9eff4b0975729e28ef17e67383d19b43350d0859cf4ad156745c191d01e39397

Sharing

Copy URL Twitter E-mail

General

Target

9eff4b0975729e28ef17e67383d19b43350d0859cf4ad156745c191d01e39397
Size

367KB
MD5

807eb54ac6ed09b84c0e20e8b6321d80
SHA1

3dfcfc9d120896e5b51ccb5297e93757cea5c6ca
SHA256

9eff4b0975729e28ef17e67383d19b43350d0859cf4ad156745c191d01e39397
SHA512

978f6950f24d3947148a67e6fffe864023d2bf47c33dae9d4525a3582c4cf9a71b9b8fb3bfdaa76316ee2bf6f2e1104cadd667a5c6ef7ac74b639baa35ecbc4f
SSDEEP

6144:nFOAa6fdAJvHso+OKYwCTNE5gtIk9RfRBpyS3c3FSLHkicLIEjRlxV5Z3QfWWqQ:FPCJvMowYwCaatIypvM3Fy8UsrxyWWqQ

Score

N/A

Malware Config

Signatures

Files

9eff4b0975729e28ef17e67383d19b43350d0859cf4ad156745c191d01e39397
.exe windows x86

fb41745487d3b15d6681725f73e55601

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyNameTextW
SetCursor
InsertMenuItemW
SetDlgItemInt
AppendMenuW
GetFocus
GetCursorPos
SetFocus
RegisterClassExW
GetDlgItemInt
GetWindowTextLengthW
GetClassInfoExW
CallWindowProcW

sisbkup

SisCreateBackupStructure
SisRestoredLink
SisRestoredCommonStoreFile
SisFreeAllocatedMemory
SisCSFilesToBackupForLink
SisFreeBackupStructure

kernel32

DeleteCriticalSection
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
GetSystemInfo
VirtualProtect
GetTimeZoneInformation
LCMapStringW
WideCharToMultiByte
LCMapStringA
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
MoveFileW
LocalFree
LocalAlloc
CreateProcessW
SetFileAttributesW
SetSystemTimeAdjustment
VirtualProtectEx
GetComputerNameW
GetModuleHandleA
GetStartupInfoW
GetVersionExA
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
TlsAlloc
SetLastError
GetCurrentThreadId
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
HeapFree
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
LoadLibraryA
HeapAlloc
InitializeCriticalSection
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
IsBadWritePtr
RtlUnwind
InterlockedExchange
VirtualQuery
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId

Sections

.text
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb41745487d3b15d6681725f73e55601

Headers

File Characteristics

Imports

user32

sisbkup

kernel32

Sections

.text Size: 268KB - Virtual size: 267KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 6KB - Virtual size: 299KB

.rsrc Size: 79KB - Virtual size: 79KB

.text
Size: 268KB - Virtual size: 267KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 6KB - Virtual size: 299KB

.rsrc
Size: 79KB - Virtual size: 79KB