b8b6bf9f1d7d8a64f4d1e6462025c9353e34cc91afb4e94d2d792eba8e252a63

Sharing

Copy URL Twitter E-mail

General

Target

b8b6bf9f1d7d8a64f4d1e6462025c9353e34cc91afb4e94d2d792eba8e252a63
Size

146KB
MD5

43dc001e531e459694ba861f3d250d70
SHA1

595418cf53f9bce35cc8aed432559bee88c48dfa
SHA256

b8b6bf9f1d7d8a64f4d1e6462025c9353e34cc91afb4e94d2d792eba8e252a63
SHA512

1f7bec62c7ce74a52fca9bbc32e55cb24094fbe9f40fe29271b3dc7761564ffe4cadd671e18e068c2fc35a8dd8c5513bf6efcbdb83d29b8d97dee9bb1e422419
SSDEEP

3072:fD4JlU3o9inroLlorznSGhqlmIxw75qKT6L9iM:vnqSqcXIxw75TvM

Score

N/A

Malware Config

Signatures

Files

b8b6bf9f1d7d8a64f4d1e6462025c9353e34cc91afb4e94d2d792eba8e252a63
.exe windows x86

1c7dc97e7324bbe4574e02f5642a6fbc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
LCMapStringW
LCMapStringA
GetEnvironmentStrings
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
DeviceIoControl
WideCharToMultiByte
MultiByteToWideChar
LocalFree
CreateFileA
lstrcpyA
WriteFile
LocalAlloc
GetProcessHeap
HeapAlloc
HeapFree
lstrlenA
lstrcmpiA
WaitForMultipleObjects
SetEvent
WaitForSingleObject
SearchPathA
CreateProcessA
CloseHandle
GetModuleHandleA
GetProcAddress
GetCurrentProcess
lstrcmpA
CreateMutexA
GetLastError
GetVersionExA
Sleep
CreateEventA
CreateThread
WinExec
HeapReAlloc
GetStringTypeW

user32

GetMessageA
ShowWindow
LoadStringA
TranslateMessage
CreateWindowExA
RegisterClassA
LoadCursorA
DispatchMessageA
LoadImageA
GetCursorPos
GetSysColor
SystemParametersInfoA
LoadIconA
GetMenuCheckMarkDimensions
ReleaseDC
CreatePopupMenu
InsertMenuItemA
GetDC
TrackPopupMenu
DestroyMenu
PostQuitMessage
SetForegroundWindow
PostMessageA
DefWindowProcA
GetDesktopWindow
GetWindow
GetClassNameA
SendMessageA

gdi32

GetTextExtentPoint32A
DeleteDC
SelectObject
CreateFontIndirectA
CreateCompatibleDC
BitBlt
CreatePen
MoveToEx
LineTo
CreateBrushIndirect
Rectangle
GetTextColor
SetTextColor
GetBkMode
SetBkMode
GetTextAlign
SetTextAlign
ExtTextOutA
DeleteObject

advapi32

RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyA
RegDeleteValueA
AllocateAndInitializeSid
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExA
RegCreateKeyExA
GetLengthSid
InitializeAcl
AddAccessAllowedAce
RegSetKeySecurity
FreeSid
RegCreateKeyA

shell32

Shell_NotifyIconA

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

winmm

mixerClose
mixerOpen
waveInGetNumDevs
waveInGetDevCapsA
mixerGetNumDevs
mixerGetID
mixerGetDevCapsA

hid

HidP_GetCaps
HidD_GetPreparsedData
HidD_GetAttributes
HidD_GetHidGuid
HidD_FreePreparsedData

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1c7dc97e7324bbe4574e02f5642a6fbc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

setupapi

winmm

hid

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 88KB - Virtual size: 88KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 88KB - Virtual size: 88KB