawThemeBackground
GetCurrentThemeName
GetThemeTextMetrics
GetThemeInt
CloseThemeData
GetThemeSysColor
GetThemeFont
IsThemeActive
DrawThemeEdge
GetThemeSysBool
GetThemeRect
GetThemeSysSize

crypt32

CertCreateCTLContext
CertAddStoreToCollection
CryptFindOIDInfo
CertNameToStrA
CertCloseStore
CertCreateCRLContext
CertCreateContext
CertFindExtension
CertAlgIdToOID
CertSetStoreProperty
CertGetNameStringA
CertFreeCRLContext

cryptdll

CDLocateRng
MD5Init
MD5Final
CDBuildVect

user32

EnumWindows
GetFocus
LoadImageW
SendMessageA
FindWindowExA
GetPropA
LoadCursorA
LoadBitmapW
EnumDesktopsA
CreateDesktopA
OemToCharA
wsprintfW

dhcpsapi

DhcpCreateClass
DhcpCreateSubnet

wtsapi32

WTSQuerySessionInformationA
WTSQueryUserToken
WTSEnumerateProcessesA
WTSVirtualChannelRead
WTSVirtualChannelOpen
WTSSetSessionInformationA
WTSWaitSystemEvent
WTSFreeMemory
WTSVirtualChannelWrite
WTSCloseServer
WTSLogoffSession
WTSVirtualChannelClose
WTSVirtualChannelPurgeInput
WTSSendMessageA
WTSUnRegisterSessionNotification

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0531022b32af9d6b211341dc9293a3bc

Headers

File Characteristics

Imports

kernel32

uxtheme

crypt32

cryptdll

user32

dhcpsapi

wtsapi32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 224KB

.rsrc Size: 64KB - Virtual size: 62KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 224KB

.rsrc
Size: 64KB - Virtual size: 62KB