fbfe36ce31c8a699dfa755cd94152b5d69a5643c60d5abc235dd938b83497db2

Sharing

Copy URL

Twitter E-mail

General

Target

fbfe36ce31c8a699dfa755cd94152b5d69a5643c60d5abc235dd938b83497db2
Size

716KB
MD5

8041ced93c3d559f20a99e940afd7da0
SHA1

7b6a95515582c7e1834cd7a9df3dc4bacb0f0638
SHA256

fbfe36ce31c8a699dfa755cd94152b5d69a5643c60d5abc235dd938b83497db2
SHA512

4d63c4c699dcc4eb9c8176b84832225f4f823420ffe4bece4f99bdb527ad88473f3d7dfd29b1b022981a109ec64085afa4215c1a1234c5265389530f53ff0a13
SSDEEP

12288:D3rCybx89KQHPMr6E38eO04WO7Gma4a33X6nyYU4q8fpxe3sVt+MDnQTNMixs2Ti:D1NSQ33X6y99Cxe3sVtlDQTNJhdPaGS

Score

N/A

Malware Config

Signatures

Files

fbfe36ce31c8a699dfa755cd94152b5d69a5643c60d5abc235dd938b83497db2
.exe windows x86

cccc29fe50b69d5c807a52079e3d1ccd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetTickCount
SystemTimeToFileTime
FileTimeToSystemTime
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
GetCurrentProcess
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
lstrlenW
lstrlenA
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
GetFileAttributesA
CreateFileA
WriteFile
GetLocalTime
CreateProcessA
GetCurrentProcessId
SetUnhandledExceptionFilter
CreateMutexA
GlobalFree
GlobalAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
IsBadWritePtr
VirtualFree
CloseHandle
HeapDestroy
MultiByteToWideChar
GetStartupInfoA
CreateDirectoryA
SetConsoleCtrlHandler
GetFullPathNameA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapReAlloc
DeleteFileA
MoveFileA
ExitProcess
RtlUnwind
InterlockedCompareExchange
LCMapStringW
LCMapStringA
GetStringTypeExA
GetUserDefaultLCID
QueryPerformanceCounter
SetFilePointer
HeapSize
GetOEMCP
GetDriveTypeA
GetCurrentDirectoryA
UnhandledExceptionFilter
ReadFile
SetHandleCount
GetStdHandle
GetFileType
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
FlushFileBuffers
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoW
SetEndOfFile
GetCommandLineA
CreateThread
Sleep
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
WideCharToMultiByte
GetModuleHandleA
GetModuleFileNameA
GetLastError
Process32First
OpenProcess
GetPriorityClass
TerminateProcess
GetExitCodeProcess
Process32Next
CreateToolhelp32Snapshot
Module32First
GetCPInfo
Module32Next
LeaveCriticalSection
HeapCreate
EnterCriticalSection

user32

SetWindowPos
LoadStringA
CharNextA
UnregisterClassA
DialogBoxParamA
DrawFocusRect
ScreenToClient
SetCursor
SetWindowTextA
GetParent
GetClientRect
MapWindowPoints
GetWindowLongA
AdjustWindowRectEx
LoadImageA
SetWindowLongA
EndDialog
GetWindowRect
MoveWindow
GetDlgItem
EnableWindow
GetMessageA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
DefWindowProcA
BeginPaint
EndPaint
GetDC
ReleaseDC
DrawTextA
MonitorFromWindow
GetMonitorInfoA
CreateWindowExA
LoadBitmapA
SendMessageA
ShowWindow
UpdateWindow
KillTimer
PostQuitMessage
DestroyWindow
SetTimer
MessageBoxA
PostMessageA

gdi32

CreateFontA
BitBlt
ExtTextOutA
CreateCompatibleDC
DeleteDC
DeleteObject
GetStockObject
SelectObject
SetTextColor
SetBkColor
SetBkMode

advapi32

RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegQueryInfoKeyA
RegEnumKeyExA
RegSetValueExA
RegDeleteKeyA

shell32

ShellExecuteExA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
OleSetContainedObject
OleUninitialize
CoUninitialize
CoInitialize
OleInitialize
CoCreateInstance
OleCreate

oleaut32

SysAllocString
VariantClear
VarUI4FromStr
VariantInit

ws2_32

recv
send
WSAGetLastError
socket
htons
inet_addr
gethostbyname
shutdown
connect
WSAStartup
WSACleanup
closesocket

winmm

timeGetTime

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 348KB - Virtual size: 345KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cccc29fe50b69d5c807a52079e3d1ccd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

ws2_32

winmm

version

Sections

.text Size: 348KB - Virtual size: 345KB

.rdata Size: 92KB - Virtual size: 89KB

.data Size: 12KB - Virtual size: 29KB

.tls Size: 4KB - Virtual size: 1KB

.rsrc Size: 256KB - Virtual size: 255KB

.text
Size: 348KB - Virtual size: 345KB

.rdata
Size: 92KB - Virtual size: 89KB

.data
Size: 12KB - Virtual size: 29KB

.tls
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 256KB - Virtual size: 255KB